Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have a firewall (515E) with 3 interfaces with OS 7.0. To the outside interface we have a router conected to 1 ISP for internet and to the DMZ we have another router connected to the 2nd ISP for internet.The inside interface is connected to a swi...
Hi,I have 2 queries regarding FWSm, kindly suggest :1) As cisco says, "The FWSM connects the same network on its inside and outside interfaces, but each interface must be on a different VLAN. No dynamic routing protocols or NAT are required " what co...
whether it is possible to have two or 3 isakmp profiles, 1 configured with rsa-sig for authentcaition and the 2nd one configured for pre-shared key.Please help.
hi dan,as per the config , only "xxx.xxx.17.16 " is not getting NATed as it is NAT0. It doesn`t mean that whole DMZ is not getting NATed.but other DMZ hosts are statically mapped to outside IP addresses to go out of the PIX. hope this explains.regard...
hiwhat kind of HSRP traffic the other clients are recieving? under the interface config mode of BVI, apply the command "no ip forward-protocol 136" and same for 137,138.try this and cehck if it resolves the issue.regardsaashish C
hi ramthis is aashish. this is bug in 7.0.2. here is the bug : CSCei20809Symptom:When an acl is attached to a nat or nat-exempt statement, the acl counters are not incrementing.Conditions:allWorkaround:none.hows work. hope this resolves ur isue.regar...
hias you have upgraded the PIX image file, then you must apply the new actiavtion key for this.What was the previous IOS ? send the "sh ver" to licensing@cisco.com and get the key for your PIX. its available on no-charge basis.HTHregardsaashish C
