一.实验图纸
二.实验命令
ciscoasa> en
Password:
ciscoasa#
ciscoasa# conf t
ciscoasa(config)# hostname asa
asa(config)# int e0/0
asa(config-if)# nameif outside
INFO: Security level for "outside" set to 0 by default.
asa(config-if)# ip add 202.106.0.1 255.255.255.0
asa(config-if)# no sh
asa(config-if)# exit
asa(config)# int e0/1
asa(config-if)# nameif inside
INFO: Security level for "inside" set to 100 by default.
asa(config-if)# ip add 10.0.0.6 255.255.255.252
asa(config-if)# no sh
asa(config-if)# exit
asa(config)# route outside 0.0.0.0 0.0.0.0 202.106.0.2
asa(config)# router ospf 1
asa(config-router)# router-id 9.9.9.9
asa(config-router)# network 10.0.0.4 255.255.255.252 area 0
asa(config-router)# default-information Originate
asa(config)# exit
asa#
asa#
asa# conf t
asa(config)# access-list 111 permit icmp any any
asa(config)# access-group 111 in int outside
asa(config)# no access-group 111 in int outside
asa(config)# access-list abc permit ip any host 192.168.1.1
asa(config)# access-group abc in int outside
asa(config)# access-list bbs deny ip any host 203.0.0.1
asa(config)# access-list bbs permit ip any any
asa(config)# access-group bbs in int inside
asa(config)# no access-group bbs in int inside
asa(config)# password 0987
asa(config)# telnet 10.0.0.0 255.255.255.252 inside
asa(config)# ssh 0 0 outside
asa(config)# domain-name asadomin.com
asa(config)# crypto key generate rsa modulus 1024