Scribd Logo
Upload

Welcome to Scribd!

  • 23 views

    New Text Document

    Uploaded by

    Aditya Katariya

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    New Text Document

    Uploaded by

    Aditya Katariya
    23 views2 pages

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    23 views2 pages

    New Text Document

    Uploaded by

    Aditya Katariya

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    of 2

    sh run

    : Saved
    :
    PIX Version 7.1(1)
    !
    hostname Pix1
    domain-name cisco.com
    enable password 8Ry2YjIyt7RRXU24 encrypted
    names
    name 172.16.1.2 bastionhost
    name 10.0.1.11 insidehost
    !
    interface Ethernet0
    speed 100
    nameif outside
    security-level 0
    ip address 192.168.1.2 255.255.255.0
    !
    interface Ethernet1
    speed 100
    nameif inside
    security-level 100
    ip address 10.0.1.1 255.255.255.0
    !
    interface Ethernet2
    speed 100
    <---
    nameif
    Moredmz--->
    security-level 50
    ip address 172.16.1.1 255.255.255.0
    !
    passwd 2KFQnbNIdI.2KYOU encrypted
    ftp mode passive
    dns server-group DefaultDNS
    domain-name cisco.com
    access-list outside_access_in extended permit tcp any host 192.168.1.11 eq www
    access-list outside_access_in extended permit tcp any host 192.168.1.11 eq ftp
    access-list outside_access_in extended permit icmp any any
    access-list outside_access_in extended permit tcp any host 192.168.1.10 eq www
    pager lines 24
    logging enable
    mtu outside 1500
    mtu inside 1500
    mtu dmz 1500
    asdm image flash:/asdm
    no asdm history enable
    arp timeout 14400
    global (outside) 1 192.168.1.32-192.168.1.253 netmask 255.255.255.0
    global (dmz) 1 172.16.1.32-172.16.1.253 netmask 255.255.255.0
    nat (inside) 1 0.0.0.0 0.0.0.0
    static (dmz,outside) 192.168.1.11 bastionhost netmask 255.255.255.255
    <--- More
    static (inside,outside)
    ---> 192.168.1.10 insidehost netmask 255.255.255.255
    access-group outside_access_in in interface outside
    route outside 0.0.0.0 0.0.0.0 192.168.1.1 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00
    timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
    timeout uauth 3:00:00 absolute uauth 0:30:00 inactivity
    username aaalocal password VaA5TNJEpa8lcyOT encrypted privilege 15
    aaa authentication include tcp/0 outside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 LOCAL
    aaa authentication include tcp/0 inside 10.0.1.0 255.255.255.0 0.0.0.0 0.0.0.0 L
    OCAL
    aaa authentication telnet console LOCAL
    aaa authentication http console LOCAL
    aaa authentication secure-http-client
    http server enable
    http insidehost 255.255.255.255 inside
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    virtual telnet 192.168.1.5
    auth-prompt prompt please Authenticate
    auth-prompt accept you have been Authenticate
    auth-prompt reject Authentication Failed,Try Again
    telnet insidehost 255.255.255.255 inside
    <--- More
    telnet timeout
    ---> 5
    ssh timeout 5
    console timeout 0
    dhcpd address 10.0.1.32-10.0.1.253 inside
    dhcpd lease 3600
    dhcpd ping_timeout 50
    dhcpd domain cisco.com
    dhcpd enable inside
    !
    class-map inspection_default
    match default-inspection-traffic
    !
    !
    policy-map global_policy
    class inspection_default
    inspect dns maximum-length 512
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect netbios
    inspect rsh
    inspect rtsp
    inspect skinny
    inspect esmtp
    <---
    inspect
    More sqlnet
    --->
    inspect sunrpc
    inspect tftp
    inspect sip
    inspect xdmcp
    !
    service-policy global_policy global
    Cryptochecksum:8022c9e92225bbe83e4619552b2093a9
    : end
    Pix1# ctonfig
    ft t
    Pix1(config)# tftp ?
    configure mode commands/options:
    Available interfaces by which the TFTP server is accessible: (Warning:
    specifying an unsecure interface may put your data at a security risk)
    dmz Name of interface Ethernet2
    ins

    You might also like