һ.ͼֽ

¶þ.ÃüÁî

ciscoasa>

ciscoasa> en

ciscoasa# conf t

ciscoasa(config)# int e0/0

ciscoasa(config-if)# nameif outside

ciscoasa(config-if)# ip add 202.106.0.1 255.255.255.0

ciscoasa(config-if)# no sh

ciscoasa(config-if)# exit

ciscoasa(config)# int e0/1

ciscoasa(config-if)# nameif inside

ciscoasa(config-if)# ip add 10.0.0.2 255.255.255.252

ciscoasa(config-if)# no sh

ciscoasa(config-if)# exit

ÅäÖöÔÍâÍøµÄĬÈÏ·ÓÉ

ciscoasa(config)# route outside 0.0.0.0 0.0.0.0 202.106.0.2

ÅäÖöÔÄÚÍøµÄ¾²Ì¬Â·ÓÉ

ciscoasa(config)# route inside 192.168.1.0 255.255.255.0 10.0.0.1

ciscoasa(config)# route inside 192.168.2.0 255.255.255.0 10.0.0.1

ÅäÖà ¶¯Ì¬nat  ½«ÄÚÍøÁ©¸öÍø¶Îת»»µ½ ÍâÍø 202.106.0.10-202.106.0.20 µÄµØÖ··¶Î§ÄÚ

ciscoasa(config)# nat (inside) 1 192.168.0.0 255.255.0.0

ciscoasa(config)# global (outside) 1 202.106.0.10-202.106.0.20

²é¿´nat ת»»

ciscoasa(config)# exit

ciscoasa# show xlate detail

ciscoasa# conf t

ɾ³ý¶¯Ì¬ nat ÅäÖà ¶¯Ì¬pat   ½«ÄÚÍøµØַת»»µ½ ÍâÍø 202.106.0.100 µÄµØÖ·ÉÏ

ciscoasa(config)# no global (outside) 1 202.106.0.10-202.106.0.20

ciscoasa(config)# global (outside) 1 202.106.0.100

ɾ³ý¶¯Ì¬ nat ÅäÖà ¶¯Ì¬pat   ½«ÄÚÍøµØַת»»µ½ ·À»ðǽÍâÍø½Ó¿ÚµØÖ·ÉÏ

ciscoasa(config)# no global (outside) 1 202.106.0.100

ciscoasa(config)# global (outside) 1 interface

ciscoasa(config)# exit

ciscoasa#