enable
configure terminal
no ip domain-lookup
service password-encryption
hostname R2
enable secret class
line console 0
password cisco
login
logging synchronous
exit
line vty 0 4
password cisco
login
exit
banner motd #Unauthorized access prohibited#
access-list 1 permit 192.168.2.0 0.0.0.255
access-list 1 permit 192.168.1.0 0.0.0.255
ip nat inside source list 1 interface g0/0 overload
interface g0/1
ip nat inside
interface g0/2
ip nat inside
int g0/0
ip nat outside
exit
ip dhcp pool VLAN_A_POOL
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1 
ip dhcp pool VLAN_B_POOL
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1 
ip dhcp excluded-address 192.168.2.1
ip dhcp excluded-address 192.168.1.1
interface g0/1
ip address 10.0.0.1 255.255.255.252
no shutdown
exit
interface g0/0
ip address 203.0.113.17 255.255.255.248
no shutdown
exit
int g0/2 
ip address 10.0.10.1 255.255.255.252
no shutdown
exit
ip route 0.0.0.0 0.0.0.0 203.0.113.18
interface Tunnel0
ip address 172.16.12.1 255.255.255.252
tunnel source 203.0.113.17 
tunnel destination 203.0.113.26
no shutdown
exit
router ospf 1
network 10.0.10.0 0.0.0.3 area 1
network 10.0.0.0 0.0.0.3 area 1
network 203.0.113.16 0.0.0.7 area 1
passive-interface g0/0
passive-interface g0/1
end
copy running-config startup-config