Welcome!
This community is for professionals and enthusiasts of our products and services. Share and discuss the best content and new marketing ideas, build your professional profile and become a better marketer together.
This question has been flagged
1
Reply
29
Views
unset key protection enable
set clock dst-off
set clock ntp
set clock timezone 11
set clock dst recurring start-weekday 2 0 3 02:00 end-weekday 1 0 11 02:00
set vrouter trust-vr sharable
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset auto-route-export
exit
set service "Web Timesheets" protocol tcp src-port 8013-8013 dst-port 8013-8013
set service "RDP" protocol tcp src-port 0-65535 dst-port 3389-3389
set service "Odoo-dev-01" protocol tcp src-port 8800-8899 dst-port 8800-8899
set service "dockerregistry" protocol tcp src-port 5000-5000 dst-port 5000-5000
set service "SSH 2222" protocol tcp src-port 0-65535 dst-port 2222-2222
set service "SSH 222" protocol tcp src-port 0-65535 dst-port 222-222
set alg appleichat enable
unset alg appleichat re-assembly enable
set alg sctp enable
set auth-server "Local" id 0
set auth-server "Local" server-name "Local"
set auth default auth server "Local"
set auth radius accounting port 1646
set admin name "isadmin"
set admin password "nNzTLDrgPkJNcWdB8sNJOfBtlqBA7n"
set admin port 1080
set admin telnet port 2023
set admin ssh port 2022
set admin auth web timeout 10
set admin auth dial-in timeout 3
set admin auth server "Local"
set admin format dos
set zone "Trust" vrouter "trust-vr"
set zone "Untrust" vrouter "trust-vr"
set zone "DMZ" vrouter "trust-vr"
set zone "VLAN" vrouter "trust-vr"
set zone "Untrust-Tun" vrouter "trust-vr"
set zone "Trust" tcp-rst
set zone "Untrust" block
unset zone "Untrust" tcp-rst
set zone "MGT" block
unset zone "V1-Trust" tcp-rst
unset zone "V1-Untrust" tcp-rst
set zone "DMZ" tcp-rst
unset zone "V1-DMZ" tcp-rst
unset zone "VLAN" tcp-rst
set zone "Untrust" screen tear-drop
set zone "Untrust" screen syn-flood
set zone "Untrust" screen ping-death
set zone "Untrust" screen ip-filter-src
set zone "Untrust" screen land
set zone "V1-Untrust" screen tear-drop
set zone "V1-Untrust" screen syn-flood
set zone "V1-Untrust" screen ping-death
set zone "V1-Untrust" screen ip-filter-src
set zone "V1-Untrust" screen land
set interface "ethernet0/0" zone "Untrust"
set interface "ethernet0/1" zone "DMZ"
set interface "bgroup0" zone "Trust"
set interface "serial1/0" zone "Untrust"
set interface "serial2/0" zone "Untrust"
set interface "tunnel.3" zone "Untrust"
set interface bgroup0 port ethernet0/2
set interface bgroup0 port ethernet0/3
set interface bgroup0 port ethernet0/4
unset interface vlan1 ip
set interface ethernet0/0 ip 220.233.23.1/32
set interface ethernet0/0 route
set interface bgroup0 ip 10.10.1.254/24
set interface bgroup0 nat
set interface tunnel.3 ip unnumbered interface ethernet0/0
unset interface vlan1 bypass-others-ipsec
unset interface vlan1 bypass-non-ip
set interface ethernet0/0 ip manageable
set interface bgroup0 ip manageable
set interface bgroup0 manage mtrace
set interface ethernet0/0 vip interface-ip 22 "SSH" 10.10.1.22
set interface ethernet0/0 vip interface-ip 80 "HTTP" 10.10.1.22
set interface ethernet0/0 vip interface-ip 443 "HTTPS" 10.10.1.22
set interface bgroup0 dhcp server service
set interface bgroup0 dhcp server enable
set interface bgroup0 dhcp server option lease 1440000
set interface bgroup0 dhcp server option gateway 10.10.1.254
set interface bgroup0 dhcp server option netmask 255.255.255.0
