请问哪位大侠知道,我这个G0/1的地址是用来上网,请问一下,我的配置哪里有问题?比如外网域配置有没有问题
(0)
最佳答案
请问哪位大侠知道,我这个G0/1的地址是用来上网,请问一下,我的配置哪里有问题?比如外网域配置有没有问题
[XZZX-ROUTE]dis cur
#
version 7.1.059, Release 0304P15
#
sysname XZZX-ROUTE
#
telnet server enable
#
port-security enable
#
ip unreachables enable
ip ttl-expires enable
#
dns server 218.2.135.1
#
password-recovery enable
#
vlan 1
#
traffic classifier QOS_xingzhi operator and
if-match acl 3000
#
traffic behavior QOS_xingzhi
queue af bandwidth 10240
#
qos policy QOS_xingzhi
classifier QOS_xingzhi behavior QOS_xingzhi
#
policy-based-route outbound permit node 10
if-match acl 2000
apply next-hop 112.4.150.65
#
controller Cellular0/0
#
controller Cellular0/1
#
interface Aux0
#
interface NULL0
#
interface GigabitEthernet0/0
port link-mode route
combo enable copper
ip address 192.168.30.254 255.255.255.0
nat hairpin enable
ip policy-based-route outbound
#
interface GigabitEthernet0/1
port link-mode route
combo enable copper
ip address 221.226.79.230 255.255.255.252
nat outbound
nat server protocol tcp global 221.226.79.230 80 inside 192.168.25.20 80
nat server protocol tcp global 221.226.79.230 8080 inside 192.168.25.21 8080
nat server protocol tcp global current-interface 443 inside 192.168.25.20 443
nat server protocol tcp global current-interface 3388 inside 192.168.25.21 3389
nat server protocol tcp global current-interface 3389 inside 192.168.25.20 3389
#
interface GigabitEthernet0/2
port link-mode route
ip address 112.4.150.81 255.255.255.192
nat outbound
nat server protocol tcp global current-interface 443 inside 192.168.25.20 443
nat server protocol tcp global current-interface 3389 inside 192.168.25.20 3389
#
scheduler logfile size 16
#
line class aux
user-role network-admin
#
line class tty
user-role network-operator
#
line class vty
user-role network-operator
#
line aux 0
user-role network-admin
#
line vty 0 4
authentication-mode scheme
user-role level-15
protocol inbound telnet
#
line vty 5 63
user-role network-operator
#
ip route-static 0.0.0.0 0 221.226.79.229
ip route-static 0.0.0.0 0 GigabitEthernet0/2 112.4.150.65 preference 100
ip route-static 10.10.10.0 24 192.168.30.1
ip route-static 192.168.0.0 24 192.168.30.1
ip route-static 192.168.2.0 24 192.168.30.1
ip route-static 192.168.3.0 24 192.168.30.1
ip route-static 192.168.4.0 24 192.168.30.1
ip route-static 192.168.6.0 24 192.168.30.1
ip route-static 192.168.7.0 24 192.168.30.1
ip route-static 192.168.8.0 24 192.168.30.1
ip route-static 192.168.9.0 24 192.168.30.1
ip route-static 192.168.10.0 24 192.168.30.1
ip route-static 192.168.11.0 24 192.168.30.1
ip route-static 192.168.12.0 22 192.168.30.1
ip route-static 192.168.16.0 24 192.168.30.1
ip route-static 192.168.17.0 24 192.168.30.1
ip route-static 192.168.18.0 24 192.168.30.1
ip route-static 192.168.19.0 24 192.168.30.1
ip route-static 192.168.20.0 24 192.168.30.1
ip route-static 192.168.21.0 24 192.168.30.1
ip route-static 192.168.22.0 24 192.168.30.1
ip route-static 192.168.23.0 24 192.168.30.1
ip route-static 192.168.24.0 24 192.168.30.1
ip route-static 192.168.25.0 24 192.168.30.1
ip route-static 192.168.30.0 24 192.168.30.1
ip route-static 192.168.100.0 24 192.168.30.1
#
undo info-center enable
#
ssh server enable
sftp server enable
#
acl basic 2000
description out_YiDong
rule 0 permit source 192.168.8.0 0.0.0.255
rule 5 permit source 192.168.9.0 0.0.0.255
rule 10 permit source 192.168.10.0 0.0.0.255
rule 15 permit source 192.168.30.0 0.0.0.255
rule 20 permit source 192.168.11.0 0.0.0.255
#
acl advanced 3000
rule 0 permit ip source 192.168.2.2 0 destination 192.168.2.254 0
rule 1 permit ip source 192.168.3.2 0 destination 192.168.3.254 0
rule 2 permit ip source 192.168.9.240 0 destination 192.168.9.250 0
rule 3 permit ip source 192.168.25.2 0 destination 192.168.25.254 0
#
domain system
#
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
user-group system
#
local-user admin class manage
password hash $h$6$iJLLmhUfHj+GAJoz$nIeTdahJCOzvV7hXEo4qngo1OPp+CQ/Cv30pzGdMwlDercVMicMtBkYnrk9dk+djGCDf51hhMbhtSk/C9Rp5PA==
service-type telnet
authorization-attribute user-role level-15
authorization-attribute user-role network-admin
#
return
(0)
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明
暂无评论