PDM

besitec-it · ‎08-19-2005

Hello,

I want to manage the PIX 515e over Web. Why I have to much PDM Location. For example:

192.168.1.0 .....

192.168.2.0 .....

I delete it with clear pdm location and add one pdm location 192.168.1.0. But everytime if I go to the Webinterface, the PIX add every network again. Why?

Thanks.

Besitec

owillins · ‎08-24-2005

To further troubleshoot PDM, refer to the following URL:

http://www.cisco.com/en/US/products/sw/netmgtsw/ps2032/products_installation_guide_chapter09186a008017a424.html#1035758

rating_is_vital · ‎09-01-2005

Hi Besitec,

I have the same issue. Any comment?

iqlas · ‎09-04-2005

PDM tries to keep track of the location of the network objects (used in rules) using this command. Please note that this commands does NOT affect the actual operation of PIX. Currently there is no way to disable the generation of pdm commands in PDM.

PDM uses this network topology information to validate and automatically take care of NAT configuration. For example, if you have static NAT rule configured, PDM will make sure to use the right "nated" address in the access-list, if you're writing a rule for this host. To do this nat conversion and validation, it keeps track of the location of the network objects and for that 'pdm location' cmds are being used.

rating_is_vital · ‎09-04-2005

Hi,

Thanks for your response "iglas". It is disappointing to know that we can't disable it.