<설정>
daejeonits#conf t
daejeonits(if)#access list 10 permit 211.
'end' 나 'ctrl+c' 로 빠짐.
daejeonits#conf t
daejeonits#line vty 0 4
daejeonits#access-class 10 in
<확인>
daejeonits#show run
:
access list 10 permit
:
line vty 0 4
access class 10 in 확인
$ telnet 210.105.66.33
Trying 210.105.66.33...
Connected to 210.105.66.33.
Escape character is '^]'.
User Access Verification
Password:
Daejeonits>en
Password:
Daejeonits#sh run
Building configuration...
Current configuration : 3131 bytes
!
version 12.2
no parser cache
service timestamps debug uptime
service timestamps log datetime
service password-encryption
no service dhcp
!
hostname Daejeonits
!
boot system flash c3640-is-mz.122-5.bin
logging buffered 4096 debugging
enable secret 5 $1$2nZ4$KIG1PIbrRRST7s1GN7xUb/
!
memory-size iomem 25
ip subnet-zero
!
!
no ip domain-lookup
!
call rsvp-sync
!
!
!
!
!
!
!
!
interface FastEthernet0/0
description ------T0_FIREWALL-------
ip address 210.105.66.33 255.255.255.224
speed 100
full-duplex
no cdp enable
!
interface Serial0/0
description ------T0_KORNET-------
ip address 172.20.32.202 255.255.255.252
no cdp enable
!
interface Serial0/1
no ip address
shutdown
clockrate 2000000
no cdp enable
!
interface Serial0/2
no ip address
shutdown
clockrate 2000000
no cdp enable
!
interface Serial0/3
no ip address
shutdown
clockrate 2000000
no cdp enable
!
interface FastEthernet1/0
description ------TO_STREAM_SVR-------
ip address 211.185.133.161 255.255.255.224
duplex auto
speed 100
no cdp enable
!
interface Serial1/0
description ------TO_PUBNET1-------
no ip address
encapsulation frame-relay IETF
no ip mroute-cache
frame-relay lmi-type ansi
!
interface Serial1/0.1 point-to-point
ip address 172.23.1.38 255.255.255.252
no ip mroute-cache
no cdp enable
frame-relay interface-dlci 16
!
interface Serial1/1
description ------TO_PUBNET2-------
no ip address
encapsulation frame-relay IETF
no ip mroute-cache
frame-relay lmi-type ansi
!
interface Serial1/1.1 point-to-point
ip address 172.23.1.42 255.255.255.252
no ip mroute-cache
no cdp enable
frame-relay interface-dlci 16
!
interface Serial1/2
no ip address
shutdown
clockrate 2000000
no cdp enable
!
interface Serial1/3
no ip address
shutdown
clockrate 2000000
no cdp enable
!
ip classless
ip route 0.0.0.0 0.0.0.0 172.23.1.37
ip route 0.0.0.0 0.0.0.0 172.23.1.41
ip route 218.150.108.0 255.255.255.0 172.20.32.201
ip route 218.150.109.0 255.255.255.0 172.20.32.201
ip route 218.150.110.0 255.255.255.0 172.20.32.201
ip route 218.150.111.0 255.255.255.0 172.20.32.201
ip route 218.150.241.0 255.255.255.0 172.20.32.201
no ip http server
ip pim bidir-enable
!
access-list 10 permit 210.105.66.34
access-list 100 permit tcp any any eq www
access-list 100 permit tcp any any eq domain
access-list 100 permit udp any any eq domain
access-list 100 permit tcp any any eq telnet
access-list 100 permit tcp any any eq smtp
access-list 100 permit tcp any any eq ftp
access-list 100 permit tcp any any eq ftp-data
access-list 100 permit ip any any
no cdp advertise-v2
no cdp run
snmp-server engineID local 0000000902000004DD696D81
snmp-server user auto auto v3
snmp-server group auto v3 noauth notify *tv.FFFFFFFF.FFFFFFFF
snmp-server community daejeonits RO
snmp-server host 210.105.66.56 version 3 noauth auto
!
dial-peer cor custom
!
!
!
alias exec fa0/0 sh int fa0/0
alias exec fa1/0 sh int fa1/0
alias exec s1/0 sh int ser1/0
alias exec s1/1 sh in ser1/1
alias exec s0/0 sh int ser0/0
!
line con 0
logging synchronous
line aux 0
line vty 0 4
access-class 10 in
password 7 08254D4B031C0A191B1F1F
login
!
end