Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a VPN Hub and Spoke design with one central PIX and five remote PIXes doing 3des Encryption. Does anyone know if the PIX is dropping packets while encrypting packets? CPU is less than 10%. Sessions will stop for 5 to 20 seconds on working thro...
Mark,the broadcasts reach the pix anyway because your PCs, Laptops or servers are directly connected to the pix - and your network need them. Put your firewall behind a separate routing interface and the broadcasts are off it.Regards,Norbert
Yes it is. You can do NAT from outside to the inside interface IP address or a NAT Pool. Best to do this is a policy based NAT. If you define it globally, you must do a NAT excemption for all of your outbound NAT configurations in the inbound directi...
This seemes to be a problem when you try to build a VPN between a checkpoint cluster and a cisco device. If you need to connect Checkpoint and Cisco devices via VPN it is always a good choice (maybe the only) not to use clustered configurations on ei...
You have to build an access-list like following:access-list 100 permit tcp any host xx.xx.xx.xx eq 25Then use this access-li in a route-map:route-map mails permit 10 match ip address 100 set ip next hop xx.xx.xx.xxNow bind this route-map to your insi...
