Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ------------------------
- en
- sanfran
- conf t
- no dhcpd address 192.168.1.5-192.168.1.36 inside // hapus ip address
- int vlan 1
- nameif inside
- ip address 192.168.3.129 255.255.255.128 // 1%
- security-level 100
- no shut
- exit
- int vlan 2
- nameif outside
- ip address 203.0.113.33 255.255.255.248
- security-level 0
- no shut
- exit
- int vlan 3 // 1%
- no forward interface vlan 1
- nameif dmz // 1%
- ip address 192.168.3.2 255.255.255.252
- security-level 50 // 1%
- no shut
- exit
- int eth 0/2
- switchport access vlan 3
- no shut
- exit
- ------------------------ Completion 4%
- route outside 0.0.0.0 0.0.0.0 203.0.113.38
- dhcpd address 192.168.3.130-192.168.3.161 inside 2%
- dhcpd dns 203.0.113.1 interface inside 1%
- dhcpd enable inside
- ------------------------ Completion 7%
- object network inside-net
- subnet 192.168.3.0 255.255.255.128
- nat (inside,outside) dynamic interface 1%
- ------------------------ Completion 8%
- class-map inspection_default
- match default-inspection-traffic
- policy-map global_policy 1%
- class inspection_default 1%
- inspect icmp 1%
- inspect http
- inspect dns
- service-policy global_policy global
- ------------------------- Completion 10%
- object network dmz-server
- host 192.168.3.1 1%
- nat (dmz,outside) static 203.0.113.34 1% // udah bener
- ------------------------- Completion 12%
- access-list OUTSIDE-DMZ extended permit icmp any host 192.168.3.1 echo-reply
- access-list OUTSIDE-DMZ extended permit tcp any host 192.168.3.1
- access-group OUTSIDE-DMZ in interface outside // udah bener
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement