Scribd Logo
Hochladen

Willkommen bei Scribd!

  • Conf Nat 2

    Hochgeladen von

    Marcio Manuel
    12 Ansichten6 Seiten
    asdfv fghnm fghjk

    Originaltitel

    CONF_NAT_2

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    TXT, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    asdfv fghnm fghjk

    Copyright:

    © All Rights Reserved
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    12 Ansichten6 Seiten

    Conf Nat 2

    Hochgeladen von

    Marcio Manuel
    asdfv fghnm fghjk

    Copyright:

    © All Rights Reserved
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 6

    NAT_02#sh run

    Building configuration...

    Current configuration : 8663 bytes


    !
    ! Last configuration change at 11:56:48 ANGOLA Thu Dec 17 2015
    ! NVRAM config last updated at 11:56:43 ANGOLA Thu Dec 17 2015
    ! NVRAM config last updated at 11:56:43 ANGOLA Thu Dec 17 2015
    version 15.2
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    service password-encryption
    !
    hostname NAT_02
    !
    boot-start-marker
    boot-end-marker
    !
    !
    logging buffered 51200 warnings
    no logging console
    no logging monitor
    enable password 7 09415B050D0C031707
    !
    no aaa new-model
    clock timezone ANGOLA 1 0
    !
    ip cef
    !
    !
    !
    ip dhcp excluded-address 10.144.132.1 10.144.132.50
    !
    ip dhcp pool NET_PARTILHADA
    network 10.144.130.0 255.255.255.0
    dns-server 196.32.192.50 196.32.192.58 8.8.8.8
    default-router 10.144.130.254
    !
    ip dhcp pool L3INTERNET
    network 10.144.132.0 255.255.254.0
    default-router 10.144.133.254
    dns-server 196.32.192.50 196.32.192.58
    !
    !
    !
    no ip domain lookup
    ip domain name seguro.local
    ip name-server 196.32.192.40
    ip name-server 196.32.192.61
    no ipv6 cef
    !
    multilink bundle-name authenticated
    !
    !
    !
    crypto pki trustpoint TP-self-signed-2313505696
    enrollment selfsigned
    subject-name cn=IOS-Self-Signed-Certificate-2313505696
    revocation-check none
    rsakeypair TP-self-signed-2313505696
    !
    !
    crypto pki certificate chain TP-self-signed-2313505696
    certificate self-signed 01
    3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
    31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
    69666963 6174652D 32333133 35303536 3936301E 170D3133 30363139 31313030
    32395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
    4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 33313335
    30353639 3630819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
    8100DA20 D673F06A 54F4EC0E FBAADA62 9BFE3A09 D3BEA378 429019FE 900FCF88
    50C7FB27 973F1F08 BF68B770 6C828229 D715F224 82F76C6F BF9C2BA5 56F62E63
    0A141217 0F1E196B 7BB16284 0FCDB73F AA347351 845D3E81 B23C0ED5 575F49CB
    53AFEB7B A32CA57F 2E6D0C5C 41443596 96F19E19 E45059CB 6B4D1EE2 F1433D74
    87930203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
    551D2304 18301680 14EC1660 9DEB4865 F57B6709 D2ACDBF3 3A3CB293 95301D06
    03551D0E 04160414 EC16609D EB4865F5 7B6709D2 ACDBF33A 3CB29395 300D0609
    2A864886 F70D0101 05050003 8181000B E4EBF3E9 9A34B1C9 38591472 5C19E841
    FDEEACC6 C5BCDE0D 63488392 F918E7FA 0B2FD538 7A5BE5C6 B2DF29BE BB9C4842
    4327F0DB 4903BF10 E7E047C3 53420EB3 64595D26 AF71C22E 38FD7E90 DE7BB484
    54E7AF13 35F6EA89 E00000B4 2BA83477 76C83770 D585B164 CA0D5D9F 75163C33
    7E13435B EBCE98B2 B7A06DD8 6892EC
    quit
    license udi pid CISCO2901/K9 sn FCZ1716914C
    !
    !
    username multitel password 7 0009060A10521F0303
    !
    redundancy
    !
    !
    !
    !
    !
    ip ssh version 2
    !
    !
    !
    !
    !
    !
    !
    !
    !
    interface Embedded-Service-Engine0/0
    no ip address
    shutdown
    !
    interface GigabitEthernet0/0
    description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
    no ip address
    duplex auto
    speed auto
    !
    interface GigabitEthernet0/0.1
    !
    interface GigabitEthernet0/0.21
    encapsulation dot1Q 21
    ip address 196.32.197.150 255.255.255.252
    shutdown
    !
    interface GigabitEthernet0/0.105
    description WAVION_NAT
    encapsulation dot1Q 105
    ip address 196.32.196.173 255.255.255.248
    ip nat outside
    ip virtual-reassembly in
    !
    interface GigabitEthernet0/0.425
    encapsulation dot1Q 425
    ip address 10.144.130.254 255.255.255.0
    ip accounting output-packets
    ip nat inside
    ip nat enable
    ip virtual-reassembly in
    !
    interface GigabitEthernet0/0.722
    description WIFI_FILDA
    encapsulation dot1Q 722
    ip address 10.144.152.1 255.255.255.0
    !
    interface GigabitEthernet0/0.772
    description SOARES_DA_COSTA_INTERNET_OBRAS
    encapsulation dot1Q 772
    ip address 10.144.148.1 255.255.255.0
    ip nat inside
    ip virtual-reassembly in
    !
    interface GigabitEthernet0/0.867
    description HOST_INTERNET_L3
    encapsulation dot1Q 867
    ip address 10.144.133.253 255.255.254.0 secondary
    ip address 10.144.133.254 255.255.254.0
    ip nat inside
    ip virtual-reassembly in
    shutdown
    !
    interface GigabitEthernet0/0.963
    encapsulation dot1Q 963
    ip address 10.144.253.77 255.255.255.0
    !
    interface GigabitEthernet0/1
    description CONNECTION_TO_AAA_SERVER
    ip address 10.144.151.2 255.255.255.252
    shutdown
    duplex auto
    speed auto
    !
    interface GigabitEthernet0/0/0
    no ip address
    duplex auto
    speed auto
    !
    interface GigabitEthernet0/0/0.1
    encapsulation dot1Q 1 native
    ip address 10.144.150.33 255.255.255.224 secondary
    ip address 10.144.150.65 255.255.255.224 secondary
    ip address 10.144.150.99 255.255.255.224 secondary
    ip address 10.144.150.1 255.255.255.224
    shutdown
    !
    interface GigabitEthernet0/0/0.50
    encapsulation dot1Q 50
    ip address 10.10.10.1 255.255.255.0
    !
    ip forward-protocol nd
    !
    no ip http server
    ip http authentication local
    no ip http secure-server
    !
    ip nat inside source list 100 interface GigabitEthernet0/0.105 overload
    ip route 0.0.0.0 0.0.0.0 196.32.196.169
    ip route 10.144.252.112 255.255.255.240 10.144.253.57
    ip route 10.144.253.0 255.255.255.0 10.144.253.1
    ip route 192.168.3.0 255.255.255.0 10.144.253.57
    ip route 192.168.234.0 255.255.255.0 10.144.253.57
    !
    logging host 10.144.253.250
    logging host 196.32.192.47
    logging host 196.32.195.124
    logging host 196.32.195.121
    logging host 192.168.100.250
    access-list 2 remark (Acessos de SNMP)
    access-list 2 permit 196.32.192.45
    access-list 2 permit 196.32.192.47
    access-list 2 permit 196.32.192.54
    access-list 2 permit 10.144.253.250
    access-list 2 permit 196.32.193.253
    access-list 2 deny any
    access-list 100 permit ip 10.144.152.0 0.0.0.255 any
    access-list 100 permit ip 10.144.132.0 0.0.1.255 any
    access-list 100 permit ip 10.144.148.0 0.0.0.255 any
    access-list 100 permit ip 10.144.130.0 0.0.0.255 any
    access-list 115 remark acessos de gestao
    access-list 115 permit ip 10.144.253.0 0.0.0.255 any
    access-list 115 permit ip host 196.32.193.254 any
    access-list 115 permit ip host 196.32.192.47 any
    access-list 115 permit ip 196.32.195.120 0.0.0.7 any
    access-list 115 deny ip any any
    access-list 115 permit ip host 192.168.3.0 any
    !
    !
    snmp-server community xpublicx RO 2
    snmp-server community xpublicx@es0 RO 2
    snmp-server community xpublicx2 RW 2
    snmp-server community mttl2006 RW 2
    snmp-server location multitel
    snmp-server contact noc@multitel.co.ao
    snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
    snmp-server enable traps entity-sensor threshold
    snmp-server enable traps config
    snmp-server enable traps cpu threshold
    snmp-server enable traps vtp
    snmp-server host 10.144.253.250 xpublicx
    snmp-server host 196.32.192.47 xpublicx
    snmp-server host 196.32.192.54 xpublicx
    snmp-server host 196.32.192.55 xpublicx
    snmp-server host 196.32.193.253 xpublicx
    !
    control-plane
    !
    !
    banner motd ^CCC

    * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
    * *
    * __ __ _ _ _ _ _ *
    * | \/ |_ _| | |_(_) |_ ___| | *
    * | |\/| | || | | _| | _/ -_) | *
    * |_| |_|\_,_|_|\__|_|\__\___|_| *
    * *
    * *
    * A C E S S O R E S T R I C T O *
    * ------------------------------- *
    * *
    * Todas as tentativas de acesso serao registadas. Qualquer tipo de tentativa *
    * *
    * de acesso ilegal sera alvo de investigacao criminal. *
    * *
    * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *

    ^C
    !
    line con 0
    password 7 0506130335455A0C15
    line aux 0
    line 2
    no activation-character
    no exec
    transport preferred none
    transport input all
    transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
    stopbits 1
    line vty 0 3
    access-class 115 in
    exec-timeout 0 0
    privilege level 15
    password 7 04561E0A1B28584B05
    login
    transport input ssh
    line vty 4
    exec-timeout 0 0
    privilege level 15
    password 7 04561E0A1B28584B05
    login
    transport input ssh
    line vty 5 15
    privilege level 15
    login
    transport input none
    line vty 16 115
    login
    transport input none
    !
    scheduler allocate 20000 1000
    ntp server 10.144.253.57
    !
    end

    Das könnte Ihnen auch gefallen