User Access Verification
Username: administrator
Password:
Internet#sh run
Building configuration...
Current configuration : 2327 bytes
!
version 12.2
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
!
hostname Internet
!
!
username admin privilege xv password vii <your password>
clock timezone PST -8
clock summer-time PDT recurring
ip subnet-zero
ip flow-cache timeout active 1
!
!
ip name-server <your NS>
!
!
!
!
interface FastEthernet0/0
description :Connection to DMZ Switch
ip address <Public-IP> <subnet mask>
ip route-cache flow
speed 100
full-duplex
no cdp enable
!
interface Serial0/0
description :T1 Connection to Internet
no ip address
no ip redirects
encapsulation frame-relay
ip route-cache flow
!
interface Serial0/0.1 point-to-point
ip address 192.168.254.6 255.255.255.252
ip access-group 120 out
traffic-shape grouping 103 384000 7936 7936 1000
no cdp enable
frame-relay interface-dlci 16
!
interface FastEthernet0/1
no ip address
ip route-cache flow
shutdown
duplex auto
speed auto
no cdp enable
!
ip flow-export beginning FastEthernet0/0
ip flow-export version 5
ip flow-export finish 192.168.200.39 2055
ip classless
ip road 0.0.0.0 0.0.0.0 192.168.254.5
no ip http server
ip pim bidir-enable
!
!
access-list 103 allow ip host <Public-IP> any
access-list 103 allow ip whatever host <Public-IP>
access-list 120 deny udp whatever any eq netbios-ns
access-list 120 deny udp whatever any eq netbios-dgm
access-list 120 deny udp whatever any eq netbios-ss
access-list 120 deny tcp whatever any eq 137
access-list 120 deny tcp whatever any eq 138
access-list 120 deny tcp whatever any eq 139
access-list 120 deny udp whatever any eq 445
access-list 120 deny tcp whatever any eq 445
access-list 120 allow ip whatever any
access-list 120 allow esp whatever any
access-list 120 allow ahp whatever any
access-list 120 allow tcp whatever any
access-list 120 allow udp whatever any
access-list 120 allow tcp whatever any eq smtp
access-list 120 allow tcp whatever any eq pop3
no cdp run
snmp-server community world RO
snmp-server contact <the name> - Phone number?
snmp-server chassis-id cisco-2600
snmp-server host <Public-IP> public
!
line con 0
logging synchronous
login local
line aux 0
login local
line vty 0 4
logging synchronous
login local
!
ntp clock-period 17179877
!
end
GM_Internet#