帮助|留言交流|
首 页 阅览室 馆友 我的图书馆
来自:YY文学 > 馆藏分类
配色: 字号:
CISCO ASA 5510配置手册
2013-01-22 | 阅:  转:  |  分享 
  
//格式化后重启OK解决!!!

ciscoasa#showver



CiscoAdaptiveSecurityApplianceSoftwareVersion7.2(4)

DeviceManagerVersion5.2(4)



CompiledonSun06-Apr-0813:39bybuilders

Systemimagefileis"disk0:/asa724-k8.bin"

Configfileatbootwas"startup-config"



ciscoasaup3mins5secs



Hardware:ASA5520,512MBRAM,CPUPentium4Celeron2000MHz

InternalATACompactFlash,256MB

BIOSFlashFirmwareHub@0xffe00000,1024KB



Encryptionhardwaredevice:CiscoASA-55x0on-boardaccelerator(revision0x0)

Bootmicrocode:CNlite-MC-Boot-Cisco-1.2

SSL/IKEmicrocode:CNlite-MC-IPSEC-Admin-3.03

IPSecmicrocode:CNlite-MC-IPSECm-MAIN-2.05

0:Ext:GigabitEthernet0/0:addressisc47d.4f85.1708,irq9

1:Ext:GigabitEthernet0/1:addressisc47d.4f85.1709,irq9

2:Ext:GigabitEthernet0/2:addressisc47d.4f85.170a,irq9

3:Ext:GigabitEthernet0/3:addressisc47d.4f85.170b,irq9

4:Ext:Management0/0:addressisc47d.4f85.1707,irq11

5:Int:Notused:irq11

6:Int:Notused:irq5



Licensedfeaturesforthisplatform:

MaximumPhysicalInterfaces:Unlimited

MaximumVLANs:150

InsideHosts:Unlimited

Failover:Active/Active

VPN-DES:Enabled

VPN-3DES-AES:Disabled

SecurityContexts:2

GTP/GPRS:Disabled

VPNPeers:750

WebVPNPeers:2



ThisplatformhasanASA5520VPNPluslicense.



SerialNumber:JMX1406L0Y6

RunningActivationKey:0x6a2659550xf07c223d0x2cf345f40xb34478840xc128879b

Configurationregisteris0x1

Configurationlastmodifiedbyenable_15at12:23:52.072UTCMonSep62010

ciscoasa#showrun

:Saved

:

ASAVersion7.2(4)

!

hostnameciscoasa

domain-namedefault.domain.invalid

enablepasswordgfFm2E3sthJOc7bqencrypted

passwd2KFQnbNIdI.2KYOUencrypted

names

!

interfaceGigabitEthernet0/0

nameifuntrust

security-level0

ipaddress10.92.8.14255.255.255.248

!

interfaceGigabitEthernet0/1

nameifdmz

security-level50

ipaddress172.18.19.254255.255.255.0

!

interfaceGigabitEthernet0/2

nameiftrust

security-level100

ipaddress172.18.1.1255.255.255.0

!

interfaceGigabitEthernet0/3

nonameif

nosecurity-level

noipaddress

!

interfaceManagement0/0

nameifmanagement

security-level100

ipaddress192.168.1.1255.255.255.0

management-only

!

ftpmodepassive

dnsserver-groupDefaultDNS

domain-namedefault.domain.invalid

access-list102extendedpermiticmpanyany

access-list102extendedpermitipanyany

pagerlines24

loggingenable

loggingasdminformational

mtuuntrust1500

mtudmz1500

mtutrust1500

mtumanagement1500

nofailover

icmpunreachablerate-limit1burst-size1

asdmimagedisk0:/ASDM-524.BIN

noasdmhistoryenable

arptimeout14400

global(untrust)1interface

nat(trust)10.0.0.00.0.0.0

static(trust,untrust)tcp113.105.88.5786172.18.11.886netmask255.255.255.255

static(trust,untrust)tcp113.105.88.575000172.18.11.85000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.586800172.18.11.1306800netmask255.255.255.255

static(trust,untrust)tcp113.105.88.584800172.18.11.1304800netmask255.255.255.255

static(trust,untrust)tcp113.105.88.583306172.18.11.1303306netmask255.255.255.255

static(trust,untrust)udp113.105.88.586800172.18.11.1306800netmask255.255.255.255

static(trust,untrust)udp113.105.88.584800172.18.11.1304800netmask255.255.255.255

static(trust,untrust)udp113.105.88.583306172.18.11.1303306netmask255.255.255.255

static(trust,untrust)tcp113.105.88.5881172.18.11.13081netmask255.255.255.255

static(trust,untrust)udp113.105.88.5881172.18.11.13081netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601011172.18.11.91011netmask255.255.255.255

