I have a small site that will be getting a temporary internet connection until I can get the perm one there. I do not want to go through the expense of purchasing a firewall for this location, would the following config work ok if the users are only using internet and vpn? is the security sufficient?
description LAN Int
ip address <lan ip>255.255.255.0
ip nat inside
ip address <ip> 255.255.255.252
ip access-group 120 in
ip access-group 130 out
no ip redirects
ip nat outside
ip route-cache flow
ip nat inside source list 2 interface Serial0/0/0:1 overload
access-list 2 remark NAT
access-list 2 permit <lan ip net> 0.0.0.255
access-list 120 deny ip <ip> 0.0.0.31 any
access-list 120 deny ip 10.0.0.0 0.255.255.255 any
access-list 120 deny ip 127.0.0.0 0.255.255.255 any
access-list 120 deny ip 172.16.0.0 0.15.255.255 any
access-list 120 deny ip 192.168.0.0 0.0.255.255 any
access-list 120 deny ip 184.108.40.206 220.127.116.11 any
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...