Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi guys,I have a PIX 515E(Pix os 7.0) with 3 interfaces(outside, dmz and internal_net) and a Border Cisco router with 2 interfaces(fa0/0 connected to internet, fa0/1 connected to pix's outside interface). The IP addresses(hypothesis) are as below:Rou...
Hi guys,I got a 515E with Pix os 7.0. This Pix work as a border firewall between my border router and my internal network.Some of my customers inside require a SMTP over SSL connection to the outside SMTP server. I opened up all necessary ports on th...
Hi guys,I have a setup with the intention of routing between IPv6 and IPv4. In this case I uses NAT-PT to translate these 2 different network protocols. Below is my v6 router's configuration:r0uter: 3745 12.2(13)TR, Host_A_winxp(IPv6 addr=2006::208:2...
Hi guys,I have a PIX that consists of a inside and outside network(Internet). The problem arise when my inside users need to establish VPN to a VPN server on the Internet. The external VPN gateway shouldnt establish a gateway2gateway VPN with my PIX ...
Hello,Just to check, anyone here integrate Pix with Snort before? For example, when Snort detect something fishy about a remote IP address, it will automatically send an alert to Pix and Pix will automatically generate an access-list to block off tha...
Hi,(Internal_net,DMZ,etc,outside)<->PIX<->Router<->Internet<->(via site2site vpn thru router)RemoteSite.The IP of my border router's outside interface is a single public IP. I have another different set of public IP in which I had assigned to the DMZ...
Hi Pat,Is there really no other way out if I use my PIX DMZ(public ip) interface address as my VPN gateway? I can't change the config in my border router and my PIX's outside interface is connectec with my border router inteface using private address...
Hi 4bwu,Thanks for your responses. Anyway, can you advise me on why is it a good practice to use private IP addresses for machines in the DMZ and translate the machines's address to public IP address? Why cant we just assign public IP address to the ...
I wish I can just get rid of the router but I can't. The problem occurs when there is a site-to-site VPN being established before the arrival of PIX. I can't do without the border router.
