access-list dmz extended permit tcp host 10.80.194.245 object-group dmz-policy-srvs eq Cognos-Srv-TCP1I APPLIED THE ABOVE ENTRY AND IT'S SHOWING INVALID PORT Cognos-Srv-TCP1there is also object-group command done.
access-list dmz extended permit tcp host 10.80.194.245 object-group dmz-policy-srvs eq Cognos-Srv-TCP1I APPLIED THE ABOVE ENTRY AND IT'S SHOWING INVALID PORT Cognos-Srv-TCP1there is also object-group command done.
Hi all,I have very basic question.Pls.,could someone help me what timewe could implement VMS or other producton Win 2003 server. For now we can instal VMS for example 2.3 with CSA MC 5.0 but it still depend on services 2.3.Will be possible sometimes ...
Customer has a WS-C3750-48PS-E running 12.2(25)SED-IPSERVICES and a PIX515E running v7.04 OSA port on the switch is connected to a port on a PIX-4FE-66 contained within the PIX.2 other ports on the PIX-4FE-66 are connected to various other Cisco swit...
I need to host email, www inside of my firewall. I am using a cisco 1710 router with fw/ids/ipsec IOS. How would I forward specific ports from the Internet to specific host on my internal network? With a pix I would need more than one IP public addre...
I have been banging my head with this. I am attempting to set up a NAC test environment. I have ACS 4.0 running and configured, a Trend Polict Server running and configured and a 2811 with version 12.4(3a) advanced security. I have an end-station run...
Sirs, I have a question about a Pix 515e firewall. This device has the Firewall version 6.2(2), and Device Mgr version 2.1(1), from show version command. It is on an Nt network with about 30 users. I telnet to it and connect on the inside interface. ...
Hi,I have a scenario in which two public ip's (One with HTTP requests & other with SMTP/SSL request for OWA) need to be translated onto a single inside ISA server ip in the DMZ. Please suggest which is the best practice. I know that we cannot do a on...
I'm running a Cisco PIX and need to determine if an INSIDE IP is connecting to and OUTSIDE IP and when it occurs. I thought I could make an access-list entry with a permit and then log it. Anyone done this before?
i have two web server in intranet. i use two public ip translate in pix.then i can only access one on web server from outside.another can'tfollow is my configaccess-list outside_access_in permit tcp any host 222.32.60.27access-list outside_access_in ...
I am trying to test NAC with a vpn 3000 concentrater 4.7 and ACS 3.3. It appears the configuration is correct, but it doesn't seem to be working.I might be able to figure out what was going on if I could get logging to work for either CTA or the vpn...
Anyone know of a way to exclude a range of IP addresses from Static NAT?The inside interface has the majority of 10.0.0.0 /8 networks. The DMZ interface, unfortunately, has a /24 out of the 10.0.0.0/8 network, say 10.0.28.0 /24. How do I exclude th...
I've just purchased a PIX 515 to use at home in order to learn about Cisco firewalls etc. I connect to the internet through a Cable modem that provides a dynamic IP address.My setup being as follows:Home Network -> Switch/Hub -> PIX 515 -> Cable Mode...
i have created the object-group belowobject-group service XXX tcp-udpport-object range 1 1001 100 is just an examplethe question is how can i apply this to an access-list in a single line.thanks
should we need to use a no ip deny any any before issuing a new ACL in version 2.3(3)of FWSM
HelloCisco realsed new feature on 12.4(4) IOS, it claims that the router can classify the Skype traffic by using the NBAR with Skype classification feature. I checked it but it seems that the router can classify the traffic as well as you permit it, ...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
09-04-2024 12:11 AM | ||
08-14-2024 02:32 AM | ||
08-13-2024 10:56 PM | ||
08-07-2024 05:42 AM | ||
07-05-2024 02:02 AM |