Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
232
Views
0
Helpful
2
Replies

PIX 515 E

gauravprakash
Level 1
Level 1

‎01-29-2005 05:19 AM - edited ‎03-02-2019 09:22 PM

Hi,

Following info about PIX.

Inside to Outside: If a user from the inside starts a connection to the outside (or to be more precise, to an interface with a lower security level), this connection will by default be permitted, and the return packets of this connection too.

How does the pix knows that an outsider or an insider started a particular connection, which it should deny pr permit.????

Labels:
0 Helpful
2 Replies 2

rais
Level 7
Level 7

‎01-29-2005 05:39 AM

For TCP session to start there must be a SYN packet sent from the initiator of the session. If that packet comes from outside, PIX simply discards it and session never comes up.

Hope this helps.

0 Helpful

thisisshanky
Level 11
Level 11

‎01-29-2005 10:06 AM

You can read more about ASA algorithm here..

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a00800b6f0e.html

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card