Cisco5500 ASA 配置

ciscoasa# sh run

ASA Version 7.0(6)

!

hostname ciscoasa

enable password 8Ry2YjIyt7RRXU24 encrypted

names

dns-guard

!

interface Ethernet0/0

 nameif Lan_date

 security-level 0

 ip address 192.168.0.1 255.255.255.0

!

interface Ethernet0/1

 nameif Wan_date

 security-level 0

 ip address 222.87.164.10 255.255.255.248

!

interface Ethernet0/2

 shutdown

 no nameif

 no security-level

 no ip address

!

             
interface Management0/0

 nameif management

 security-level 100

 ip address 192.168.1.1 255.255.255.0

 management-only

!

passwd 2KFQnbNIdI.2KYOU encrypted

ftp mode passive

pager lines 24

logging asdm informational

mtu management 1500

mtu Lan_date 1500

mtu Wan_date 1500

ip local pool nat-pool 222.87.164.11 mask 255.255.255.248

ip verify reverse-path interface Lan_date

ip verify reverse-path interface Wan_date

no asdm history enable

arp timeout 14400

global (Lan_date) 1 192.168.1.1

global (Lan_date) 1 192.168.2.1

global (Lan_date) 1 192.168.0.0 netmask 255.255.255.0

route management 0.0.0.0 0.0.0.0 222.87.164.9 1

route Lan_date 192.168.0.0 255.255.255.0 192.168.0.1 1

route Wan_date 222.87.164.8 255.255.255.248 222.87.164.9 1

<--- More --->
             
route Wan_date 0.0.0.0 0.0.0.0 222.87.164.9 1

timeout xlate 3:00:00

timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00

timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00

timeout uauth 0:05:00 absolute

http server enable

no snmp-server location

no snmp-server contact

snmp-server enable traps snmp authentication linkup linkdown coldstart

telnet timeout 5

ssh timeout 5

console timeout 0

dhcpd lease 3600

dhcpd ping_timeout 50

Cryptochecksum:53155b4f303d3264e8c31080ae0a9b65

: end
ciscoasa#