Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
At my new job, I am no longer in the role of supporting our Firewall/VPN (all done at Corporate). I've recently been told that they are replacing all of our PIX firewalls with 1721 Routers to handle our Firewall/VPN connections. My previous experie...
I have recently had some issues that appeared to be a DOS attack on our network. We currently have an outside company maintaining our PIX and I wanted to verify some information that was given to me from this company. We are converting from a Frame...
I am trying to verify where the problem is coming from, either our PIX 515 (6.2.2) or our Linux 7.2 Proxy server (acts as router also). The configuration on the old PIX was done thru telnet and I'm trying to recreate it thru PDM on the new PIX. Here...
I have just recently taken over our PIX firewall and have been experimenting with the logging features. I am currently logging up to Warning Level, and have seen a lot of activity that leads me to believe that several people have attempted to get pa...
Comparing with PIX 515E / Cisco 1721 combo. 1721 handles the routing and PIX handles the firewall. Mostly concerned that we are making a big mistake by using the 1721 for the firewall instead of keeping things separate.
I guess I didn't really ask a clear question here, what I am trying to find out is whether or not you can attack a server if it has been opened through a conduit in the PIX but the server has a different gateway back to the web.
I've also logged transactions from the pix and I am recieving the proper message when I try to connect over the internet (I think). However, it never pulls up the page. I am sure that this should work because it still works fine over our old interne...
From the internet, I cannot get to any devices on the 10.1.2.x network. I can get to the internet from the 10.1.2.x network and I can get to devices on the 10.1.1.x network from the internet.From the internet I should be able to go to https://3.3.3....
I was hoping to log only inbound connection attempts, that way, If I saw an IP address scanning ports on our IP range, I could see if that address ever made a successful connection to one of our servers. Unfortunately as far as I can tell the only w...
