-
Notifications
You must be signed in to change notification settings - Fork 0
/
makea5505
75 lines (73 loc) · 1.84 KB
/
makea5505
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
if [ ! -z "$CONFIGFILE" ]
then
. ./$CONFIGFILE
else
echo "Error: CONFIGFILE not defined"
echo
exit
fi
echo "hostname $HOSTNAME"
echo "prompt hostname context"
echo
echo "domain-name $DOMAIN"
echo "enable password $ENABLE"
echo
echo "interface Vlan1"
echo " nameif inside"
echo " security-level 100"
echo " ip address $INSIDEIP $INSIDEMASK"
echo
echo "interface Vlan2"
echo " nameif outside"
echo " security-level 0"
echo " ip address $OUTSIDEIP $OUTSIDEMASK"
echo
echo "int eth0/0"
echo " desc outside interface"
echo " switchport access vlan 2"
echo
echo "mtu inside 1500"
echo "mtu outside 1500"
echo
echo "access-list inbound extended permit icmp any any echo-reply"
echo "access-list inbound extended permit icmp any any source-quench"
echo "access-list inbound extended permit icmp any any unreachable"
echo "access-list inbound extended permit icmp any any time-exceeded"
echo
echo "access-group inbound in interface outside"
echo
echo "dhcpd dns $DHCPDDNS"
echo "dhcpd lease 172800"
echo "dhcpd ping_timeout 10000"
echo "dhcpd address $DHCPDRANGE inside"
echo "dhcpd enable inside"
echo "global (outside) 1 interface"
echo "nat (inside) 1 0.0.0.0 0.0.0.0"
echo "route outside 0.0.0.0 0.0.0.0 $OUTSIDEGATEWAY 1"
echo
echo service-policy global_policy global
echo
echo "policy-map global_policy"
echo " class inspection_default"
echo " inspect dns preset_dns_map"
echo " inspect ftp"
echo " inspect h323 h225"
echo " inspect inspect h323 ras"
echo " inspect netbios"
echo " inspect rsh"
echo " inspect rtsp"
echo " inspect skinny"
echo " inspect esmtp"
echo " inspect sqlnet"
echo " inspect sunrpc"
echo " inspect tftp"
echo " inspect sip"
echo " inspect xdmcp"
echo
echo "class-map inspection_default"
echo " match default-inspection-traffic"
echo
echo "policy-map type inspect dns preset_dns_map"
echo " parameters"
echo " message-length maximim 512"
echo