Network Security

Hi,Our Pix (535 6.3(1) UR Licence) sometimes do not seem to advertise a physical interface's mac address to the Cisco 6509 switch where the dot1.q trunk terminates.With one vlan it works fine, with another vlan it does not.Clear arp in both Pix and s...

Trying to configure a 501 as an easy vpn client to PIX 515(server). The tunnel says its up, but i am still getting "109013 user mush authenticate first before using this service" in the log on the pix 501 (client) ...any thoughts?

Hi,I am using PIX in Failover mode..Currently my one PIX is down and other is up.I am not able to find out whether my primary is up or secondary is up.Here is the output of sh failoverFirewallPIX# sh primaryType help or '?' for a list of available co...

Hi First time user on the PIX and wondering based on current config what is the best way to forward a range of IP ports to a dedicated internal server.Thanks for the helpnameif ethernet0 outside security0nameif ethernet1 inside security100enable pass...

I have a network currently configured that the PIX is the default gateway for the users on the inside interface. I am trying to send some traffic on a different subnet destined for another network through a Cisco router that is connected to the insi...

I'm having issues getting my 520 to upgrade. When trying to use the Boot helper file it will come up with:Finesse Bios V3.3Booting Floppy...................................Execing flopIT then just reloads and starts this over again. Using the rawrit...

Hi all, I got the problem , when i change A ISP (old) to B ISP (new), after that the internet connection is fail , here are change the running config information as below:1.IP address outside2.Global3.Route 0.0.0.0 0.0.0.0 x.x.x.xTesting before :If i...

I've tried several forum suggestions, PDM & command line changes to no avail. I have 1 Small Business Server behind a PIX 501 & I need to forward 5-6 ports (web, smtp, pptp, ftp, termsvcs, dns)to the SBS (192.168.10.11). The 1 public IP is the WAN ...

Hi experts,I'm using IE configured with proxy (the proxy's IP is public IP address). If my LAN is directly connected to a router (running RFC1483 bridging), I can get my address bridged and then connect to the internet.But, after I use PIX:LAN (192.1...

I would like to configure my pixs to only fail-over on only the interfaces I want.

Hi I have 2x 515E firewalls, one active and 2nd as failover. I have PIX-515-SW-R-UR= on active FW. and PIX-515-SW-FO on failover FW. Now my question is as follows,a. Will PIX-515-SW-FO license support all features as PIX-515-SW-R-UR= unrestricted fea...

Hi...I have a VPN 3005 concentrator that seems to work fine, that supports both incoming VPN remote access clients (using the Cisco client), as well as LAN-to-LAN tunnels elsewhere. Both seem to work fine, but I have a need to have some RA clients c...

Dear all,I want to open all ports for outbond traffic and open all ports for inbond traffic in my PIX 525. So I use this command :access-list 1 permit any anyaccess-list 2 deny any anyaccess-group 2 in interface outsideaccess-group 1 in interface ins...