names name xxx.xxx.21.0 ITS_MGT name 10.100.10.1 CBORD1 name 10.100.10.2 CBORD2 name xxx.xxx.23.137 DNS1 name xxx.xxx.23.133 DNS2 ! interface Vlan2 description ASA outside interface nameif outside security-level 0 ip address xxx.xxx.120.114 255.255.255.128 ! interface Vlan71 description Inside network for Sodexo nameif inside security-level 100 ip address 10.71.180.129 255.255.255.128 ! interface Vlan100 no forward interface Vlan2 nameif VLAN100 security-level 50 ip address 10.100.10.120 255.255.255.128 ! interface Ethernet0/0 switchport access vlan 2 ! interface Ethernet0/1 switchport access vlan 71 ! interface Ethernet0/2 switchport access vlan 71 ! interface Ethernet0/3 switchport access vlan 71 ! interface Ethernet0/4 switchport access vlan 100 ! interface Ethernet0/5 switchport access vlan 100 ! interface Ethernet0/6 shutdown ! interface Ethernet0/7 shutdown ! passwd nnX8dWEUyuuVXGiZ encrypted boot system disk0:/asa803-k8.bin ftp mode passive clock timezone CST -6 clock summer-time CDT recurring dns server-group DefaultDNS domain-name tarleton.edu object-group network Allow-Out description Access from Ouside Interface network-object ITS_MGT 255.255.255.128 network-object host DNS2 network-object host DNS1 access-list outside_access_in extended permit icmp ITS_MGT 255.255.255.128 any access-list outside_access_in extended permit ip object-group Allow-Out any access-list outside_access_in extended permit icmp any any echo-reply access-list outside_access_in extended permit icmp any any source-quench access-list outside_access_in extended permit icmp any any unreachable access-list outside_access_in extended permit icmp any any time-exceeded access-list inside_access_in extended permit icmp any any access-list inside_access_in extended permit ip any any access-list inside_nat0_outbound extended permit ip 10.71.180.128 255.255.255.128 host CBORD1 access-list no-nat extended permit ip 10.71.180.128 255.255.255.128 10.100.10.0 255.255.255.128 access-list no-nat extended permit ip 10.100.10.0 255.255.255.128 10.71.180.128 255.255.255.128 access-list allow-server extended permit ip host 10.100.10.114 host 10.71.100.135 access-list allow-server extended permit icmp any any pager lines 24 logging enable logging timestamp logging trap warnings logging history warnings logging asdm informational logging facility 23 logging permit-hostdown mtu outside 1500 mtu inside 1500 mtu VLAN100 1500 icmp unreachable rate-limit 1 burst-size 1 icmp permit any outside icmp permit any inside icmp permit any VLAN100 asdm image disk0:/asdm-611.bin no asdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 0 access-list no-nat nat (inside) 0 access-list inside_nat0_outbound outside nat (inside) 1 10.71.180.128 255.255.255.128 nat (VLAN100) 0 access-list no-nat nat (VLAN100) 1 10.100.10.0 255.255.255.128 access-group outside_access_in in interface outside access-group inside_access_in in interface inside access-group allow-server in interface VLAN100 ! router eigrp 165 no auto-summary eigrp stub connected passive-interface inside ! route outside 0.0.0.0 0.0.0.0 10.1.1.1 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout uauth 0:05:00 absolute dynamic-access-policy-record DfltAccessPolicy http server enable http 0.0.0.0 0.0.0.0 inside http ITS_MGT 255.255.255.128 outside http 10.71.180.128 255.255.255.128 inside no snmp-server location snmp-server contact Mike Williams snmp-server enable traps snmp authentication linkup linkdown coldstart snmp-server enable traps syslog snmp-server enable traps ipsec start telnet ITS_MGT 255.255.255.128 outside telnet timeout 5 ssh ITS_MGT 255.255.255.128 outside ssh timeout 5 console timeout 0 dhcpd dns DNS1 DNS1 dhcpd wins DNS2 DNS2 dhcpd ping_timeout 30 dhcpd update dns ! dhcpd address 10.71.180.135-10.71.180.170 inside dhcpd dns DNS1 DNS2 interface inside dhcpd wins DNS1 DNS2 interface inside dhcpd lease 3000 interface inside dhcpd ping_timeout 30 interface inside dhcpd domain tarleton.edu interface inside dhcpd enable inside ! threat-detection basic-threat threat-detection statistics access-list ntp server 10.1.1.1 source outside prefer ! class-map inspection_default match default-inspection-traffic ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum 512 policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect netbios inspect rsh inspect rtsp inspect skinny inspect esmtp inspect sqlnet inspect sunrpc inspect tftp inspect sip inspect xdmcp inspect icmp inspect icmp error ! service-policy global_policy global prompt hostname context Cryptochecksum:5212ced38943692725cf2a91509a420c : end