Hi all,
I have an issue in a customer.
The main system and default gateway is a passport nortel 1624, wich is the default gateway of all the LAN
I configured port fowarding in a Cisco PIX , and i know how to do it easilly.
PIX has a fixed public ip address
But im wondering one thing...
I was checking your config and i ask you this :
How do you want to be able to access that internal server without NAT? you need to configure static port forwording for this purpose.
In your config y just enabled http to the PIX,not for your internal interface
Try this:
static...
Why dont y try to put a post in cisco forum? or just go to cisco.com online helpdesk and ask them.They have a chat where y can do that.Y just need to register.
I think is stupid not being possible to get so simple license.
If you want to allow connections from any public ip address ,do this:
(this is a PIX 515E , different from yours, but it shouldnt be so different)
ssh 0.0.0.0 0.0.0.0 INTERNET
INTERNET is the name you gave to the outside interface
Sorry for my late answer....my life is a mess right now,looking for new job.
So lets go...
my pix :
Cisco PIX Security Appliance Software Version 7.2(2)
My topology :
1- 3 lan2lan remote sites connected by ipsec vpn tunnel
2- multiple vpn remote users (using cisco vpn client)
so here is...
yout post is poor in information.
If y need help..y need to be more specific....
Have y tried telnet yout switch? Just configure an ip inside the switch ip,connect a cable to it,and telnet it..
is very simple...
Software will come from a Fixed Ip address?!?!?
Wich software it is? Cisco VPN client?.You need to tell everything...
If no.....(fix IP address)
You need to create crypto dynamic maps for it.Crypto maps are just for fixed ip adresses.
I have a PIX 515E running it.Tomorrow i will try to get...
I have a PIX 515E in a customer(Hotel) with VPN users(wich i use)+ 2 lan2lan connections (fixed public ip's)+ 1 lan2lan (dynamic ip-3Gpen connect to a Vigor 2700) and i had the same issue.
But its possible to do this in this model typing this CLI cmd:
same-security-traffic permit...
PURCHASING AND INSTALLING LICENSES
To enable the licenses on a Cisco PIX Security Appliance, an activation key must be installed on that appliance. This key combines all licensed
features for a specific Cisco PIX Security Appliance into a single 32 or 40 digit hexadecimal number. An activation...
Just do :
1. write erase
2. reload
3. save config? - answer no
4. after reboot ,some kind of wizard will come up.Skip it
5. configure again the router has y wish.It starts just with a small config.
Hope it helps
joao
portugal
There is nothing wrong with it.
#clear crypto isakmp
just clear active Internet Key Exchange (IKE) connections
it dont delete it from the configuration.What is going to happen is that active connections will drop, but renegotiation will come up again.
So...nothing to worry about.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.