Forskel mellem versioner af "Cisco"
Fra NørderiWiki
Freesoft (diskussion | bidrag) (→Ændre DHCP Pool: Liste) |
Freesoft (diskussion | bidrag) m (→Ping og Trace: Ændret navn til Tillade ping og traceroute) |
||
| Linje 20: | Linje 20: | ||
access-list outside_access_in extended permit tcp any interface outside eq 3389 | access-list outside_access_in extended permit tcp any interface outside eq 3389 | ||
| − | == | + | == Tillade ping og traceroute == |
| − | + | ||
access-list outside_access_in extended permit icmp any any echo-reply | access-list outside_access_in extended permit icmp any any echo-reply | ||
access-list outside_access_in extended permit icmp any any time-exceeded | access-list outside_access_in extended permit icmp any any time-exceeded | ||
Versionen fra 3. okt 2007, 11:22
Go'e fif til brug af Cisco ASA 5505, og sikkert også andre modeller.
Ændre DHCP Pool
- Tillad det nye IP subnet ASDM
- Disable DHCP server.
- Ændre inside IP.
- Ændre PC til en "lav" IP i det nye subnet
- Login og sæt DHCP server med det nye subnet.
Åbne for Remote Desktop
192.168.1.5 = Serverens IP.
static (inside,outside) tcp interface 3389 192.168.1.5 3389 netmask 255.255.255.255
access-list outside_access_in extended permit tcp any interface outside eq 3389
Tillade ping og traceroute
access-list outside_access_in extended permit icmp any any echo-reply access-list outside_access_in extended permit icmp any any time-exceeded
