[Original] firewall installation configuration (log)

Device Model: Cisco PIX 515e
Status Quo and requirements: The network is located in the enterprise intranet, and the IP addresses have been uniformly allocated to each device. For simplicity, set the firewall to the Bridge Mode. external devices can only access two servers in the network, and all internal settings can access external devices.
Procedure:
1. Hardware connection (omitted)
2. Use wondows's own Super Terminal to set the connection configuration as default and connect to the firewall.
3. Set the firewall mode to transparent.
4. Set the user name and password to grant the highest permission.
5. Set the IP address of the device. Note that the IP addresses of ethernet0 and ethernet1 cannot be set in current mode.
6. Open the firewall web service. Set the IP address that allows access to the firewall through the Web.

7. Use a machine with access to the firewall web, access the firewall, and run asdm.
8. log on to the firewall with the username and password you just set
9. set various rules on the Rule Page.
(End)

The configuration is as follows:
PIX version 7.0 (6)
!
Firewall transparent
Hostname pixfirewall
Domain-Name default. domain. Invalid
Enable Password 8ry2yjiyt7rrxu24 encrypted
Names
DNS-guard
!
Interface ethernet0
Nameif outside
Security-level 0
!
Interface ethernet1
Nameif inside
Security-Level 100
!
Passwd 2kfqnbnidi. 2 kyou encrypted
Ftp mode passive
Access-list outside_access_in remark Webserver
Access-list outside_access_in extended permit IP any host 10.43.94.99
Access-list outside_access_in remark dbserver
Access-list outside_access_in extended permit IP any host 10.43.94.110
Access-list outside_access_in extended permit IP any host 10.43.94.150
Access-list outside_access_in extended deny ip any 10.43.94.0 255.255.255.0
Access-list inside_access_in extended permit IP 10.43.94.0 255.255.255.0 any
Access-list inside_access_in remark Ping
Access-list inside_access_in extended permit ICMP 10.43.94.0 255.255.255.0 any
Pager lines 24
MTU outgoing side 1500
MTU inside 1500
IP address 10.43.94.252 255.255.255.0
Asdm image FLASH:/asdm
No asdm history enable
ARP timeout 14400
Access-group outside_access_in in interface outside
Access-group inside_access_in interface inside
Route outside 0.0.0.0 0.0.0.0 10.43.94.254 1
Timeout Xlate 3:00:00
Timeout conn 1:00:00 half-closed 0:10:00 UDP 0:02:00 ICMP 0:00:02
Timeout SunRPC 0:10:00 h323 0:05:00 h225 1:00:00 MGCP 0:05:00
Timeout MGCP-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
Timeout uauth 0:05:00 absolute
Username Cisco password 3usucopfuimco4jk encrypted privilege 15
HTTP server enable
HTTP 10.43.94.0 255.255.255.0 inside
No SNMP-server contact
SNMP-server enable traps SNMP Authentication linkup linkdown coldstart
Telnet timeout 5
SSH timeout 5
Console timeout 0
!
Class-map inspection_default
Match default-inspection-traffic
!
!
Policy-map global_policy
Class inspection_default
Inspect DNS maximum-length 512
Inspect FTP
Inspect h323 h225
Inspect h323 RAS
Inspect RSH
Inspect RTSP
Inspect ESMTP
Inspect sqlnet
Inspect skinny
Inspect SunRPC
Inspect XDMCP
Inspect sip
Inspect Netbios
Inspect TFTP
!
Service-policy global_policy global
Cryptochecksum: 94d515d07ed094919f692f00408a288c
: End