Changes between Initial Version and Version 1 of Realisations/2007-2008/Projet/Entreprise1/ASA5510


Ignore:
Timestamp:
Jun 14, 2008, 5:59:09 PM (17 years ago)
Author:
oriol
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • Realisations/2007-2008/Projet/Entreprise1/ASA5510

    v1 v1  
     1= Configuration Cisco ASA 5510 =
     2
     3{{{
     4ASA Version 7.0(6)
     5!
     6hostname ciscoasa
     7domain-name AS1
     8enable password 2KFQnbNIdI.2KYOU encrypted
     9names
     10dns-guard
     11!
     12interface Ethernet0/0
     13 nameif outside
     14 security-level 0
     15 ip address 10.10.0.2 255.255.255.0
     16 ipv6 address 2001:db8:8001:2000::2/64
     17 ipv6 enable
     18!
     19interface Ethernet0/1
     20 nameif inside
     21 security-level 100
     22 ip address 10.10.1.254 255.255.255.0
     23 ipv6 address 2001:db8:8001:1::ffff/64
     24 ipv6 enable
     25!
     26interface Ethernet0/2
     27 nameif DMZ   
     28 security-level 50
     29 ip address 10.10.2.254 255.255.255.0
     30 ipv6 address 2001:db8:8001:2::ffff/64
     31 ipv6 enable
     32!
     33interface Management0/0
     34 nameif management
     35 security-level 100
     36 ip address 10.10.130.10 255.255.255.0
     37 management-only
     38!
     39passwd 2KFQnbNIdI.2KYOU encrypted
     40ftp mode passive
     41clock timezone CEST 1
     42clock summer-time CEDT recurring last Sun Mar 2:00 last Sun Oct 3:00
     43object-group protocol all
     44 protocol-object 22
     45 protocol-object 23
     46 protocol-object 80
     47 protocol-object ip
     48 protocol-object icmp
     49 protocol-object igmp
     50 protocol-object ipinip
     51 protocol-object tcp
     52 protocol-object udp
     53 protocol-object esp
     54 protocol-object ah
     55 protocol-object icmp6
     56 protocol-object ospf
     57 protocol-object pim
     58access-list tcp_permit extended permit tcp any any
     59access-list udp_permit extended permit udp any any
     60access-list icmp_permit extended permit icmp any any
     61access-list http_permit extended permit 80 any any
     62access-list telnet extended permit 23 any any
     63access-list all extended permit object-group all any any
     64pager lines 24
     65logging asdm informational
     66mtu outside 1500
     67mtu inside 1500
     68mtu DMZ 1500
     69mtu management 1500
     70icmp permit any outside
     71icmp permit any inside
     72icmp permit any DMZ
     73icmp permit any management
     74asdm image disk0:/asdm506.bin
     75no asdm history enable
     76arp timeout 14400
     77access-group all in interface outside
     78access-group all out interface outside
     79access-group all in interface inside
     80access-group all out interface inside
     81access-group all in interface DMZ
     82access-group all out interface DMZ
     83rip outside default version 2
     84route outside 10.20.0.0 255.255.0.0 10.10.0.1 1
     85route outside 10.30.0.0 255.255.0.0 10.10.0.1 1
     86route outside 10.40.0.0 255.255.0.0 10.10.0.1 1
     87timeout xlate 3:00:00
     88timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
     89timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00
     90timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
     91timeout uauth 0:05:00 absolute
     92username david password z0WkhcbGz1/5UmkS encrypted privilege 15
     93http server enable
     94http 10.10.130.0 255.255.255.0 management
     95no snmp-server location
     96no snmp-server contact
     97snmp-server enable traps snmp authentication linkup linkdown coldstart
     98telnet 10.10.130.0 255.255.255.0 management
     99telnet timeout 5
     100ssh scopy enable
     101ssh 10.10.130.0 255.255.255.0 management
     102ssh 10.10.130.2 255.255.255.255 management
     103ssh timeout 5
     104ssh version 2
     105console timeout 0
     106tftp-server management 10.10.2.1 ciscoASA5510
     107}}}