Escolar Documentos
Profissional Documentos
Cultura Documentos
06 12:21:06 =~=~=~=~=~=~=~=~=~=~=~=
PhaseVII-ASA-5585#
PhaseVII-ASA-5585#
PhaseVII-ASA-5585#
PhaseVII-ASA-5585#
PhaseVII-ASA-5585#
ter
terminal pag
terminal pager lin
terminal pager lines o
^
ERROR: % Invalid input detected at '^' marker.
PhaseVII-ASA-5585# terminal pager lines o0
PhaseVII-ASA-5585# sh vers
Cisco Adaptive Security Appliance Software Version 8.4(5)
Device Manager Version 7.1(1)52
Compiled on Mon 29-Oct-12 10:51 by builders
System image file is "disk0:/asa845-smp-k8.bin"
Config file at boot was "startup-config"
PhaseVII-ASA-5585 up 182 days 20 hours
failover cluster up 187 days 1 hour
Hardware:
Int:
Int:
Int:
Int:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Internal-Data0/0
: address is 0000.0001.0001, irq 5
Internal-Data0/1
: address is 0000.0001.0002, irq 10
Internal-Data0/2
: address is 0000.0001.0004, irq 10
Internal-Data0/3
: address is 0000.0001.0003, irq 5
Management0/0
: address is 0006.f6ed.2b2c, irq 10
Management0/1
: address is 0006.f6ed.2b2d, irq 5
GigabitEthernet0/0 : address is 0006.f6ed.2b2e, irq 255
GigabitEthernet0/1 : address is 0006.f6ed.2b2f, irq 255
GigabitEthernet0/2 : address is 0006.f6ed.2b30, irq 255
GigabitEthernet0/3 : address is 0006.f6ed.2b31, irq 255
GigabitEthernet0/4 : address is 0006.f6ed.2b32, irq 255
GigabitEthernet0/5 : address is 0006.f6ed.2b33, irq 255
TenGigabitEthernet0/6: address is 0006.f6ed.2b34, irq 255
TenGigabitEthernet0/7: address is 0006.f6ed.2b35, irq 255
TenGigabitEthernet0/8: address is 0006.f6ed.2b36, irq 255
TenGigabitEthernet0/9: address is 0006.f6ed.2b37, irq 255
Internal-Data0/4
: address is 0000.0100.0028, irq 255
Internal-Data0/5
: address is 0000.0100.0029, irq 255
Internal-Data0/6
: address is 0000.0100.002a, irq 255
Internal-Data0/7
: address is 0000.0100.002b, irq 255
Internal-Data0/8
: address is 0000.0100.002c, irq 255
Internal-Data0/9
: address is 0000.0100.002d, irq 255
Internal-Data0/10 : address is 0000.0100.002e, irq 255
Internal-Data0/11 : address is 0000.0100.002f, irq 255
Internal-Data0/12 : address is 0000.0100.0030, irq 255
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
Int:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Ext:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
Int:
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
:
:
:
:
:
:
:
:
:
:
10000
Disabled
Disabled
Disabled
Disabled
4
4
Disabled
Disabled
Enabled
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
perpetual
Card Type
-------------------------------------------ASA 5585-X Security Services Processor-40 w
ASA 5585-X IPS Security Services Processor-4
Mod
--0
1
Model
-----------------ASA5585-SSP-40
ASA5585-SSP-IPS40
Hw Version
-----------2.2
2.1
Fw Version
-----------2.0(13)5
2.0(13)5
Serial No.
----------JAD172003KU
JAD172003I0
Sw Version
--------------8.4(5)
7.1(1)E4
Status
-----------------Up Sys
Up
PhaseVII-ASA-5585# sh run
: Saved
:
ASA Version 8.4(5)
!
hostname PhaseVII-ASA-5585
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
!
interface GigabitEthernet0/0
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/0.910
description Connected to ZTE-8905-3 Switch Port Gig-0/2/0/29
shutdown
vlan 910
nameif outside_ZTE_8905_910
security-level 0
no ip address
!
interface GigabitEthernet0/1
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/1.911
description Connected to Cisco-6509-1 Switch Port Giga 2/17
vlan 911
nameif inside_cisco_6509_911
security-level 50
ip address 10.201.154.137 255.255.255.248 standby 10.201.154.138
!
interface GigabitEthernet0/2
no nameif
security-level 0
no ip address
!
interface GigabitEthernet0/2.903
vlan 903
nameif VPN_OUT
security-level 0
ip address 117.210.253.9 255.255.255.252
!
interface GigabitEthernet0/3
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/4
description LAN Failover Interface
!
interface GigabitEthernet0/5
description STATE Failover Interface
!
interface Management0/0
nameif management
security-level 50
ip address 192.168.1.1 255.255.255.0
!
interface Management0/1
shutdown
no nameif
no security-level
no ip address
management-only
!
interface TenGigabitEthernet0/6
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet0/7
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet0/8
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet0/9
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/0
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/1
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/2
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/3
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/4
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet1/5
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet1/6
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet1/7
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet1/8
shutdown
no nameif
no security-level
no ip address
!
