Eine Unterhaltung beginnen

NAT-102, NAT N-to-1 Use Case

Config:

! ---------- NAT-102 ----------
vlan create  1001
vlan create  1002
interface ethernet 1/1
 no shutdown 
 speed-duplex Auto
 no flowcontrol 
 media cable-mode auto
 switchport access vlan  1001
interface ethernet 1/2
 no shutdown 
 speed-duplex Auto
 no flowcontrol 
 media cable-mode auto
 switchport access vlan  1002
interface lan 
 bind vlan 1001
 ip address  static 192.168.127.254 255.255.255.0
 name  InternalPort
interface wan 
 bind vlan 1002
 ip address dhcp
firewall 1
 action drop
 interface ALL ALL
 protocol All
 mode ip
 src-ip all
 src-port all
 dst-ip all
 dst-port all
 logging severity 0
firewall 1 disable
firewall malformed logging severity 0
ip nat 
 mode n-1
 original in-iface any src-ip 192.168.127.1-192.168.127.253 src-port any dst-ip any dst-port any 
 translated out-iface WAN src-ip any src-port any dst-ip any dst-port any
 desc N-to-1
ip dhcp pool 1
 network 192.168.127.1 192.168.127.253 255.255.255.0
 lease 1440
 dns-server 8.8.8.8 
 default-router 192.168.127.254
clock timezone gmt 8 city Taipei
service dhcp 
hostname  32037
device-lockdown mode mac
device-lockdown learning period 180
logging device-lockdown severity 4
logging device-lockdown flash
logging trusted-access severity 0
username admin password $6$$CjmvIl6iQu00XsNmwFeo6aV2S9utQVEzNM2uEU0Sw/m9eCPiy1j1okiMozfcdh3mhZuCgBTQ/o/FQTbXZko4p.:: privilege 1
username configadmin password $6$$CjmvIl6iQu00XsNmwFeo6aV2S9utQVEzNM2uEU0Sw/m9eCPiy1j1okiMozfcdh3mhZuCgBTQ/o/FQTbXZko4p.:: privilege 2
username user password $6$$CjmvIl6iQu00XsNmwFeo6aV2S9utQVEzNM2uEU0Sw/m9eCPiy1j1okiMozfcdh3mhZuCgBTQ/o/FQTbXZko4p.:: privilege 3
no moxa-utility 
ip telnet port 23
ip telnet
ip ssh port 22
ip ssh
ip telnet max-login-users 5
ip http-server port 80
ip http-server
ip http-server secure port 443
ip http-server secure
ip http-server max-login-users 5
no ip ping-response
ip auto-logout 5
password-policy minimum-length 4
no password-policy complexity-check
no password-policy complexity-check digit
no password-policy complexity-check alphabet
no password-policy complexity-check special-characters
no login-lockout 
login-lockout retry-threshold 5
login-lockout lockout-time 5
no logging-capacity 
logging-capacity email-warning
logging-capacity over-size-action overwrite-oldest
Dateien auswählen oder ziehen Sie die Dateien hierher
Hilfreich?
Ja
Nein
  1. Thomas Buriez

  2. Veröffentlicht

Kommentare