<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic PIX - problem in Network Security</title>
    <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237053#M577019</link>
    <description>&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;I have  a question about PIX firewall :&lt;/P&gt;&lt;P&gt;1. I have connections from outside to inside throw 135 port.&lt;/P&gt;&lt;P&gt;PIX should deny this connections but it doesn't. I haven't rule on PIX that permit or deny these coonections.&lt;/P&gt;&lt;P&gt;How this can be that hosts from outside can establish connections to inside.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thunks&lt;/P&gt;&lt;P&gt;&lt;/P&gt;</description>
    <pubDate>Fri, 21 Feb 2020 07:10:17 GMT</pubDate>
    <dc:creator>a-orloff</dc:creator>
    <dc:date>2020-02-21T07:10:17Z</dc:date>
    <item>
      <title>PIX - problem</title>
      <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237053#M577019</link>
      <description>&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;I have  a question about PIX firewall :&lt;/P&gt;&lt;P&gt;1. I have connections from outside to inside throw 135 port.&lt;/P&gt;&lt;P&gt;PIX should deny this connections but it doesn't. I haven't rule on PIX that permit or deny these coonections.&lt;/P&gt;&lt;P&gt;How this can be that hosts from outside can establish connections to inside.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thunks&lt;/P&gt;&lt;P&gt;&lt;/P&gt;</description>
      <pubDate>Fri, 21 Feb 2020 07:10:17 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-security/pix-problem/m-p/237053#M577019</guid>
      <dc:creator>a-orloff</dc:creator>
      <dc:date>2020-02-21T07:10:17Z</dc:date>
    </item>
    <item>
      <title>Re: PIX - problem</title>
      <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237054#M577020</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;The pix indeed should deny those connections. I am afraid there is something wrong with the config.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Is it possible to post the config of the pix? Please remove public addresses and passwords.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Kind Regards,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Tom&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 24 Dec 2003 07:49:07 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-security/pix-problem/m-p/237054#M577020</guid>
      <dc:creator>tvanginneken</dc:creator>
      <dc:date>2003-12-24T07:49:07Z</dc:date>
    </item>
    <item>
      <title>Re: PIX - problem</title>
      <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237055#M577023</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Unfortunately I can't post the PIX config because there a lot of confidential information. The host that in inside have no static. I have the following line in config: conduit permit icmp any any. Thats all. All other conduit commands for static addresses only.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;What you think about this?&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;What additional information you need to know about our current configuration?&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thanks.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 24 Dec 2003 10:25:09 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-security/pix-problem/m-p/237055#M577023</guid>
      <dc:creator>a-orloff</dc:creator>
      <dc:date>2003-12-24T10:25:09Z</dc:date>
    </item>
    <item>
      <title>Re: PIX - problem</title>
      <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237056#M577027</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;As Tom said it would be helpful if we can see your config, One thing you could try is to goto &lt;A class="jive-link-custom" href="http://www.grc.com" target="_blank"&gt;www.grc.com&lt;/A&gt; and use SHIELDS UP software to test your PIX and see what other ports you might have open, if you get a result stating that your firewall is 'Stealthed' then thats a good sign but somehow I think you might have other ports open to the outside world. The grc.com test is secure and I've used it many times for penetration testing.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Let me/us know your results.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thanks - Jay.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 24 Dec 2003 11:02:31 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-security/pix-problem/m-p/237056#M577027</guid>
      <dc:creator>jmia</dc:creator>
      <dc:date>2003-12-24T11:02:31Z</dc:date>
    </item>
    <item>
      <title>Re: PIX - problem</title>
      <link>https://community.cisco.com/t5/network-security/pix-problem/m-p/237057#M577032</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Thanks for advice.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;We are testing PIX now. We have some addresses in NAT that have 135 port opened.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;What you think about this?&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 24 Dec 2003 13:36:02 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-security/pix-problem/m-p/237057#M577032</guid>
      <dc:creator>a-orloff</dc:creator>
      <dc:date>2003-12-24T13:36:02Z</dc:date>
    </item>
  </channel>
</rss>

