hostname WA1510
!
username admin password plain admin administrator
!
http-username admin password plain admin administrator
!
ip dhcp-server enable
ip dhcp-server profile default
  default-gateway auto
  dns-server auto
  subnet-mask auto
!
ppp profile pppoeprof
    authentication username test@example.net
    authentication password plain test
!
interface GigaEthernet0.0
  no ip address
  encapsulation PPPoE0
  no shutdown
!
interface GigaEthernet1.0
  ip address 192.168.1.200/24
  ip dhcp-server binding default
  device-list enable
  no shutdown
!
interface PPPoE0
  ip address ipcp
  ip tcp adjust-mss auto
  ppp profile pppoeprof
  auto-connect
  ip napt enable
  ip napt reserve icmp
  ip napt reserve esp
  ip napt reserve udp 500
  ip napt reserve udp 4500
  no shutdown
!
interface Loopback0.0
  ip address 127.0.0.1/8
  no shutdown
!
interface IPsec0
  ip address unnumbered
  ip tcp adjust-mss auto
  ipsec map ipsecprof1
  no shutdown
!
ip route 192.168.2.0/24 IPsec0
ip route default PPPoE0
!
proxy-dns ip enable
proxy-dns server default PPPoE0 ipcp
!
ike proposal ikeprop1
  encryption-algorithm aes256-cbc
  authentication-algorithm hmac-sha2-256
  lifetime 28800
!
ike policy ikepol1
  mode aggressive
  remote-id key-id testkey
  dpd-keepalive enable ph1 20 3
  proposal ikeprop1
  pre-shared-key plain secret
  nat-traversal enable keepalive 20
  rekey-responder enable
!
ipsec proposal ipsecprop1
  protocol esp enc-algo aes256-cbc auth-algo hmac-sha2-256
  lifetime 28800
!
ipsec policy ipsecpol1
  local-id 192.168.1.0/24
  remote-id 192.168.2.0/24
  rekey enable always
  proposal ipsecprop1
!
ipsec profile ipsecprof1
  mode tunnel
  ipsec policy ipsecpol1
  ike policy ikepol1
  source PPPoE0
  peer any
!
nm ip enable 
nm account example password plain testtest 
nm sitename example-office
!
https-server ip enable
https-server ip permit 192.168.1.0/24
https-server ip redirect enable
!
led vpn ipsec
!