Stanhome# Stanhome# Stanhome# Stanhome# wr t Building configuration... : Saved : PIX Version 6.3(4) interface ethernet0 auto interface ethernet1 100full nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password 8Ry2YjIyt7RRXU24 encrypted passwd 2KFQnbNIdI.2KYOU encrypted hostname Stanhome domain-name ciscopix.com fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 fixup protocol http 80 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 names pager lines 24 mtu outside 1500 mtu inside 1500 ip address outside dhcp setroute ip address inside 192.168.XXX.1 255.255.255.0 ip audit info action alarm ip audit attack action alarm pdm location 192.168.XXX.0 255.255.255.255 inside pdm location 172.16.XXX.0 255.255.255.255 outside pdm logging informational 100 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 1 0.0.0.0 0.0.0.0 0 0 timeout xlate 0:05:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server LOCAL protocol local http server enable http 192.168.XXX.0 255.255.255.0 inside no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable telnet 0.0.0.0 0.0.0.0 inside telnet timeout 5 ssh timeout 5 console timeout 0 dhcpd address 192.168.XXX.75-192.168.XXX.85 inside dhcpd dns 172.16.XXX.210 dhcpd lease 3600 dhcpd ping_timeout 750 dhcpd domain galeintl.corp dhcpd option 150 ip 172.16.121.252 dhcpd enable inside vpnclient server 38.102.194.70 vpnclient mode network-extension-mode vpnclient vpngroup USERVPN password ******** vpnclient username sgale password ******** vpnclient enable terminal width 80 Cryptochecksum:edee3780c2cde6e4617734e126e3dcd2 : end [OK] Stanhome# config t Stanhome(config)# password n3tw0rk Stanhome(config)# enable tw1ddle$ Incorrect options or arguments. Usage: enable password [] [level ] [encrypted] no enable password level show enable Stanhome(config)# enable password tw1ddle$ Stanhome(config)# Stanhome# wr Not enough arguments. Usage: write erase|floppy|mem|terminal|standby write net []: Stanhome# wr mem Building configuration... Cryptochecksum: 7fe8652d 896a15ba a17d2eaa 033eca39 [OK] Stanhome# q Logoff Type help or '?' for a list of available commands. Stanhome> q Logoff Type help or '?' for a list of available commands. Stanhome> en Password: ******** Stanhome# Stanhome# Stanhome# Stanhome# sh ver Cisco PIX Firewall Version 6.3(4) Cisco PIX Device Manager Version 3.0(2) Compiled on Fri 02-Jul-04 00:07 by morlee Stanhome up 49 mins 54 secs Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz Flash E28F640J3 @ 0x3000000, 8MB BIOS Flash E28F640J3 @ 0xfffd8000, 128KB 0: ethernet0: address is 0013.8042.f400, irq 9 1: ethernet1: address is 0013.8042.f401, irq 10 Licensed Features: Failover: Disabled VPN-DES: Enabled VPN-3DES-AES: Enabled Maximum Physical Interfaces: 2 Maximum Interfaces: 2 Cut-through Proxy: Enabled Guards: Enabled URL-filtering: Enabled Inside Hosts: 10 Throughput: Unlimited IKE peers: 10 This PIX has a Restricted (R) license. Serial Number: 809102141 (0x3039eb3d) Running Activation Key: 0x1b838997 0xfa20f141 0xbb56003d 0x3587cf0f Configuration last modified by enable_15 at 06:46:21.847 UTC Thu Nov 2 2006 Stanhome# wr t Building configuration... : Saved : PIX Version 6.3(4) interface ethernet0 auto interface ethernet1 100full nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password TThGkQMKffNZYWdT encrypted passwd BMZqMaVNotzOBbCk encrypted hostname Stanhome domain-name ciscopix.com fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 fixup protocol http 80 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 names pager lines 24 mtu outside 1500 mtu inside 1500 ip address outside dhcp setroute ip address inside 192.168.XXX.1 255.255.255.0 ip audit info action alarm ip audit attack action alarm pdm location 192.168.XXX.0 255.255.255.255 inside pdm location 172.16.XXX.0 255.255.255.255 outside pdm logging informational 100 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 1 0.0.0.0 0.0.0.0 0 0 timeout xlate 0:05:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server LOCAL protocol local http server enable http 192.168.XXX.0 255.255.255.0 inside no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable telnet 0.0.0.0 0.0.0.0 inside telnet timeout 5 ssh timeout 5 console timeout 