Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Search results for query: *
- Users: sbaldwin22
- Order by date
-
PIX limiting internet connections
Replace your "global" and "nat" commands with these: global (outside) 1 interface nat (inside) 1 0 0 You probably won't need to change the "nat" command but this is what it should look like. This will configure port address translation, which you should not have a problem with too many...- sbaldwin22
- Post #7
- Forum: Security, hacker detection & forensics
-
Problem with IP Addresses on PIX506e
You setup the 506 to do pppoe dialing? Garrett- sbaldwin22
- Post #3
- Forum: Security, hacker detection & forensics
-
Site to site VPN only one side can initiate
I would say to post the configs. If you clear the isakmp sa's on both ends (cl isakmp sa) will traffic from either end bring up the tunnel and pass? Garrett- sbaldwin22
- Post #5
- Forum: Security, hacker detection & forensics
-
Is this pix secure?
I wouldn't use "des" as an encryption scheme for your vpn connections. I would setup "3des" is a minimum and also configure "aes". I would change your config to look like this: crypto ipsec transform-set myset esp-3des esp-md5-hmac (<-- changed) crypto ipsec transform-set myset2 esp-aes...- sbaldwin22
- Post #7
- Forum: Security, hacker detection & forensics
-
Nat inside VPN Tunnel with Pix
NAT is not the same as NAT-T. NAT Traversal is also disabled by default. This will turn it on: isakmp nat-traversal 20 <20> is the nat keepalive, set it higher or lower as you desire.- sbaldwin22
- Post #6
- Forum: Security, hacker detection & forensics
