Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is there anyone who worked with the Policy NAT on PIX 6.3 (2) ?I have a scenario where a central PIX vpn a remote site PIX .I want to translate Remote site inside private addresses because theyconflict with another remote site.So i want the Remote ...
Hi using PIX 6.2(2)I am able to translate from the outside to the inside using static (outside,inside)but should i be able to NAT usingglobal (inside) 1 192.168.0.129-192.168.0.253global (inside) 1 192.168.0.254nat (outside) 1 0.0.0.0 0.0.0.0 0 0i ...
Hi,Is the PIX 501 running the same OS than the PIX 506 ?I was looking at the PIX 501 Data Sheet and it says that PPPoE is available ( Q1 2002 ) .But i didn't find any PPPoE related command in the PIX OS command reference .I want to plug the PIX on ...
Hi,i would like to configure the VTY lines of a router so2 users can telnet but with different password.So i changed the configuration i had"line vty 0 4password ..........login"by applyingno line vty 0 4line vty 0password....loginline vty 1password...
The only purpose of "sysopt connection permit-ipsec" is to allow traffic in a tunnel to bypass access-groups. It is not essential to use It , but then you must explicitly allow the traffic you want through your access-list .The command is very use...
Are you sure this is suppose to work through a tunnel ? I never used this command , but as i understand it , it's the outside interface that will forward the DHCP request . But traffic issued by your outside interface is not part of your tunnel. ...
Do you use the command "sysopt connection permit-ipsec "This command allows all traffic going through the tunnel to bypass the access-lists applied on your interface . You can remove this command and be more granular on your filtering through acces...
Maybe your client router or modem cable cannot handle fragmentation .You may try to adjust the MTU on the client side .Start - Programs- Cisco....-Set MTUThe default value is 1300 , you can lower it until you reach a value wichalways work .
If you have a crypto map matching a non-existing access-list the PIX willstop forwarding everything.So be sure to create the crypto acl before the crypto map .Also when i want to modify crypto maps , i copy paste it in the notepad , do my modi...
