Προς το περιεχόμενο

Cisco Router 836

dtomgr

Από τον dtomgr
στο Powerlines, Access Points και Δίκτυα

Προτεινόμενες αναρτήσεις

dtomgr Experienced

dtomgr

Δημοσ.
Δημοσ.

Exw ta parapanw routeraki

kai 8a h8ela na ma8w me poies entoles ginete

 

port forwarding meso telnet

 

(mesa apo to web interface toy kanei PAT)

 

egw 8elw na omwsna kanei forward

px thn ekswterikh porta 8080 se kapia eswterikh ip sthn porta 80

.........

 

 

Euxaristw

nske Mentor

nske

Δημοσ.
Δημοσ.

Στο IOS κάτι σαν:

>ip nat inside source static ΕΣΩΤΕΡΙΚΗ_IP 80 ΕΞΩΤΕΡΙΚΗ_IP 8080 extended

 

Έψαχνα να βρω reference για το λεπτομερές syntax αλλά το site της CISCO είναι χάος και η συνήθειά της να βαπτίζει τα πάντα με δικούς της όρους δεν κάνει τα πράγματα ευκολότερα :-x

 

[edit:] μην ξεχάσεις το extended

jimbo77 Experienced

jimbo77

Δημοσ.
Δημοσ.

Αν ασχοληθείς λίγο με την εύκολη σχετικά χρήση του IOS θα κάνεις παπάδες!

 

Παράτα τα GUI και πιάσε την κονσόλα, μόλις εξοικιωθείς δεν θα θέλεις να την αποχωριστείς!

 

Αν βρω το λινκ που είχα με τις εντολές θα το ποστάρω.

 

Επίσης ψάξε για κανένα έτοιμο config. Tip: Οι εντολές στο config είναι όπως ακριβώς τις γράφεις στην κονσόλα.

dtomgr Experienced

dtomgr

Δημοσ.
  • Μέλος
Δημοσ.

8a soy eimoyna ypoxreos an evriskes tis entoles gia to IOS :)

 

oson afora tin external address ...epeidh den einai static....ti prepei na ri8misw?

mhpws kapio network interface ?

jimbo77 Experienced

jimbo77

Δημοσ.
Δημοσ.

Να το δικό μου config:

 

Current configuration : 5413 bytes

!

version 12.3

no service pad

service tcp-keepalives-in

service tcp-keepalives-out

service timestamps debug datetime msec localtime show-timezone

service timestamps log datetime msec localtime show-timezone

service password-encryption

service sequence-numbers

!

hostname xza

!

boot-start-marker

boot-end-marker

!

security authentication failure rate 3 log

security passwords min-length 6

logging buffered 64000 debugging

enable secret 5 zzz

!

username zzz privilege 15 password 7 xxx

clock timezone PCTime 2

clock summer-time PCTime date Mar 30 2003 3:00 Oct 26 2003 4:00

no aaa new-model

ip subnet-zero

ip name-server 80.76.39.10

ip name-server 80.76.33.227

!

!

no ip bootp server

ip inspect name myfw cuseeme timeout 3600

ip inspect name myfw ftp timeout 3600

ip inspect name myfw http timeout 3600

ip inspect name myfw icmp timeout 3600

ip inspect name myfw netshow timeout 3600

ip inspect name myfw realaudio timeout 3600

ip inspect name myfw rtsp timeout 3600

ip inspect name myfw sip timeout 3600

ip inspect name myfw streamworks timeout 3600

ip inspect name myfw tftp timeout 3600

ip inspect name myfw tcp

ip inspect name myfw udp

ip inspect name myfw esmtp

ip audit po max-events 100

ip ssh time-out 60

ip ssh authentication-retries 2

no ftp-server write-enable

!

crypto pki trustpoint test_trustpoint_config_created_for_sdm

subject-name [email protected]

revocation-check crl

!

!

!

!

class-map match-all http

description http browsing

match access-group 150

!

!

policy-map mypolicyout

class http

priority percent 75

!

!

no crypto isakmp enable

!

!

