hostname CD—ASA5520
domain—name default.domain.invalid
enable password 9jNfZuG3TC5tCVH0 encrypted // 进入特权模式的密码
interface GigabitEthernet0/0
duplex full
//内网接口:
//接口作工模式:全双工,半双,自适应
//为端口命名 :内部接口 inside
//设置安全级别 0~100 值越大越安全
//设置本端口的 IP 地址
security-level 100
ip address 192.168.1.1 255。255。255.0
!
interface GigabitEthernet0/1
nameif outside
ip address 202。98。131。122 255.255。255。0 //IP 地址配置
interface GigabitEthernet0/2
ip address 192.168。2.1 255.255。255。0
interface GigabitEthernet0/3
no nameif
no security—level
no ip address
!
interface Management0/0
shutdown
no security—level
no ip address
passwd 2KFQnbNIdI。2KYOU encrypted
ftp mode passive
clock timezone CST 8
dns server-group DefaultDNS
domain—name default.domain.invalid
access—list outside_permit extended permit tcp any interface outside eq 3389
//访问控制列表
access-list outside_permit extended permit tcp any interface outside range 30000 30010
//允许外部任何用户可以访问 outside 接口的 30000-30010 的端口。
pager lines 24
评论0
最新资源