Attachment 'ipv6_ipv4_config.txt'

Download

   1 ns5gt->
   2 ns5gt->
   3 ns5gt-> get config
   4 Total Config size 7291:
   5 set clock timezone 1
   6 set vrouter trust-vr sharable
   7 set vrouter "untrust-vr"
   8 exit
   9 set vrouter "trust-vr"
  10 unset auto-route-export
  11 exit
  12 set auth-server "Local" id 0
  13 set auth-server "Local" server-name "Local"
  14 set auth default auth server "Local"
  15 set auth radius accounting port 1646
  16 set admin name "netscreen"
  17 set admin password "nKVUM2rwMUzPcrkG5sWIHdCtqkAibn"
  18 set admin auth timeout 10
  19 set admin auth server "Local"
  20 set admin format dos
  21 set zone "Trust" vrouter "trust-vr"
  22 set zone "Untrust" vrouter "trust-vr"
  23 set zone "VLAN" vrouter "trust-vr"
  24 set zone "Untrust-Tun" vrouter "trust-vr"
  25 unset zone "Trust" tcp-rst
  26 unset zone "Untrust" block
  27 unset zone "Untrust" tcp-rst
  28 set zone "MGT" block
  29 set zone "VLAN" block
  30 unset zone "VLAN" tcp-rst
  31 set zone "Untrust" screen tear-drop
  32 set zone "Untrust" screen syn-flood
  33 set zone "Untrust" screen ping-death
  34 set zone "Untrust" screen ip-filter-src
  35 set zone "Untrust" screen land
  36 set zone "V1-Untrust" screen tear-drop
  37 set zone "V1-Untrust" screen syn-flood
  38 set zone "V1-Untrust" screen ping-death
  39 set zone "V1-Untrust" screen ip-filter-src
  40 set zone "V1-Untrust" screen land
  41 set interface "trust" zone "Trust"
  42 set interface "untrust" zone "Untrust"
  43 set interface "loopback.1" zone "Trust"
  44 unset interface vlan1 ip
  45 set interface trust ip 192.168.1.1/24
  46 set interface "trust" ipv6 mode "router"
  47 set interface "trust" ipv6 ip 2001:738:10:1:210:dbff:fe6d:cb52/64
  48 set interface "trust" ipv6 enable
  49 set interface trust route
  50 set interface untrust ip 192.168.51.1/24
  51 set interface "untrust" ipv6 mode "router"
  52 set interface untrust route
  53 set interface loopback.1 ip 1.1.1.1/24
  54 set interface loopback.1 nat
  55 unset interface vlan1 bypass-others-ipsec
  56 unset interface vlan1 bypass-non-ip
  57 set interface trust ip manageable
  58 unset interface untrust ip manageable
  59 set interface loopback.1 ip manageable
  60 set interface untrust manage ping
  61 unset interface loopback.1 manage ssh
  62 unset interface loopback.1 manage telnet
  63 unset interface loopback.1 manage snmp
  64 unset interface loopback.1 manage ssl
  65 unset interface loopback.1 manage web
  66 set interface trust ipv6 ra link-address
  67 set interface trust ipv6 ra transmit
  68 set interface untrust ipv6 ra link-address
  69 set interface untrust ipv6 ra max-adv-int 60
  70 set interface untrust ipv6 ra min-adv-int 30
  71 set interface untrust ipv6 ra transmit
  72 set interface trust ipv6 nd nud
  73 set interface untrust ipv6 nd nud
  74 set interface trust dhcp server service
  75 set interface trust dhcp server enable
  76 set interface trust dhcp server option lease 1440000
  77 set interface trust dhcp server option dns1 213.163.34.66
  78 set interface trust dhcp server option dns2 62.77.203.10
  79 set interface trust dhcp server ip 192.168.1.30 to 192.168.1.39
  80 unset interface trust dhcp server config next-server-ip
  81 unset interface trust dhcp server config updatable
  82 set interface untrust dip 4 192.168.51.10 192.168.51.19
  83 set interface "trust" mip 2001:738:10:1::/96 ipv6 ipv4 vr "trust-vr"
  84 set flow tcp-mss
  85 unset flow no-tcp-seq-check
  86 set flow tcp-syn-check
  87 set domain icnlab
  88 
  89 set pki authority default scep mode "auto"
  90 set pki x509 default cert-path partial
  91 set dns proxy
  92 set dns proxy enable
  93 set address "Trust" "192.168.1.100/32" 192.168.1.100 255.255.255.255
  94 set address "Trust" "pool00" 192.168.1.0 255.255.255.0
  95 set address "Untrust" "pool01" 192.168.101.32 255.255.255.0
  96 set address "Global" "ftp1" 211.20.1.10 255.255.255.255
  97 set group address "Untrust" "group01"
  98 set group address "Untrust" "group01" add "pool01"
  99 set user "user01" uid 1
 100 set user "user01" type  auth
 101 set user "user01" hash-password "021ns+AmAYZjnejTh2blo0DtnDESapo84T3sE="
