标签:ati perm ast level 防火 fas end eth 网络拓扑
1、网络拓扑信息outside路由器:
interface FastEthernet0/0
ip address 11.1.1.1 255.255.255.0
inside路由器
interface FastEthernet0/0
ip address 10.1.1.1 255.255.255.0
ip route 1.1.1.0 255.255.255.0 10.1.1.10
interface Ethernet0/0
nameif outside
security-level 0
ip address 11.1.1.10 255.255.255.0
!
interface Ethernet0/1
nameif inside
security-level 100
ip address 10.1.1.10 255.255.255.0
route outside 1.1.1.0 255.255.255.0 11.1.1.1 1
route inside 2.2.2.0 255.255.255.0 10.1.1.1 1
3、需求与配置
static (inside,outside) tcp 11.1.1.2 www 2.2.2.2 8080 netmask 255.255.255.255
access-list oti extended permit ip any host 11.1.1.2
access-group oti in interface outside
需求2:
内部用户访问其内部IP地址10.1.1.3时,做其目的地址转换,转换为1.1.1.3
static (outside,inside) 10.1.1.3 1.1.1.3 netmask 255.255.255.255
static (inside,outside) 11.1.1.4 2.2.2.4 netmask 255.255.255.255
static (outside,inside) 10.1.1.4 1.1.1.4 netmask 255.255.255.255
标签:ati perm ast level 防火 fas end eth 网络拓扑
原文地址:https://blog.51cto.com/ganxing/2405458