After using pdm to access pix, there are a lot of strange commands 'pdm location x.x.x.x x.x.x.x' generated in the configuration. Can I prevent them from being generated? This makes the config a little bit messy.
I have 2 pix's that are set up to connect to each other via vpn. but the pix's only setup as per belowthe SA seems to be fine but nothing created:Total : 2Embryonic : 0dst src state pending createdxxx xxxx QM_IDLE ...
We recently acquired a new business partner that is connected by a frame-relay to our DMZ.Here is my problem. The router (frame-relay) is in our DMZ NATS from their public addresses to our private addresses in the DMZ to172.16.10.90 port ftp172.16.10...
Hi,In my company I've a cisco pix 515 running 6.3(4), i've three interface buti'm using only two of them.On the inside network card I've two vlan, one for the inside networks (wks and internalserver) and one for dmz (mail, web... servers). The outsid...
I have a problem with the setup of a pure Cisco VPNAt one end I have a 1721 router and at the other ends I have two 831 routers.I am using site to site VPN and the good news is both VPN tunnels are up and running. The bad news is that one of the tun...
Help!, can you help me about logging the VPN client username this include when and what time he/she connects via dial-up line.Is this possible?Thanks in advance
Hi I am getting the error message on my PIX firewall.%PIX-4-402101: decaps: rec'd IPSEC packet has invalid spi for destaddr=ip-addr, prot=protocol, spi=spiCan anybody help me how to resolve the isuue.
I currently have a PIX 515E connected to my internal LAN on the Inside interface. The inside interface connects to a 2950 switch that acts as the "core". I am replacing the 2950 with a 4507 and am having problems with the clients on the 4507 connec...
I have two questions, and will appreciate a quick response.I have a VPN 3030 connected on a DMZ Interface via public address. We put the VPN 3030 behind PIX for added security.1) What kind of address translation do I need to allow VPN users coming f...
We currently have a Installation of Ciscoworks Lan that was upgraded to all of the latestest versions(RME 3.5, Common Services SP2, DFM 1.2, CM 3.3) as well as windows 2000 SP4 and all current windows updates. Also all of the Apache and SSL updates w...
Has anybody deployed dmvpn with vrf forwarding?I can not get eigrp working under the address family.For example:interface Tunnel10 ip vrf forwarding SDPI ip address 206.200.167.1 255.255.255.0 no ip redirects ip mtu 1300 ip nhrp map multicast dynamic...
trying to use static (inside,outside) and access list to make use of aditional ip.access-list acl_out permit icmp any any echo-reply access-list acl_out permit icmp any any unreachable access-list acl_out permit icmp any any time-exceeded access-list...
I am having an issue with my pix stopping traffic between inside to DMZ web server. Normally, I can get from an inside computer to the web server in the DMZ. Then all of a sudden it stops. The PC's can no longer get to the web server. I have to g...
Anyone heard of a restricted license on the switch interfaces of a 501? I have a customer that can only access 2 of the 4 switch ports? As far as I know, the 501 only comes with user based licenses. Any ideas?Cisco PIX Firewall Version 6.3(3)134Ci...
