取消
显示结果 
搜索替代 
您的意思是: 
cancel
3197
查看次数
0
有帮助
2
回复

关于ASA的DNS 功能

savi_bj
Level 1
Level 1
各位:
帮我看看?
ASA的DNS rewrite功能。但是 还是内网还是无法访问,还需要做什么?
access-list icmp extended permit tcp any host 124.193.196.174 eq 3001
static (inside,outside) tcp interface 3001 192.168.20.200 3001 netmask 255.255.255.255 dns tcp 3001 0
access-group icmp in interface outside
还是 内网 还是访问不了呢?
2 条回复2

Rockyw
Spotlight
Spotlight
本帖最后由 Rocky 于 2018-4-2 14:10 编辑
楼主可以参考一下:
ASA DNS Modification is not working on 8.4(3)
https://supportforums.cisco.com/ ... -8-4-3/td-p/2008569
Solved: DNS rewrite not working
https://supportforums.cisco.com/ ... orking/td-p/2462333
Cisco ASA – DNS Doctoring
https://www.petenetlive.com/KB/Article/0001113
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rockyw | If it solves your problem, please mark as answer. Thanks !

savi_bj
Level 1
Level 1
Hairpinning NAT
same-security-traffic permit intra-interface #启用Hairpinning功能,允许流量直接原路径返回。
static (inside,outside) 22.22.22.22 192.168.1.1 netmask 255.255.255.255
static (inside,inside) 22.22.22.22 192.168.1.1 netmask 255.255.255.255 #流量返回路径定义NAT映射
access-list web_in extended permit tcp any host 8.8.8.8 eq 80 #对外发布服务
access-group web_in in interface outside #应用到外部接口
入门指南

使用上面的搜索栏输入关键字、短语或问题,搜索问题的答案。

我们希望您在这里的旅程尽可能顺利,因此这里有一些链接可以帮助您快速熟悉思科社区:









快捷链接