:
ASA Version 7.0(8) 
!
hostname ciscoasa
enable password 2KFQnbNIdI.2KYOU encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
dns-guard
!
interface GigabitEthernet0/0
 description LINK_TO_SP
 nameif outside
 security-level 0
 ip address dhcp 
!
interface GigabitEthernet0/1
 shutdown
 no nameif
 no security-level
 no ip address
!
interface GigabitEthernet0/2
 shutdown
 no nameif
 no security-level
 no ip address
!
interface GigabitEthernet0/3
 description "Link_to_Stack"
 no nameif
 no security-level
 no ip address
!
interface GigabitEthernet0/3.100
 description Managament
 vlan 100
 nameif mgmt
 security-level 100
 ip address 10.10.10.1 255.255.255.0 
!
interface GigabitEthernet0/3.101
 vlan 101
 nameif inside
 security-level 100
 ip address 172.31.0.1 255.255.255.248 
!
interface Management0/0
 shutdown
 no nameif
 no security-level
 no ip address
!
ftp mode passive
clock timezone AST 3
access-list 100 extended permit udp any any eq ntp 
access-list 100 extended permit ip any any 
access-list 100 extended permit icmp any any 
access-list 100 extended permit udp any any eq ntp 
access-list 101 extended permit ip any any 
access-list 101 extended permit icmp any any 
pager lines 24
logging enable
logging console debugging
logging monitor debugging
mtu outside 1500
mtu mgmt 1500
mtu inside 1500
mtu test 1500
no failover
asdm image disk0:/asdm-508.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0
access-group 101 in interface mgmt
access-group 100 in interface inside
access-group 101 in interface test
route outside 0.0.0.0 0.0.0.0 172.28.1.1 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00
timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
telnet 0.0.0.0 0.0.0.0 mgmt
telnet timeout 30
ssh timeout 5
console timeout 0
!
class-map inspection_default
 match default-inspection-traffic
!
!
policy-map global_policy
 class inspection_default
  inspect dns maximum-length 512 
  inspect ftp 
  inspect h323 h225 
  inspect h323 ras 
  inspect netbios 
  inspect rsh 
  inspect rtsp 
  inspect skinny 
  inspect esmtp 
  inspect sqlnet 
  inspect sunrpc 
  inspect tftp 
  inspect sip 
  inspect xdmcp 
!
ntp server 64.147.116.229 source outside