ns25做NAT转换问题,
ns25-> get config all $+��r?'eR
Total Config size 4427: %F*_n�_.��
set clock timezone 0 :xvZ5v�i"J
set vrouter trust-vr sharable �N-�KI-�YS
unset vrouter "trust-vr" auto-route-export xE%�=YzseH
set auth-server "Local" id 0 zGfaM�wpd
set auth-server "Local" server-name "Local" �D���I+v[%
set auth default auth server "Local" R�u? gKR3�
set admin name "netscreen" q/=Xyb8)^|
set admin password "nC8pOqr8EloIcC3OgsPKzINtW4GtSn" �r&>@,N)d
set admin auth timeout 10 +]L<KH'O�=
set admin auth server "Local" n 2�o! ;}@
set admin format dos �?Z�zX(+tJ
set zone "Trust" vrouter "trust-vr" 6v�biTboQf
set zone "Untrust" vrouter "trust-vr" ?*-C�njJyw
set zone "DMZ" vrouter "trust-vr" Q�:P�N��u0
set zone "VLAN" vrouter "trust-vr" R,o�]X5;^*
set zone "Trust" tcp-rst Y �iPRlnfh
set zone "Untrust" block &� VoZ��Fg
unset zone "Untrust" tcp-rst �_T*a*:>�n
set zone "MGT" block !;1�B�0�5$
set zone "DMZ" tcp-rst x�{,u@dVCM
set zone "VLAN" block l�.`Vy:�[?
--- more --- U!m;B��n
set zone "VLAN" tcp-rst ?�)EU9_Ji
set zone "Untrust" screen tear-drop j��s� V+!-
set zone "Untrust" screen syn-flood Tvrs%�qBi�
set zone "Untrust" screen ping-death pH�9�y^�bh
set zone "Untrust" screen ip-filter-src *�tP9}JDbR
set zone "Untrust" screen land :B�hh�U$�
set zone "V1-Untrust" screen tear-drop ?(Ur:wIfM
set zone "V1-Untrust" screen syn-flood &f2<^ $^q?
set zone "V1-Untrust" screen ping-death ���z?�;.q�
set zone "V1-Untrust" screen ip-filter-src 3hHy8: :��
set zone "V1-Untrust" screen land &jSQRS#�3�
set interface "ethernet1" zone "Trust" Fl6`�0 MU
set interface "ethernet2" zone "DMZ" lR+za�rp7.
set interface "ethernet3" zone "Untrust" (x]G 4��iO
unset interface vlan1 ip D`��z.t+�4
set interface ethernet1 ip 192.168.1.1/24 L+t�.o\<K�
set interface ethernet1 nat <*�:;"4A 8
set interface ethernet3 ip 192.168.0.254/24 b+yf=�(�u
set interface ethernet3 route ��T�*�-`9N
unset interface vlan1 bypass-others-ipsec ZU �Cl~q�}
unset interface vlan1 bypass-non-ip =-i��ZV3bf
set interface ethernet1 manage-ip 192.168.1.2 ,>'�|V3n�4
--- more --- !�Koqt^�5X
unset interface ethernet1 ip manageable /d1r� c?g!
set interface ethernet3 ip manageable mPZ]R�'T@K
set interface ethernet1 manage ping �]�)dW}N-/
set interface ethernet1 manage ssh ]pV'K]JX*
set interface ethernet1 manage telnet Jgn@q5N=S*
set interface ethernet1 manage snmp Z�T:eb8P2V
set interface ethernet1 manage ssl @D1��@zWH!
set interface ethernet1 manage web K&0Da4P�hn
unset interface ethernet1 manage ident-reset Jaw�!�1R>�
set interface ethernet2 manage ping �dHH [^t2W
unset interface ethernet2 manage ssh PbUM:�E.@L
unset interface ethernet2 manage telnet �]�\*��)Lv
unset interface ethernet2 manage snmp \gunz�ho@"
unset interface ethernet2 manage ssl &�34i]Z�4A
unset interface ethernet2 manage web �vi�9o�aav
unset interface ethernet2 manage ident-reset 8{&��+_E<
set interface ethernet3 manage ping �NV87�4+�M
set interface ethernet3 manage ssh �:]E<e� !=
set interface ethernet3 manage telnet o<3�p`K>>}
set interface ethernet3 manage snmp �k a/=[h@_
set interface ethernet3 manage ssl C/wN��!*wG
set interface ethernet3 manage web ,hCd�Y1yi$
--- more --- GGDf�|�1��
unset interface ethernet3 manage ident-reset A3mv��)\3Y
unset interface hidden.1 manage ping 9�V {j)V`j
unset interface hidden.1 manage ssh �N�'*�oWj�
unset interface hidden.1 manage telnet N�@+)<lq�?
