ASA Version 8.2(3) ! hostname cisco-asa domain-name domain.org ! names name 10.165.11.13 ad01 description Domain controller name 10.165.11.6 ad02 description Domain controller name 216.14.79.32 A-216.14.79.32 description Bulloch Net local name 216.14.79.33 A-216.14.79.33 description Bulloch Net internal name 216.14.79.34 A-216.14.79.34 description ASA public name 10.165.11.0 inside-network1 description Scope 1 name 10.165.21.0 inside-network2 description Scope 2 ! interface Ethernet0/0 nameif outside security-level 0 ip address A-oo.oo.79.34 255.255.255.224 ! interface Ethernet0/1 nameif inside1 security-level 100 ip address 10.165.11.1 255.255.255.0 ! interface Ethernet0/1.2 vlan 1 nameif inside2 security-level 100 ip address 10.165.21.1 255.255.255.0 ! interface Ethernet0/2 nameif dmz security-level 70 ip address 10.165.10.1 255.255.255.0 ! interface Ethernet0/3 shutdown no nameif no security-level no ip address ! interface Management0/0 nameif management security-level 100 ip address 192.168.1.1 255.255.255.0 management-only ! dns domain-lookup outside dns domain-lookup inside1 dns domain-lookup inside2 dns domain-lookup dmz dns domain-lookup management dns server-group DefaultDNS name-server ad01 name-server ad02 domain-name domain.org ! same-security-traffic permit inter-interface same-security-traffic permit intra-interface ! access-list inside_access_in extended permit ip any any access-list inside_access_in_1 extended permit ip any any access-list dmz_to_inside extended deny ip any inside-network1 255.255.255.0 access-list dmz_to_inside extended deny ip any inside-network2 255.255.255.0 access-list dmz_to_inside extended permit ip any any ! nat-control global (outside) 1 interface global (dmz) 1 10.165.10.55-10.165.10.189 netmask 255.255.255.0 nat (inside1) 1 0.0.0.0 0.0.0.0 dns nat (inside2) 1 0.0.0.0 0.0.0.0 dns nat (dmz) 1 0.0.0.0 0.0.0.0 dns ! access-group outside_access_in in interface outside access-group inside_access_in_1 in interface inside1 access-group dmz_to_inside in interface dmz route outside 0.0.0.0 0.0.0.0 A-oo.oo.79.33 1 ! dhcprelay server ad01 inside1 dhcprelay setroute inside2