static(trust,untrust)udp113.105.88.601011172.18.11.91011netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601018172.18.11.91018netmask255.255.255.255

static(trust,untrust)udp113.105.88.601018172.18.11.91018netmask255.255.255.255

static(trust,untrust)tcp113.105.88.5981172.18.15.99wwwnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.592000172.18.15.992000netmask255.255.255.255

static(trust,untrust)udp113.105.88.592000172.18.15.992000netmask255.255.255.255

static(trust,untrust)udp113.105.88.59www172.18.15.99wwwnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.598080172.18.15.998080netmask255.255.255.255

static(trust,untrust)udp113.105.88.598080172.18.15.998080netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598000172.18.11.1238000netmask255.255.255.255

static(trust,untrust)udp113.105.88.598000172.18.11.1238000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.596999172.18.11.1236999netmask255.255.255.255

static(trust,untrust)tcp113.105.88.59ftp-data172.18.11.123ftp-datanetmask255.255.255.255

static(trust,untrust)tcp113.105.88.59ftp172.18.11.123ftpnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.59telnet172.18.11.123telnetnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.591010172.18.11.1231000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598003172.18.11.1238003netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598010172.18.11.1238010netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598012172.18.11.1238012netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598880172.18.11.1238880netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601012172.18.11.91012netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601013172.18.11.91013netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601014172.18.11.91014netmask255.255.255.255

static(trust,untrust)udp113.105.88.601012172.18.11.91012netmask255.255.255.255

static(trust,untrust)udp113.105.88.601013172.18.11.91013netmask255.255.255.255

static(trust,untrust)udp113.105.88.601014172.18.11.91014netmask255.255.255.255

static(trust,untrust)tcp113.105.88.595000172.18.15.995000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.594000172.18.15.994000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602000172.18.11.92000netmask255.255.255.255

static(trust,untrust)udp113.105.88.602000172.18.11.92000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.592009172.18.15.992009netmask255.255.255.255

static(trust,untrust)udp113.105.88.592009172.18.15.992009netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598081172.18.15.998081netmask255.255.255.255

static(trust,untrust)udp113.105.88.598081172.18.15.998081netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602001172.18.11.92001netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602002172.18.11.92002netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602003172.18.11.92003netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602004172.18.11.92004netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602005172.18.11.92005netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602006172.18.11.92006netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602007172.18.11.92007netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602008172.18.11.92008netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602009172.18.11.92009netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602010172.18.11.92010netmask255.255.255.255

