cisco-asa

: Saved
: Written by enable_15 at 00:00:00 UTC Mar 1 1993
: Call-home enabled from prompt by enable_15 at 00:00:00 UTC Mar 1 1993
: Written by enable_15 at 00:01:49 UTC Mar 1 1993
: Call-home enabled from prompt by enable_15 at 00:01:49 UTC Mar 1 1993
:
ASA Version 8.4(2)
!
hostname ASA-SMKBISA
enable password dH9C0gZD3G0dUFZU encrypted
names
!
interface Ethernet0/0
 switchport access vlan 2
!
interface Ethernet0/1
 switchport access vlan 1
!
interface Ethernet0/2
 switchport access vlan 3
!
interface Ethernet0/3
 switchport access vlan 1
!
interface Ethernet0/4
 switchport access vlan 1
!
interface Ethernet0/5
 switchport access vlan 1
!
interface Ethernet0/6
 switchport access vlan 1
!
interface Ethernet0/7
 switchport access vlan 1
!
interface Vlan1
 nameif inside
 security-level 100
 ip address 192.168.3.129 255.255.255.128
!
interface Vlan2
 nameif outside
 security-level 0
 ip address 203.0.113.33 255.255.255.248
!
interface Vlan3
 no forward interface Vlan1
 nameif dmz
 security-level 50
 ip address 192.168.3.2 255.255.255.252
!
object network dmz-server
 host 192.168.3.1
object network inside-net
 subnet 192.168.3.0 255.255.255.128
!
route outside 0.0.0.0 0.0.0.0 203.0.113.38 1
!
access-list OUTSIDE-DMZ extended permit icmp any host 192.168.3.1
access-list OUTSIDE-DMZ extended permit tcp any host 192.168.3.1 eq www
!
!
access-group OUTSIDE-DMZ in interface outside
object network dmz-server
 nat (dmz,outside) static 203.0.113.34
object network inside-net
 nat (inside,outside) dynamic interface
!
!
!
!
class-map inspection_default
 match default-inspection-traffic
!
policy-map global_policy
 class inspection_default
  inspect dns
  inspect http
  inspect icmp
!
service-policy global_policy global
!
telnet timeout 5
ssh timeout 5
!
dhcpd auto_config outside
!
dhcpd address 192.168.3.130-192.168.3.161 inside
dhcpd dns 203.0.113.1 interface inside
dhcpd enable inside
!
!
!
!
!
!