If i understood this correctly from cisco documentation, pix can be accessed remotely via http as a part of new pdm feature.Isn't it, http, unsecure? How can i secure that connection? any thoughts?
disadv:it brings HEADACHE :) and confusion during troubleshooting.besides, it will be a burden for a company's budget to hire individuals who know both pix and checkpoint, not accounting for hardware pricesAdv: none,Honestly, i don't see a reason to ...
Michael,thanks. I am assuming that username/passwords are set up on PDM side, right? Since configs for http on pix do not offer any syntax like that.what about using vpn to do http to the pix? is that alternative to https?thanksyury
Ralph,I did not use it yet.But i think it can effect your pix in the performance since it would have to inspect every packet based on the imbedded signatures of its IOS.As an alternative, get a separate unit to do IDS. for ex: you can get a linux box...
vladimir,1. did you check for physical identity of both boxes.Based on cisco docs, they say for both pixes to have identical IOS ver, and to be physically identical in number of ports/cards. 2. also, make sure that unused ports on both pixes are co...