static(trust,untrust)udp113.105.88.602001172.18.11.92001netmask255.255.255.255

static(trust,untrust)udp113.105.88.602002172.18.11.92002netmask255.255.255.255

static(trust,untrust)udp113.105.88.602003172.18.11.92003netmask255.255.255.255

static(trust,untrust)udp113.105.88.602004172.18.11.92004netmask255.255.255.255

static(trust,untrust)udp113.105.88.602005172.18.11.92005netmask255.255.255.255

static(trust,untrust)udp113.105.88.602006172.18.11.92006netmask255.255.255.255

static(trust,untrust)udp113.105.88.602007172.18.11.92007netmask255.255.255.255

static(trust,untrust)udp113.105.88.602008172.18.11.92008netmask255.255.255.255

static(trust,untrust)udp113.105.88.602009172.18.11.92009netmask255.255.255.255

static(trust,untrust)udp113.105.88.602010172.18.11.92010netmask255.255.255.255

static(trust,untrust)113.105.88.61172.18.11.10netmask255.255.255.255

access-group102ininterfaceuntrust

routeuntrust0.0.0.00.0.0.010.92.8.91

routetrust172.18.11.0255.255.255.0172.18.1.21

routetrust172.18.12.0255.255.255.0172.18.1.21

routetrust172.18.13.0255.255.255.0172.18.1.21

routetrust172.18.14.0255.255.255.0172.18.1.21

routetrust172.18.15.0255.255.255.0172.18.1.21

routetrust172.18.16.0255.255.255.0172.18.1.21

routetrust172.18.17.0255.255.255.0172.18.1.21

routetrust172.18.18.0255.255.255.0172.18.1.21

timeoutxlate3:00:00

timeoutconn1:00:00half-closed0:10:00udp0:02:00icmp0:00:02

timeoutsunrpc0:10:00h3230:05:00h2251:00:00mgcp0:05:00mgcp-pat0:05:00

timeoutsip0:30:00sip_media0:02:00sip-invite0:03:00sip-disconnect0:02:00

timeoutsip-provisional-media0:02:00uauth0:05:00absolute

httpserverenable

http0.0.0.00.0.0.0trust

nosnmp-serverlocation

nosnmp-servercontact

snmp-serverenabletrapssnmpauthenticationlinkuplinkdowncoldstart

telnet0.0.0.00.0.0.0trust

telnettimeout5

ssh0.0.0.00.0.0.0untrust

sshtimeout30

consoletimeout0

usernameadminpasswordf3UhLvUj1QsXsuK7encrypted

!

!

prompthostnamecontext

Cryptochecksum:634aa0023e75546939c8b013c69a61b7

:end

ciscoasa#showstart

ciscoasa#showstartup-config

:Saved

:Writtenbyenable_15at12:24:22.081UTCMonSep62010

!

ASAVersion7.2(4)

!

hostnameciscoasa

domain-namedefault.domain.invalid

enablepasswordgfFm2E3sthJOc7bqencrypted

passwd2KFQnbNIdI.2KYOUencrypted

names

!

interfaceGigabitEthernet0/0

nameifuntrust

security-level0

ipaddress10.92.8.14255.255.255.248

!

interfaceGigabitEthernet0/1

nameifdmz

security-level50

ipaddress172.18.19.254255.255.255.0

!

interfaceGigabitEthernet0/2

nameiftrust

security-level100

ipaddress172.18.1.1255.255.255.0

!

interfaceGigabitEthernet0/3

nonameif

nosecurity-level

noipaddress

!

interfaceManagement0/0

nameifmanagement

security-level100

ipaddress192.168.1.1255.255.255.0

management-only

!

ftpmodepassive

dnsserver-groupDefaultDNS

domain-namedefault.domain.invalid

access-list102extendedpermiticmpanyany

access-list102extendedpermitipanyany

pagerlines24

loggingenable

loggingasdminformational

mtuuntrust1500

mtudmz1500

mtutrust1500

mtumanagement1500

nofailover

icmpunreachablerate-limit1burst-size1

asdmimagedisk0:/ASDM-524.BIN

noasdmhistoryenable

arptimeout14400

global(untrust)1interface

nat(trust)10.0.0.00.0.0.0

static(trust,untrust)tcp113.105.88.5786172.18.11.886netmask255.255.255.255

static(trust,untrust)tcp113.105.88.575000172.18.11.85000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.586800172.18.11.1306800netmask255.255.255.255

static(trust,untrust)tcp113.105.88.584800172.18.11.1304800netmask255.255.255.255

static(trust,untrust)tcp113.105.88.583306172.18.11.1303306netmask255.255.255.255

static(trust,untrust)udp113.105.88.586800172.18.11.1306800netmask255.255.255.255

static(trust,untrust)udp113.105.88.584800172.18.11.1304800netmask255.255.255.255

static(trust,untrust)udp113.105.88.583306172.18.11.1303306netmask255.255.255.255

static(trust,untrust)tcp113.105.88.5881172.18.11.13081netmask255.255.255.255

static(trust,untrust)udp113.105.88.5881172.18.11.13081netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601011172.18.11.91011netmask255.255.255.255

static(trust,untrust)udp113.105.88.601011172.18.11.91011netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601018172.18.11.91018netmask255.255.255.255

static(trust,untrust)udp113.105.88.601018172.18.11.91018netmask255.255.255.255

static(trust,untrust)tcp113.105.88.5981172.18.15.99wwwnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.592000172.18.15.992000netmask255.255.255.255

static(trust,untrust)udp113.105.88.592000172.18.15.992000netmask255.255.255.255

static(trust,untrust)udp113.105.88.59www172.18.15.99wwwnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.598080172.18.15.998080netmask255.255.255.255

static(trust,untrust)udp113.105.88.598080172.18.15.998080netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598000172.18.11.1238000netmask255.255.255.255

static(trust,untrust)udp113.105.88.598000172.18.11.1238000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.596999172.18.11.1236999netmask255.255.255.255

static(trust,untrust)tcp113.105.88.59ftp-data172.18.11.123ftp-datanetmask255.255.255.255

static(trust,untrust)tcp113.105.88.59ftp172.18.11.123ftpnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.59telnet172.18.11.123telnetnetmask255.255.255.255

