- 论坛徽章:
- 0
|
我的配置如下。
现在从我的PIX可以ping我内网的194.128.50.249这台PC.
可是,从我的PC却ping不通PIX的外口:192.168.51.241
请问:我想从PC往外面ping,需要做什么配置啊?
另外,从外网ping我的PC,还需要改那些?
User Access Verification
Password:
Type help or '?' for a list of available commands.
winfirewall> en
Password:
winfirewall# show run
: Saved
:
PIX Version 7.0(6)
!
hostname winfirewall
domain-name win
enable password 8Ry2YjIyt7RRXU24 encrypted
names
dns-guard
!
interface Ethernet0
description to BSNL
nameif outside
security-level 0
ip address 192.168.51.241 255.255.255.0
!
interface Ethernet1
nameif inside
security-level 100
ip address 194.128.50.253 255.255.248.0
!
passwd 2KFQnbNIdI.2KYOU encrypted
ftp mode passive
pager lines 24
mtu outside 1500
mtu inside 1500
no failover
no asdm history enable
arp timeout 14400
static (inside,outside) 218.248.68.170 194.128.50.249 netmask 255.255.255.255
route outside 0.0.0.0 0.0.0.0 192.168.51.100 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00
timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
telnet 194.128.48.0 255.255.248.0 inside
telnet timeout 5
ssh timeout 5
console timeout 0
!
class-map inspection_default
match default-inspection-traffic
!
!
policy-map global_policy
class inspection_default
inspect dns maximum-length 512
inspect ftp
inspect h323 h225
inspect h323 ras
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
!
service-policy global_policy global
Cryptochecksum:c7551863e326fff2ecc70ea35ef3ce7d
: end
winfirewall#
winfirewall# ping 194.128.50.249
Sending 5, 100-byte ICMP Echos to 194.128.50.249, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms
winfirewall# |
|
免费注册
发表于 2008-03-19 14:24
发表于 2008-03-19 15:35
