pix 的版本信息:, U$ F3 W% k& h: M( }) }
Cisco PIX Security Appliance Software Version 7.0(4) " i& ~, D& L# V, I( J
Device Manager Version 5.0(1)
; t& F& \* d3 f8 ]/ L. j3 J
/ {4 N6 l6 T& U" LCompiled on Thu 13-Oct-05 21:43 by builders
$ C) o9 ], J) Y& R7 X+ H* U2 \System image file is "flash:/pix704.bin"; `" j U1 ^) }" R$ U
Config file at boot was "startup-config"
: f3 w" @6 B3 E! N" P9 ^, }8 Q4 F2 u+ }- ]( x# e
ecit up 2 days 22 hours8 k9 t6 f) ~7 p- h' O* Y
; q# } F C% Q" u; t
Hardware: PIX-525, 128 MB RAM, CPU Pentium III 600 MHz7 n7 y, m2 A# m3 n, c' S( N
Flash E28F128J3 @ 0xfff00000, 16MB
' Z" w* v+ Y& e+ OBIOS Flash AM29F400B @ 0xfffd8000, 32KB8 x/ Y) d: l- i* U9 _# D
3 j" B" `+ G# F, T
0: Ext: Ethernet0 : address is 0006.d75c.e6b4, irq 106 C# W0 \$ S0 P+ O% ^/ s' B
1: Ext: Ethernet1 : address is 0006.d75c.e6b5, irq 11
- \6 ^5 B: T4 Z7 L) F, K7 x 2: Ext: GigabitEthernet0 : address is 000e.0c21.a873, irq 10
: e; o: z1 x7 Q7 n* P9 d6 L 3: Ext: GigabitEthernet1 : address is 000e.0c21.a96b, irq 5
2 \0 l" g$ q$ j! Y8 p3 Z# x0 s7 ^3 `# e! M* {; e
Licensed features for this platform:" z+ j- W! P" a
Maximum Physical Interfaces : 6
4 }+ }1 B! b) S) M: S t: JMaximum VLANs : 25
- K2 z3 W& Y' p4 e3 Q5 a9 N+ _+ EInside Hosts : Unlimited 7 ~& \/ j! N" M! Z- X) S
Failover : Disabled
d& e( I: K x& w' TVPN-DES : Enabled
" c2 d7 B8 r9 C5 fVPN-3DES-AES : Disabled : k9 G, i6 f$ z* ? o
Cut-through Proxy : Enabled
* L0 p+ q/ i1 R+ @Guards : Enabled
$ p2 ?' M; q/ EURL Filtering : Enabled ) D8 G. G2 r# @# Z- Y
Security Contexts : 0 2 L; ]' ^0 a- \! k
GTP/GPRS : Disabled
' G1 ]. {/ Q- E" k) fVPN Peers : Unlimited ! D2 Z( d% @1 Z/ h% _& n
* o% j0 {0 h* M. ~+ Z e4 h4 R& M: EThis platform has a Restricted (R) license.6 ]* O5 K5 M2 z1 P1 v9 ?3 u
% ] h7 d6 g3 ]8 \" Y7 _# hSerial Number: 405311148
, Y8 M$ a8 T3 _Running Activation Key: 0x4e5e6010 0x3e64bb85 0x23bd2e6e 0x0df2c851
" a7 y, g ^: E* t& w8 WConfiguration last modified by enable_15 at 20:08:00.356 UTC Mon Jun 26 2006
: _6 c3 A$ s5 D" G, d M# x& x+ v# g( _: g% [' o
vpn配置信息:
% w+ z8 c/ B# i+ m1 Saccess-list nonat extended permit ip 172.16.255.20 255.255.255.252 10.1.1.0 255.255.255.0
( k6 L9 O6 A+ ?5 u& B9 `; S% Saccess-list split standard permit 10.1.1.0 255.255.255.0
; L, y, q* \& s: l" e- f& x+ Znat (inside2) 0 access-list nonat
# }5 d$ `5 P" E4 T0 Fgroup-policy test internal
9 A4 V* | }* T3 t; vgroup-policy test attributes& k+ [7 D: l" C6 O& U" s% h
dns-server value 202.101.224.69
5 a) _) k' ^ `0 I7 b { [% z1 Z. U6 n6 @ split-tunnel-policy tunnelspecified' I H8 W! v5 \
split-tunnel-network-list value split
+ r5 c4 x# R6 Nusername testuser password IqY6lTColo8VIF24 encrypted
& P! |5 A# ?2 o( o/ L2 Iusername testvpn password WDnnelLwaGzjjP0y encrypted privilege 01 g4 B6 D4 p1 Z2 B) \, L
no sysopt connection permit-ipsec' n/ k! Y7 h7 n. k9 D+ Z! d& E) N
crypto ipsec transform-set test esp-des esp-sha-hmac 6 k& q0 P; g1 k) {7 r* Z6 ~( b
crypto dynamic-map mymap 10 set transform-set test
4 K$ q! o7 w: z) ^4 f2 Ocrypto map test 10 ipsec-isakmp dynamic mymap2 C3 z' P$ i. {5 @# o" F! w5 O9 o