0 dhcpd address 192.168.XXX.75-192.168.XXX.85 inside dhcpd dns 172.16.XXX.210 dhcpd lease 3600 dhcpd ping_timeout 750 dhcpd domain galeintl.corp dhcpd option 150 ip 172.16.121.252 dhcpd enable inside vpnclient server 38.102.194.70 vpnclient mode network-extension-mode vpnclient vpngroup USERVPN password ******** vpnclient username sgale password ******** vpnclient enable terminal width 80 Cryptochecksum:7fe8652d896a15baa17d2eaa033eca39 : end [OK] Stanhome# sh xlate 14 in use, 39 most used PAT Global 192.168.XXX0.47(1108) Local 192.168.XXX.253(50185) PAT Global 192.168.XXX0.47(1106) Local 192.168.XXX.253(50184) PAT Global 192.168.XXX0.47(1107) Local 192.168.XXX.78(1031) PAT Global 192.168.XXX0.47(1104) Local 192.168.XXX.253(50182) PAT Global 192.168.XXX0.47(1105) Local 192.168.XXX.253(50183) PAT Global 192.168.XXX0.47(1103) Local 192.168.XXX.253(50181) PAT Global 192.168.XXX0.47(1222) Local 192.168.XXX.253(49811) PAT Global 192.168.XXX0.47(1220) Local 192.168.XXX.77(1337) PAT Global 192.168.XXX0.47(1221) Local 192.168.XXX.77(1340) PAT Global 192.168.XXX0.47(1218) Local 192.168.XXX.253(49808) PAT Global 192.168.XXX0.47(1219) Local 192.168.XXX.253(49809) PAT Global 192.168.XXX0.47(1216) Local 192.168.XXX.253(49806) PAT Global 192.168.XXX0.47(1217) Local 192.168.XXX.77(1317) PAT Global 192.168.XXX0.47(1215) Local 192.168.XXX.253(49805) Stanhome# sh conn 34 in use, 63 most used TCP out 172.16.XXX.210:1025 in 192.168.XXX.77:1329 idle 0:00:25 Bytes 4443 flags UIO TCP out 172.16.XXX.224:80 in 192.168.XXX.77:1337 idle 0:00:14 Bytes 0 flags saA TCP out 172.16.XXX.231:80 in 192.168.XXX.77:1317 idle 0:00:35 Bytes 0 flags saA TCP out 172.16.XXX.231:80 in 192.168.XXX.77:1340 idle 0:00:10 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49805 idle 0:00:44 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49811 idle 0:00:04 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49808 idle 0:00:24 Bytes 0 flags saA UDP out 135.58.230.241:161 in 192.168.XXX.78:1031 idle 0:00:58 flags - TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49809 idle 0:00:19 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49806 idle 0:00:39 Bytes 0 flags saA UDP out 172.16.122.250:389 in 192.168.XXX.77:1308 idle 0:01:32 flags - UDP out 172.16.XXX.11:88 in 192.168.XXX.77:1300 idle 0:01:57 flags - UDP out 135.58.230.245:161 in 192.168.XXX.78:1031 idle 0:00:10 flags - UDP out 172.16.XXX.11:88 in 192.168.XXX.77:1335 idle 0:00:25 flags - UDP out 172.16.XXX.11:88 in 192.168.XXX.77:1321 idle 0:00:27 flags - UDP out 135.58.230.251:161 in 192.168.XXX.78:1031 idle 0:00:04 flags - UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50182 idle 0:01:48 flags - UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50184 idle 0:01:10 flags - UDP out 172.16.XXX.10:0 in 192.168.XXX.253:50184 idle 0:01:26 flags i UDP out 135.58.230.243:161 in 192.168.XXX.78:1031 idle 0:00:36 flags - UDP out 172.16.XXX.10:0 in 192.168.XXX.253:50185 idle 0:01:06 flags i UDP out 172.16.XXX.10:0 in 192.168.XXX.253:50183 idle 0:01:46 flags i UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50185 idle 0:00:50 flags - UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50183 idle 0:01:30 flags - TCP out 172.16.XXX.210:135 in 192.168.XXX.77:1326 idle 0:00:27 Bytes 440 flags UIO UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1327 idle 0:00:28 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1320 idle 0:00:29 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1333 idle 0:00:27 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1330 idle 0:00:28 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1328 idle 0:00:28 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1303 idle 0:01:59 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1298 idle 0:01:59 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1319 idle 0:00:29 flags - TCP out 172.16.XXX.210:445 in 192.168.XXX.77:1324 idle 0:00:02 Bytes 117601 flags UIO Stanhome# Stanhome# Stanhome# Stanhome# Stanhome# Stanhome# Stanhome# Stanhome# sh conn 31 in use, 63 most used TCP out 172.16.XXX.224:80 in 192.168.XXX.77:1337 idle 0:01:22 Bytes 0 flags saA TCP out 172.16.XXX.224:80 in 192.168.XXX.77:1344 idle 0:00:57 Bytes 0 flags saA TCP out 