Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a 3640 router. I noticed that the fast ethernet interface has input queue drops for packets that are being forwarded through the router.Are the input queue drops anything to be concerned about? If so, what can be done to prevent them. I cannot...
I have a hub-spoke Wan design. The hub is a T1. The spokes are all smaller than a T1. I was thinking about implementing traffic shaping at the hub because I am seeing some congestion at two of the remote sites and will be installing some application ...
All the host on my remote network 208.15.57.0 were able to ping the host on my local network 172.16.20.0. Now for some reason host 208.15.57.25 cannot ping host 172.16.20.3. Host 208.15.57.25 can ping any other address except 172.16.20.3. The problem...
I have a web site residing in dmz1. Public IP addresses are assigned to the servers in dmz1. From my inside host I can access the web site by typing in www.whatever.com for the URL.I want to change my IP addresses to private IPs in dmz1. When I do th...
I have a PIX 515 version 4.4(1). Recently, I have been having a problem where either a host is unable to establish a outbound connection through the firewall or certain protocols for host computers cannot go out through the firewall. To resolve the p...
Based on your network and routing protocol you could look at setting up static routes that reference the ISDN interface. Set the administrative distance higher than the routing protocol that you are using.In addition, you could set the dialer idle-ti...
It is true that you do not need a conduit or access-list to go from a higher to lower security level. Please provide more information on whether going from a dmz to outside, inside to outside, etc. It could be that you are just missing your NAT, STAT...
If you have your ethernet interface on the router connected to a switch you could possible have a duplex or speed mismatch problem. If the switch port is set to auto, manually set the ethernet interface on the router to full or half duplex and to 10 ...
The key is that you have to allow the echo-reply into the outside interface.These are the access-list statements I am using;access-list acl_outside permit icmp any any echo-reply access-list acl_outside permit icmp any any source-quench access-list a...