static(trust,untrust)tcp113.105.88.591010172.18.11.1231000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598003172.18.11.1238003netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598010172.18.11.1238010netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598012172.18.11.1238012netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598880172.18.11.1238880netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601012172.18.11.91012netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601013172.18.11.91013netmask255.255.255.255

static(trust,untrust)tcp113.105.88.601014172.18.11.91014netmask255.255.255.255

static(trust,untrust)udp113.105.88.601012172.18.11.91012netmask255.255.255.255

static(trust,untrust)udp113.105.88.601013172.18.11.91013netmask255.255.255.255

static(trust,untrust)udp113.105.88.601014172.18.11.91014netmask255.255.255.255

static(trust,untrust)tcp113.105.88.595000172.18.15.995000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.594000172.18.15.994000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602000172.18.11.92000netmask255.255.255.255

static(trust,untrust)udp113.105.88.602000172.18.11.92000netmask255.255.255.255

static(trust,untrust)tcp113.105.88.592009172.18.15.992009netmask255.255.255.255

static(trust,untrust)udp113.105.88.592009172.18.15.992009netmask255.255.255.255

static(trust,untrust)tcp113.105.88.598081172.18.15.998081netmask255.255.255.255

static(trust,untrust)udp113.105.88.598081172.18.15.998081netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602001172.18.11.92001netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602002172.18.11.92002netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602003172.18.11.92003netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602004172.18.11.92004netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602005172.18.11.92005netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602006172.18.11.92006netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602007172.18.11.92007netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602008172.18.11.92008netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602009172.18.11.92009netmask255.255.255.255

static(trust,untrust)tcp113.105.88.602010172.18.11.92010netmask255.255.255.255

static(trust,untrust)udp113.105.88.602001172.18.11.92001netmask255.255.255.255

static(trust,untrust)udp113.105.88.602002172.18.11.92002netmask255.255.255.255

static(trust,untrust)udp113.105.88.602003172.18.11.92003netmask255.255.255.255

static(trust,untrust)udp113.105.88.602004172.18.11.92004netmask255.255.255.255

static(trust,untrust)udp113.105.88.602005172.18.11.92005netmask255.255.255.255

static(trust,untrust)udp113.105.88.602006172.18.11.92006netmask255.255.255.255

static(trust,untrust)udp113.105.88.602007172.18.11.92007netmask255.255.255.255

static(trust,untrust)udp113.105.88.602008172.18.11.92008netmask255.255.255.255

static(trust,untrust)udp113.105.88.602009172.18.11.92009netmask255.255.255.255

static(trust,untrust)udp113.105.88.602010172.18.11.92010netmask255.255.255.255

static(trust,untrust)113.105.88.61172.18.11.10netmask255.255.255.255

access-group102ininterfaceuntrust

routeuntrust0.0.0.00.0.0.010.92.8.91

routetrust172.18.11.0255.255.255.0172.18.1.21

routetrust172.18.12.0255.255.255.0172.18.1.21

routetrust172.18.13.0255.255.255.0172.18.1.21

routetrust172.18.14.0255.255.255.0172.18.1.21

routetrust172.18.15.0255.255.255.0172.18.1.21

routetrust172.18.16.0255.255.255.0172.18.1.21

routetrust172.18.17.0255.255.255.0172.18.1.21

routetrust172.18.18.0255.255.255.0172.18.1.21

timeoutxlate3:00:00

timeoutconn1:00:00half-closed0:10:00udp0:02:00icmp0:00:02

timeoutsunrpc0:10:00h3230:05:00h2251:00:00mgcp0:05:00mgcp-pat0:05:00

timeoutsip0:30:00sip_media0:02:00sip-invite0:03:00sip-disconnect0:02:00

timeoutsip-provisional-media0:02:00uauth0:05:00absolute

httpserverenable

http0.0.0.00.0.0.0trust

nosnmp-serverlocation

nosnmp-servercontact

snmp-serverenabletrapssnmpauthenticationlinkuplinkdowncoldstart

telnet0.0.0.00.0.0.0trust

telnettimeout5

ssh0.0.0.00.0.0.0untrust

sshtimeout30

consoletimeout0

usernameadminpasswordf3UhLvUj1QsXsuK7encrypted

!

!

prompthostnamecontext

Cryptochecksum:634aa0023e75546939c8b013c69a61b7

ciscoasa#
献花(0)
+1
(本文系YY文学首藏)