Well, you probably don't have the correct UDP port open for TFTP to come
into the network from the router. Open UDP port 63 (I think) from the
outside to the inside interface for TFTP from the router to the mgmt
station. Do this with the following:
conduit permit udp x.x.x.x 255.255.255.255 eq 63 z.z.z.z 255.255.255.255
Where x.x.x.x represents the outside address of the mgmt station (the
registered address) and z.z.z.z represents the inside interface (Ethernet)
of the router. This will allow TFTP from the router to the address of the
mgmt station, which will get translated as it passes through the PIX.
As for telnet, that should work as you are going from a higher security
interface to a lower one. Check that you have "login" and a password
created under the "lines vty 0 4" section of the router config.
If not, do this:
enable
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#line vty 0 4
Switch(config-line)#login
Switch(config-line)#password cisco (or whatever you want)
Switch(config-line)#^Z
Switch#
Switch#wr mem
Doing this will help you if the problem is a denial of telnet from the
router. If the PIX is blocking your telnet, then you should post a CLEANSED
config of the PIX so you can get help modifying it for the telnet
connection.
Hope this helps!
Rik
-----Original Message-----
From: Vasudeva Venkateshaiah [mailto:[EMAIL PROTECTED]]
Sent: Friday, December 15, 2000 3:19 PM
To: '[EMAIL PROTECTED]'
Subject: TFTP from inside..
Hi,
I have my management station behind the PIX and the TFTP server is running
on that machine. I am not able to do a TFTP of the config-file of the router
which is connected to internet. I can do so for the PIX.
I have a static mapping for the mgmt station to have a valid ip address. I
also cannot do a telnet to the Router from the machine. Ma I missing
something here?
Mgmt station------PIX------------Router------Internet.
Any help would be great.
Thanks
_________________________________
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
,
This mail was processed by Mail essentials for Exchange/SMTP,
the email security & management gateway. Mail essentials adds
content checking, email encryption, anti spam, anti virus,
attachment compression, personalised auto responders, archiving
and more to your Microsoft Exchange Server or SMTP mail server.
For more information visit http://www.mailessentials.com
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
