I like to set up a pix and router for this network for a small buss, but I need to know what type of cable do I need to set this connection to work straight through or a cross over cable? also I need a subgestion if a nat would work better on the pix or leave it on the router?
View 4 Repliesconfiguring 2620 cisco to cable modem for internet.I'm setting up a lab to practice and am having trouble getting this to work.Made several configs that don't work and starting over form scratch.
View 3 Replies View RelatedHow to configure SSH access on my PIX 506e. I would like to use local authentication with no AAA server. Also I would like to have telnet disabled completely.
View 3 Replies View RelatedThere is a PIX 506E and ASA5510, with different connection to service provider. Problem is Apple remote users can't access resources protected by the PIX506E. Apple users can access resources protected by ASA5510. Physically the PIX and ASA are in close proximity with no physical connections. Is it possible for Apple users to authenticate with the ASA and the traffic get routed to and get authenticated by the PIX, inorder to access resources?Due to bandwidth restrictions, a DMZ on the ASA will not be created at this time inorder to consolodate firewalls. Currently 2 x T1 is the connection between ASA and ISP; 1 T1 connects PIX to ISP.
View 1 Replies View RelatedI have a PIX506E that was resently reset and it has version PIX Version 7.1(2) . It either uses some different commands or I am not using them correctly. [code]
View 2 Replies View RelatedSo i got a Cisco PIX 506e from a friend and want to set it up for a VPN. Though i cant download the PDM (PIX Device Manager) since i dont have a Contract or something like that. So i cant set it up.
View 1 Replies View RelatedI need to replace an ageing PIX 506e with an ASA 5505.The current setup looks like this: The PIX is used for site-to-site VPN connection via the WAN 2 link. The WAN 1 link is used for general Internet connectivity.I don't have access to the Draytek Router as it is supported by a 3rd party, but I believe it uses static routing to direct the relevant traffic to/from the PIX.
When I replace the PIX with the ASA, the inside i/f connection experiences dropouts - but no errors show in the logs.The only significant difference I can see in the config is that the ASA utilises VLans for the inside & outside interface configs - I used the PIX-to-ASA Migration tool to make the initial configuration on the ASA.In tests, if I only connect the inside i/f of the ASA, pings from the LAN are stable. Once I connect the outside i/f, pings timeout approx 80% of the time.
I am new to the PIX firewall. And recently implemented the PIX 506e in my network. I wants to know how we can monitor the system that is generating the more traffic on Network through Firewall.
View 4 Replies View RelatedI am trying to add a username to the local database for remote VPN connection but always i get this error when I add,Encrypted password is of incorrect lengthUsername addition failed.
View 1 Replies View RelatedI just got a PIX 506e from a friend that was not longer using it. I'm trying to get started with the configuration page. I've reset it to factory defaults, rebooted and connected up ethernet. I can ping the device at 192.168.1.1 and access it via console. I browse the site https://192.168.1.1/startup.html, get the invalid ssl certification, get a login prompt (user/pass) and as the document says I leave it blank. As soon as I hit ok it goes to the 404 error Page Not found.
View 4 Replies View RelatedWhat is the easiest way to restore my config? I backed it up yesterday with my tftp server. Today I made some changes and messed some things up and need to restore the config from yesterday.
View 1 Replies View RelatedI'm getting an error message on my 506E that is saying not enough flash space to install the new version 8 software. I did a clear flashfs command and then tried again but get the same error. Do the PIX 506E can be upgraded from version 6 to version 8? I am trying to install pix804-28.bin.
View 3 Replies View RelatedI have a problem with PIX 506E that meets the version 6.1, and in an simple computer network equipment seems to behave in strange ways because some web sites do not open or very open slow thereby its operation impracticable. On the other hand other web sites open normally.
Querying the web site of the Cisco, I found several documents discussing the same problem but in a later version ( 7.0 ), not in this version 6.1.
I've tried removing the pix from the network , not the error occurred, again insert pix however tested only with a machine, without the rest of the network and the problem persists
So I was doing some testing with my BB Playbook where I wanted to see what outside connections it tried to make during startup and whatnot. I have a pix 506e running 6.3(5). I created an simple 'deny ip any any' access list on the inside interface so that the Playbook doesn't actually make any connections, but I set up a 'capture' on the inside interface accepting 'ip any any' to see what kind of traffic I could see heading outbound from the Playbook. Well, it started off showing attempts to query DNS (and failed, naturally), but then after a couple of minutes, it tried to connect to a couple of IPs over port 443 and actually got a response!!! For the life of me, I can't figure out how this can happen. NO traffic should be allowed outbound due to my explicit 'deny' rule, but for some reason some traffic on port 443 made it past the firewall and got a response back. There are no other rules in the access list except the 'deny' rule. My PIX configuration is quite simple and I cannot see anything that would allow the Playbook traffic to circumvent the access list.
I've come to think that either RIM has found away around Cisco access-lists, or there is a bug in the Pix OS. I know it's an old appliance/OS, but still. I wouldn't think it could be THAT easy to bypass the firewall.
We're having a duscussion here and the bet is the same cable - straight-thru ethernet - is used for a serial card be it single, dual or quad port - is that true?
View 8 Replies View RelatedI have the WAG120N, and I play Xbox online. I have tried so many things to get an open nat type, but the best i can get is moderate.
View 1 Replies View RelatedI want to directly connect two Win XP machines together to transfer large files.Both have "Gigabit Ethernet".Its been years since I last did this, and used to need a special cable called a crossover cable to accomplish this, but reading up to refresh my memory I believe I no longer need the special cable, but can use the cable that now connects my cable modem to my computer, as the Gigabit specification eliminates the need for a crossover cable.
