About kengyiam

kengyiam · 03-30-2006

Hi guys,I have a PIX 515E(Pix os 7.0) with 3 interfaces(outside, dmz and internal_net) and a Border Cisco router with 2 interfaces(fa0/0 connected to internet, fa0/1 connected to pix's outside interface). The IP addresses(hypothesis) are as below:Rou...

kengyiam · 03-27-2006

Hi guys,I got a 515E with Pix os 7.0. This Pix work as a border firewall between my border router and my internal network.Some of my customers inside require a SMTP over SSL connection to the outside SMTP server. I opened up all necessary ports on th...

kengyiam · 03-24-2006

Hi guys,I have a setup with the intention of routing between IPv6 and IPv4. In this case I uses NAT-PT to translate these 2 different network protocols. Below is my v6 router's configuration:r0uter: 3745 12.2(13)TR, Host_A_winxp(IPv6 addr=2006::208:2...

kengyiam · 02-24-2006

Hi guys,I have a PIX that consists of a inside and outside network(Internet). The problem arise when my inside users need to establish VPN to a VPN server on the Internet. The external VPN gateway shouldnt establish a gateway2gateway VPN with my PIX ...

kengyiam · 02-22-2006

Hello,Just to check, anyone here integrate Pix with Snort before? For example, when Snort detect something fishy about a remote IP address, it will automatically send an alert to Pix and Pix will automatically generate an access-list to block off tha...

kengyiam · 04-06-2006

maybe you can try looking into what traffic is actually been generated in your machines? try using a sniffer to see the packets.

kengyiam · 04-06-2006

Hi,(Internal_net,DMZ,etc,outside)<->PIX<->Router<->Internet<->(via site2site vpn thru router)RemoteSite.The IP of my border router's outside interface is a single public IP. I have another different set of public IP in which I had assigned to the DMZ...

kengyiam · 04-06-2006

Hi Pat,Is there really no other way out if I use my PIX DMZ(public ip) interface address as my VPN gateway? I can't change the config in my border router and my PIX's outside interface is connectec with my border router inteface using private address...

kengyiam · 04-06-2006

Hi 4bwu,Thanks for your responses. Anyway, can you advise me on why is it a good practice to use private IP addresses for machines in the DMZ and translate the machines's address to public IP address? Why cant we just assign public IP address to the ...

kengyiam · 04-05-2006

I wish I can just get rid of the router but I can't. The problem occurs when there is a site-to-site VPN being established before the arrival of PIX. I can't do without the border router.

Member Since	‎02-05-2003 09:33 PM
Date Last Visited	‎08-18-2017 03:50 AM
Posts	28

User Statistics

User Activity

Any Advice On This Kind Of VPN Design

Is this a Pix issue?

IPv6 NAT-PT Problem

What are these on external VPN service.

Integrating Pix with Snort?

Re: Windows 2003 Server and pix firewall throughput

Re: Any Advice On This Kind Of VPN Design

Re: Any Advice On This Kind Of VPN Design

Re: Any Advice On This Kind Of VPN Design

Re: Any Advice On This Kind Of VPN Design