Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We are phasing out a 5500 switch and setting up a 6500 catalyst in its place. The 5500 is set up as the only VTP server and connected to other switches using ISL trunking. The 6500 will be connected to the domain as a second VTP server. My question ...
Does anyone know how to interpret the output of "show conn" command, specifically the "flags"?Here is an example:SNIFF# sho conn local 192.168.120.189 net 255.255.255.255TCP out 192.168.225.30:80 in 192.168.120.189:1510 idle 0:00:02 Bytes 375 flags U...
Hello Chris,Could you post the pix configs? (remember to remove/mask public ip addresses or any other sesnsitive info).I was wondering, how many global ip addresses are assigned? Is PAT enabled?Regards,Mustafa
Hi,you need to find out what IOS version and image is installed on the router. Issue "show version"and look for the image name.The best 2600 IOS image that supports most of the IPSec features is:Feature set: "IP/FW/IDS PLUS IPSEC 3DES BASIC"Image nam...
Hi, sorry for the late reply.I think as long as you have default route:route outside 0.0.0.0 0.0.0.0 x.x.x.x (next hop is the outside upstream/ISP router)then you don't need a route for 172.16.x.x
Hi,try this setup, using static policy nat to translate 192.168.0.0/24 to 172.16.1.0/24 for pix 1, and translate 192.168.0.0/24 to 172.16.2.0/24 for pix 2.Hosts on pix 1 side will use source 172.168.1.0/24 and destination 172.16.2.0/24 to talk to hos...
Hello,GRE is ip protocol 47, it is not a tcp or udp port number. PPTP is tcp port 1723.I think the access-list should be:access-list 101 permit gre any x.x.206.32 0.0.0.7access-list 101 permit tcp any eq 1723 x.x.206.32 0.0.0.7HTH,Mustafap.s. please ...
