03-16-2004 03:22 AM - edited 03-02-2019 02:18 PM
Dear Sir,We have a setup with router connected to internet on public IP
Routers ethernet port is also on public IP connected to PIX outside interface.
PIX outside interface is also on Public IP.
Problem is sine the setup is live we cannot afford downtime
We want to backup the IOS of router which is on public IP from internal (Trusted Hosts) which are on Private IP address.
How do we go ahead.
IP address for internal trusted network is 10.10.x.x
TFTP server will be setup on the trusted network
Pls advice with changes to be made in the PIX config
Regards
Deepak
03-22-2004 08:00 AM
Just add this configuration to your PIX config....
Assuming your router IP address 172.16.1.1 and your TFTP server IP in trusted network 10.1.1.1 and then add the following lines..
access-list tftp-permit udp host 172.16.1.1 host 10.1.1.1 eq 69
access-list tftp-permit in interface outside
Here, TFTP destination port is 69 and you are enabling permission on inbound traffic for outside interface. If you are already using any ACL on outside interface for eg let me say "101" then replace "tftp-permit" here with "101" to add to your exisiting configuration.
03-23-2004 02:02 AM
Dear Sir,
Thanks for the assistance
Regards
Deepak
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide