Hi attached with this mail is copy of my PIX configuration IP of my proxy is 192.168.1.6 and using network 109.82.109.0 /255.255.255.128 Regards Maham On 5/18/05, Damian Forrester <damian.forrester@xxxxxxxxxxxxxx> wrote: > Hi again can someone send me a set of config files for both the pix firewall > (515e) and squid proxy > Thanks > dani > > > ______________________________________________________________ > This message has been checked for all viruses by MessageLabs. > ============================================================== >
LhrPix01# wr ter Building configuration... : Saved : PIX Version 6.1(4) nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password NI2jZhmmtdfQC43p encrypted passwd iuRTQZ5h1Z482Dt6 encrypted hostname LhrPix01 domain-name mynet.com fixup protocol ftp 21 fixup protocol http 80 fixup protocol h323 1720 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol sip 5060 fixup protocol skinny 2000 names access-list acl_in permit tcp host 192.168.1.6 any eq www access-list acl_in permit tcp host 192.168.1.6 host 192.168.0.1 eq 22 access-list acl_in permit tcp host 192.168.1.6 any eq 443 access-list acl_in permit udp host 192.168.1.6 any eq domain access-list acl_in deny icmp any any access-list acl_in permit tcp host 192.168.1.6 any eq ftp access-list acl_in deny udp any any access-list acl_in deny tcp any any access-list acl_in deny tcp any any eq 445 pager lines 24 logging on logging monitor debugging logging buffered debugging logging trap debugging logging host inside 192.168.1.6 interface ethernet0 auto interface ethernet1 auto mtu outside 1500 mtu inside 1500 ip address outside 192.168.0.6 255.255.255.0 ip address inside 192.168.1.1 255.255.255.0 ip audit info action alarm ip audit attack action alarm pdm history enable arp timeout 14400 global (outside) 1 192.168.0.2 nat (inside) 1 0.0.0.0 0.0.0.0 0 0 access-group acl_in in interface inside route outside 0.0.0.0 0.0.0.0 192.168.0.1 1 route inside 109.82.109.0 255.255.255.128 192.168.1.6 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 si p 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius aaa-server LOCAL protocol tacacs+ http 192.168.1.6 255.255.255.255 inside no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable sysopt security fragguard no sysopt route dnat telnet 192.168.1.6 255.255.255.255 inside telnet timeout 5 ssh 192.168.1.6 255.255.255.255 inside ssh timeout 5 terminal width 80 Cryptochecksum:1ee7455da3bb5e8b696137991c9b4fad : end [OK]