Netgear FVS318v2 – Cable/DSL ProSafe VPN Firewall with 8-Port Switch 参考手册
Reference Manual for the Model FVS318 Broadband ProSafe VPN Firewall
NETGEAR VPN Configuration FVS318 or FVM318 to Cisco IOS
F-7
M-10146-01
interface Ethernet0
ip address 22.23.24.25 255.255.255.0
ip nat outside
half-duplex
crypto map netgearmap
!
interface FastEthernet0
ip address 172.23.9.1 255.255.255.0
ip nat inside
speed auto
!
interface Serial0
no ip address
shutdown
!
ip nat inside source route-map NONAT interface Ethernet0 overload ip
classless ip route 0.0.0.0 0.0.0.0 22.23.24.25 no ip http server ip pim
bidir-enable!
! access-list 110 remark except the private network from that nat rule
access-list 110 deny ip 172.23.9.1 0.0.0.15 10.5.6.0 0.0.0.255
access-list 110 permit ip 172.23.9.1 0.0.0.15 any access-list 115 remark
INCLUDE PRIVATE NETWORK TO PRIVATE NETWORK IN VPN TUNNEL access-list 115
permit ip 172.23.9.1 0.0.0.15 10.5.60 0.0.0.255! route-map NONAT permit
10 match ip address 110! ! line con 0 line aux 0 line vty 0 4 password
pctg5tcd3 login! no scheduler allocate end
ip address 22.23.24.25 255.255.255.0
ip nat outside
half-duplex
crypto map netgearmap
!
interface FastEthernet0
ip address 172.23.9.1 255.255.255.0
ip nat inside
speed auto
!
interface Serial0
no ip address
shutdown
!
ip nat inside source route-map NONAT interface Ethernet0 overload ip
classless ip route 0.0.0.0 0.0.0.0 22.23.24.25 no ip http server ip pim
bidir-enable!
! access-list 110 remark except the private network from that nat rule
access-list 110 deny ip 172.23.9.1 0.0.0.15 10.5.6.0 0.0.0.255
access-list 110 permit ip 172.23.9.1 0.0.0.15 any access-list 115 remark
INCLUDE PRIVATE NETWORK TO PRIVATE NETWORK IN VPN TUNNEL access-list 115
permit ip 172.23.9.1 0.0.0.15 10.5.60 0.0.0.255! route-map NONAT permit
10 match ip address 110! ! line con 0 line aux 0 line vty 0 4 password
pctg5tcd3 login! no scheduler allocate end