crypto map test interface outside2
5 }) c. {2 |6 p# X1 Zisakmp enable outside2
& t4 `' A2 P2 v" t2 x9 y1 _% wisakmp policy 20 authentication pre-share
6 ]% ~( d5 G5 U7 d# Bisakmp policy 20 encryption des
& C, h' v! C1 kisakmp policy 20 hash sha8 L- Q( r# ^/ \, z3 w. X- ^
isakmp policy 20 group 2- D) g* L% Z% M, ~) A& X }2 X( D% i
isakmp policy 20 lifetime 3600
% B# M6 F. M2 ~* Cisakmp policy 65535 authentication pre-share
* h2 ~; ^% m6 visakmp policy 65535 encryption des
3 q0 |- Q3 a% M ^% H( R, {isakmp policy 65535 hash sha
- E# x" w. V6 `4 q" k9 aisakmp policy 65535 group 2
3 y: P* W0 A( M! W" E6 f6 t1 z+ ~isakmp policy 65535 lifetime 86400
( F( }* L1 z, ^9 _% n- l2 |: Nisakmp nat-traversal 20
5 E8 R1 ]* C# Rgroup-delimiter !; }0 Q/ Q; W) q
tunnel-group test type ipsec-ra7 K. \' u5 V+ Y8 O3 N7 Y2 @$ _
tunnel-group test general-attributes
! R, C8 C0 F5 Z. Q, x" B address-pool testpool
) q2 l, b7 I* d" {2 ^' } default-group-policy test& C6 t1 J) _0 s& f& P# R
tunnel-group test ipsec-attributes6 _" A4 @, m/ V2 k. w' B9 S
pre-shared-key ** S: f3 J9 Y; \, C
tunnel-group-map default-group test; e- s* L9 e8 L# L2 N
no vpn-addr-assign aaa
0 `+ g/ K) V8 u; kpix deb crypto isakmp 信息:9 E' z4 } Z' o5 F: L0 D2 s
Jun 26 20:09:44 [IKEv1]: Group = DefaultRAGroup, IP = 202.101.*.101, Error: Unable to remove PeerTblEntry
8 L* |+ `" }9 j3 R( q6 AJun 26 20:09:49 [IKEv1]: Group = DefaultRAGroup, IP = 202.101.*.101, Removing peer from peer table failed, no match!
; q% I1 C! g& L$ PJun 26 20:09:49 [IKEv1]: Group = DefaultRAGroup, IP = 202.101.*.101, Error: Unable to remove PeerTblEntry. T+ u& b/ V2 Y( f
Jun 26 20:09:54 [IKEv1]: Group = DefaultRAGroup, IP = 202.101.*.101, Removing peer from peer table failed, no match!
1 K" s. p+ `& ]* B g SJun 26 20:09:54 [IKEv1]: Group = DefaultRAGroup, IP = 202.101.*.101, Error: Unable to remove PeerTblEntry6 Z/ T. ~3 _. B
CISCO VPN CLIENT 4.8 信息:Invalid SPI size (PayloadNotify:116)
! q8 z# i( B r8 L: n, a6 A0 `
% ~+ K, A4 c! q5 n4 Z35 20:37:51.700 06/26/06 Sev=Warning/3 IKE/0xA3000058
& D' h3 f E; o; V- gReceived malformed message or negotiation no longer active (message id: 0x00000000)) D" A; v6 K$ S7 e5 S! ]
" Y. q. H$ }8 B, ~/ ?
36 20:37:56.867 06/26/06 Sev=Warning/2 IKE/0xE300009B
; _! @" @( @& G: N$ x. |Fragmented msg rcvd with no associated SA (PacketReceiver:133)' h, l' E6 f/ s+ @2 j: J) f- R
# e' o$ |( o+ B! M: A$ j: q37 20:37:56.867 06/26/06 Sev=Warning/2 IKE/0xE300009B
+ K/ s% ]8 I7 R( ^) \* jFragmented msg rcvd with no associated SA (PacketReceiver:4 d# q: p" ]: _. r+ x
都配置无数遍,都是出一样的错误+ z3 {, e+ q# Q% Q. u
我都快崩溃了,请各位帮帮忙!!!! |
|
所有IT类厂商认证考试题库下载
【新盟教育】2023最新华为HCIA全套视频合集【网工基础全覆盖】---国sir公开课合集
【新盟教育】网工小白必看的!2023最新版华为认证HCIA Datacom零基础全套实战课
原创_超融合自动化运维工具cvTools
重量级~~30多套JAVA就业班全套 视频教程(请尽快下载,链接失效后不补)
链接已失效【超过几百G】EVE 国内和国外镜像 全有了 百度群分享
某linux大佬,积累多年的电子书(约300本)
乾颐堂现任明教教主Python完整版
乾颐堂 教主技术进化论 2018-2019年 最新31-50期合集视频(各种最新技术杂谈视频)
Python学习视频 0起点视频 入门到项目实战篇 Python3.5.2视频教程 共847集 能学102天
约21套Python视频合集 核心基础视频教程(共310G,已压缩)
最新20180811录制 IT爱好者-清风羽毛 - 网络安全IPSec VPN实验指南视频教程
最新20180807录制EVE开机自启动虚拟路由器并桥接物理网卡充当思科路由器
[复制链接]
