CCIE6200# sh run : Saved : ASA Version 8.0(2) ! hostname CCIE6200 domain-name tx.rr.com enable password **************** encrypted names ! interface Vlan1 nameif inside security-level 100 ip address 192.168.2.1 255.255.255.0 ospf cost 10 ! interface Vlan2 nameif outside security-level 0 ip address dhcp setroute ospf cost 10 ! interface Ethernet0/0 switchport access vlan 2 ! interface Ethernet0/1 ! interface Ethernet0/2 ! interface Ethernet0/3 ! interface Ethernet0/4 ! interface Ethernet0/5 ! interface Ethernet0/6 ! interface Ethernet0/7 ! passwd **************** encrypted banner login ************************************************************************************** banner login You have entered $(hostname).$(domain). This host is the property of Joe Harris, and is for authorized banner login use only. Users (authorized or unauthorized) have no explicit or implicit expectation of privacy. banner login Use of this system constitutes consent to monitoring, recording, auditing, inspection, banner login and disclosure at the discretion of me. banner login ************************************************************************************** boot system disk0:/asa802-k8.bin ftp mode passive clock timezone CST -6 clock summer-time CDT recurring dns domain-lookup outside dns server-group DefaultDNS name-server xyz.abc.xyz.abc name-server xyz.abc.xyz.abc domain-name tx.rr.com same-security-traffic permit inter-interface same-security-traffic permit intra-interface pager lines 24 logging enable logging timestamp logging asdm-buffer-size 512 logging console debugging logging monitor debugging logging buffered debugging logging asdm debugging mtu inside 1500 mtu outside 1500 ip verify reverse-path interface inside ip verify reverse-path interface outside ip audit name idsattack attack action alarm drop reset ip audit name idsinfo info action alarm ip audit interface inside idsinfo ip audit interface inside idsattack ip audit interface outside idsinfo ip audit interface outside idsattack ip audit info action alarm drop reset ip audit attack action alarm drop reset no failover icmp unreachable rate-limit 1 burst-size 1 icmp deny any outside asdm image disk0:/asdm-602.bin asdm history enable arp timeout 14400 nat-control global (outside) 1 interface nat (inside) 1 0.0.0.0 0.0.0.0 ! router ospf 50 network 192.168.2.0 255.255.255.0 area 0 log-adj-changes default-information originate always ! timeout xlate 0:30:00 timeout conn 0:15:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout uauth 0:05:00 absolute dynamic-access-policy-record DfltAccessPolicy aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius nac-policy DfltGrpPolicy-nac-framework-create nac-framework reval-period 36000 sq-period 300 aaa authentication telnet console LOCAL aaa authentication http console LOCAL aaa authentication ssh console LOCAL aaa authentication enable console LOCAL http server enable http 192.168.2.0 255.255.255.0 inside http 192.168.1.0 255.255.255.0 inside http redirect outside 80 snmp-server location My House snmp-server contact Joe Harris snmp-server enable traps snmp authentication linkup linkdown coldstart fragment size 150 inside fragment size 150 outside sysopt noproxyarp inside sysopt noproxyarp outside auth-prompt prompt Please provide the proper credentials for Authentication. auth-prompt accept Thank you....Your credentials allow you access. auth-prompt reject The credentials you supplied are incorrect. Please try again or contact Joe Harris service resetinbound service resetoutside ! ***Crypto Config Deleted*** ! no vpn-addr-assign aaa no vpn-addr-assign dhcp telnet 192.168.1.0 255.255.255.0 inside telnet 192.168.2.0 255.255.255.0 inside telnet timeout 10 ssh scopy enable ssh 192.168.2.0 255.255.255.0 inside ssh 192.168.1.0 255.255.255.0 inside ssh timeout 5 console timeout 0 threat-detection basic-threat threat-detection scanning-threat shun threat-detection statistics ! class-map inspection_default match default-inspection-traffic ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum 512 id-randomization id-mismatch action log policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect rsh inspect rtsp inspect esmtp inspect sqlnet inspect skinny inspect sunrpc inspect xdmcp inspect sip inspect netbios inspect tftp inspect ctiqbe inspect dcerpc inspect http inspect icmp inspect icmp error inspect ils inspect ipsec-pass-thru inspect mgcp inspect pptp inspect snmp ! service-policy global_policy global ntp server 192.43.244.18 source outside prefer ssl trust-point ASDM_TrustPoint0 outside webvpn enable outside csd image disk0:/securedesktop-asa-3.2.0.136-k9.pkg csd enable port-forward Devices 63323 192.168.2.2 telnet Telnet to R2 port-forward Devices 63324 192.168.1.226 telnet Telnet to Term Serv port-forward Devices 63389 192.168.1.4 3389 RDP to Dell E521 onscreen-keyboard logon group-policy DfltGrpPolicy attributes vpn-tunnel-protocol IPSec webvpn nac-settings value DfltGrpPolicy-nac-framework-create webvpn url-list value Sports port-forward auto-start Devices svc rekey time 30 svc rekey method ssl svc dpd-interval client none svc dpd-interval gateway none username ******* password *************** encrypted privilege 15 username ******* password ************* encrypted privilege 7 username ******* password ************* encrypted privilege 15 smtp-server xyz.abc.xyz.abc prompt hostname context Cryptochecksum:db0c6d42168b7edc5c34dddcd5c5e5c8 : end