03-02-2009 03:05 PM - edited 03-11-2019 07:59 AM
Hi guys,
Anybody knows how to configure a PIX515e (ios 6.1) in transparent mode?
And about rules to avoid DDOS and another things?
Thanks
03-02-2009 03:13 PM
Transparent Firewall is a feature that was introduced on 7.X, so if you need to have this feature you might want to get your firewall to 7.X version, be sure to read all the 7.X release notes prior to making the decision to upgrade it. As for DDOS the PIX within it's 6.X 7.X and 8.X has some built in features like tcp intercept syn flood protection and so on, you might want to be more specific as to what exactly you need.
03-02-2009 03:15 PM
imartino,
I need to block DDOS on my servers, and how do I do the IOS upgrade?
03-02-2009 03:19 PM
with 6.X you have the feature to limit the embryonic connections and the max connections your server will receive at a given time, check the command reference for the static translation:
http://www.cisco.com/en/US/docs/security/pix/pix61/command/reference/s.html#wp1026694
This for example will help you block syn floods and some other attacks. As far as the upgrade goes please check the release notes of version 7.X to review what you need.
03-02-2009 03:23 PM
thanks abou the DDOS,
but how can I upgrade a IOS? I never did that
03-02-2009 03:28 PM
First you need to check on the release notes if you have the needed RAM to upgrade, then you need to be aware that changing from 6.X to 7.X is a major change commands are used differently, after you have decided whether you will upgrade or not, you need to set a tftp server with the image of the 7.X and perform the command "copy tftp flash" following the lead of the command. I strongly advise you to read the release notes prior to doing this.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide