设为首页收藏本站language 语言切换
开启辅助访问 切换到宽版

鸿鹄论坛

 找回密码
 论坛注册

QQ登录

先注册再绑定QQ

鸿鹄论坛»鸿鹄论坛 ≡□≡华为认证≡□≡ HCIA认证交流 谁可以详细解释一下这些配置..................
返回列表 发新帖
查看: 1948|回复: 3
收起左侧

[求助] 谁可以详细解释一下这些配置..................

[复制链接]
◆◇if......
发表于 2014-4-1 10:02:24 | 显示全部楼层 |阅读模式
#
sysname  R1
#super password level 3 cipher @@@@@
#
12tp enable
#
cpu-usage cycle 1min
#
radius scheme system
radius scheme hhh
authentication primary ip 10.10.10.10 key simple vpdn
accounting primary ip 10.10.10.10
accounting optional
#
domain hhh.zg
scheme radius-scheme hhh
authentication radius-scheme hhh
accounting radius-scheme hhh
zccounting optional
ip pool 1 192.168.100.2 192.168.100.72
domain system
#local-user admin
password cipher  ....
service-type telnet
level 3
#
dhcp server ip-pool 1
network 192.168.100.0 mask 255.255.255.0
gateway-list 192.168.100.1
dns-list xx.xx.xx.xx
#
dhcp server ip-pool 2
static-bind ip-address 192.168.100.252 mask 255.255.255.0
static-bind mac-address aaaa-bbbb-cccc
expired unlimited
#
acl number 3001
rule 0 permit ip source 192.168.100.0 0.0.0.255
rule 1 deny ip
rule 2 deny tcp source-port eq 3127
rule 3 deny tcp source-port eq1025
rule 4 deny tcp source-port eq 5554
rule 5 deny tcp source-port eq 9996
rule 6 deny tcp source-port eq 1068
rule 7 deny tcp source-port eq 135
rule 8 deny tcp source-port eq 137
rule 9 deny udp source-port eq netbios-ns
rule 10 deny udp source-port eq 135
rule 11 deny udp source-port eq netbios-dgm
rule 12 deny tcp source-port eq 138
rule 13 deny tcp source-port eq 139
rule 14 deny udp source-port eq netbios-ssn
rule 15 deny tcp source-port eq 593
rule 16 deny tcp source-port eq 4444
rule 17 deny tcp source-port eq 5800
rule 18 deny tcp source-port eq 8900
rule 19 deny tcp source-port eq 445
rule 20 deny udp source-port eq 445
rule 21 deny udp source-port eq 1434
acl number 3002
#
interface virtual-Template1
ppp authentication-mode pap domain hhh.zg
mut 1300
ip address unnumbered int e0/1
remote address pool 1
#
interface Aux0
async mode flow
#
int e0/0
description internet
ip add 3.3.3.3 255.255.255.252
nat outbound 3001
net server protocol tcp global 3.3.3.3 8055 inside 192.168.100.252 8055
net server protocol tcp global 3.3.3.3 8057 inside 192.168.100.252 8057
net server protocol tcp global 3.3.3.3 pptp inside 192.168.100.252 pptp
net server protocol tcp global 3.3.3.3 1433 inside 192.168.100.252 1433
net server protocol tcp global 3.3.3.3 6129 inside 192.168.100.252 6129
#
int e0/1
description intranet
ip add 192.168.100.1 255.255.255.0
arp-proxy enable
#int s0/0
clock DTECLK1
link-protocol ppp
ip address dhcp-alloc
#
interface NULL0
#
mandatory-lcp
allow 12tp virtual-template 1 remote hhh
tunnel password cipher *****
tunnerl name hhh
#
FTP server enable
#
dhcp server forbidden-ip 192.168.100.1 192.168.100.72
dhcp server forbidden-ip 192.168.100.101 192.168.100.254
#
ip route-static 0.0.0.0 0.0.0.0 3.3.3.2  preference 60
#
user-interface con 0
user-interface aux 0
user-interface vty 0 4
authentication-mode scheme
set authentication password simple aaa
#
return





回复

使用道具 举报

peng19940915
发表于 2014-4-2 19:37:07 | 显示全部楼层
思科的把= =
沙发 2014-4-2 19:37:07 回复 收起回复
回复 支持 反对

使用道具 举报

jsbxd
发表于 2014-4-3 16:09:18 | 显示全部楼层
你是那几句不懂还是大部分不懂?
板凳 2014-4-3 16:09:18 回复 收起回复
回复 支持 反对

使用道具 举报

◆◇if......
 楼主| 发表于 2014-4-4 16:38:03 | 显示全部楼层
基本上能懂一点,但是我想知道这样配置的逻辑
地板 2014-4-4 16:38:03 回复 收起回复
回复 支持 反对

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 论坛注册

本版积分规则

QQ|Archiver|手机版|小黑屋|sitemap|鸿鹄论坛 ( 京ICP备14027439号 )  

GMT+8, 2025-3-5 05:43 , Processed in 0.080316 second(s), 22 queries , Redis On.  

  Powered by Discuz!

  © 2001-2025 HH010.COM

快速回复 返回顶部 返回列表