aaa new-model aaa authentication login default group tacacs+ local aaa authentication login no_tacacs enable aaa authentication ppp default group tacacs+ aaa authorization network default group tacacs+ aaa accounting network default start-stop group tacacs+ enable secret 5 $1$FdxlnA$pGA5cPuIqOOJwFT0iLWq0 ! username localuser passWord 0 _password ip subnet-zero ! ! no ip finger no ip domain-lookup ! virtual-profile virtual-template 1 virtual-profile aaa isdn switch-type basic-net3 ! ! ! interface FastEthernet0/0 ip address 10.1.10.33 255.255.255.0 duplex auto speed auto ! interface BRI1/0 ip unnumbered FastEthernet0/0 encapsulation ppp no ip route-cache no ip mroute-cache no keepalive dialer-group 1 isdn switch-type basic-net3 peer default ip address pool ip_pool no fair-queue ppp authentication chap pap ppp multilink ! interface BRI1/1 ip unnumbered FastEthernet0/0 encapsulation ppp no ip route-cache no ip mroute-cache no keepalive dialer-group 1 isdn switch-type basic-net3 peer default ip address pool ip_pool no fair-queue ppp authentication chap pap ppp multilink ! ... interface Virtual-Template1 ip unnumbered FastEthernet0/0 peer default ip address pool ip_pool ppp authentication chap pap ppp multilink ppp timeout idle 300 ! interface Group-Async0 ip unnumbered FastEthernet0/0 encapsulation ppp ip tcp header-compression passive async dynamic routing async mode interactive peer default ip address pool ip_pool ppp authentication chap pap group-range 65 80 !
ip local pool ip_pool 10.1.10.1 10.1.10.32 ip classless ip route 0.0.0.0 0.0.0.0 10.1.10.34 no ip http server ! access-list 101 deny icmp any host 10.1.11.1 log access-list 101 permit ip any any dialer-list 1 protocol ip permit tacacs-server host 10.1.10.36 single-connection tacacs-server key _key
! line con 0 login authentication no_tacacs transport input none line 65 80 autoselect during-login autoselect ppp modem InOut modem autoconfigure discovery transport input all stopbits 1 flowcontrol hardware
