RE: How to manage the pix 501 remotely via telnet or pdm [7:52833]

Fri, 06 Sep 2002 16:26:01 -0700 

You could always configure SSH instead of telnet.  PIX boxes accept SSH
connections coming from the outside interface.  

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Mark W. Odette II
Sent: Friday, September 06, 2002 6:25 PM
To: [EMAIL PROTECTED]
Subject: RE: How to manage the pix 501 remotely via telnet or pdm
[7:52831]


HUH!?!?! What does ICMP have to do with Telnet or the PDM??

Mindiani- To answer your question, yes there is an alleged way of doing
what you're wanting to do.  I have not done it myself yet, but there is
an example on CCO of how to do such a configuration.

Pad Pad Pad  http://www.cisco.com/warp/public/110/pdm_vpntun.html

For Telnet, as far as I know, there isn't a way to telnet to the PIX
from the outside- it's considered a security risk by the firewall group
at Cisco, so they don't allow for it.

If you want to telnet to the PIX, create a rule on the PIX that allows
your specific Internet Host to connect to a telnet device such as a
Switch or a Unix box (or even the Telnet Server on Win2K if I dare
suggest it), and then hit the PIX from that telnet host.  Be sure and
configure the PIX with the "telnet 'inside-host-ip' 255.255.255.255
inside" command.

Good luck, and let us know how you do!

Mark

-----Original Message-----
From: Dain Deutschman [mailto:[EMAIL PROTECTED]] 
Sent: Friday, September 06, 2002 4:28 PM
To: [EMAIL PROTECTED]
Subject: Re: How to manage the pix 501 remotely via telnet or pdm
[7:52826]

do you have the conduit configured to allow icmp? I think the PIX blocks
icmp unless you specifically open a conduit for it. Dain ""mindiani
mindiani""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi  I just installed two PIX 501 with vpn tunnel over the internet for
my
> client and I would like to allow telnet and pdm from one site to the 
> other. The tunnels are up and I able to send traffic in both
directions
> but I cannot telnet into the remote Pix from my PC.I tried the
following
> command: telnet 172.16.1.2  255.255.255.255 outside  This command
would
> not allow my PC (IP address172.16.1.2) to telnet to the remote site
but I
> am able to telnet to my servers behind the PIX. i have the same
problem
> with PDM.
>
>
------------------------------------------------------------------------
>
> Join the worlds largest e-mail service with MSN Hotmail. Click Here




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=52833&t=52833
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to