Attachment 'ipv4_ipv6_config.txt'

Download

   1 ns5gt->
   2 ns5gt->
   3 ns5gt->
   4 ns5gt->
   5 ns5gt->
   6 ns5gt->
   7 ns5gt->
   8 ns5gt-> get config
   9 Total Config size 6940:
  10 set clock timezone 1
  11 set vrouter trust-vr sharable
  12 set vrouter "untrust-vr"
  13 exit
  14 set vrouter "trust-vr"
  15 unset auto-route-export
  16 exit
  17 set auth-server "Local" id 0
  18 set auth-server "Local" server-name "Local"
  19 set auth default auth server "Local"
  20 set auth radius accounting port 1646
  21 set admin name "netscreen"
  22 set admin password "nKVUM2rwMUzPcrkG5sWIHdCtqkAibn"
  23 set admin auth timeout 10
  24 set admin auth server "Local"
  25 set admin format dos
  26 set zone "Trust" vrouter "trust-vr"
  27 set zone "Untrust" vrouter "trust-vr"
  28 set zone "VLAN" vrouter "trust-vr"
  29 set zone "Untrust-Tun" vrouter "trust-vr"
  30 unset zone "Trust" tcp-rst
  31 unset zone "Untrust" block
  32 unset zone "Untrust" tcp-rst
  33 set zone "MGT" block
  34 set zone "VLAN" block
  35 unset zone "VLAN" tcp-rst
  36 set zone "Untrust" screen tear-drop
  37 set zone "Untrust" screen syn-flood
  38 set zone "Untrust" screen ping-death
  39 set zone "Untrust" screen ip-filter-src
  40 set zone "Untrust" screen land
  41 set zone "V1-Untrust" screen tear-drop
  42 set zone "V1-Untrust" screen syn-flood
  43 set zone "V1-Untrust" screen ping-death
  44 set zone "V1-Untrust" screen ip-filter-src
  45 set zone "V1-Untrust" screen land
  46 set interface "trust" zone "Trust"
  47 set interface "untrust" zone "Untrust"
  48 set interface "loopback.1" zone "Trust"
  49 unset interface vlan1 ip
  50 set interface trust ip 192.168.1.1/24
  51 set interface trust route
  52 set interface "untrust" ipv6 mode "host"
  53 set interface "untrust" ipv6 ip 2001:738:10:3::2/64
  54 set interface "untrust" ipv6 enable
  55 set interface untrust route
  56 set interface loopback.1 ip 1.1.1.1/24
  57 set interface loopback.1 nat
  58 unset interface vlan1 bypass-others-ipsec
  59 unset interface vlan1 bypass-non-ip
  60 set interface trust ip manageable
  61 set interface loopback.1 ip manageable
  62 set interface trust manage mtrace
  63 set interface untrust manage ping
  64 unset interface loopback.1 manage ssh
  65 unset interface loopback.1 manage telnet
  66 unset interface loopback.1 manage snmp
  67 unset interface loopback.1 manage ssl
  68 unset interface loopback.1 manage web
  69 set interface untrust ipv6 nd nud
  70 set interface trust dhcp server service
  71 set interface trust dhcp server enable
  72 set interface trust dhcp server option lease 1440000
  73 set interface trust dhcp server option dns1 213.163.34.66
  74 set interface trust dhcp server option dns2 62.77.203.10
  75 set interface trust dhcp server ip 192.168.1.30 to 192.168.1.39
  76 unset interface trust dhcp server config next-server-ip
  77 unset interface trust dhcp server config updatable
  78 set interface untrust dip 4 2001:738:10:3::10 2001:738:10:3::11
  79 set interface "trust" mip 192.168.1.64 ipv6 prefix 2001:738:10:4::c0a8:141
  80 /96 netmask 255.255.255.252 vr "trust-vr"
  81 set flow tcp-mss
  82 unset flow no-tcp-seq-check
  83 set flow tcp-syn-check
  84 set domain icnlab
  85 
  86 set pki authority default scep mode "auto"
  87 set pki x509 default cert-path partial
  88 set dns proxy
  89 set dns proxy enable
  90 set address "Trust" "192.168.1.100/32" 192.168.1.100 255.255.255.255
  91 set address "Trust" "pool00" 192.168.1.0 255.255.255.0
  92 set address "Untrust" "pool01" 192.168.101.32 255.255.255.0
  93 set address "Global" "ftp1" 211.20.1.10 255.255.255.255
  94 set group address "Untrust" "group01"
  95 set group address "Untrust" "group01" add "pool01"
  96 set user "user01" uid 1
  97 set user "user01" type  auth
  98 set user "user01" hash-password "021ns+AmAYZjnejTh2blo0DtnDESapo84T3sE="
  99 set user "user01" "enable"
 100 set ike respond-bad-spi 1
 101 unset ike ikeid-enumeration
