en
conf t
hostname Cisco3800
interface Loopback0
ip address 6.6.6.6 255.255.255.0
interface FastEthernet0/0
description WAN
ip address 119.200.27.50 255.255.255.252
ip nat ouside
interface FastEthernet0/1
description LAN
ip address 192.168.6.1 255.255.255.0
ip nat inside
ip route 0.0.0.0 0.0.0.0 113.200.27.49 电信联通下一跳
ip route 192.168.3.0 255.255.255.0 192.168.6.2
ip route 192.168.4.0 255.255.255.0 192.168.6.2
ip nat pool www 119.200.27.50 119.200.27.55 netmask 255.255.255.252
ip nat inside source list 1 pool www overload
ip nat inside source static tcp 6.6.6.6 22 interface GigabitEthernet0/0 22
access-list 1 permit any
配置SSH
aaa new-model
enable password cisco123
ip domain-name cisco.com
crypto key generate rsa
ip ssh time-out 180 登录超时设置
ip ssh authentication-retries 5 登录失败重试次数5
ip ssh version 1 设置登录SSH登录版本
line vty 0 4
login local
transport input SSH
transport input telnet
transport input all 允许所有
ip source-route
VPN-L2TP创建
vpdn enable
vpdn-group xiaonuo-l2tp
Default L2TP VPDN group
accept-dialin
protocol l2tp
virtual-template 1
interface Virtual-Template1
ip address 192.168.68.254 255.255.255.0
peer default ip address pool xiaonuo-l2tp-user
ppp authentication chap ms-chap
ip local pool xiaonuo-l2tp-user 5.5.5.5
username han privilege 15 password 0 cisco123
archive
log config
hidekeys
端口映射
ip nat inside source static 传输协议 内网IP 端口 外网IP 端口 以Web服务映射为例
ip nat inside source static tcp 192.168.3.1 80 119.200.27.50 80
Wr
本文出自 “为梦想奋斗” 博客,谢绝转载!
原文:http://hanzheng.blog.51cto.com/3080616/1751172