About navnit

navnit · 07-13-2006

Hi,I m having following PIX-appliance-------------------------------------Cisco PIX Security Appliance Software Version 7.0(4)Device Manager Version 5.0(4)Compiled on Thu 13-Oct-05 21:43 by buildersSystem image file is "flash:/image"Config file at bo...

navnit · 07-13-2006

Hi,I m having following PIX-appliance-------------------------------------Cisco PIX Security Appliance Software Version 7.0(4) Device Manager Version 5.0(4)Compiled on Thu 13-Oct-05 21:43 by buildersSystem image file is "flash:/image"Config file at b...

navnit · 02-20-2006

Hi,We are having FWSM module in 6500 switch, also having license for 20 seperate security contexts.The problem is, I am able to create more then two contexts but at a time only one will work.pls help me on the same

navnit · 02-20-2006

Hi,We are having FWSM module in 6500 switch, also having license for 20 seperate security contexts.The problem is, I am able to create more then two contexts but at a time only one will work.(config. attached)pls help me on the same

navnit · 02-08-2006

Hi,Can we create multiple RSPAN Vlans on one switch and span across the same VTP domain ?I am using Cat 6500 switch.Is it possible to have multiple RSPAN sessions Simultaneouslyrequire valuable inputs for the same.

navnit · 03-18-2006

From inside zone you will not be able to ping outside interface of ASA/PIX - try to ping any other resources on outside interface.Also, ICMP will not consider as statefull in ASA/PIX acl - you should allow ICMP access on both the interfaces- Navnit

navnit · 03-18-2006

The reson to create IPSec tunnel is to protect data over shared link.If carrier edge rtr is managed by you then you can have either of the option.- Navnit

navnit · 03-17-2006

No issue of having public IP on internal interface if you have solid perimeter security infrastructure.But the recommendation is to use non-routable public IP on inernal interface.

navnit · 03-17-2006

Just to add,If it is two way IPSec VPN tunnel then access require on both direction whether its router/pix/asa withProtocol - 50,51 and udp 500hope its clear...

navnit · 06-14-2005

Hi,To access the server i.j.k.l from outside , this server should have public IP if its in a DMZ. If its in a private (internal) segment then one-to-one static NAT is required on the PIX.Also some of the TCP and UDP ports need to be open in PIX for o...

Member Since	‎08-02-2003 10:36 PM
Date Last Visited	‎08-18-2017 03:51 AM
Posts	11
Total Helpful Votes Received	5

User Statistics

User Activity

sysopt noproxyarp

sysopt noproxyarp

FWSM Security Context

FWSM Security context

Multiple RSPAN Vlan on cat 6500

Re: Initial install of ASA5520

Re: What's the right IPSec architecture in this case?

Re: Ipsec between VPN 3000 concentrator and internal Radius serv

Re: How to allow port 50,51,500 for IPSec peering

Re: access to my network through pix 501