 102 unset ipsec access-session enable
 103 set ipsec access-session maximum 5000
 104 set ipsec access-session upper-threshold 0
 105 set ipsec access-session lower-threshold 0
 106 set ipsec access-session dead-p2-sa-timeout 0
 107 unset ipsec access-session log-error
 108 unset ipsec access-session info-exch-connected
 109 unset ipsec access-session use-error-log
 110 set av profile "scan-mgr"
 111 set ftp scan-mode  scan-all
 112 set ftp decompress-layer  2
 113 set http scan-mode  scan-all
 114 set imap scan-mode  scan-all
 115 set imap decompress-layer  2
 116 set pop3 scan-mode  scan-all
 117 set pop3 decompress-layer  2
 118 set smtp scan-mode  scan-all
 119 set smtp decompress-layer  2
 120 exit
 121 set url protocol websense
 122 exit
 123 set policy id 19 from "Trust" to "Untrust"  "Any-IPv4" "MIP(192.168.1.64/3
 124 0)" "ANY" nat src dip-id 4 permit no-session-backup
 125 set policy id 19
 126 exit
 127 set policy id 7 name "ipv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv
 128 6" "ANY" permit
 129 set policy id 7 disable
 130 set policy id 7
 131 exit
 132 set policy id 1 from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "ANY" per
 133 mit traffic mbw 100
 134 set policy id 1 disable
 135 set policy id 1
 136 exit
 137 set policy id 8 from "Untrust" to "Trust"  "Any-IPv6" "Any-IPv6" "ANY" per
 138 mit
 139 set policy id 8 disable
 140 set policy id 8
 141 exit
 142 set policy id 9 from "Untrust" to "Trust"  "Any-IPv4" "Any-IPv4" "ANY" per
 143 mit
 144 set policy id 9 disable
 145 set policy id 9
 146 exit
 147 set policy id 11 name "FTP" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv
 148 4" "FTP" permit no-session-backup traffic mbw 100
 149 set policy id 11 disable
 150 set policy id 11
 151 exit
 152 set policy id 12 name "TELNET" from "Trust" to "Untrust"  "Any-IPv4" "Any-
 153 IPv4" "TELNET" permit no-session-backup traffic mbw 100
 154 set policy id 12 disable
 155 set policy id 12
 156 exit
 157 set policy id 13 name "SSH" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv
 158 4" "SSH" permit no-session-backup traffic mbw 100
 159 set policy id 13 disable
 160 set policy id 13
 161 exit
 162 set policy id 14 name "HTTP" from "Trust" to "Untrust"  "Any-IPv4" "Any-IP
 163 v4" "HTTP" permit no-session-backup traffic mbw 100
 164 set policy id 14 disable
 165 set policy id 14
 166 exit
 167 set policy id 15 name "FTP-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "An
 168 y-IPv6" "FTP" permit no-session-backup traffic mbw 100
 169 set policy id 15 disable
 170 set policy id 15
 171 exit
 172 set policy id 16 name "TELNET-IPv6" from "Trust" to "Untrust"  "Any-IPv6"
 173 "Any-IPv6" "TELNET" permit no-session-backup traffic mbw 100
 174 set policy id 16 disable
 175 set policy id 16
 176 exit
 177 set policy id 17 name "SSH-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "An
 178 y-IPv6" "SSH" permit no-session-backup traffic mbw 100
 179 set policy id 17 disable
 180 set policy id 17
 181 exit
 182 set policy id 18 name "HTTP-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "A
 183 ny-IPv6" "HTTP" permit no-session-backup traffic mbw 100
 184 set policy id 18 disable
 185 set policy id 18
 186 exit
 187 set monitor cpu 100
 188 set global-pro policy-manager primary outgoing-interface untrust
 189 set global-pro policy-manager secondary outgoing-interface untrust
 190 set nsmgmt bulkcli reboot-timeout 60
 191 set ssh version v2
 192 set config lock timeout 5
 193 set ntp server "0.0.0.0"
 194 set ntp server backup1 "0.0.0.0"
 195 set ntp server backup2 "0.0.0.0"
 196 set modem speed 115200
 197 set modem retry 3
 198 set modem interval 10
 199 set modem idle-time 10
 200 set snmp port listen 161
 201 set snmp port trap 162
 202 set vrouter "untrust-vr"
 203 exit
 204 set vrouter "trust-vr"
 205 unset add-default-route
 206 set route ::/0 interface untrust gateway 2001:738:10:3::1 preference 20
 207 exit
 208 set vrouter "untrust-vr"
 209 exit
 210 set vrouter "trust-vr"
 211 exit

