About carl.forbes

carl.forbes · 05-09-2008

Hi,I would like to know if it is posible to pass multiple values from one eBGP peer to another - i.e. with something similar to extended communities? I.e. can an upstream peer pass 6 variables to the downstream peer for processing and making a route ...

carl.forbes · 03-28-2007

Hi,I would like to terminate my remote access VPN on a PIX 525 software 6.3(4).Can I use the following command to enable local user authentication:crypto map my-map client authentication localI do not have a AAA server in the environment.(this is a d...

carl.forbes · 03-28-2007

Hi,I have a Cisco PIX 525 (v6.3(4)) that I would like to enable remote access via a IPSec VPN. That part of the config I have found on the cisco website and believe I have a solution.The PIX is configured with 3 interfaces (inside, outside & DMZ). ...

carl.forbes · 02-01-2007

Hi guys,Hopefully you can help me here and put me straight, I've spent the last two days trawling through documentation to find an answer.OK the setup - 1 PIX 525, 3 interfaces - outside, inside & dmz.I want 10 internet users (outside) to access a se...

carl.forbes · 06-21-2006

Hi,I have 4 SSLMs inline below a CSM (VServer real IPs are the IPs of the SSLMs). My question is - Can these SSLMs share state information?Thanks,Carl.

carl.forbes · 05-09-2008

I wasn't aware it was possible to do this, thanks, but leads me to another question. For the upstream peer receiving this update - is it possible to index each value individually. E.g.:comm 1:100 = value [1]comm 1:101 = value [2]comm 1:102 = value ...

carl.forbes · 05-09-2008

Hmm, i don't think so. From what i understand of the additive option, it would appear to add an additional community in transit.I would like to add e.g. 6 community variables at the same time and send them to the downsream peer.Thanks for this thoug...

carl.forbes · 04-02-2007

Hi David,I'm a little confused at the moment, but hopefully this will be the last post.My setup:1.1.1.1 (Internet users, outside)192.168.0.0/24 (DMZ network, dmz)10.0.0.0/24 (Internal network, inside)192.168.1.0/24 (VPN pool)Traffic flows - A user es...

carl.forbes · 04-02-2007

Thanks for your help guys.I have spent the past few days searching for port/protocols I need to open to allow the tunnel to establish when using no sysopt conn permit-ipsec with no success.So far I have the following:UDP 500 for ISAKMPBut am unsure w...

carl.forbes · 03-29-2007

Ah ok.Got it thanks guys, very much appreciated.So ACL on outside interface and seperate VPN pool.Easy ;o)

Member Since	‎04-06-2006 12:42 AM
Date Last Visited	‎08-18-2017 03:55 AM
Posts	15

User Statistics

User Activity

Passing multiple values using BGP

PIX Remote Access VPN - Local Authentication

PIX (v6.3) Remote Access IPSec VPN - limit access once established

NATing from outside in

SSLM sharing state info

Re: Passing multiple values using BGP

Re: Passing multiple values using BGP

Re: PIX (v6.3) Remote Access IPSec VPN - limit access once estab

Re: PIX (v6.3) Remote Access IPSec VPN - limit access once estab

Re: PIX (v6.3) Remote Access IPSec VPN - limit access once estab