I want to use Ciscoworks for Windows 2000 to manage the the pix515e but no luck.
Ive used this command “snmp-server community public ro” on the AP, router and switch and had no problem. On the Pix I managed to use the PDM and access through the web-browser (using https://), but cannot access through ciscoworks 2000. Can it be the “https://” ? The following error pop up when I use ciscoview to manage the pix:
“Time out on 10.1.1.1. Propable cause: possibly due to lack of connectivity to host, invalid community string or busy device. Recommended Action: Verify the connectivity to the host the community string. Try increasing timeout value through the preference options.”
Ive set “public” as a community on the pix, had no problem with other devices. I’ve increased the timeout value, but still having problems.
Ive also updated all the latest package from ciscoworks to support 515e pix (version 5.0). still having problems.
Here the config on my pix. Thanks for reading…
PIX Version 6.3(4)
interface ethernet0 auto shutdown
interface ethernet1 100full
interface ethernet2 auto shutdown
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 intf2 security4
enable password xxxx
passwd xxx
hostname pixfirewall
domain-name cisco.com
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
names
pager lines 24
mtu outside 1500
mtu inside 1500
mtu intf2 1500
no ip address outside
ip address inside 10.1.1.1 255.0.0.0
no ip address intf2
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server TACACS+ max-failed-attempts 3
aaa-server TACACS+ deadtime 10
aaa-server RADIUS protocol radius
aaa-server RADIUS max-failed-attempts 3
aaa-server RADIUS deadtime 10
aaa-server LOCAL protocol local
http server enable
http 10.0.0.0 255.0.0.0 inside
no snmp-server location
no snmp-server contact
snmp-server community public
snmp-server enable traps
snmp deny version 1
floodguard enable
telnet timeout 5
ssh timeout 5
console timeout 0
terminal width 80
Cryptochecksum:xxxx
: end
pixfirewall# show run
: Saved
:
PIX Version 6.3(4)
interface ethernet0 auto shutdown
interface ethernet1 100full
interface ethernet2 auto shutdown
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 intf2 security4
enable password xxxx
passwd xxxx
hostname pixfirewall
domain-name cisco.com
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
names
aaa-server RADIUS max-failed-attempts 3
aaa-server RADIUS deadtime 10
aaa-server LOCAL protocol local
http server enable
http 10.0.0.0 255.0.0.0 inside
no snmp-server location
no snmp-server contact
snmp-server community public
snmp-server enable traps
snmp deny version 1
floodguard enable
