Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
My Pix 515E model tears down my TCP connections in 4 in a very short about 4 seconds even though the timeout conn half-closed is 0:10:00 (10 minutes). How can I prevent the Pix box from tearing down my tcp connnections so fast? Below are my timeout s...
I have an application, on the DMZ (ip 10.1.2.2), that needs to log into a server on an inside host (ip 10.1.0.5). I have enabled tcp but inbound tcp is still denied. The interfaces and host ip's are:outside: 10.1.1.1 host 10.1.1.2inside: 10.1.0.1 hos...
I have a 3 interface Pix and I can only ping from a host on the inside to a host on the DMZ and back the other way. Pinging from the outside to the DMZ (ping 10.1.1.3) and the back the other way (ping 10.1.1.2) fails. The error output on the CLI is "...
I want to ping from a host on the outside to a host on the DMZ and at the same time be able to ping from the DMZ to the inside. I can only ping from DMZ to inside after creating the following static and access-list commandsstatic (DMZ,outside) 10.1.1...
I have a 3 interface Pix vers 6.1. I want to ping from a host on the DMZ (lower security) to a host on the inside (higher security) but so far have been unsuccessful. I have tried all kinds of things including: static (inside,DMZ) 200.1.1.5 10.1.1.5 ...
It turns out that this could be a problem with the application I am using - it's unable to connect to my server using ip addresses and has to use computer names (DNS). But I don't know how to set the Pix to allow clients to use computer names (i.e., ...
Ok, I think I understand what you were asking now. The application uses the translated address 10.1.2.3 to communicate with the server on 10.1.0.5. However this does not work. Thanks for the patience
How does one find out if communication b/w the servers is on translated addresses or on real adresses? I am new to this and I thought that as long as I can ping from the application host to the server host and then enable tcp communication the server...
