PIX PDM [7:74758]
Our security group is recommending not to use PDM to configure our Pix firewalls. They did not give any reason for their recommendation. Does anyone know why PDM should not be used? __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74758&t=74758 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: PIX PDM [7:74758]
"Our security group is recommending not to use PDM to configure our Pix firewalls. They did not give any reason for their recommendation. Does anyone know why PDM should not be used?" From what I understand there are a few commands that can't be used from the PDM (they require the use of the CLI), also using a web-based configuration tool seems to undermine the very premise of network security, if you think about it how many companies use the other web-based software (for configuration) that Cisco has made available. Also , if you look at the software that Cisco has produced in the past it hasn't been very reliable (due to the fact that it is freely available and gives no ROI) an example would be their TFTP server software or the Cisco Configmaker. From what I understand the PDM was made available to compete with the other vendors web based configuration software, obviously there is a demand from the customers for such software(So it could be possible that Cisco is actually making am attempt on this one), but whether or not PDM is just a marketing tool or a viable configuration solution I don't know. What is the reason that you are considering using the PDM software in the first place??? HTH, Jason ""Gary Leong"" wrote in message news:[EMAIL PROTECTED] > Our security group is recommending not to use PDM to > configure our Pix firewalls. They did not give any > reason for their recommendation. Does anyone know why > PDM should not be used? > > __ > Do you Yahoo!? > Yahoo! SiteBuilder - Free, easy-to-use web site design software > http://sitebuilder.yahoo.com > **Please support GroupStudy by purchasing from the GroupStudy Store: > http://shop.groupstudy.com > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74769&t=74758 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
RE: PIX PDM [7:74758]
Basic config PDM OK Exotic > CLI HIGH security? No pdm no ssh no telnet no snmp large shop> maybe from a private management segment snmp small shop > inside intf PDM management/monitoring + extra access-list Always include radius/tacacs+ in the process for auth Always work from policies. Martijn -Oorspronkelijk bericht- Van: Gary Leong [mailto:[EMAIL PROTECTED] Verzonden: donderdag 4 september 2003 4:09 Aan: [EMAIL PROTECTED] Onderwerp: PIX PDM [7:74758] Our security group is recommending not to use PDM to configure our Pix firewalls. They did not give any reason for their recommendation. Does anyone know why PDM should not be used? __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74941&t=74758 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: PIX PDM [7:74758]
I have experienced by using PDM to configure VPN is unstable. Everytime I try to modify the particular VPN connection. All of the connection will be disconnected. In addition, everytime if you have changed the configuration in PDM, you must remember to save it manually, otherwise reboot will erase all of the config. Finally, before you make any change within PDM, you should download the latest version configuration from PIX. Otherwise, you will erase the running config. Philip ""Gary Leong"" wrote in message news:[EMAIL PROTECTED] > Our security group is recommending not to use PDM to > configure our Pix firewalls. They did not give any > reason for their recommendation. Does anyone know why > PDM should not be used? > > __ > Do you Yahoo!? > Yahoo! SiteBuilder - Free, easy-to-use web site design software > http://sitebuilder.yahoo.com > **Please support GroupStudy by purchasing from the GroupStudy Store: > http://shop.groupstudy.com > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=75162&t=74758 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
