Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
923
Views
0
Helpful
0
Comments

Access through PIX Firewall is not possible when using PIX Device Manager

TCC_2
Level 10
Level 10

‎06-22-2009 03:37 PM - edited ‎03-08-2019 06:09 PM

Core issue

The PIX Device Manager (PDM) does not support Access Control Lists (ACLs) and conduits which are configured simultaneously. If both are configured on the PDM, traffic will cease to pass as a result of either.

Resolution

The PIX Firewall supports both conduits and ACLs. If traffic is passing through an interface that contains both an ACL and conduits, the PIX will only use the ACL applied to that interface. It will disregard all conduits. If traffic is passing through an interface that does not have an ACL applied to it, it will use any conduits present on the PIX.

The performance of ACLs and conduits on the PIX, when configured through PDM, varies from the above. When either ACLs or conduits are configured in PDM, they perform normally. However, when conduits exist and an ACL is applied to an interface using PDM, traffic will stop passing on that interface. This is because PDM does not support both conduits and ACLs. This aspect of PDM is not expected to change.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents