PIX PAT

PIX         PAT

拓扑

 

 

PIX配置

 pixfirewall(config)# int ethernet 0

pixfirewall(config-if)# nameif outside

INFO: Security level for "outside" set to 0 by default.

pixfirewall(config-if)# ip add 54.54.54.5 255.255.255.252

pixfirewall(config-if)# no shutdown

pixfirewall(config-if)# int ethernet 1

pixfirewall(config-if)# nameif inside

INFO: Security level for "inside" set to 100 by default.

pixfirewall(config-if)# ip add 172.16.10.1 255.255.255.0

pixfirewall(config-if)# no shutdown

pixfirewall(config)# access-list nat extended permit ?

pixfirewall(config)# access-list nat extended permit  ip ?

pixfirewall(config)# $rmit  ip 172.16.10.0 255.255.255.0 an                   

pixfirewall(config)# access-list nat extended permit  ip 172.16.10.0 255.255.2$

pixfirewall(config)# access-list icmp_in extended permit icmp any any

pixfirewall(config)# nat (inside) 1 access-list nat

pixfirewall(config)# global (outside) 1 interface

INFO: outside interface address added to PAT pool

pixfirewall(config)# access-group  icmp_in in interface outside

pixfirewall(config)# route outside 0 0 54.54.54.6   

pixfirewall(config)#

转载于:https://blog.51cto.com/fatal/585801