Search squid archive

Re: [squid-users] squid and cisco pix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi 
attached with this mail is copy of my PIX configuration  IP of my
proxy is 192.168.1.6 and using network 109.82.109.0 /255.255.255.128

Regards
Maham

On 5/18/05, Damian Forrester <damian.forrester@xxxxxxxxxxxxxx> wrote:
> Hi again can someone send me a set of config files for both the pix firewall
> (515e) and squid proxy
> Thanks
> dani
> 
> 
> ______________________________________________________________
> This message has been checked for all viruses by MessageLabs.
> ==============================================================
>
LhrPix01# wr ter
Building configuration...
: Saved
:
PIX Version 6.1(4)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password NI2jZhmmtdfQC43p encrypted
passwd iuRTQZ5h1Z482Dt6 encrypted
hostname LhrPix01
domain-name mynet.com
fixup protocol ftp 21
fixup protocol http 80
fixup protocol h323 1720
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol sip 5060
fixup protocol skinny 2000
names
access-list acl_in permit tcp host 192.168.1.6 any eq www
access-list acl_in permit tcp host 192.168.1.6 host 192.168.0.1 eq 22
access-list acl_in permit tcp host 192.168.1.6 any eq 443
access-list acl_in permit udp host 192.168.1.6 any eq domain
access-list acl_in deny icmp any any
access-list acl_in permit tcp host 192.168.1.6 any eq ftp
access-list acl_in deny udp any any
access-list acl_in deny tcp any any
access-list acl_in deny tcp any any eq 445
pager lines 24
logging on
logging monitor debugging
logging buffered debugging
logging trap debugging
logging host inside 192.168.1.6
interface ethernet0 auto
interface ethernet1 auto
mtu outside 1500
mtu inside 1500
ip address outside 192.168.0.6 255.255.255.0
ip address inside 192.168.1.1 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
global (outside) 1 192.168.0.2
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
access-group acl_in in interface inside
route outside 0.0.0.0 0.0.0.0 192.168.0.1 1
route inside 109.82.109.0 255.255.255.128 192.168.1.6 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 si
p 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server RADIUS protocol radius
aaa-server LOCAL protocol tacacs+
http 192.168.1.6 255.255.255.255 inside
no snmp-server location
no snmp-server contact
snmp-server community public
no snmp-server enable traps
floodguard enable
sysopt security fragguard
no sysopt route dnat
telnet 192.168.1.6 255.255.255.255 inside
telnet timeout 5
ssh 192.168.1.6 255.255.255.255 inside
ssh timeout 5
terminal width 80
Cryptochecksum:1ee7455da3bb5e8b696137991c9b4fad
: end
[OK]

[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux