Yet another who can't access PDM

[trismegistus]

Hi

I have installed PDM and used it on all PIX except the 506e. I installed it today on a 506e. I have the Java settings correct on the PC, I have the correct browser, the addresses are all set and the versions of PDM and the PIX IOS are 301 and 6.3 respectively. I have no personal firewall software running. I can ping from PIX to workstation and back and have set IE to never dial a connection.

I cannot connect to PDM. Is this an XP issue? I am using https.

Any suggestions other than smashing the firewall to pieces on the floor?

 

[themut]

Have you configured an RSA key? The command "show ca mypubrsa" will tell you if there is a key configured... if not create one, you will need the following commands:

hostname...
domain-name...
ca generate rsa key 512
ca save all

 

[trismegistus]

Hi

Thanks for that but it made no difference. I have never seen that as a prerequisite for PDM anyway.

 

[themut]

The PDM needs an RSA key to encrypt the traffic, in order to configure a key you need to have DES or 3DES enabled. The command show version will tell you if DES or 3DES is enabled. A PIX fresh out of the box has a key preconfigured but it may no longer be working. I would delete the key and generate it again, the commands are:

ca zeroize rsa
ca generate rsa key 512
ca save all

Have you configured http server enable?

 

[zacca]

um... wondering if you already enforced the pix commands to allow your workstation to access the pix via pdm?

 

[trismegistus]

I am no expert but the process to permit PDM is to give your internal interface an IP address and then https into it. I have done this. I have done this a hundred times in the past as well and it has worked.

Also, the PIX is brand new and came with the DES license installed.

 

[themut]

Nope... You need to enable the http server and then define the IP addresses and interface which will be allowed to access the PDM.

http server server enable
http <local-ip> <subnet-mask> inside

 

[trismegistus]

Hi

I got it sorted thanks. I am not sure quite why it started working so am unable to confirm anyone's suggestions. Most of them were pre-configured but I did need to specify the location of PDM.

If I suss it out i'll let you know what it was.

 

[sghezzi]

Hello, did you figure out how you fixed the problem?

I habe PIX 6.3(3) and PDM 3.0(1) and the PDM Java applet doesn't pop-up.
I get the first two windows from PDM, but then the second window hangs saying &quot;loading PIX DeviceManager. Please wait...&quot; and nothing happens.

please help

Thanks

Silvia

 

[trismegistus]

Hi

Yes I did. It was a problem with revisions, which you don't have by looking at your versions on the post.

It sounds like you either have a problem with the version of Java, or you have a corrupted PDM, or a problem with the link between you and the PIX.

Thats all I can offer i'm afraid.