=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2009.11.10 15:28:52 =~=~=~=~=~=~=~=~=~=~=~= sh run Building configuration... Current configuration : 18176 bytes ! upgrade fpd auto version 12.2 service timestamps debug uptime service timestamps log uptime no service password-encryption service internal service counters max age 5 ! hostname c6513-CoreA ! boot-start-marker boot system disk0:s72033-adventerprise_wan-mz.122-33.SXI2a.bin boot system sup-bootdisk:s72033-adventerprisek9_wan-mz.122-33.SXI2a.bin boot-end-marker ! security passwords min-length 1 enable secret 5 $1$g2P5$X7vs2TXeJYl99z7VHUa/X1 ! no aaa new-model clock timezone PST -8 svclc vlan-group 1 2,10,11,100,110,120,130,140,200,210,220,230,240,300,310 svclc vlan-group 1 320,330,340 firewall module 1 vlan-group 1 ip subnet-zero ! ! ! no ip domain-lookup ipv6 mfib hardware-switching replication-mode ingress no mls acl tcam share-global mls netflow interface mls cef error action freeze ! ! ! ! ! ! ! ! spanning-tree mode rapid-pvst spanning-tree extend system-id spanning-tree vlan 1-2,100,110,120,130,140,150,200,210,220,230 priority 24576 spanning-tree vlan 240,250 priority 24576 diagnostic bootup level minimal ! redundancy main-cpu auto-sync running-config mode sso ! vlan internal allocation policy ascending vlan access-log ratelimit 2000 ! ! ! ! interface FastEthernet3/48 switchport switchport access vlan 100 ! ! interface Vlan150 ip address 172.30.5.2 255.255.255.0 ip irdp ip irdp maxadvertinterval 20 ip irdp minadvertinterval 15 ip irdp holdtime 60 ip irdp address 172.30.5.1 1 standby 0 ip 172.30.5.1 !interface Vlan250 no ip address shutdown ! interface Vlan252 ip address 10.210.36.2 255.255.255.0 ! ip classless ip route 0.0.0.0 0.0.0.0 10.210.36.1 ip route 172.30.2.0 255.255.255.224 10.0.2.3 ! ! no ip http server ! ! ! ! control-plane ! ! dial-peer cor custom ! ! ! ! line con 0 line vty 0 4 exec-timeout 60 0 password cisco login line vty 5 10 password cisco login line vty 11 15 login ! ! ! end c6513-CoreA# session slot 1 p1  1 The default escape character is Ctrl-^, then x. You can also type 'exit' at the remote prompt to end the session Trying 127.0.0.11 ... Open User Access Verification Password: Type help or '?' for a list of available commands. FWSM-Core-A# sh run : Saved : FWSM Version 4.0(6) ! hostname FWSM-Core-A domain-name default.domain.invalid enable password 8Ry2YjIyt7RRXU24 encrypted names dns-guard ! interface Vlan2 nameif outside security-level 100 ip address 10.0.2.3 255.255.255.0 ! interface Vlan10 description LAN Failover Interface ! interface Vlan11 description STATE Failover Interface ! interface Vlan100 nameif Traffic-Ctrl(LanA) security-level 0 ip address 172.30.2.1 255.255.255.224 standby 172.30.2.2 ! interface Vlan110 nameif Planner(OTP)LanA security-level 0 ip address 172.30.1.129 255.255.255.128 standby 172.30.1.130 ! interface Vlan120 nameif UPWEB(LANA) security-level 0 ip address 172.30.2.33 255.255.255.224 standby 172.30.2.34 ! interface Vlan130 nameif UPGlobalNetLanA security-level 0 ip address 172.30.2.65 255.255.255.224 standby 172.30.2.66 ! interface Vlan140 nameif CodelineLANA security-level 0 ip address 172.30.2.129 255.255.255.192 standby 172.30.2.130 ! interface Vlan200 nameif TrafficControlLanB security-level 0 ip address 172.30.5.1 255.255.255.224 standby 172.30.5.2 ! interface Vlan210 nameif PlannerOTBLanB security-level 0 ip address 172.30.4.129 