View 3 Replies View Relatedat my house if i replaced a cat5 cable with a cat6 would i see increased download speeds?
View 5 Replies View RelatedI have a Cisco Linksys WAG120N running with the firmware version 1.00.12, and it's working a quite fine.During some tests with the nmap command under Linux, I noticed that beyond the ports 80 and 433, another opened port 32764 shows up running an unknown service.This unknown service keeps running after scanning for ports between 1-65535 using nmap in stealth mode. But after querying the modem for operating system fingerprint using nmap but not in stealth mode, this port closes and the service disappears.
By using a browser to access 192.168.1.1:32764, a 12 byte "<random_prefix>.exe" file is download, and its's recognized as a text file. The file contains a "MMcSÿÿÿÿ" string, and the bytes in hexadecimal are "4d 4d 63 53 ff ff ff ff 00 00 00 00".And also, something strange happens after this unknown service goes down: Accessing the modem setup via browser, the settings displayed are different than I commonly use. the encapsulation is set to "Bridged Mode Only" instead the "RFC 2516 PPPoE", and into the Status Tab the Current Time field says "Time Zone string Error". Still in the Status Tab, in the Internet Connection information the "Login Type" is a misspelled "UNKNOW", the interface says "Connected" to a well accessible Default Gateway., the same displayed into the Routing Table Entry. Th Applications & Gaming Tab is unaccessible.After power switching the modem off and on again, everything comes back to normal again.
I need to upgrade my WAG54GS, but there is no firmware in support. My latest firmware is V1.01.03. Where can I download it?
View 4 Replies View RelatedWhat kind of cable is required to connect to the Console on a Linksys SRW2024 switch ? ( I've lost the original cable )I use the following settings: Speed 38400, 8 bits, no parity, no flow control and stop bits 1I have tried a serial cable, no go.I have tried a null modem cable with partial handshaking, no go.I have tried a null modem cable with full handshaking, no go.For the null modem cables, if I use it to connect between computers using hyperterminal it works very well. What I type on one computer appears on the other computer's screen.However, I can't get anything out of the switch. I've tried pressing Enter repeatedly, resetting the switch with the Console cable on, etc.
View 2 Replies View RelatedI have a Linksys BEFSX41 wired router. If I wanted to connect a second computer to my router, what would be the maximum length of cable I can use without experiencing any problems ?
View 3 Replies View RelatedI have some LSA type 5, I want to change it from type 5 to type 3 before send to another Area, How can i do it?
View 1 Replies View RelatedI am quite new to firewall, in my company one asa 5510 firewall is there.I configured inside, outside, dns, dhcp and nating.I need to config bandwidth limit (1Mbps) for inside port and I restruct like facebook, youtube and pornsites..And I heard that some subscription is required, really is it required?
View 1 Replies View RelatedI have one firewall need to be configured in transparent mode. I have inside and outside router. What is the configuration of transparent firewall ASA8.2. I didn't find the configuration on Cisco site.
View 17 Replies View RelatedWe want to use ASA5520 but both Firewall have different CPU. One has CPU Pentium 4 2400 MHz and another has Pentium 4 Celeron 2000 MHz. Can it be configured for replica / failover?
View 5 Replies View RelatedIt seemed that show vpn-sessiondb ra-ikev1-ipsec will not provide the client type of the remote vpn user as show vpn-sessiondb remote did before.
Is there a way to find it out on ASA running 8.3?
I have created Different extended access-list which allow/block some specific services like IP,TCP,UDP ,ICMP etc for certain source and destination . But now I have to allow/Block all/any type of services to a certain host from a extended access-list . How can I do it ?
View 4 Replies View RelatedI have a capture set up of type "asp-drop all", and I am capturing certain packets with no indicated ASP drop reason. See output below (ASA 5510 with 8.0(5)23 code):asa5510-8.0# show capture, capture ASP type asp-drop all buffer 15000 circular-buffer [Capturing - 14912 bytes]
View 2 Replies View RelatedI have a Cisco ASA 5505. This has been previously configured. I am trying to give it a factory reset and I am being able to connect via Putty and Hyper-terminal but I cannot enter anything. I am able to go into ROMMAN mode by using the esc key.
View 6 Replies View RelatedI am very confused on how I setup a Pix 515 that I just got to route traffic out a cable modem. First, let me give you a little details on my current network setup and what I am trying to accomplish with this Pix 515. Currently all my users go out the proxy for any internet access, however I have certain users that need to go out the cable modem instead of the proxy server. Below is an example of the current IP setup of a user A:The cable modem that we currently have has DHCP so I would need the external PIX address to accept a DHCP address. I also don't really understand what else I need to setup so if I have say four users hitting the cable modem through the pix how do I direct their web traffic to the correct computer (NAT ?),I will be plugging the PIX into a cisco switch that all ports are in VLAN 48 so hopefully a static internal address on the pix of 10.24.48.254 will keep me from having to do any routes since all traffic will be originating from the 10.24.48.0 network.
View 1 Replies View RelatedI have two ASA 5510 with Security Plus license and Shared SSL VPN licensing enabled.
The problem is that the client get “Session could not be established: session limit of 25 reached” but ther is only 6 ssl vpn user connected with AnyConnect.The software on the firewall’s is 8.2(1)Is there any BUG in this software related to this problem?
I am switching a switch connecting to the ASA5550 tomorrow. My current switch is using fiber connecting to the ASA. The new one only support copper. If I switch between fiber to copper on the ASA (change media-type command on interface) will it cause a down time? I have VPN tunnel on the ASA and don't want the session to reset.
View 2 Replies View Related