防火墙一对一IP映射实例:
[precode] 进特权模式:enable
进全局配置模式:configure terminal
查看接口信息:show interface 接口号(特权)
取消命令:no
配置内部地址: object network NAS(实例名) host 10.98.2.60(内部IP)
配置端口转换: object network NAS(实例名) nat (inside,outside) static 1.119.4.139(外部IP) access-group 120 in interface outside
创建服务器组: object-group service DM_INLINE_SERVICE_3(组名) service-object udp destination eq 1701 service-object udp destination eq 4500 service-object tcp destination eq 5000 service-object tcp destination eq www service-object tcp destination eq smtp
acl放行服务器组: access-list 120 extended permit object-group DM_INLINE_SERVICE_3(组名) any object Nas(实例名)[/precode]
