学习啦>学习电脑>网络知识>路由器>路由器设置>cisco思科>

思科FWSM路由模式怎么配置(2)

时间: 权威0 分享

  <--- More --->

  icmp permit any Internal

  no asdm history enable

  arp timeout 14400

  access-group SHJT_to_SDDL in interface outside

  access-group acl-in in interface Internal

  !

  router ospf 100

  network X.Y.254.1 255.255.255.255 area 0

  network X.Y.254.254 255.255.255.255 area 0

  router-id X.Y.254.254

  log-adj-changes

  !

  timeout xlate 3:00:00

  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00

  timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00

  timeout sip-invite 0:03:00 sip-disconnect 0:02:00

  timeout uauth 0:05:00 absolute

  aaa-server TACACS+ protocol tacacs+

  aaa-server RADIUS protocol radius

  username sddl password QZbkfU0FC8LZLZ6k encrypted

  http server enable

  http 0.0.0.0 0.0.0.0 outside

  http X.Y.160.0 255.255.255.0 Internal

  <--- More --->

  http X.Y.128.0 255.255.255.0 Internal

  no snmp-server location

  no snmp-server contact

  snmp-server community public

  snmp-server enable traps snmp authentication linkup linkdown coldstart

  sysopt nodnsalias inbound

  sysopt nodnsalias outbound

  sysopt noproxyarp outside

  sysopt noproxyarp Internal

  telnet 0.0.0.0 0.0.0.0 outside

  telnet 0.0.0.0 0.0.0.0 Internal

  telnet timeout 5

  ssh timeout 5

  console timeout 0

  !

  class-map class_sip_tcp

  match port tcp eq sip

  class-map inspection_default

  match default-inspection-traffic

  !

  !

  policy-map global_policy

  class inspection_default

  inspect dns maximum-length 512

  <--- More --->

  inspect ftp

  inspect h323 h225

  inspect h323 ras

  inspect netbios

  inspect rsh

  inspect skinny

  inspect esmtp

  inspect sqlnet

  inspect sunrpc

  inspect tftp

  inspect xdmcp

  inspect ctiqbe

  inspect dcerpc

  inspect http

  inspect icmp

  inspect ils

  inspect mgcp

  inspect rtsp

  inspect sip

  inspect snmp

  class class_sip_tcp

  inspect sip

  !

  service-policy global_policy global

  <--- More --->

  prompt hostname context

  Cryptochecksum:3224aa347a06e32ac4f006510f5606f0

  : end

  SDDL-Internal-FW# exit

  看过文章“思科FWSM路由模式怎么配置”的人还看了:

  1.如何进入cisco路由器

  2.Cisco(思科)新手之路由器连接

  3.思科路由器基本配置教程

  4.如何查看Cisco路由器的配置信息

  5.教你如何设置Cisco路由器安全

  6.思科路由器控制端口连接图解

相关文章

热门文章

565195