set interface bgroup0 dhcp server option dns1 10.10.1.10
set interface bgroup0 dhcp server option dns2 220.233.0.4
set interface bgroup0 dhcp server option dns3 220.233.0.4
set interface bgroup0 dhcp server ip 10.10.1.10 mac fe181ebba77f
set interface bgroup0 dhcp server ip 10.10.1.11 mac a254ad4a4ca3
set interface bgroup0 dhcp server ip 10.10.1.12 mac fe0f815e473a
set interface bgroup0 dhcp server ip 10.10.1.13 mac 023293fd7dc7
set interface bgroup0 dhcp server ip 10.10.1.14 mac 9e03eb7e26ca
set interface bgroup0 dhcp server ip 10.10.1.15 mac 9ad7f1269de3
set interface bgroup0 dhcp server ip 10.10.1.16 mac 2a730f398384
set interface bgroup0 dhcp server ip 10.10.1.17 mac baf9297b0915
set interface bgroup0 dhcp server ip 10.10.1.18 mac 4a9bfe460510
set interface bgroup0 dhcp server ip 10.10.1.19 mac 3ecaeb7e616d
set interface bgroup0 dhcp server ip 10.10.1.1 mac 0026b985f9d2
set interface bgroup0 dhcp server ip 10.10.1.20 mac 7ec47d924348
set interface bgroup0 dhcp server ip 10.10.1.21 mac 2ed2f4252f46
set interface bgroup0 dhcp server ip 10.10.1.22 mac 96cb7ee11f2c
set interface bgroup0 dhcp server ip 10.10.1.50 to 10.10.1.200
set interface bgroup0 dhcp server ip 10.10.1.2 mac 9c8e991d1786
unset interface bgroup0 dhcp server config next-server-ip
unset interface bgroup0 dhcp server config updatable
set interface "ethernet0/0" mip 220.233.197.157 host 10.10.1.21 netmask 255.255.255.255 vr "trust-vr"
set interface "ethernet0/0" mip 220.233.197.158 host 10.10.1.22 netmask 255.255.255.255 vr "trust-vr"
set interface "serial0/0" modem settings "USR" init "AT&F"
set interface "serial0/0" modem settings "USR" active
set interface "serial0/0" modem speed 115200
set interface "serial0/0" modem retry 3
set interface "serial0/0" modem interval 10
set interface "serial0/0" modem idle-time 10
set flow tcp-mss
set flow all-tcp-mss 1304
unset flow tcp-syn-check
unset flow tcp-syn-bit-check
set flow reverse-route clear-text prefer
set flow reverse-route tunnel always
set flow vpn-tcp-mss 1350
set pki authority default scep mode "auto"
set pki x509 default cert-path partial
set address "Trust" "220.233.197.156/30" 220.233.197.156 255.255.255.252
set address "Trust" "onprem-networks-1" 10.10.1.0 255.255.255.0
set address "Untrust" "azure-networks-1" 10.10.4.0 255.255.255.0
set crypto-policy
exit
set ike gateway ikev2 "azure-gateway" address 104.210.81.64 outgoing-interface "ethernet0/0" preshare "IdBfLODONN7G5KsuxcC7vGdDmunwtnt1eqjNMAIMGa0i580wm0R3wH6VBJHxLvXrBIhSDuKaC8bc" sec-level compatible
set ike gateway "azure-gateway" dpd-liveness interval 10
set ike gateway ikev2 "azure-gateway" nat-traversal
unset ike gateway ikev2 "azure-gateway" nat-traversal udp-checksum
set ike gateway ikev2 "azure-gateway" nat-traversal keepalive-frequency 0
set ike respond-bad-spi 1
set ike gateway ikev2 "azure-gateway" auth-method self preshare peer preshare
set ike ikev2 ike-sa-soft-lifetime 60
unset ike ikeid-enumeration
unset ike dos-protection
unset ipsec access-session enable
set ipsec access-session maximum 5000
set ipsec access-session upper-threshold 0
set ipsec access-session lower-threshold 0
set ipsec access-session dead-p2-sa-timeout 0
unset ipsec access-session log-error
unset ipsec access-session info-exch-connected
unset ipsec access-session use-error-log
set vpn "azure-ipsec-vpn" gateway "azure-gateway" no-replay tunnel idletime 0 sec-level compatible
set vpn "azure-ipsec-vpn" monitor optimized
set vpn "azure-ipsec-vpn" id 0x1 bind interface tunnel.3