Attached Files

To refer to attachments on a page, use attachment:filename, as shown below in the list of files. Do NOT use the URL of the [get] link, since this is subject to change and can break easily.
  • [get | view] (2007-11-06 16:55:39, 6.9 KB) [[attachment:ipv4_ipv6_config.txt]]
  • [get | view] (2007-11-06 16:50:23, 19.5 KB) [[attachment:ipv4_ipv6_dip.png]]
  • [get | view] (2007-11-06 17:00:22, 7.8 KB) [[attachment:ipv4_ipv6_ftp.png]]
  • [get | view] (2007-11-06 17:03:10, 19.1 KB) [[attachment:ipv4_ipv6_http.png]]
  • [get | view] (2007-11-06 16:57:00, 27.5 KB) [[attachment:ipv4_ipv6_ipv4side.cap]]
  • [get | view] (2007-11-06 16:56:18, 34.5 KB) [[attachment:ipv4_ipv6_ipv6side.cap]]
  • [get | view] (2007-11-06 16:49:12, 22.2 KB) [[attachment:ipv4_ipv6_mip.png]]
  • [get | view] (2007-11-06 16:47:35, 54.8 KB) [[attachment:ipv4_ipv6_network.png]]
  • [get | view] (2007-11-06 16:54:10, 83.7 KB) [[attachment:ipv4_ipv6_policy.png]]
  • [get | view] (2007-11-06 17:08:24, 81.3 KB) [[attachment:ipv4_ipv6_policy2.png]]
  • [get | view] (2007-11-06 17:01:16, 6.7 KB) [[attachment:ipv4_ipv6_ssh.png]]
  • [get | view] (2007-11-06 16:52:12, 29.3 KB) [[attachment:ipv4_ipv6_static.png]]
  • [get | view] (2007-11-06 16:59:17, 6.5 KB) [[attachment:ipv4_ipv6_telnet.png]]
  • [get | view] (2007-11-06 16:00:24, 8.0 KB) [[attachment:ipv6_ftp.png]]
  • [get | view] (2007-11-06 16:03:28, 7.9 KB) [[attachment:ipv6_http.png]]
  • [get | view] (2007-11-06 16:28:15, 7.2 KB) [[attachment:ipv6_ipv4_config.txt]]
  • [get | view] (2007-11-06 16:17:40, 26.5 KB) [[attachment:ipv6_ipv4_dip.png]]
  • [get | view] (2007-11-06 16:32:14, 6.7 KB) [[attachment:ipv6_ipv4_ftp.png]]
  • [get | view] (2007-11-06 16:34:41, 8.4 KB) [[attachment:ipv6_ipv4_http.png]]
  • [get | view] (2007-11-06 16:36:52, 25.1 KB) [[attachment:ipv6_ipv4_ipv4side.cap]]
  • [get | view] (2007-11-06 16:36:10, 26.8 KB) [[attachment:ipv6_ipv4_ipv6side.cap]]
  • [get | view] (2007-11-06 16:15:10, 22.6 KB) [[attachment:ipv6_ipv4_mip.png]]
  • [get | view] (2007-11-06 16:13:52, 58.2 KB) [[attachment:ipv6_ipv4_network.png]]
  • [get | view] (2007-11-06 16:25:20, 82.0 KB) [[attachment:ipv6_ipv4_policy_config.png]]
  • [get | view] (2007-11-06 17:12:28, 30.8 KB) [[attachment:ipv6_ipv4_policy_config2.png]]
  • [get | view] (2007-11-06 16:33:51, 6.6 KB) [[attachment:ipv6_ipv4_ssh.png]]
  • [get | view] (2007-11-06 16:19:05, 31.9 KB) [[attachment:ipv6_ipv4_static.png]]
  • [get | view] (2007-11-06 16:30:34, 6.6 KB) [[attachment:ipv6_ipv4_telnet.png]]
  • [get | view] (2007-11-06 16:01:50, 6.8 KB) [[attachment:ipv6_ssh.png]]
  • [get | view] (2007-11-06 15:59:42, 6.8 KB) [[attachment:ipv6_telnet.png]]
  • [get | view] (2007-11-06 15:52:57, 53.7 KB) [[attachment:ipv6_test.cap]]
  • [get | view] (2007-11-06 15:52:21, 6.9 KB) [[attachment:netscreen_config_ipv6_firewall.txt]]
  • [get | view] (2007-11-06 15:44:40, 49.2 KB) [[attachment:teszt_halo.png]]
  • [get | view] (2007-11-06 15:49:40, 30.9 KB) [[attachment:teszt_halo_netscreen_config.png]]
  • [get | view] (2007-11-06 15:50:58, 44.0 KB) [[attachment:teszt_halo_netscreen_config_enable.png]]
 All files | Selected Files: delete move to page copy to page

You are not allowed to attach a file to this page.