 102 set user "user01" "enable"
 103 set ike respond-bad-spi 1
 104 unset ike ikeid-enumeration
 105 unset ipsec access-session enable
 106 set ipsec access-session maximum 5000
 107 set ipsec access-session upper-threshold 0
 108 set ipsec access-session lower-threshold 0
 109 set ipsec access-session dead-p2-sa-timeout 0
 110 unset ipsec access-session log-error
 111 unset ipsec access-session info-exch-connected
 112 unset ipsec access-session use-error-log
 113 set av profile "scan-mgr"
 114 set ftp scan-mode  scan-all
 115 set ftp decompress-layer  2
 116 set http scan-mode  scan-all
 117 set imap scan-mode  scan-all
 118 set imap decompress-layer  2
 119 set pop3 scan-mode  scan-all
 120 set pop3 decompress-layer  2
 121 set smtp scan-mode  scan-all
 122 set smtp decompress-layer  2
 123 exit
 124 set url protocol websense
 125 exit
 126 set policy id 7 name "ipv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv6" "ANY" pe
 127 rmit
 128 set policy id 7 disable
 129 set policy id 7
 130 exit
 131 set policy id 1 from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "ANY" permit traffic
 132  mbw 100
 133 set policy id 1 disable
 134 set policy id 1
 135 exit
 136 set policy id 8 from "Untrust" to "Trust"  "Any-IPv6" "Any-IPv6" "ANY" permit
 137 set policy id 8 disable
 138 set policy id 8
 139 exit
 140 set policy id 9 from "Untrust" to "Trust"  "Any-IPv4" "Any-IPv4" "ANY" permit
 141 set policy id 9 disable
 142 set policy id 9
 143 exit
 144 set policy id 11 name "FTP" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "FTP" pe
 145 rmit no-session-backup traffic mbw 100
 146 set policy id 11 disable
 147 set policy id 11
 148 exit
 149 set policy id 12 name "TELNET" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "TELN
 150 ET" permit no-session-backup traffic mbw 100
 151 set policy id 12 disable
 152 set policy id 12
 153 exit
 154 set policy id 13 name "SSH" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "SSH" pe
 155 rmit no-session-backup traffic mbw 100
 156 set policy id 13 disable
 157 set policy id 13
 158 exit
 159 set policy id 14 name "HTTP" from "Trust" to "Untrust"  "Any-IPv4" "Any-IPv4" "HTTP"
 160 permit no-session-backup traffic mbw 100
 161 set policy id 14 disable
 162 set policy id 14
 163 exit
 164 set policy id 19 from "Trust" to "Untrust"  "Any-IPv6" "MIP(2001:738:10:1::/96)" "FTP
 165 " nat src dip-id 4 permit
 166 set policy id 19
 167 set service "HTTP"
 168 set service "SSH"
 169 set service "TELNET"
 170 exit
 171 set policy id 15 name "FTP-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv6" "FT
 172 P" permit no-session-backup traffic mbw 100
 173 set policy id 15 disable
 174 set policy id 15
 175 exit
 176 set policy id 16 name "TELNET-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv6"
 177 "TELNET" permit no-session-backup traffic mbw 100
 178 set policy id 16 disable
 179 set policy id 16
 180 exit
 181 set policy id 17 name "SSH-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv6" "SS
 182 H" permit no-session-backup traffic mbw 100
 183 set policy id 17 disable
 184 set policy id 17
 185 exit
 186 set policy id 18 name "HTTP-IPv6" from "Trust" to "Untrust"  "Any-IPv6" "Any-IPv6" "H
 187 TTP" permit no-session-backup traffic mbw 100
 188 set policy id 18 disable
 189 set policy id 18
 190 exit
 191 set monitor cpu 100
 192 set global-pro policy-manager primary outgoing-interface untrust
 193 set global-pro policy-manager secondary outgoing-interface untrust
 194 set nsmgmt bulkcli reboot-timeout 60
 195 set ssh version v2
 196 set config lock timeout 5
 197 set ntp server "0.0.0.0"
 198 set ntp server backup1 "0.0.0.0"
 199 set ntp server backup2 "0.0.0.0"
 200 set modem speed 115200
 201 set modem retry 3
 202 set modem interval 10
 203 set modem idle-time 10
 204 set snmp port listen 161
 205 set snmp port trap 162
 206 set vrouter "untrust-vr"
 207 exit
 208 set vrouter "trust-vr"
 209 unset add-default-route
 210 set route 0.0.0.0/0 gateway 192.168.51.2
 211 exit
 212 set vrouter "untrust-vr"
 213 exit
 214 set vrouter "trust-vr"
 215 exit
 216 ns5gt->

