Cisco ASA5505 Basic Configuration

(config)# configure factory-default
(config)# no ip address 192.168.1.1 255.255.255.0
(config)# ip address 192.168.88.1 255.255.255.0
(config)# no http 192.168.1.0 255.255.255.0 inside
(config)# hostname ASA5505
(config)# domain-name poc.local
(config)# crypto key generate rsa general-keys modulus 2048
(config)# ssh 192.168.88.0 255.255.255.0 inside
(config)# ssh timeout 5
(config)# http server enable
(config)# http 192.168.88.0 255.255.255.0 inside
(config)# tls-proxy maximum-sessions 24
(config)# policy-map global_policy
(config-pmap)# class inspection_default
(config-pmap-c)# no inspect esmtp
(config)# dhcpd dns 8.8.8.8 8.8.4.4
(config)# dhcpd domain poc.local
(config)# dhcpd auto_config outside
(config)# dhcpd address 192.168.88.101-192.168.88.132 inside
(config)# dhcpd dns 8.8.8.8 8.8.4.4 interface inside
(config)# dhcpd domain poc.local interface inside
(config)# dhcpd enable inside
(config)# dns domain-lookup outside
(config)# dns server-group DefaultDNS
(config-dns-server-group)# name-server 8.8.8.8
(config-dns-server-group)# name-server 8.8.4.4
(config-dns-server-group)# domain-name poc.local
(config)# clock timezone GMT 7
-point to ntp server pool.ntp.org
(config)# ntp server 180.211.88.211
(config)# show ntp associations
address         ref clock     st  when  poll reach  delay  offset    disp
*~180.211.88.211   131.188.3.220     2    45    64   17    11.6   24.46  1892.9
* master (synced), # master (unsynced), + selected, – candidate, ~ configured
(config)# show ntp associations detail
180.211.88.211 configured, our_master, sane, valid, stratum 2
ref ID 131.188.3.220, time d7ecee74.058fbe15 (20:49:40.021 GMT Sat Oct 18 2014)
our mode client, peer mode server, our poll intvl 128, peer poll intvl 64
root delay 350.07 msec, root disp 89.02, reach 177, sync dist 412.079
delay 10.77 msec, offset 27.0147 msec, dispersion 142.64
precision 2**22, version 3
org time d7ecf2e7.055e78c3 (21:08:39.020 GMT Sat Oct 18 2014)
rcv time d7ecf2e6.ffd524c8 (21:08:38.999 GMT Sat Oct 18 2014)
xmt time d7ecf2e6.fd1273bf (21:08:38.988 GMT Sat Oct 18 2014)
filtdelay =    10.77   10.64   29.85   11.63   13.03   16.17   21.48    0.00
filtoffset =   27.01   26.77   35.08   24.46   23.20   21.10   17.93    0.00
filterror =    15.63   16.60   17.58   18.55   19.53   20.51   21.48 16000.0
NOTE: make sure dispersion <1000
(config)# sh ntp status
Clock is synchronized, stratum 3, reference is 180.211.88.211
nominal freq is 99.9984 Hz, actual freq is 99.9984 Hz, precision is 2**6
reference time is d7ecf348.037a9681 (21:10:16.013 GMT Sat Oct 18 2014)
clock offset is 39.9831 msec, root delay is 362.26 msec
root dispersion is 159.39 msec, peer dispersion is 28.93 msec
(config)# sh clock
21:06:33.256 GMT Sat Oct 18 2014
(config)# sh clock detail
21:19:29.592 GMT Sat Oct 18 2014
Time source is NTP
UTC time is: 14:19:29 UTC Sat Oct 18 2014
(config)# username cisco password cisco
(config)# aaa authentication ssh console LOCAL
(config)# ssh version 2
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s