set vpn "azure-ipsec-vpn" dscp-mark 0
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
exit
set url protocol websense
exit
set policy id 18 from "Untrust" to "Trust" "Any" "Any" "VOIP" permit
set policy id 18
exit
set policy id 17 from "Trust" to "Untrust" "Any" "Any" "VOIP" permit
set policy id 17
exit
set policy id 15 from "Untrust" to "Trust" "Any" "MIP(220.233.197.157)" "dockerregistry" permit
set policy id 15 disable
set policy id 15
exit
set policy id 8 from "Untrust" to "Trust" "azure-networks-1" "onprem-networks-1" "ANY" permit
set policy id 8
exit
set policy id 7 from "Trust" to "Untrust" "onprem-networks-1" "azure-networks-1" "ANY" permit
set policy id 7
exit
set policy id 1 from "Trust" to "Untrust" "Any" "Any" "ANY" permit
set policy id 1
exit
set policy id 2 name "SSH" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "SSH 2222" permit
set policy id 2 disable
set policy id 2
exit
set policy id 3 name "HTTP" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "HTTP" permit
set policy id 3 disable
set policy id 3
exit
set policy id 4 name "HTTPS" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "HTTPS" permit
set policy id 4 disable
set policy id 4
exit
set policy id 5 name "Timesheets" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "Web Timesheets" permit
set policy id 5 disable
set policy id 5
exit
set policy id 6 name "RDP" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "RDP" permit
set policy id 6 disable
set policy id 6
exit
set policy id 9 name "Odoo-dev01" from "Untrust" to "Trust" "Any" "VIP(ethernet0/0)" "SSH" permit
set policy id 9
exit
set policy id 10 name "Public Webservers" from "Untrust" to "Trust" "Any" "Any" "HTTP" permit
set policy id 10 disable
set policy id 10
exit
set policy id 11 name "demo1 web" from "Untrust" to "Trust" "Any" "MIP(220.233.197.157)" "HTTP" permit
set policy id 11
exit
set policy id 12 name "demo1 web https" from "Untrust" to "Trust" "Any" "MIP(220.233.197.157)" "HTTPS" permit
set policy id 12
exit
set policy id 13 name "demo3 http" from "Untrust" to "Trust" "Any" "MIP(220.233.197.158)" "HTTP" permit
set policy id 13
exit
set policy id 14 name "demo3 https" from "Untrust" to "Trust" "Any" "MIP(220.233.197.158)" "HTTPS" permit
set policy id 14
exit
set policy id 16 name "SSH" from "Untrust" to "Trust" "Any" "MIP(220.233.197.158)" "SSH" permit
set policy id 16
exit
set policy id 19 name "SSH demo3" from "Untrust" to "Trust" "Any" "MIP(220.233.197.158)" "SSH 2222" permit
set policy id 19
exit
set pppoe name "NBN"
set pppoe name "NBN" username "0201290522@nsw.exetel.com.au" password "63uUGdB2N5QFO1shPWCQy5KSfXnAljza4Q=="
set pppoe name "NBN" interface ethernet0/0
set nsmgmt bulkcli reboot-timeout 60
set ssh version v2
set ssh enable
set config lock timeout 5
unset license-key auto-update
set telnet client enable
set ssl port 10443
set ntp server "0.au.pool.ntp.org"
set ntp server src-interface "ethernet0/0"
set ntp server backup1 "1.au.pool.ntp.org"
set ntp server backup1 src-interface "ethernet0/0"
set ntp server backup2 "2.au.pool.ntp.org"
set ntp server backup2 src-interface "ethernet0/0"
set snmp port listen 161
set snmp port trap 162
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset add-default-route
set route 10.10.4.0/24 interface tunnel.3
exit
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
exit
Enjoying the discussion? Don't just read, join in!
Create an account today to enjoy exclusive features and engage with our awesome community!
Sign up