Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, I'm using CAT 6509 switch with FWSM blade from past three years. Today FWSM module went down without any warning messages or crashdump information.Show module on chassis indicated that that status for FWSM was shutdown. I could not get any inform...
Hi, I'm in need of following NAT configuration on Cisco IOS. Working Inbound traffic NAT:Internal host (IP: 10.0.0.10) is listening on TCP port 80 - mapped to external IP 192.168.0.10 on TCP port 80related nat command:ip nat inside source static tcp ...
Hi, This topic has been raised before and I have not found any answers. I hope it will help many others who are looking for the same information. I have a need to upgrade two FWSM blades in two different 6509 chassis from 1.1.3 to 2.2 or 2.3.x in a f...
Hi...Can anybody please tell me what this error means and why I’m getting it?I’m running PIX version 6.3.3 static (inside,outside) 172.16.8.42 access-list test ERROR: invalid netmask 255.255.0.0 with global address 172.16.8.42Usage: [no] static [(...
Hi, I need to know if it is possible to setup a PIX firewall to act like an ICMP proxy for all internal hosts. ICMP request from Internet cloud should not reach the actual server. PIX firewall should send the ICMP reply to requesting host on the inte...
Hi Binh, Thank you so much for the information.I have following doubts: I hope you can clear these easily.Question1:I understand that 2x has the following modes:1. Routed mode2. Transparent mode. I'm not sure what the above modes do. I also don't hav...
Hi, I'm planning to upgrade FWSM blades in the same scenario...My question is what happens when the Primary blade comes up with new image version number (version mismatch)? I assume this will create problem as 1.1.3 doesn't support different version ...
Thanks for your valuable input…I'm planning to upgrade FWSM to 2x.Also I upgraded PIX to 6.3.4 and tried these commands...Static statements with access-lists only accept UDP and TCP connections, not ICMP connections. Here’s what the problem is:acl ic...
Thanks for the reply...Actually I got it working. I had to disable the NAT transparency on 7200 router. no crypto ipsec nat-transparency udp-encaps. According to docs on Cisco / Lynksis you have to disable this feature if your network is IPSec aware....
So, this is a vpn client software limitation not a VPN server (PIX, Concentrator) limitation right?If anybody knows any workarounds for this problem, please let me know.Thanks,Shekar
