Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have that needs to now work from home. She has a Win XP home computer and a DSL. As I recall, with Win XP Home she will be able to connect using the Cisco VPN client but I am pretty sure she will not be able connect to a resources located with i...
Hi,I have just configured my PIX 515e for remote access VPNs. All seems to be going well in VPN land until today when I was testing the VPNs behind a Linksys SOHO router at one of my remote locations.The issue is:I start up VPN A(using Cisco VPN clie...
I am doing the unthinkable, opening up the ports from my DMZ to inside interface to allow active directory communication. I just wanted to check the syntax of what I am doing before I do it. According to PIX docs if I do this:'access-list dmz_inside ...
Help! We are getting close to using up all the IP addresses we have on our LAN. We use a 128.100.x.x 255.255.255.0 scheme for network and I am not sure how or what to do make more addresses. Most of the nodes are DHCP from a win2k server, and the net...
This is a two sided question part philosophical part technical. If I have a new Win 2k3 web server that I put on my DMZ is it foolish to allow it to join my AD Domain by opening up the proper ports for AD communication between the DMZ interface and t...
Thanks,I have it loaded and connecting fine but when I have her map drives or try to use '\\server\share' from the address bar it times out. From what she relays to me(and from what I can see while monitoring connections on the PIX) she connects just...
Mike,Thanks for the clarification. After reading your post I sat down and really thought about it, I realized the DMZ intf is nothing more then another outside intf and the same theories apply to any intf face that isn't the inside intf. Thanks again...
Mike,Thanks for the insight!I improperly used 'route' when refering to static, but you got what i was refering to. If I am allowing traffic from a DMZ to inside intf then I would create and bind access-lists to the DMZ interface or the inside interfa...
I was looking at my PIX config and realized I dont need to open up the ports on the DMZ interface which ,i was doing(thank god for test networks), but rather palce those access-lists (using access-group) on the inside interface. So the syntax is:acce...
