用autosecure加强CISCO路由器安全 二
Current configuration : 1995 bytes !version 12.3
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname R1
!
boot-start-marker
boot-end-marker
!
security authentication failure rate 10 log
security passwords min-length 6
logging console critical
!
no aaa new-model
ip subnet-zero
no ip source-route
no ip gratuitous-arps
!
!
!
no ip bootp server
ip cef
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
duplex half
no mop enabled
!
interface Serial1/0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial1/1
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial1/2
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial1/3
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial2/0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
serial restart-delay 0
!
interface ATM3/0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
shutdown
no atm ilmi-keepalive
!
ip> no ip http server
!
!
logging trap debugging
logging facility local2
no cdp run 333
页:
[1]