Basic ASA NAT

TOP:

R1------------------inside ASA outside--------------R2

1+Basic configure:

R1:
interface f0/0
   ip address 192.168.1.1 255.255.255.0
   no shutdown

ip route 0.0.0.0 0.0.0.0 192.168.1.254

R2:
interface f0/0
ip address 202.1.1.1 255.255.255.0
no shutdown
ip route 0.0.0.0 0.0.0.0 202.1.1.254

ASA:

interface g1
   nameif inside
   ip address 192.168.1.254 255.255.255.0
   no shutdown

interface g2
   nameif outside
   ip address 202.1.1.254 255.255.255.0
   no shutdown

telnet 0 0 inside
ssh 0 0 inside
http 0 0 inside
http server enable

2+nat

object network inside
subnet 192.168.1.0 255.255.255.0
object network outside-pool
rang 202.1.1.10 202.1.1.15

object network inside
nat (inside,outside) dynamic outside-pool

3+acl+policy
access-list inside_access_in extended permit icmp any any
access-list outside_access_in extended permit icmp any any
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside

posted @ 2020-04-12 13:44 cyrusxx 阅读(74) 评论(0) 编辑收藏举报

刷新页面返回顶部

Basic ASA NAT

公告