Router 1
R1j#sh run
Building configuration...
Current configuration : 2591 bytes
!
! Last configuration change at 16:24:37 UTC Thu Jun 7 2012
! NVRAM config last updated at 16:24:38 UTC Thu Jun 7 2012
! NVRAM config last updated at 16:24:38 UTC Thu Jun 7 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1j
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
!
!
!
ip dhcp pool lan
network 192.169.10.0 255.255.255.0
dns-server 192.168.10.1
default-router 192.169.10.1
!
!
multilink bundle-name authenticated
!
!
!
!
!
crypto pki token default removal timeout 0
!
!
voice-card 0
!
!
!
!
!
!
!
license udi pid CISCO2901/K9 sn FTX155183D1
license boot module c2900 technology-package uck9
!
!
!
redundancy
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address dhcp
ip access-group entrada in
ip access-group salida out
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
ip address 192.169.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
!
interface Serial0/0/0
ip address 200.200.200.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
!
interface Serial0/0/1
no ip address
shutdown
clock rate 2000000
!
!
router eigrp 1
network 192.169.10.0
network 200.200.200.0 0.0.0.3
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat pool pat 192.168.10.112 192.168.10.112 netmask 255.255.255.0
ip nat source list pat pool 1 overload
ip nat inside source list pat interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 192.168.10.1 254
!
ip access-list standard pat
permit 192.169.0.0 0.0.255.255
!
ip access-list extended entrada
evaluate tcptrafic
evaluate udptrafic
permit tcp any eq ftp-data host 192.168.10.112
ip access-list extended salida
permit tcp host 192.168.10.112 any eq www reflect tcptrafic timeout 300
permit tcp host 192.168.10.112 any eq 443 reflect tcptrafic timeout 300
permit tcp host 192.168.10.112 any eq ftp reflect tcptrafic timeout 300
permit udp host 192.168.10.112 any eq domain reflect udptrafic timeout 300
permit tcp host 192.168.10.112 any eq ftp-data
!
!
!
!
control-plane
!
!
!
!
mgcp profile default
!
!
!
!
!
gatekeeper
shutdown
!
!
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
login
transport input all
!
scheduler allocate 20000 1000
end
Building configuration...
Current configuration : 2591 bytes
!
! Last configuration change at 16:24:37 UTC Thu Jun 7 2012
! NVRAM config last updated at 16:24:38 UTC Thu Jun 7 2012
! NVRAM config last updated at 16:24:38 UTC Thu Jun 7 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1j
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
!
!
!
ip dhcp pool lan
network 192.169.10.0 255.255.255.0
dns-server 192.168.10.1
default-router 192.169.10.1
!
!
multilink bundle-name authenticated
!
!
!
!
!
crypto pki token default removal timeout 0
!
!
voice-card 0
!
!
!
!
!
!
!
license udi pid CISCO2901/K9 sn FTX155183D1
license boot module c2900 technology-package uck9
!
!
!
redundancy
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address dhcp
ip access-group entrada in
ip access-group salida out
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
ip address 192.169.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
!
interface Serial0/0/0
ip address 200.200.200.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
!
interface Serial0/0/1
no ip address
shutdown
clock rate 2000000
!
!
router eigrp 1
network 192.169.10.0
network 200.200.200.0 0.0.0.3
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat pool pat 192.168.10.112 192.168.10.112 netmask 255.255.255.0
ip nat source list pat pool 1 overload
ip nat inside source list pat interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 192.168.10.1 254
!
ip access-list standard pat
permit 192.169.0.0 0.0.255.255
!
ip access-list extended entrada
evaluate tcptrafic
evaluate udptrafic
permit tcp any eq ftp-data host 192.168.10.112
ip access-list extended salida
permit tcp host 192.168.10.112 any eq www reflect tcptrafic timeout 300
permit tcp host 192.168.10.112 any eq 443 reflect tcptrafic timeout 300
permit tcp host 192.168.10.112 any eq ftp reflect tcptrafic timeout 300
permit udp host 192.168.10.112 any eq domain reflect udptrafic timeout 300
permit tcp host 192.168.10.112 any eq ftp-data
!
!
!
!
control-plane
!
!
!
!
mgcp profile default
!
!
!
!
!
gatekeeper
shutdown
!
!
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
login
transport input all
!
scheduler allocate 20000 1000
end
Router 2
Building configuration...
Current configuration : 2258 bytes
!
! Last configuration change at 15:54:22 UTC Thu Jun 7 2012
! NVRAM config last updated at 13:14:05 UTC Thu Jun 7 2012
! NVRAM config last updated at 13:14:05 UTC Thu Jun 7 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
!
!
ip dhcp excluded-address 192.169.20.1
!
ip dhcp pool 10
network 192.169.20.0 255.255.255.0
default-router 192.169.20.1
dns-server 8.8.8.8
!
!
multilink bundle-name authenticated
!
!
crypto pki token default removal timeout 0
!
!
license udi pid CISCO2901/K9 sn FTX155183H2
!
!
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address 192.169.20.1 255.255.255.0
ip access-group natk in
ip access-group entrada out
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
no ip address
shutdown
clock rate 2000000
!
interface Serial0/0/1
ip address 200.200.200.2 255.255.255.252
clock rate 8000000
!
!
router eigrp 1
network 192.169.20.0
network 200.200.200.0 0.0.0.3
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 Serial0/0/1
!
ip access-list extended entrada
permit ip 192.169.10.0 0.0.0.255 192.169.20.0 0.0.0.255
evaluate tcptrafic
evaluate udptrafic
permit tcp any eq ftp-data 192.169.20.0 0.0.0.255
ip access-list extended natk
permit icmp 192.169.20.0 0.0.0.255 192.169.10.0 0.0.0.255
permit tcp 192.169.20.0 0.0.0.255 any eq www reflect tcptrafic timeout 300
permit tcp 192.169.20.0 0.0.0.255 any eq 443 reflect tcptrafic timeout 300
permit tcp 192.169.20.0 0.0.0.255 any eq ftp reflect tcptrafic timeout 300
permit udp 192.169.20.0 0.0.0.255 any eq domain reflect udptrafic timeout 300
permit tcp 192.169.20.0 0.0.0.255 any eq ftp-data
!
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
login
transport input all
!
scheduler allocate 20000 1000
end
No hay comentarios:
Publicar un comentario