!

interface Ethernet0

description $FW_INSIDE$

ip address 10.80.184.68 255.255.255.240

ip access-group 112 in

ip nat inside

no cdp enable

hold-queue 100 out

!

interface ATM0

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

pvc 8/35

encapsulation aal5mux ppp dialer

dialer pool-member 1

!

!

interface Dialer1

description $FW_OUTSIDE$

bandwidth 256

ip address negotiated

ip access-group 111 in

ip accounting access-violations

ip nat outside

ip inspect myfw out

service-policy output mypolicyout

encapsulation ppp

no ip route-cache

dialer pool 1

dialer-group 1

ppp authentication chap callin

ppp chap hostname zzz

ppp chap password 7 xxx

!

ip classless

ip route 0.0.0.0 0.0.0.0 Dialer1

no ip http server

ip http access-class 2

ip http authentication local

ip http secure-server

ip nat inside source list 1 interface Dialer1 overload

ip nat inside source static udp 10.80.184.66 55088 interface Dialer1 55088

ip nat inside source static tcp 10.80.184.66 55078 interface Dialer1 55078

ip nat inside source static udp 10.80.184.66 4673 interface Dialer1 4673

ip nat inside source static udp 10.80.184.66 1412 interface Dialer1 1412

ip nat inside source static tcp 10.80.184.66 1412 interface Dialer1 1412

ip nat inside source static tcp 10.80.184.67 6882 interface Dialer1 6882

ip nat inside source static udp 10.80.184.67 6882 interface Dialer1 6882

ip nat inside source static udp 10.80.184.66 4672 interface Dialer1 4672

ip nat inside source static tcp 10.80.184.66 4662 interface Dialer1 4662

ip nat inside source static tcp 10.80.184.70 4664 interface Dialer1 4664

ip nat inside source static udp 10.80.184.70 4674 interface Dialer1 4674

ip nat inside source static tcp 10.80.184.66 55077 interface Dialer1 55077

!

!

access-list 1 permit 10.80.184.64 0.0.0.15

access-list 1 deny any log

access-list 111 permit udp host 213.5.43.134 any gt 1

access-list 111 permit udp host 213.5.43.136 any gt 1

access-list 111 permit udp host 213.5.43.138 any gt 1

access-list 111 permit udp host 213.5.43.139 any gt 1

access-list 111 permit udp any any eq 6882

access-list 111 permit tcp any any eq 6882

access-list 111 permit tcp any any eq 55077

access-list 111 permit tcp any any eq 55078

access-list 111 permit tcp any any eq 55088

access-list 111 permit icmp any any administratively-prohibited

access-list 111 permit icmp any any echo

access-list 111 permit icmp any any echo-reply

access-list 111 permit icmp any any packet-too-big

access-list 111 permit icmp any any time-exceeded

access-list 111 permit icmp any any traceroute

access-list 111 permit icmp any any unreachable

access-list 111 permit udp any eq domain any

access-list 111 permit tcp any any eq smtp

access-list 111 permit tcp any any eq 1863

access-list 111 permit tcp any any eq 4662

access-list 111 permit udp any any eq 4672

access-list 111 permit udp any any eq 4674

access-list 111 permit tcp any any eq 4664

access-list 111 permit udp any any eq 1412

access-list 111 permit tcp any any eq 1412

access-list 111 permit gre any any

access-list 111 deny ip any any log

access-list 112 permit ip any any

access-list 150 permit tcp 10.80.184.64 0.0.0.15 any eq www

dialer-list 1 protocol ip permit

snmp-server community public RO

snmp-server community pavlidisd RW

snmp-server location 10.80.184.65

snmp-server enable traps tty

snmp-server host 10.80.184.65 13111983

no cdp advertise-v2

no cdp run

!

control-plane

!

!

line con 0

no modem enable

transport preferred all

transport output all

line aux 0

transport preferred all

transport output all

line vty 0 4

exec-timeout 120 0

password 7 040A58575E7015165A

login local

length 0

transport preferred all

transport input all

transport output all

!

scheduler max-task-time 5000

!

end

Αρχειοθετημένο

Αυτό το θέμα έχει αρχειοθετηθεί και είναι κλειστό για περαιτέρω απαντήσεις.

Προς την λίστα θεμάτων
  • Δημιουργία νέου...