Question about pdm command. 1

[backupbob]

I just started a new job and took over the pix 515E UR. I was wondering if anyone could help me with the pdm location command. I think it is just setup for people using pdm outside the network, if so why would the old admin set it up like this.

Thanks,

pdm location 10.1.0.24 255.255.255.255 inside
pdm location 10.1.0.40 255.255.255.255 inside
pdm location 10.1.0.41 255.255.255.255 inside
pdm location 10.1.0.60 255.255.255.255 inside
pdm location 10.1.0.61 255.255.255.255 inside
pdm location 10.1.0.62 255.255.255.255 inside
pdm location 10.1.0.63 255.255.255.255 inside
pdm location 10.1.0.65 255.255.255.255 inside
pdm location 10.1.0.66 255.255.255.255 inside
pdm location 10.1.0.68 255.255.255.255 inside
pdm location 10.1.5.5 255.255.255.255 inside
pdm location 192.177.0.0 255.255.0.0 extra
pdm location 192.120.156.14 255.255.255.255 extra
pdm location 192.153.216.0 255.255.255.0 extra
pdm location 192.153.217.0 255.255.255.0 extra
pdm location 192.153.218.0 255.255.255.0 extra
pdm location 192.166.193.100 255.255.255.255 extra
pdm history enable

 

[tbissett]

pdm commands are added automatically by the PIX. They are specific to using the GUI, and aid in displaying which interface those systems reside on when a user looks in the GUI. So, the pdm location commands defining systems as "inside" will then display under the "inside" entry on the hosts/networks tab. Outside displays under the outside entry, etc. etc.

Also keep in mind that they have nothing to do with who is allowed to access the firewall.

You can delete them, but the next time someone starts the GUI, they will simply be added back in by the PIX.

 

[backupbob]

Thanks for the info. I was thinking it did mean (who is allowed to access the firewall). Thanks for clearing that up.