Home > other >  Routing can ping TongWai network, routing downward mouth but not outside the network, the Internet p
Routing can ping TongWai network, routing downward mouth but not outside the network, the Internet p

Time:09-26

Innophos# show running - config
: Saved
:
ASA Version 8.2 (1)
!
The hostname Innophos
The enable password 2 dhxadoe77biihx7 encrypted
Passwd 2 kfqnbnidi. 2 kyou encrypted
Names
!
Interface Ethernet0/0
Nameif outside
Security - level 0
IP address XXXXXX

Interface Ethernet0/1
Nameif inside
Security - level 100
IP address 192.168.0.1 255.255.255.0
!
Interface Ethernet0/2
Shutdown
No nameif
No security - level
No IP address
!
Interface Ethernet0/3
Shutdown
No nameif
No security - level
No IP address
!
Interface Management0/0
Nameif management
Security - level 100
IP address 192.168.1.1 255.255.255.0
Management - only
!
FTP mode passive
The same ws-security - traffic permit system - interface
The same ws-security - traffic permit intra - interface
IP access - the list inside_nat0_outbound extended permit XX. XX. XX. XX 255.255.255.252 192.168.1.208 255.255.255.248
IP access - the list inside_access_in extended permit any any
IP access - the list outside_access_in extended permit any any
Access - the list 155 extended permit TCP host XX. XX, XX, XX host XX. XX. XX. XX eq 1433
Access - the list 155 extended permit TCP host XX. XX, XX, XX host XX. XX. XX. XX eq 1433
Access - the list 155 extended deny TCP any host XX, XX, XX, XX eq 1433
Pager lines 24
Logging asdm informational
Mtu outside 1496
Mtu inside 1500
Mtu management 1500
The local IP pool pool1 192.168.1.211-192.168.1.215 mask 255.255.255.0
The icmp unreachable rate - limit 1 burst - size 1
No asdm history enable
Arp 14400
the timeoutGlobal (outside) 101 192.168.0.2-192.168.0.254 netmask 255.255.255.0
Global 102 interface (outside)
NAT (inside) 0 access - the list inside_nat0_outbound
NAT (inside) 102 0.0.0.0 0.0.0.0
NAT (management) 101 0.0.0.0 0.0.0.0
The static (inside, outside) TCP interface 1433 192.168.0.254 1433 netmask 255.255.255.255
Access - group, 155 in interface outside
Access - group inside_access_in interface in inside
The route outside 0.0.0.0 0.0.0.0 XX. XX. XX. XX 1
The timeout xlate 3:00:00
The timeout conn 1:00:00 half - closed 0:10:00 udp 0:02:00 icmp 0:00:02
The timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 MGCP 0:05:00 MGCP - pat 0:05:00
The timeout sip 0:30:00 sip_media 0:02:00 sip - invite 0:03:00 sip - disconnect 0:02:00
The timeout sip - provisional - media 0:02:00 uauth 0:05:00 absolute
The timeout TCP proxy - reassembly 0:01:00
Dynamic - access - policy - record DfltAccessPolicy
Aaa authentication Telnet console LOCAL
Aaa authorization command LOCAL
The HTTP server enable
HTTP 192.168.1.0 255.255.255.0 management
No SNMP - server location
No SNMP - server contact
- server enable SNMP traps SNMP authentication linkup linkdown coldstart
Crypto ipsec transform - set the ESP - 3 des - ESP - SHA SHA ESP - 3 des - hmac
Crypto ipsec transform - set the ESP - AES - 256 - MD5 ESP - AES - 256 ESP - MD5 - hmac
Crypto ipsec transform - set the ESP - DES - ESP - SHA SHA ESP - DES - hmac
Crypto ipsec transform - set the ESP - DES - MD5 ESP - DES ESP - MD5 - hmac
Crypto ipsec transform - set the ESP - AES - 192 - MD5 ESP - AES - 192 ESP - MD5 - hmac
Crypto ipsec transform - set the ESP - MD5 ESP - 3-3 des des ESP - MD5 - hmac
Crypto ipsec transform - set the ESP - AES - 256 - - AES - 256 ESP - SHA SHA ESP - hmac
Crypto ipsec transform - set the ESP - AES - 128 - - AES ESP - SHA SHA ESP - hmac
Crypto ipsec transform - set the ESP - AES - 192 - - AES - 192 ESP - SHA SHA ESP - hmac
Crypto ipsec transform - set the ESP - AES - 128 - MD5 ESP - AES ESP - MD5 - hmac
Crypto ipsec security association - lifetime seconds 28800
Crypto ipsec security association - lifetime kilobytes 4608000
Crypto dynamic - map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set PFS group1
Crypto dynamic - 65535 set the transform map SYSTEM_DEFAULT_CRYPTO_MAP - set the ESP - AES - 128 - SHA ESP - AES - 128 - MD5 ESP - AES - 192 - SHA ESP - AES - 192 - MD5 ESP - AES - 256 - SHA ESP - AES - 256 - MD5 ESP - SHA ESP - 3-3 DES DES - MD5 ESP - DES - SHA ESP - DES - MD5
Crypto map outside_map ipsec - 65535 isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
Crypto map outside_map interface outside
Crypto isakmp enable outside
Crypto isakmp policy 10
The authentication pre - share
3 des encryption
Hash sha
Group 2
Lifetime of 86400
Telnet 192.168.0.0 255.255.255.0 inside
Telnet timeout 5
SSH timeout 5
The console timeout 0
Management - access management
DHCP - client broadcast flag -
DHCPD address 192.168.0.50-192.168.0.200 inside
DHCPD DNS 192.168.0.1 218.4.4.4 interface inside
DHCPD option 3 IP 192.168.0.1 interface inside
DHCPD enable inside
!
DHCPD address 192.168.1.2 instead - 192.168.1.254 management
DHCPD DNS 192.168.1.1 61.177.7.1 interface management
DHCPD enable management
!
-- -- kyoui -- kyoui - detection, basic
-- kyoui - detection statistics access - list
No -- kyoui - detection statistics TCP - intercept
The NTP authenticate
The NTP server 210.72.145.44 source outside
Webvpn
nullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnullnull

Page link:https//www.codepudding.com/other/31648.html

Prev:Computer network technology course design
Next:Huawei data communication configuration
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding