Went to the customer to debug the CISCO-ASA-5505 device a few days ago. Ssh 0.0.0.0 0.0.0.0 outside -Set all SSH addresses to enterĭhcpd address 192.168.1.100-192.168.1.199 inside -Set the DHCP server address poolĭhcpd dns 211.99.129.210 202.106.196.115 interface inside -Set the DNS server to the internal network portĭhcpd enable inside - Set up DHCP to be applied to the intranet port Telnet 0.0.0.0 0.0.0.0 inside -Set all TELNET addresses to enter Snmp-server enable traps snmp authentication linkup linkdown coldstart Route outside 0.0.0.0 0.0.0.0 xxxx 1 -Set the default route to the external network Nat (inside) 1 0.0.0.0 0.0.0.0 0-NAT address pool (all addresses) 0 No limit on the maximum number of sessionsĪccess-group 102 in interface outside - ―――Set the ACL list to bind to the external port Global (outside) 1 interface -Set the NAT address to map to the external network port Icmp unreachable rate-limit 1 burst-size 1 Switchport access vlan 3 -Set the port VLAN to bind with VLAN3Īccess-list 102 extended permit icmp any any -Set ACL list (allow ICMP all by)Īccess-list 102 extended permit ip any any -Set ACL list (allow all IP to pass through) Switchport access vlan 2 -Set the port VLAN to bind to VLAN2 Security-level 100 in the port -Debug the external network address 255.224 -Debug the external network address
Nameif outside -name the port outside port