Search results for query: *

i dont think the statement below will work... static (inside,outside) 1.1.1.1 192.168.x.x dns netmask 255.255.255.255 i just tried it on my internal network and it blocked off all my internet traffic....

hhmmm ok...how would i go about setting that up in mrtg to ask for the info then??....i a bit new to mrtg and im also guessing this is the wrong site to post about it :0) ...

hey everyone...im kind of stuck here...for some reason i cannot get mrtg to poll the outside interface on my pix....im guessing there is a NAT issue since the mrtg server is using a private IP trying to poll a public IP...not sure how to fix this or what info you guys would need to see in order...

just out of curiosity...if you went to www.grc.com and did a port scan to see what was opened at your firewall.....you SHOULD see port 80 open right?.... for some reason I am not seeing port 80 open yet i am seeing ssh open (the rules are basically identical with the exception of 'ssh' and...

i know someone mentioned open sourced items and i am on the same boat as that person...why not use some open source software like ethereal or snort?....an IDS is very simple to implement and snort is relativley easy to setup in a network...will allow you to capture all sortsa traffic and a...

yea it looks to be a name resolution issue....can you do a trace to your exchange server from the vpn and then from inside the network to see where the different hops are?....maybe from the vpn you figure out that its taking a very different hop then where it should be....also, like almighty...

what messages are you logging?...what does your show log output give you?...not sure if the pix's can do this but maybe try a 'sh cpu' right when the issue finishes to see where the cpu level is....how much traffic is going through right now?....do you have any mrtg or cacti graphs that show...

well when the users are vpn'ing, they should be able to hit your exchange server if outlook is configured on the notebooks with your specific exchange server settings....what issue are you actually seeing?...are your users not able to use outlook when going through the vpn?...what is behind that...

if its a pix 501 (this is the only pix ive worked with so bare with me)...this is how its done... create the ACL rule: access-list inbound permit tcp 100.101.102.x/32 host pub.lic.ip.here eq ssh create the static map: static (inside,outside) tcp interface ssh 10.11.20.10 ssh netmask...

ahah...yea i only have one IP to play with...looking at all the info i have received from you guys and what i have researched...it looks like i may have to setup a dns server internally...ive never configured a dns server so that will be fun :0) ....nah this is for my home network so its nothing...

aahhhhh crap...your right...port redirection cant be in use...damn....well i guess its not THAT important...what other option would i have instead of using port redirection?...static entries?

ok i just tried that...and i cleared xlate....that just killed my internet connection completely....is that normal?...should i have waited longer?...i ended up consoling in and removing the alias line and static line...and now im back to normal...damn this is getting even more confusing to...

hhmmm ok thanks for the reply.....so i looked up some info regarding the alias command... http://www.cisco.com/warp/public/110/alias.html heres where i have gotten so far....i went ahead and aded the alias command: alias (inside) 192.168.x.x 64.81.x.x 255.255.255.255 The 64.81.x.x is the...

Ok I am not sure if I am the only one seeing this. I have a Pix 501 (ver. 6.3) and I setup the web server behind my fw. I can get to my webserver using the private ip while I am inside the network. I can get to the webserver from the outside using the public IP or domain name. However I...