Network Security

installing a redundant PIX 515's, on the outside want to keep the same address range and also keep the address range on the inside the same. for example 192.168.1.0/24 192.168.3.0/24 on the outside. the inside addressing 192.168.1.0/24 and 192.168.3....

What's the difference between xlate and conn timeout? If xlate timeout is 3 hours and conn timeout is 1 hour. An idle tcp connection will always be timed out by conn timeout? Am I wrong?Best Regards.

FIREWALL PIX AND CISCO 827H POSIBLE?THANK YOU

Hi ppl,I am trying to ftp from a LAN behind a firewall to our HQ which is running a PIX 5.1. We have created an acl to allow my source ip (1.1.1.1)to the ftp server (2.2.2.2). But i got connection timed out. My syslog only shown the following <87>Feb...

I'm a little confused with most of the documentation I found on the Cisco website. In some documentation, they should if you are going from inside to dmz, then use Static (inside, dmz) 172.18.1.0 172.18.1.0 netmask 255.255.255.0In other docs, use NA...

I have a router 827, connected to my dsl, the ethernet0 address is a real world ip address, This is connected no problems and i have no nat or access-lists on this, there is a crossover cable from ethernet0 to the outside ethernet of the pix i have, ...

Here is our current layout. MSR 8540 - CAT5000 - PIX 525 - CAT2950 - HOSTSI have replaced the PIX 525 from the picture with a PIX 515 with exactly the same config. After I have repalced the firewall, everything went fine except some internal hosts ca...

I use pix 506. When I config the tandberg endpoint at inside to network and opened the standard tcp/udp port which provided by the vendor. It can call out or in. However, when I enable the encryption option at tandberg endpoint to encrypt the meeting...

Does anyone know of any third-party private sites that compile information on performance-tuning of the PIX? I'm looking for something along the lines of http://www.phoneboy.com -which deals with CheckPoint FW-1.I need to know the bare-bones of what...

I am new to the firewall scene. How do I open up specific ports for my new video conference equipment.I have the specific ports.Thanks

A group of IOS routers uses OSPF with a 13-character authentication key. The VPN 3005 with it's 8-character maximum key length can't authenticate into the area.Is there a way to get the routers to use a shorter key for the 3005's messages?

How can I combine the TCP & UDP service into one object-group ?object-group service DGCORP_UDP1 udp port-object eq 1000 port-object eq 8000object-group service DGCORP_TCP1 tcp port-object eq 3365 port-object eq 4445Regards.

I have been looking for a definite answer to whether there is a bug that will not allow my PIX 501 with 6.3(1) to use dynamic and static PAT at the same time. The problem I have is this: I'm setting up a PIX on a PPPoE dsl connection with a web ser...

Hi there, I've got a bit of a problem, hoping someone can help with troubleshooting.We have a site with 50 or 60 workstations, all connected via a PIX 515e to a DSL line, and thus to the web. Intermittently, and seemingly randomly, workstations lose ...