Basic configuration of Cisco asa5505 nat Internet access 01/15 Update SLTechnology News&Howtos

Basic configuration of Cisco asa5505 nat Internet access

2025-01-15 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Shulou(Shulou.com)06/01 Report--

Send a basic configuration of cisco asa5505 nat to surf the Internet.

: Saved

ASA Version 7.2 (2)

Hostname ASA5505

Enable password STypWFenN9FPWnMW

Names

Interface Vlan1 / / default vlan

No nameif

Security-level 100

Ip address 192.168.1.1 255.255.255.0

Interface Vlan2 / / Intranet 192.168.5.0 Universe 24

Nameif inside

Security-level 0

Ip address 192.168.5.1 255.255.255.0

Interface Vlan3 / / external network

Nameif outside

Security-level 0

Ip address 10.156.20.132 255.255.255.240

Interface Ethernet0/0

Switchport access vlan 2

Interface Ethernet0/1

Switchport access vlan 3

Interface Ethernet0/2

Switchport access vlan 2

Interface Ethernet0/3

Interface Ethernet0/4

Interface Ethernet0/5

Interface Ethernet0/6

Interface Ethernet0/7

Passwd Q0j7JX5x9Y4w16J6 encrypted

Ftp mode passive

Same-security-traffic permit inter-interface

Access-list 101The extended permit ip 192.168.5.0 0.0.255 any / / matches the network segment 192.168.5.0lap25 to any

Access-list 101extended permit icmp any any / / match icmp,any to any

Pager lines 24

Logging enable

Logging asdm informational

Mtu inside 1500

Mtu outside 1500

Icmp unreachable rate-limit 1 burst-size 1

Asdm p_w_picpath disk0:/asdm-522.bin

No asdm history enable

Arp timeout 14400

Global (outside) 1 interface / / Global Translation address outside

Nat (inside) 1 0.0.0.0 0.0.0.0 / / translates all inside addresses

Access-group 101in interface inside / / apply ACL101 to the inside area

Route outside 0.0.0.0 0.0.0.0 10.156.20.129 1 / / default route

Timeout xlate 3:00:00

Timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

Timeout sunrpc 0:10:00 h423 0:05:00 h325 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00

Timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00

Timeout uauth 0:05:00 absolute

Username admin-fir password 2RjJaGjOpINC.T4R encrypted privilege 15

Http server enable

No snmp-server location

No snmp-server

Snmp-server enable traps snmp authentication linkup linkdown coldstart

No service password-recovery

Telnet 0.0.0.0 0.0.0.0 inside / / allow inside area any telnet

Telnet timeout 60

Ssh 0.0.0.0 0.0.0.0 inside

Ssh timeout 5

Console timeout 0

Dhcpd auto_config outside

Dhcpd address 192.168.5.10-192.168.5.100 inside / / dhcp service configuration

Dhcpd dns 202.96.209.5 210.22.70.3 interface inside

Dhcpd enable inside

Class-map inspection_default

Match default-inspection-traffic

Policy-map type inspect dns preset_dns_map

Parameters

Message-length maximum 51

Policy-map global_policy

Class inspection_default

Inspect dns preset_dns_map

Inspect ftp

Inspect h423 h325

Inspect h423 ras

Inspect rsh

Inspect rtsp

Inspect esmtp

Inspect sqlnet

Inspect skinny

Inspect sunrpc

Inspect xdmcp

Inspect sip

Inspect netbios

Inspect tftp

Service-policy global_policy global

Prompt hostname context

Cryptochecksum:a25cde3f4cffdd2c71caacbc20c80e79

: end

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.