Network Security

I have VPN connection that wont stay connected. Concerntrator 3005 log indicates: 11127 08/05/2004 09:47:07.750 SEV=5 IKE/1 RPT=2116 55.55.55.55 Received Invalid Cookie notify - retrying last packetAny idea what may be causing this? The connection ty...

I was very suprised to find that i can't use telnet command from PIX device? Why this functionality is absent?

I have a pix to pix vpn that encrypts and works well for the 2 inside lans. Pix A is set up for vpn clients as well. From a connected vpn client to pix A what is needed to direct traffic that is destined to pix B inside lan over the established ips...

I installed a PIX 506E last week and got it configured and it was working excellent. I had some issues with a new client connecting to our location in PA from here in NC through Citrix. To norrow down what the issue was, one night I replaced our PI...

Can anybody confirm whether the PIX 525 can handle VPNs to a Checkpoint VPN Client? If yes, are there sample configs or hints what one needs to take care of?Version: Checkpoint VPN-1 Secure Client NG, Rel 5.6, Build 311ThanksToni

Hello, my Pix 515 often display the above message."That why the Pix is configured to do so" says themanual. I have no idea where set off this feature by using PDM 302 and OS634. I've allready tried to reset the configuration at a basic level of funct...

I just have some few questions regarding securing the pix1. it was a default of pix that the inbound on the outside interface is totally block. Say there is no access-list at all on this interface, do i need to do the deny statement for the rfc 1918...

A remote office of ours is using a web server configured on port 9000. I have added the following to our PIX firewall trying to keep the appearance of the web port normal, but I cannot access the site from outside. Where did I go wrong?access-list...

Hello all,I'm trying to validate my configuration before going live and would appreciate if anyone could take a look and make recommendations. I would like to accomplish the following:1. Any External user connects to DMZ web server on port 80 (though...

I have a webserver in a DMZ on a PIX. Here is the config from the PIX for the webserver;access-list dmz2-out deny ip any 192.168.1.0 255.255.255.0access-list inside-out permit tcp 192.168.1.0 255.255.255.0 host 192.168.11.200 eq wwwaccess-list insid...

Hi AllOne of the PC in the remote branch is trying to contact a Host in the inside network . Its bascially a telnet software which the client initiates to the host, This is not working. So from the command prompt when you try to telnet to the host , ...

I am setting up pix 515E. i have to put in the Microsoft's ISA server as a web publishing server in the DMZ zone, and i have put in the published servers in the inside zone.The problem is anyone from outside is able to access the ISA server on port 8...

Hello,I've few enquiries that need your opinion as follows:1. Is it true that communication between dmz areas with same security level configured on each interface will not take place. The only way to have some communication in (ie static routing) in...

I have a question.I have some clients that use old FTP software. I want to know if I want to open up access to an FTP server do I need to open both:allow eq ftpand the high port range from 1024 to 65535I am not sure if the newer IOS requires me to d...