Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I have a Cisco 2600 with IOS 12.3. I need a very basic configuration to allow traffic between two LANs. To test this I cleared the router config to the factory default state and configured my network addresses on the interfaces.When I connecte...
Hello Experts,On my Pix515E ASDM console I quite often see large surges in the total number of connections. I would like to find a convenient way to see what (or who) is causing this.The command Show Local gives the answers but it returns details of ...
Hello,I am using a PIX515 to forward a block of public IP addresses to my end users inside. I use an inbound acl on the outside interface to control which services inside are accessible from the outside.As far as I can see there are two ways to overr...
Hello experts,I am trying to filter some outbound traffic but becoming confused!If I have a network on the DMZ interface, eg 192.168.1.0/24, by default the implicit rules allow all traffic on this network to the outside interface but deny access t...
I am using a Pix 515 with IOS 8.0(3).I have in my access list on the outside interface...........access-list outside_access_in extended permit icmp any 12.23.34.0 255.255.255.0 echo access-list outside_access_in extended permit icmp any 12.23.34.0 25...
Hi Shrikant,Thanks for your reply.The pix version number is 8.0(3) but I have another unit which has 8.0(4) which I will be using in this role soon. ASDM is 6.0(3)Does "Clear "Xlate" only clear NAT translations or all connections? Most of my traffic...
Thanks for your reply.A supplementary question, is it possible to have multiple nat exemtions with separate acls?For exampleaccess-list nonat1 extended permit ip 12.34.56.00 255.255.255.0 anynat (inside) 0 access-list nonat1 1000 500access-list nonat...
Thanks Mike,It all makes perfect sense when someone else says it!I found it confusing that once I had added my own ACL the implicit rules are overridden and in order to keep traffic flowing I had to addpermit ip any anywhich seems contradictory to th...
Hi Mike,Thanks for your reply.The ASDM is version 6.0(3)The output of show service-policy is as follows: (all at default settings I presume because I haven't configured anything here)Global policy: Service-policy: global_policy Class-map: inspe...
