Network Security

Has anyone come across the following when using PDM 3.0 on PIX 6.3,If you have a crypto ACL applied on the PIX config and you try to run PDM, the PDM parser stops and warns that the applied ACL is not supported. So the PDM only launches in Monitor mo...

HelloI have a NS location connected to a SS location via T-1. I have a NS PIX515 6.3 and a SS PIX 525 6.3. The NS PIX is the original PIX and has been in place for a couple years. We have 2 internet connections 1 on the SS and 1 on the NS. The SS has...

I have an oracle server running vers 8i on inside network. Have been NAT-ed and have access-list permit all the tcp and udp connection to the server when access from outside. Here the error message from client access from outside:oracle error con 440...

I hate to post this but I am missing something simple. After restructuring our network I want to change the VPN 3000 concetrator to stop using DHCP and start using an internally configured address pool. I created the pool. I changed the check box ...

Hello, We have placed a 515E on our network and we want to be able to log who was what external IP address(or PAT port) when. It seems like a feature that everyone would use but for the life of me I can not figure it out. Have setup syslog but it d...

Hi,is it possible to make aggresive mode on a hostname identity isakmp tunnel?Regards, Sebastian

I could'nt get the output from the PIX firewall to my syslog server,below is the part of my show run config.My PC with syslog software running is 192.168.2.2.Pls advise.PIX Version 6.2(2)nameif ethernet0 outside security0nameif ethernet1 inside secur...

I'm trying to test with my PIX before its introduction soon. I've tried mirroring the traffic destined for our current FW, to the Ethernet0 of the PIX, and ensured that traffic was present. However, there's no syslog output at all. I'm doing this ...

installing a redundant PIX 515's, on the outside want to keep the same address range and also keep the address range on the inside the same. for example 192.168.1.0/24 192.168.3.0/24 on the outside. the inside addressing 192.168.1.0/24 and 192.168.3....

What's the difference between xlate and conn timeout? If xlate timeout is 3 hours and conn timeout is 1 hour. An idle tcp connection will always be timed out by conn timeout? Am I wrong?Best Regards.

FIREWALL PIX AND CISCO 827H POSIBLE?THANK YOU

Hi ppl,I am trying to ftp from a LAN behind a firewall to our HQ which is running a PIX 5.1. We have created an acl to allow my source ip (1.1.1.1)to the ftp server (2.2.2.2). But i got connection timed out. My syslog only shown the following <87>Feb...

I'm a little confused with most of the documentation I found on the Cisco website. In some documentation, they should if you are going from inside to dmz, then use Static (inside, dmz) 172.18.1.0 172.18.1.0 netmask 255.255.255.0In other docs, use NA...