Search results for query: *

clear interface E?

Do you have this in your config? static (inside,outside) 213.121.173.2 192.168.1.150 netmask 255.255.255.255 0 0

Has anyone ever come across NTP on Catalyst switches behind the inside interface on PIX 515 not working. Servers work fine(also behind the inside interface of PIX) - they sync up without a problem, but the switches do not. I had to do a static translation on the PIX as well as add a line to...

I have opened up ports 53 tcp and udp on the outside, inside, and dmz interface and still I cannot resolve off of the DNS server in the DMZ - TAC support was not much help - has anyone run across this problem?

PIX Version 6.1(1) nameif ethernet0 outside security0 nameif ethernet1 inside security100 nameif ethernet2 dmz security10 nameif ethernet3 intf3 security15 nameif ethernet4 intf4 security20 nameif ethernet5 intf5 security25 enable password 8Ry2YjIyt7RRXU24 encrypted passwd 2KFQnbNIdI.2KYOU...

caryfields, The default way it passes traffic is in the IOS but you can alter that of course. To start passing traffic through the PIX you need two commands: nat (inside) 1 0 0 global (outside) 1 interface and making sure your interfaces are up and you should be able to pass traffic. From...

No, if all the traffic is originated from the inside interface going out. Basically, it is piggybacking on the TCP session when it comes back in the outside interface of the PIX. A good way to look at it is - "Consider the source" wherever it is sourced from it will be allowed back...

Try: access-list finance-acl permit tcp any host "users.ip.addr.ess" range 8194 8294 But remember, if it these protocols are initiated on the inside interface of the PIX then they will be allowed back in due to stateful inspection. Meaning, if your user starts the connection from...

FGaston, I will try that thanks!

Brian, The file did end with a .bin extension, but I will try downloading a new file - Thanks!

Yes - this part is not the problem - the PIX transfers the file from the TFTP server to itself, I get all of the !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! and then it says "This is not a PDMfile" "The file was not installed"

Access-lists are your best option here. There used to be outbound commands that restricted outbound access for certain protocols but now it is done with access-lists. Ex:access-list acl-inside deny tcp any any eq icmp access-list acl-inside deny tcp any any eq 110 access-list acl-inside...

I recently purchased a PIX 515 with 6.1 IOS and Version 1.0 of the PDM. I installed and configured for PDM and Ireceived a message stating that with IOS 6.1 I had to use PDM version 1.1. So, I downloaded and TFTP'd the new version of PDM into the PIX. Everything went fine - I saw the progress...

How about this: access-list acl_grp permit tcp any 209.165.201.0 255.255.255.224 Of course this is the entire subnet!

Is this what you need: global (outside) 1 209.165.201.10-209.165.201.20 netmask 255.255.255.224