EasyManua.ls Logo

Cisco ASA 5555-X

Cisco ASA 5555-X
2164 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
1-53
Cisco ASA Series CLI Configuration Guide
Chapter 1 Configuring Connection Profiles, Group Policies, and Users
Group Policies
Use the no form of the command to indicate that the VPN idle timeout alert-interval attribute will be
inherited from the Default Group Policy:
no vpn-idle-timeout alert-interval
Configuring WINS and DNS Servers for a Group Policy
You can specify primary and secondary WINS servers and DNS servers. The default value in each case
is none. To specify these servers, perform the following steps:
Step 1 Specify the primary and secondary WINS servers:
hostname(config-group-policy)# wins-server value {ip_address [ip_address] | none}
hostname(config-group-policy)#
The first IP address specified is that of the primary WINS server. The second (optional) IP address is
that of the secondary WINS server. Specifying the none keyword instead of an IP address sets WINS
servers to a null value, which allows no WINS servers and prevents inheriting a value from a default or
specified group policy.
Every time that you enter the wins-server command, you overwrite the existing setting. For example, if
you configure WINS server x.x.x.x and then configure WINS server y.y.y.y, the second command
overwrites the first, and y.y.y.y becomes the sole WINS server. The same is true for multiple servers. To
add a WINS server rather than overwrite previously configured servers, include the IP addresses of all
WINS servers when you enter this command.
The following example shows how to configure WINS servers with the IP addresses 10.10.10.15 and
10.10.10.30 for the group policy named FirstGroup:
hostname(config)# group-policy FirstGroup attributes
hostname(config-group-policy)# wins-server value 10.10.10.15 10.10.10.30
hostname(config-group-policy)#
Step 2 Specify the primary and secondary DNS servers:
hostname(config-group-policy)# dns-server value {ip_address [ip_address] | none}
hostname(config-group-policy)#
The first IP address specified is that of the primary DNS server. The second (optional) IP address is that
of the secondary DNS server. Specifying the none keyword instead of an IP address sets DNS servers to
a null value, which allows no DNS servers and prevents inheriting a value from a default or specified
group policy. You can specify up to four DNS server addresses: Up to two IPv4 addresses and two IPv6
addreses.
Every time that you enter the dns-server command you overwrite the existing setting. For example, if
you configure DNS server x.x.x.x and then configure DNS server y.y.y.y, the second command
overwrites the first, and y.y.y.y becomes the sole DNS server. The same is true for multiple servers. To
add a DNS server rather than overwrite previously configured servers, include the IP addresses of all
DNS servers when you enter this command.
The following example shows how to configure DNS servers with the IP addresses 10.10.10.15,
10.10.10.30, 2001:DB8::1, and 2001:DB8::2 for the group policy named FirstGroup:
hostname(config)# group-policy FirstGroup attributes

Table of Contents

Other manuals for Cisco ASA 5555-X

Related product manuals