255.255.255.128 standby 172.30.4.130 ! interface Vlan220 nameif UPWEBLanB security-level 0 ip address 172.30.5.33 255.255.255.224 standby 172.30.5.34 ! interface Vlan230 nameif UPGlobalNetLANB security-level 0 ip address 172.30.5.65 255.255.255.224 standby 172.30.5.66 ! interface Vlan240 nameif CodelineLanB security-level 0 ip address 172.30.5.129 255.255.255.128 standby 172.30.5.130 ! interface Vlan300 nameif DBActive security-level 0 ip address 172.30.4.1 255.255.255.248 standby 172.30.4.2 ! interface Vlan310 nameif DBStandby security-level 0 ip address 172.30.4.9 255.255.255.248 standby 172.30.4.10 ! interface Vlan320 nameif DBUpgrade security-level 0 ip address 172.30.4.17 255.255.255.248 standby 172.30.4.18 ! interface Vlan330 nameif DBGrid security-level 0 ip address 172.30.4.25 255.255.255.248 standby 172.30.4.26 ! interface Vlan340 nameif DBHistoric security-level 0 ip address 172.30.4.33 255.255.255.248 standby 172.30.4.34 ! passwd 2KFQnbNIdI.2KYOU encrypted ftp mode passive access-list IP-ANY-ANY extended permit ip any any pager lines 24 logging buffered debugging mtu outside 1500 mtu Traffic-Ctrl(LanA) 1500 mtu Planner(OTP)LanA 1500 mtu UPWEB(LANA) 1500 mtu UPGlobalNetLanA 1500 mtu CodelineLANA 1500 mtu TrafficControlLanB 1500 mtu PlannerOTBLanB 1500 mtu UPWEBLanB 1500 mtu UPGlobalNetLANB 1500 mtu CodelineLanB 1500 mtu DBActive 1500 mtu DBStandby 1500 mtu DBUpgrade 1500 mtu DBGrid 1500 mtu DBHistoric 1500 failover failover lan unit primary failover preempt failover lan interface faillink Vlan10 failover replication http failover link statelink Vlan11 failover interface ip faillink 192.168.253.1 255.255.255.252 standby 192.168.253.2 failover interface ip statelink 192.168.253.5 255.255.255.252 standby 192.168.253.6 monitor-interface outside monitor-interface Traffic-Ctrl(LanA) monitor-interface Planner(OTP)LanA monitor-interface UPWEB(LANA) monitor-interface UPGlobalNetLanA monitor-interface CodelineLANA monitor-interface TrafficControlLanB monitor-interface PlannerOTBLanB monitor-interface UPWEBLanB monitor-interface UPGlobalNetLANB monitor-interface CodelineLanB monitor-interface DBActive monitor-interface DBStandby monitor-interface DBUpgrade monitor-interface DBGrid monitor-interface DBHistoric icmp permit any outside icmp permit any Traffic-Ctrl(LanA) icmp permit any TrafficControlLanB no asdm history enable arp timeout 14400 access-group IP-ANY-ANY in interface outside access-group IP-ANY-ANY out interface outside route outside 0.0.0.0 0.0.0.0 10.0.2.1 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout sip-invite 0:03:00 sip-disconnect 0:02:00 timeout uauth 0:05:00 absolute username cisco password 3USUcOPFUiMCO4Jk encrypted privilege 15 http server enable http 10.0.2.0 255.255.255.0 outside no snmp-server location no snmp-server contact snmp-server enable traps snmp authentication linkup linkdown coldstart service reset no-connection telnet timeout 5 ssh timeout 5 console timeout 0 ! class-map inspection_default match default-inspection-traffic ! ! policy-map global_policy class inspection_default inspect dns maximum-length 512 inspect ftp inspect h323 h225 inspect h323 ras inspect netbios inspect rsh inspect skinny inspect smtp inspect sqlnet inspect sunrpc inspect tftp inspect sip inspect xdmcp ! service-policy global_policy global prompt hostname context Cryptochecksum:9f9c32e4528f76c8540e99dd7dbfae5e : end FWSM-Core-A#