Search results for query: *

Thanks, When i use the packet tracer it all comes back ok. Daniel.

Once again thank you for all your help on this. The config now reads as follows but still no access: : Saved : PIX Version 8.0(3) ! interface Ethernet0 nameif outside security-level 0 ip address xxx.xxx.xxx.25 255.255.255.248 ospf cost 10 ! interface Ethernet1 nameif inside...

Result of the command: "route dmz 30.30.30.0 255.255.255.0 30.30.30.100" ERROR: Cannot add route, connected route exists When i was editing config for here i cut that line out i think.

Still no joy, config reads as follows: : PIX Version 8.0(3) ! interface Ethernet0 nameif outside security-level 0 ip address xxx.xxx.xxx.25 255.255.255.248 ospf cost 10 ! interface Ethernet1 nameif inside security-level 100 ip address 192.168.0.200 255.255.255.0 ospf cost 10 ...

no it is still in the running config

sorry to be a pain. I have tried both of the above and still nothing :(

yes they are the VPN clients.

i only need the 'inside' interface to access www on the 2 web servers on the 'DMZ' interface. Would the no-nat be more secure for the inside interface?

thank you for all your help. It has accepted all the commands but from a LAN client on the network 'Inside' i still cannot see the DMZ :( Kind regards, Daniel.

Thanks, it works fine up until: Result of the command: "object-group service www tcp" The command has been sent to the device Result of the command: "service-object eq www" service-object eq www ^ ERROR: % Invalid input detected at '^' marker.

yes it does

thanks for your help when i use the command network-object i get : Result of the command: "network-object 0.0.0.0 0.0.0.0" network-object 0.0.0.0 0.0.0.0 ^ ERROR: % Invalid input detected at '^' marker.

PIX Version 8.0(3) ! interface Ethernet0 nameif outside security-level 0 ip address 213.xxx.xxx.25 255.255.255.248 ospf cost 10 ! interface Ethernet1 nameif inside security-level 100 ip address 192.168.0.200 255.255.255.0 ospf cost 10 ! interface Ethernet2 nameif DMZ security-level 50...

PIX Version 8.0(3) ! interface Ethernet0 nameif outside security-level 0 ip address 213.xxx.xxx.25 255.255.255.248 ospf cost 10 ! interface Ethernet1 nameif inside security-level 100 ip address 192.168.0.200 255.255.255.0 ospf cost 10 ! interface Ethernet2 nameif DMZ security-level...

Hi, I have a 515e and 2x web servers on DMZ on 30.30.30.1 & .2 I have a LAN with NAT on 192.168.0.xxx I have mapped 2x external WAN address's 213.xxx.xxx.35 & 36 to the 2x Web servers. When i go to 213.xxx.xxx.35 or 36 from the LAN i cannot see the web servers. Can anyone advise. Kind...

Yes sorry i started a new post because my questions were moving away from the original thread subject. We will have 4 remote VPN peers. 6 Web Server that need to be on DMZ. And about 20 internal machines on the LAN. Kind Regards, Daniel.

Would we be able to put a switch on the DMZ side for 6 web servers on the 515e and the ASA5505? Thanks, Daniel.

Hi, We have currently 2 web servers and will be adding an additional 4. Does anyone know if PIX-515E-R-DMZ-BUN will be OK to run all 6 machines on DMZ interface? With dail in VPN's and 20 internal hosts. Kind Regards, Daniel.

Thank you for all your help. I think i need to put the webservers onto DMZ. Will a PIX-515E-R-DMZ-BUN do the job? how many DMZ hosts can i have? and can i put a switch on the DMZ interface to connect the webservers? Kind Regards, Daniel.

...www access-list PtsVPN_splitTunnelAcl permit ip 192.168.2.0 255.255.255.0 any pager lines 24 mtu outside 1500 mtu inside 1500 ip address outside **.**.**.25 255.255.255.248 ip address inside 192.168.2.200 255.255.255.0 ip audit info action alarm ip audit attack action alarm ip local pool...