Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am using Cisco PIX version 6.2(2). I have configured six DMZs on the PIX. Out of these 2 DMZs are configured to the Internet - one through DSL and another through a Leased circuits.I want to allow (say) 5 users to use the Internet through the DSL a...
The objective (say) is to browse - i.e one will try to send packets to the destination ip's port 80 from source ip's higher ports.Since, the syntax is :access-list permit tcp So, it will be in this caseaccess-list acl4inside permit tcp object-gro...
Thanks shannong.But, is it possible to create a site to site vpn on the side with the least traffic going through it. If the vpn deems traffic interesting (needing t go out route a) it will send it through the vpn otherwise it will automatically go o...
I understand that the TurboACL is recommended for PIX 525 and 535 models. Mine is a PIX 515. Also I read that TurboACL takes around 2.1MB of memory and also takes around 1MB for every 2000 ACL elements.I would like to know whether there is any change...
I have done the following:access-list 101 permit tcp host 192.168.11.11 any eq 80access-list 101 deny ip any anyaccess-group 101 in interface insideAfter some testing (for ports www, smtp, ssh etc.), the show access-list command gives the following o...
My objective is to convert from old outbound to new access-list and then deploy the object-group to simplify the configuration. The details are as follows:Old configuration:global (outside) 1 62.12.4.19nat (inside) 1 192.168.11.11 255.255.255.255 0 0...
