Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a private web server behind a PIX firewall. Is there a method of having the PIX require inbound authorization (UID and Password, credentials stored on an AAA server or in the local database), prior to allowing a connection to the protected web...
Can the PIX only filter by IP address without the help of a 3rd party product ? For example, if I want to put a filter/access-list rule in place to prevent access to www.pornsite.com, but allow access to www.business_content.com, this does not seem p...
On most competitors deivces, you can express an ACL entry as a URL in addition to expressing it as an IP address, and have the URL entry resolved via DNS (on the firewall).For example, if I want to permit access to FTP.NAI.COM, which has 4 possible d...
What is the trick to getting PDM to run from the untrust/public interface without building a VPN tunnel to it? It uses HTTPS, so what's the problem?Any suggestions?Thanks!
So, if the 4 ports are a 10-100 switch:1. Why are all 4 ports "seen" as a single interface/port? Whatif I want to shutdown access to 3 of the 4 ports?2. Why does the OS say the 4-port interface can only be set to10 Mbps full-duplex? Why not be able t...
A very good ref for AAA is an older book I have had for years, but it is still very timely:(Cisco Press) Cisco IOS 12.0 Network Securitypublished in 1999.More AAA than you could ever want.Scott
Here is how I recently configured SSH to several PIX501's w/ 6.2, no AAA. I use Secure CRT from VanDyke as my SSH Client on WIN2K Pro.Remember, without a AAA server, there is no individual username, the username is always "pix" + the configured "tel...
