Hi,First of all, thanks for your time. I have a question implementing active/active failover on a pix with 7.0. I have two pix 535 with 3 ethernets (inside, outside and failover). Until now they were in active/pasive but I would like to put them in a...
Greetings;If you are allowing traffic into your DMZ interface (security 20) from your outside interface (security 0) and your ingress access is controlled by an access list applied to your outside interface, would you need to place an access list to ...
I am experiencing a problem where two servers (specifically a file a server and a Citrix server) are experiencing spikes in CPU utilization (maxing out at 100% util) whenever we take them out of "Test" mode. These systems are running CSA v4.5-1 buil...
Hi,I am new at setting up PIX firewall.. Hope that someone would give me some hints on how to log dropped packets to my syslog server. Here is what i have setup and tested..1) I manage to setup remote logging for my syslog server, i could see PIX fir...
Hi all,I recently upgraded my Concentrator to version 4.7. I can connect with the new client version, but not with the old client version 3.6. will 3.6 work with the upgraded version 4.7?
Hallo all, I have a problem with a cisco pix (535, version 7.0) - and I hope that someone can help me to solve it:In my opinion I should get a logmessage for every matching connection if I paste an log entry to an extended accesslist like:access-lis...
I need to allow outbound access to an IP address on destination port tcp:8443 using https. Simply adding the rule to the rule base doesn't permit the connection even when just restricted by source/destination ip address. Is this because of default...
I have created and enabled a new interface (DMZ) on a Pix 516E. In the PDM an Implicit Outbound Rule was automatically created for this interface. I could get out to the internet with no problems. I however need to open some ports from the DMZ to ...
Remote PIX 501 should tunnel to another PIX for customer network access. Configured for DHCP setroute, I verified map isakmp keys on both ends, and PIX access-lists are correct. I receive a DHCP address from the cable provider, but then the tunnel ...
We will be using our IPS 4255 as an IDS (promiscuous mode, NOT in-line). We will be utilizing a network tap to capture the traffic.1. Does the IPS 4255 has the ability to work with the PIX firewall to block traffic?2. If we are using a network tap...
Hi!As I wrote in my previous post I have problems on permitting H323 traffic through a PIX 520 IOS ver 6.3 (3).I used a configuration like the one reported in this documentation by CISCO: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products...
I have what I hope is a stupid question. In the past I had a windows server doing my DHCP and now I am moving that to my new ASA 5510 firewall. In the past if I wanted to look up who was given an IP I was able to see what comptuer name was given what...
Dear ALL,I have an old PIX 520 with these details :Version 5.1 (4)Finesse Bios V3.3Hardware: AL440LX, 32 MB RAM, CPU Pentium II 266 MhzBIOS Flash AM28F256 Licensed Features:Failover: EnabledVPN-DES EnabledVPN-3DES DisabledSerial Number ...
WE have a pix 515 running Ver 7 Fos standalone .We would like to understand what are the methods/best practices available to test the PIXs availability1)Snmp traps2)Mail alerts3)Snmp polling4)Icmp pollingWe would like to know which of the above would...
Can 7.X code be imported into perf mon? I am getting access denied error but pix loggs saying access granted.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 08-29-2025 08:17 AM | ||
| 08-26-2025 09:16 AM | ||
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM |
| User | Count |
|---|---|
| 8 | |
| 8 | |
| 7 | |
| 1 | |
| 1 |