Attached Files

To refer to attachments on a page, use attachment:filename, as shown below in the list of files. Do NOT use the URL of the [get] link, since this is subject to change and can break easily.
  • [get | view] (2007-11-06 16:55:39, 6.9 KB) [[attachment:ipv4_ipv6_config.txt]]
  • [get | view] (2007-11-06 16:50:23, 19.5 KB) [[attachment:ipv4_ipv6_dip.png]]
  • [get | view] (2007-11-06 17:00:22, 7.8 KB) [[attachment:ipv4_ipv6_ftp.png]]
  • [get | view] (2007-11-06 17:03:10, 19.1 KB) [[attachment:ipv4_ipv6_http.png]]
  • [get | view] (2007-11-06 16:57:00, 27.5 KB) [[attachment:ipv4_ipv6_ipv4side.cap]]
  • [get | view] (2007-11-06 16:56:18, 34.5 KB) [[attachment:ipv4_ipv6_ipv6side.cap]]
  • [get | view] (2007-11-06 16:49:12, 22.2 KB) [[attachment:ipv4_ipv6_mip.png]]
  • [get | view] (2007-11-06 16:47:35, 54.8 KB) [[attachment:ipv4_ipv6_network.png]]
  • [get | view] (2007-11-06 16:54:10, 83.7 KB) [[attachment:ipv4_ipv6_policy.png]]
  • [get | view] (2007-11-06 17:08:24, 81.3 KB) [[attachment:ipv4_ipv6_policy2.png]]
  • [get | view] (2007-11-06 17:01:16, 6.7 KB) [[attachment:ipv4_ipv6_ssh.png]]
  • [get | view] (2007-11-06 16:52:12, 29.3 KB) [[attachment:ipv4_ipv6_static.png]]
  • [get | view] (2007-11-06 16:59:17, 6.5 KB) [[attachment:ipv4_ipv6_telnet.png]]
  • [get | view] (2007-11-06 16:00:24, 8.0 KB) [[attachment:ipv6_ftp.png]]
  • [get | view] (2007-11-06 16:03:28, 7.9 KB) [[attachment:ipv6_http.png]]
  • [get | view] (2007-11-06 16:28:15, 7.2 KB) [[attachment:ipv6_ipv4_config.txt]]
  • [get | view] (2007-11-06 16:17:40, 26.5 KB) [[attachment:ipv6_ipv4_dip.png]]
  • [get | view] (2007-11-06 16:32:14, 6.7 KB) [[attachment:ipv6_ipv4_ftp.png]]
  • [get | view] (2007-11-06 16:34:41, 8.4 KB) [[attachment:ipv6_ipv4_http.png]]
  • [get | view] (2007-11-06 16:36:52, 25.1 KB) [[attachment:ipv6_ipv4_ipv4side.cap]]
  • [get | view] (2007-11-06 16:36:10, 26.8 KB) [[attachment:ipv6_ipv4_ipv6side.cap]]
  • [get | view] (2007-11-06 16:15:10, 22.6 KB) [[attachment:ipv6_ipv4_mip.png]]
  • [get | view] (2007-11-06 16:13:52, 58.2 KB) [[attachment:ipv6_ipv4_network.png]]
  • [get | view] (2007-11-06 16:25:20, 82.0 KB) [[attachment:ipv6_ipv4_policy_config.png]]
  • [get | view] (2007-11-06 17:12:28, 30.8 KB) [[attachment:ipv6_ipv4_policy_config2.png]]
  • [get | view] (2007-11-06 16:33:51, 6.6 KB) [[attachment:ipv6_ipv4_ssh.png]]
  • [get | view] (2007-11-06 16:19:05, 31.9 KB) [[attachment:ipv6_ipv4_static.png]]
  • [get | view] (2007-11-06 16:30:34, 6.6 KB) [[attachment:ipv6_ipv4_telnet.png]]
  • [get | view] (2007-11-06 16:01:50, 6.8 KB) [[attachment:ipv6_ssh.png]]
  • [get | view] (2007-11-06 15:59:42, 6.8 KB) [[attachment:ipv6_telnet.png]]
  • [get | view] (2007-11-06 15:52:57, 53.7 KB) [[attachment:ipv6_test.cap]]
  • [get | view] (2007-11-06 15:52:21, 6.9 KB) [[attachment:netscreen_config_ipv6_firewall.txt]]
  • [get | view] (2007-11-06 15:44:40, 49.2 KB) [[attachment:teszt_halo.png]]
  • [get | view] (2007-11-06 15:49:40, 30.9 KB) [[attachment:teszt_halo_netscreen_config.png]]
  • [get | view] (2007-11-06 15:50:58, 44.0 KB) [[attachment:teszt_halo_netscreen_config_enable.png]]
 All files | Selected Files: delete move to page copy to page

You are not allowed to attach a file to this page.