Network Security

Recently upgraded a pair of PIX-515's (not E's) from 5.x to 6.2, and am now seeing lots of errors on the inside Ethernet interfaces. They pass traffic, but the errors are numerous enough that there's clearly something wrong.Tried speed/duplex, cable...

We have two servers server A on the inside interface and server B on a dmz interface of the pix 515. Communication between the servers is HTTP and HTTPS, we would like to disguise sort of speak the HTTP/HTTPS traffic by using a bogus port. Is this ...

dear all ,I have applied IDS shunnig on the PIX firewall lately instead of the router , and it works fine . But the problem is that automatic shunnig on pix doesn't shun the whole IP , but instead it shuns the combination of source IP with the source...

If your company is like my company getting a single PIX 525 was tough enough, a big "NO" when asking for a failover PIX. My problem: Management ask what happens if the PIX systems goes down ?Currently I have three DMZ's (Web hosting, internal network...

Can I bind my pix 515 to multiple Outside IP's? I want to use port 80 to get to my web server on one external IP and port 80 on a different IP to another internal server. If yes Then how ... (programming humour intended)ThanksL.Gelinaslgelinas@health...

Our PIX 520 running 5.1(2) -- it is scheduled for upgrade in two weeks -- has "suddenly" begun dropping all packets to two remote networks. There are no ACL entries preventing access to these two networks and there are no indications in the syslog (...

hi i'm looking for the commands to change the mac address on the ethernet 0 interface on a customers pix firewall.Thanks for helpsh versCisco PIX Firewall Version 6.1(1)Hardware: PIX-506, 32 MB RAM, CPU Pentium 200 MHzFlash i28F640J5 @ 0x300, 8MBBI...

Hello,I have a running PIX501 with VPN service, accesslists and nats. I want to change the external IP address on the box. which is the efficient way to do this without disruption the currrent configuration. thank you,travis,

Hi,I am using PAT with PIX firewall. I have observed that PIX translates the source port number (for the packet from inside host) to a port number less than 1023 (well known port numbers), while sending it to outside world.1. Is there a way to config...

I've two PIX 515E firewalls and when I issue the command "show fail" I notice that the outside interface stays in "waiting" mode and the secondary PIX is "Failed." I am using a switched network so I disable spanning-tree on my switches, but it doesn...

This is beating me up. If anyone has a suggestion, please help.I need web services to NAT to two different web servers behind the inside interface. Below are portions of my config. The NAT 0 is there becasue this is a PPTP and IPSec endpoint as we...

Are there any documents out there that explain how to use isa proxy and cisco pix? Thanks for any info!!Jenn

Hi AllI am trying to understand what are the parameter/output From the debug SNMP timers Output SNMP timers : *Dec 31 11:56:27: SNMP: HC Timer 632DDE28 fired*Dec 31 11:56:27: SNMP: HC Timer 632DDE28 rearmed, delay = 5000 *Dec 31 11:56:32: SNMP: HC Ti...

I am using PIX 525 running 6.2 to protect inside and dmz networks. I am using static NAT. The PIX is denying outbound connections from dmz as well as inside interfaces though implicit permit is already there. the log messages are:"201008: The PIX is ...