172.16.XXX.231:80 in 192.168.XXX.77:1317 idle 0:01:43 Bytes 0 flags saA TCP out 172.16.XXX.231:80 in 192.168.XXX.77:1340 idle 0:01:18 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49805 idle 0:01:52 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49811 idle 0:01:12 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49808 idle 0:01:32 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49814 idle 0:00:52 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49809 idle 0:01:27 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49815 idle 0:00:47 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49812 idle 0:01:07 Bytes 0 flags saA TCP out 172.16.XXX.10:2000 in 192.168.XXX.253:49806 idle 0:01:47 Bytes 0 flags saA UDP out 135.58.230.245:161 in 192.168.XXX.78:1031 idle 0:01:18 flags - UDP out 172.16.XXX.11:88 in 192.168.XXX.77:1335 idle 0:01:33 flags - UDP out 172.16.XXX.11:88 in 192.168.XXX.77:1321 idle 0:01:35 flags - UDP out 135.58.230.251:161 in 192.168.XXX.78:1031 idle 0:00:54 flags - TCP out 198.133.219.25:80 in 192.168.XXX.78:1165 idle 0:00:05 Bytes 187223 flags UIO TCP out 198.133.219.25:80 in 192.168.XXX.78:1171 idle 0:00:04 Bytes 31237 flags UIO TCP out 198.133.219.25:80 in 192.168.XXX.78:1170 idle 0:00:05 Bytes 3695 flags UIO UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50186 idle 0:00:18 flags - UDP out 172.16.XXX.10:0 in 192.168.XXX.253:50186 idle 0:00:36 flags i UDP out 135.58.230.243:161 in 192.168.XXX.78:1031 idle 0:01:44 flags - UDP out 172.16.XXX.10:0 in 192.168.XXX.253:50187 idle 0:00:16 flags i UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50187 idle 0:00:00 flags - UDP out 172.16.XXX.10:69 in 192.168.XXX.253:50185 idle 0:01:58 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1327 idle 0:01:36 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1320 idle 0:01:37 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1333 idle 0:01:35 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1330 idle 0:01:36 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1328 idle 0:01:36 flags - UDP out 172.16.XXX.210:88 in 192.168.XXX.77:1319 idle 0:01:37 flags - Stanhome# sh xlate 32 in use, 39 most used PAT Global 192.168.XXX0.47(1110) Local 192.168.XXX.253(50187) PAT Global 192.168.XXX0.47(1111) Local 192.168.XXX.253(50188) PAT Global 192.168.XXX0.47(1108) Local 192.168.XXX.253(50185) PAT Global 192.168.XXX0.47(1109) Local 192.168.XXX.253(50186) PAT Global 192.168.XXX0.47(1106) Local 192.168.XXX.253(50184) PAT Global 192.168.XXX0.47(1107) Local 192.168.XXX.78(1031) PAT Global 192.168.XXX0.47(1242) Local 192.168.XXX.78(1176) PAT Global 192.168.XXX0.47(1240) Local 192.168.XXX.78(1174) PAT Global 192.168.XXX0.47(1241) Local 192.168.XXX.78(1175) PAT Global 192.168.XXX0.47(1238) Local 192.168.XXX.78(1172) PAT Global 192.168.XXX0.47(1239) Local 192.168.XXX.78(1173) PAT Global 192.168.XXX0.47(1236) Local 192.168.XXX.78(1170) PAT Global 192.168.XXX0.47(1237) Local 192.168.XXX.78(1171) PAT Global 192.168.XXX0.47(1234) Local 192.168.XXX.78(1168) PAT Global 192.168.XXX0.47(1235) Local 192.168.XXX.78(1169) PAT Global 192.168.XXX0.47(1232) Local 192.168.XXX.78(1166) PAT Global 192.168.XXX0.47(1233) Local 192.168.XXX.78(1167) PAT Global 192.168.XXX0.47(1230) Local 192.168.XXX.78(1164) PAT Global 192.168.XXX0.47(1231) Local 192.168.XXX.78(1165) PAT Global 192.168.XXX0.47(1228) Local 192.168.XXX.253(49815) PAT Global 192.168.XXX0.47(1229) Local 192.168.XXX.78(1163) PAT Global 192.168.XXX0.47(1226) Local 192.168.XXX.77(1344) PAT Global 192.168.XXX0.47(1227) Local 192.168.XXX.253(49814) PAT Global 192.168.XXX0.47(1222) Local 192.168.XXX.253(49811) PAT Global 192.168.XXX0.47(1223) Local 192.168.XXX.253(49812) PAT Global 192.168.XXX0.47(1220) Local 192.168.XXX.77(1337) PAT Global 192.168.XXX0.47(1221) Local 192.168.XXX.77(1340) PAT Global 192.168.XXX0.47(1218) Local 192.168.XXX.253(49808) PAT Global 192.168.XXX0.47(1219) Local 192.168.XXX.253(49809) PAT Global 192.168.XXX0.47(1216) Local 192.168.XXX.253(49806) PAT Global 192.168.XXX0.47(1217) Local 192.168.XXX.77(1317) PAT Global 192.168.XXX0.47(1215) Local 192.168.XXX.253(49805) Stanhome# wr mem Building configuration... Cryptochecksum: 7fe8652d 896a15ba a17d2eaa 033eca39 [OK]