interface TenGigabitEthernet1/9
shutdown
no nameif
no security-level
no ip address
!
ftp mode passive
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object network TRANS
host 192.168.200.201
object network NETWORK_OBJ_10.201.150.240_28
host 10.201.150.241
object network inside
subnet 10.201.149.0 255.255.255.192
object network VPN_POOL
subnet 10.201.150.240 255.255.255.240
object-group service DM_INLINE_SERVICE_6
service-object ip
service-object icmp
service-object udp
service-object tcp
service-object tcp destination eq ftp-data
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_2
service-object ip
service-object icmp
service-object udp
service-object tcp
service-object tcp destination eq ftp-data
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_1
service-object ip
service-object icmp
service-object udp
service-object tcp
service-object tcp destination eq ftp-data
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_3
service-object ip
service-object icmp
service-object udp
service-object tcp
service-object tcp destination eq ftp-data
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_4
service-object ip
service-object icmp
service-object udp
service-object tcp
service-object tcp destination eq ftp-data
service-object tcp destination eq telnet
service-object udp
service-object tcp
service-object tcp destination eq www
service-object tcp destination eq https
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_15
service-object ip
service-object tcp destination eq https
service-object icmp
service-object tcp destination eq www
object-group protocol DM_INLINE_PROTOCOL_1
protocol-object ip
protocol-object icmp
object-group service DM_INLINE_SERVICE_16
service-object ip
service-object tcp destination eq telnet
object-group service DM_INLINE_SERVICE_17
service-object icmp
service-object tcp destination eq ftp-data
object-group network VPN
access-list INSIDE_access_in extended permit tcp any any
access-list INSIDE_access_in extended permit ip any any
access-list INSIDE_access_in extended permit udp any any
access-list INSIDE_access_in extended permit icmp 192.168.100.100 255.255.255.25
2 192.168.200.200 255.255.255.252 log alerts
access-list INSIDE_access_in extended permit tcp any any eq telnet
access-list INSIDE_access_in extended permit tcp any any eq www
access-list INSIDE_access_in extended permit tcp any any eq https
access-list INSIDE_access_in extended permit udp any any eq tftp
access-list INSIDE_access_in extended permit icmp any any
access-list OUTSIDE_access_in extended permit tcp any any
access-list OUTSIDE_access_in extended permit ip any any
access-list OUTSIDE_access_in extended permit udp any any
access-list OUTSIDE_access_in extended permit icmp any any
access-list OUTSIDE_access_in extended permit tcp any any eq telnet
access-list OUTSIDE_access_in extended permit tcp any any eq www
access-list OUTSIDE_access_in extended permit tcp any any eq https
access-list OUTSIDE_access_in extended permit udp any any eq tftp
access-list INSIDE_access_out extended permit tcp any any
access-list INSIDE_access_out extended permit ip any any
access-list INSIDE_access_out extended permit udp any any
access-list INSIDE_access_out extended permit icmp any any
access-list INSIDE_access_out extended permit tcp any any eq telnet
access-list INSIDE_access_out extended permit tcp any any eq https
access-list INSIDE_access_out extended permit tcp any any eq www
access-list INSIDE_access_out extended permit udp any any eq tftp
access-list OUTSIDE_access_out extended permit tcp any any
access-list OUTSIDE_access_out extended permit ip any any
access-list OUTSIDE_access_out extended permit icmp any any
access-list OUTSIDE_access_out extended permit udp any any
access-list OUTSIDE_access_out extended permit tcp any any eq telnet
access-list OUTSIDE_access_out extended permit tcp any any eq www
access-list OUTSIDE_access_out extended permit tcp any any eq https
access-list OUTSIDE_access_out extended permit udp any any eq tftp
access-list management_access_in extended permit object-group DM_INLINE_SERVICE_
5 any any
access-list management_access_out extended permit object-group DM_INLINE_SERVICE
_14 any any
access-list ICMP_ALL extended permit icmp any any echo
access-list ICMP_ALL extended permit icmp any any redirect
52d49130
55533117
0355040b
06035504
20466f72
03133c56
72792043
1e170d31
81b5310b
676e2c20
74204e65
20617420
20286329
33205365
864886f7
bcab2597
d4af4e10
0253f9bc
ea961d0b
5078e845
fd1406e8
0ec79ced
3cfa6d7f
df308201
01861868
1d130101
480186f8
2f777777
02301e1a
61303406
65726973
ff040403
55160969
ac8d8e6b
65726973
1fa41d30
301d0603
1f060355
300d0609
b6eb8a80
05c0ea6e
d937f47a
273aeddc
22c6df16
28a1ace0
8f6724e8
16de0c28
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
class class-default
user-statistics accounting
!
service-policy global_policy global
prompt hostname context
!
jumbo-frame reservation
!
call-home reporting anonymous
Cryptochecksum:a4440563243f78cf7f7599e7d0f6e2f2
: end
PhaseVII-ASA-5585#