cisco ASA 5510防火墙 ADSL拨号上网配置

cisco ASA 5510防火墙 ADSL拨号上网配置

ip nbar pdlm flash:bittorrent.pdlm
!
!
vpdn enable
!
vpdn-group pppoe
request-dialin
  protocol pppoe
!
crypto isakmp policy 1
authentication pre-share
crypto isakmp key xin%909988 address 203.132.90.89
!
crypto ipsec transform-set jiangset esp-des esp-sha-hmac
!
crypto map jiangmap 20 ipsec-isakmp
set peer 203.132.90.89
set transform-set jiangset
match address 110
!
mta receive maximum-recipients 0
!
!
class-map match-all bittorrent
  match protocol bittorrent
!
policy-map cmlqos
  class bittorrent
   drop
!
interface FastEthernet0/0
ip address 172.16.1.1 255.255.255.0
ip nat inside
service-policy output cmlqos
!
interface FastEthernet0/1
no ip address
pppoe enable
pppoe-client dial-pool-number 1
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
encapsulation ppp
no ip route-cache
no ip mroute-cache
dialer pool 1
dialer-group 1
ppp authentication pap callin
ppp pap sent-username dg50987634 password 7 121C58495740435F55
crypto map jiangmap
!
ip nat inside source list 120 interface Dialer1 overload
ip route 0.0.0 .0 0.0.0.0 Dialer1
!
access-list 1 permit 172.16.1.0 0.0.0 .255
access-list 110 permit ip 172.16.1.0 0.0.0 .255 192.168.3.0 0.0.0.255
 
access-list 120 deny   ip 172.16.1.0 0.0.0 .255 192.168.3.0 0.0.0.255
access-list 120 permit ip 172.16.1.0 0.0.0 .255 any
 
dialer-list 1 protocol ip permit
!
call rsvp-sync
!
mgcp profile default
!
dial-peer cor custom
!
end

你可能感兴趣的:(Cisco,休闲,asa,ADSL拨号上网配置,5510防火墙配置)