Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have configured rate limiting successfully in routers many times.I want to configure rate limiting in a 3750 switch, is there anything that differs from configuring it in a router? I have configured it on a routed port (no switchport) and applie...
Hi,I want the PIX to synchronize with two Windows 2000 domain controllers. The synchronization works but the PIX does not synch its own clock with the time it gets from the server.See output from the "show ntp association detail":x.x.x.x configured, ...
Hi,Are there any workarounds if two PIX firewalls have different isakmp identities and they need the keep their current isakmp identity?One is using "isakmp identity address", the other is using "isakmp identity hostname".Is there any solution to mak...
Is it possible to send traffic from Cisco VPN clients to the Internet through the PIX firewall? I don't want to use split tunneling.This is what is logged in the PIX:106011: Deny inbound (No xlate) tcp src outside:x.x.x.x/3048 dst outside:y.y.y.y/23x...
Hi Peter,You actually get 1 Mbps using your configuration?When I used your configuration I got more much more than 1 Mbps, in fact I got 400 Kbytes / s.Yes, that is true, it shall police it to 24000 bits with a burst of 8000 bytes. But that is what d...
Hi Peter,Many thanks for all your answers, it seems like it have worked all the time but the police values do not reflect the actual bandwidth allowed. When using this configuration I can send approximately 0,7 Mbps from the server affected by the po...
Hi again Peter,Very nice of you to test this!The "interface FastEthernet1/0/1" is that a switchport or a "routed port"?Is it a 3750 switch you are using?Can you try using an extended access-list instead of a standard?Many thanks,Best regardsEmanuel
Hi Peter,Thank you for your reply!I see that it does not work because no policing is done. I have verify it by sending traffic that matches the access-list and shall be policed, but it is not, these connections "eats up" all the bandwidth. That is wh...
Thank you for your reply.That link described how to solve it using IOS based routers. I opened a TAC case and they gave me the answer that there is not a workaround for the PIX boxes.Thanks,Best regardsEmanuel Lipschütz
