Scribd Logo
Carica

Benvenuto in Scribd!

  • Config

    Caricato da

    Aak Keren
    6 visualizzazioni3 pagine
    gfg

    Copyright

    © © All Rights Reserved

    Formati disponibili

    TXT, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    gfg

    Copyright:

    © All Rights Reserved
    Scarica in formato TXT, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    6 visualizzazioni3 pagine

    Config

    Caricato da

    Aak Keren
    gfg

    Copyright:

    © All Rights Reserved
    Scarica in formato TXT, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 3

    BR1

    =======
    security pass min-length 5
    line aux 0
    enable secret tekom
    username admin secret adminp455
    login block-for 60 attempts 3 within 10
    aaa new-model
    aaa authentication login remote group radius local
    radius-server host 192.168.50.252 auth-port 1645 key uts-skjk2015
    ip domain-name tekomsecure.com
    crypto key generate rsa
    1024
    line vty 0 4
    login authentication REMOTE
    transport input ssh
    exit
    en
    pass :tekom
    enable view
    pass : tekom
    conf t
    parser view admin1
    secret admin1p455
    commands exec include config
    commands exec include show
    commands exec include debug
    exit
    parser view admin2
    secret admin2p455
    commands exec include show
    exit
    parser view teknisi
    secret teknisip455
    commands exec include
    commands exec include
    commands exec include
    commands exec include
    exit

    show
    show
    show
    show

    version
    interface
    ip interface brief
    parser view

    BR2
    =========
    security pass min-length 5
    line aux 0
    enable secret tekom
    username admin secret adminp455
    login block-for 60 attempts 3 within 10
    aaa new-model
    aaa authentication login remote group radius local
    radius-server host 192.168.50.252 auth-port 1645 key uts-skjk2015

    ip domain-name tekomsecure.com
    crypto key generate rsa
    1024
    line vty 0 4
    login authentication REMOTE
    transport input ssh
    exit
    en
    pass :tekom
    enable view
    pass : tekom
    conf t
    parser view admin1
    secret admin1p455
    commands exec include config
    commands exec include show
    commands exec include debug
    exit
    parser view admin2
    secret admin2p455
    commands exec include show
    exit
    parser view teknisi
    secret teknisip455
    commands exec include
    commands exec include
    commands exec include
    commands exec include
    exit

    HQ
    =========
    zone security
    exit
    zone security
    exit
    zone security
    exit
    zone security

    show
    show
    show
    show

    version
    interface
    ip interface brief
    parser view

    DMZ
    INTERNET
    INTERNAL
    ADMINISTRASI

    class-map type inspect RULE1


    match protocol IP
    exit
    class-map type inspect RULE2
    match access-group 100
    exit
    class-map type inspect RULE3
    match access-group 150
    exit
    policy-map type inspect IN-2-OUT
    class RULE1
    inspect
    exit

    policy-map type inspect IN-2-DMZ


    class RULE3
    inspect
    exit
    policy-map type inspect OUT-2-DMZ
    class RULE2
    inspect
    exit
    policy-map type inspect IN-2-ADM
    class RULE1
    inspect
    exit
    policy-map type inspect ADM-2-IN
    class RULE1
    inspect
    exit
    zone-pair security IN2OUT source INTERNAL destination INTERNET
    service-policy type inspect IN-2-OUT
    exit
    zone-pair security IN2ADM source INTERNAL destination ADMINISTRASI
    service-policy type inspect IN-2-ADM
    exit
    zone-pair security ADM2IN source ADMINISTRASI destination INTERNAL
    service-policy type inspect ADM-2-IN
    exit
    int S0/0/0
    zone-member
    int S0/0/1
    zone-member
    int s0/1/0
    zone-member
    int fa0/1
    zone-member
    exit
    int fa0/0
    zone-member

    security INTERNAL
    security INTERNAL
    security INTERNET
    security ADMINISTRASI
    security DMZ

    zone-pair security IN2OUT source INTERNAL destination INTERNET


    service-policy type inspect IN-2-OUT
    exit
    zone-pair security IN2DMZ source INTERNAL destination DMZ
    service-policy type inspect IN-2-DMZ
    exit
    zone-pair security OUT2DMZ source INTERNET destination DMZ
    service-policy type inspect OUT-2-DMZ
    exit
    zone-pair security IN2ADM source INTERNAL destination ADMINISTRASI
    service-policy type inspect IN-2-ADM
    exit
    zone-pair security ADM2IN source ADMINISTRASI destination INTERNAL
    service-policy type inspect ADM-2-IN
    exit

    Potrebbero piacerti anche