unset interface hidden.1 manage snmp p �cx�seG|
unset interface hidden.1 manage ssl J� c1O5@
unset interface hidden.1 manage web R�b@_��[�q
unset interface hidden.1 manage ident-reset S dFlA�=~
unset interface self manage ping ~�.>�\AK^
unset interface self manage ssh d�L'W4lvS-
unset interface self manage telnet e�wq� Tlw
unset interface self manage snmp c&3| ��a�
unset interface self manage ssl �Sn�vwS�{s
unset interface self manage web Z�i�- "cB
unset interface self manage ident-reset o�{�7Cb�VW
set interface vlan1 manage ping [H�)0m(v(i
set interface vlan1 manage ssh hC��U{lJV
set interface vlan1 manage telnet ��>9$&,6\
set interface vlan1 manage snmp AgW^S�ARj�
set interface vlan1 manage ssl y`h�vB�H��
set interface vlan1 manage web tymt;h�++%
unset interface vlan1 manage ident-reset T 7bM8 o\�
--- more --- pR.^53G{aD
set zone V1-Trust manage ping Jzk�!6 d9Q
set zone V1-Trust manage ssh k0�Ila SP`
set zone V1-Trust manage telnet @j:�m1�c^�
set zone V1-Trust manage snmp "$�?Z `� C
set zone V1-Trust manage ssl Tey"znT4�7
set zone V1-Trust manage web NWPN�v�_m
unset zone V1-Trust manage ident-reset ;M/jd0#9V=
unset zone V1-Untrust manage ping v /H[FJ OC
unset zone V1-Untrust manage ssh qM4mn3N|9�
unset zone V1-Untrust manage telnet ]=qKb/�<�@
unset zone V1-Untrust manage snmp �i!Og��h�
unset zone V1-Untrust manage ssl ^\�JvFr?!A
unset zone V1-Untrust manage web �f&zP�KO;�
unset zone V1-Untrust manage ident-reset �Wbr#4�D=n
set zone V1-DMZ manage ping BdHBf?�~h�
unset zone V1-DMZ manage ssh H_-1cR��1>
unset zone V1-DMZ manage telnet bI�F*.~�sJ
unset zone V1-DMZ manage snmp d-5�r�d�Cb
unset zone V1-DMZ manage ssl V*R~(bw;Q+
unset zone V1-DMZ manage web 8�a1)gc�j
unset zone V1-DMZ manage ident-reset `"tAzoy�,�
set hostname ns25 hS�qw|x0��
--- more --- mM4Y#��x.+
set dns host dns1 X.X.X.55 ,�1�Np_"Q4
set dns host dns2 219.150.32.132 O;�9�@!z*f
set dns host schedule 06:28 � F��zr?�L
set address "Trust" "192.168.0.1" 255.255.255.0/192.168.0.1 Q��e9_+__J
set ike respond-bad-spi 1 �XDH�{N��>
set pki authority default scep mode "auto" �ZU>�p*�V^
set pki x509 default cert-path partial }1 /�C<uzh
set policy id 1 name "internet" from "Trust" to "Untrust" "Any" "Any" "ANY" permit }4dB]u!��8
set ssh version v2 a�}wgJrI,{
set config lock timeout 5 7"%YIb�K!)
set snmp port listen 161 w".`f= }W
set snmp port trap 162 6V#�v� GJ$
set vrouter "untrust-vr" �g4�T��CZ�
exit �z0 A��Z O
set vrouter "trust-vr" �Pg� : �'+
set access-list 1 CHk6v*mox@
unset add-default-route |6A\�j�F��
exit `-I18��p�
那位帮助看一下在什么地方有问题,在NAT的时候ping 上端路由器的接口地址192.168.0.1能通,到192.168.1.1也能通。到E1和E3接口也是通的。但是就是上不了网。请问是什么原
2001-2007 Comsenz Inc.
