I got access list as follows on my router
access-list 100 permit icmp host any host xyz ttl-exceed
access-list 100 deny icmp any any
when I do a traceroute from host xyz,I get reply only from some hosts .The
Hitcounts on deny icmp icmp increases.the access-group is applied to the in
Am I
now i am looking cisco's ipsec pages
but yet i can't accomplisht this issue
ramesh c wrote:
Folks,
Would appreciate if anyone can explain the basics of VPN(Ipsec).
I got a Ipsec running between two pix.What really happens
when a packet
arrives at the interface?I need the entire
Folks,
Would appreciate if anyone can explain the basics of VPN(Ipsec).
I got a Ipsec running between two pix.What really happens when a packet
arrives at the interface?I need the entire process...
Cheers
_
Get 25MB, POP3, Spam
Can I have a VPN within my organization.my setup as follows
HostAin(PIX-A)dmz-out(Pix-B)dmz-HostB
Can I have a VPN established between dmz of PIX A and outside of PIX B.both
are in same segment (172.16.1.xxx)Let me know if u got any example.Just for
testing
Hi folks,
My set up as follows
Host A-(in)PixA(out)Internet---(out)PixB(in)HostB
I have a VPN using Ipsec between Pix A and Pix B.Do I need to have a Static
(inside,outside)to hostB for hostA to connect or Pix B would default route
the packet to hostb.
nat 0 access-list 80
Configuration
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 dmz security50
interface ethernet0 10baset
interface ethernet1 10baset
interface ethernet0 100basetx
ip address outside 209.165.201.2 255.255.255.248
ip address inside 192.168.7.0 255.255.255.0
1)I got traffic flowing from outside to dmz.I got a mail server sitting on
the dmz.
access-list acl_outside permit tcp any host mail eq smtp
Do I need to the following?or just the access-list will do?
static (dmz,outside) mail mail netmask 255.255.255.255 0
2)Can inside access DMZ without nat
Hi,
I got some queries abt Net flow.
1)Which is defined as Flow?Packets between two entites or single packet
between entites ?
2)Can net flow be enabled on switches?
Cheers
Go Get It!
Send FREE Valentine eCards with Lycos Greetings
http://greetings.lycos.com
Message Posted at:
Folks,
1)Whats difference between ADSL and SDSL?
2)Can I have 2Pcs connected over ADSL or SDSL(Like Windows NT RAS)?
3)Does ADSL or SDSL need special telephone line or the existing line is
sufficient?
Cheers
R
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=33144t=33144
Folks,
For network 10.1.0.0/24 ..the access list would be
access_list 120 permit ip 10.1.0.0 0.0.0.255 any
What would be access list if my network is 10.1.0.0/27?
Cheers
Ramesh
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=28686t=28686
Folx,
Ther serial port of my router is connected to PVT network and ethernet is
connected to Internet,throught which i am going to establish VPN(Ipsec).
My question are...
1)I am not running nat on my router,do i still need to add the following on
my router...
access-list 130 deny ip 10.65.0.0
Folx,
1)I have set VPN between 2 private networks over the internet.I want to know
how the packets are forwarded to the destination Or in other words what
really happens on the router when a packet for VPN arrives?
I got a static route
ip route 0.0.0.0 0.0.0.0 210.23.5.6
2)Do i need to enable
Hi folx,
I got a lease line connected to private network and ethernet port connected
to Internet.The router is configured as IOS firewall.I am planning to do a
VPN to another office.
1)Can I turn off CBAC and just use the access-list for security purpose?
2)As default Outside cannot reach
Folx,
A)I got 2 networks connected by a router.I apply access-group for both in
and out of the interface.
Is my assumption correct?
1)The access list for in would be processed when the packet leaves that
interface to diff network?
2)The access list for out would be processed when the
Hi corness,
Thanks fer your earlier replies
My setup as follows..
pvt network-RouterInternet-Pixpvt network
I want to do a VPN between the private networks using ipsec.I am concerned
with router side.The s0 (10.1.0.1/24) of router is connected to pvt network
and
Folks,
I was reading the article about IPSec and thought some of u might enlighten
my doubts. As we know IETF had split the IPsec into 2 parts namely Ipsec and
IKE.
1)Since IPsec(Ah or ESP)can provide all the Encryption,Authentication and
intergrity,do we still need a IKE for creating
Hi guys,
Is there any site which give details(Configuration,specs)abt VPN between
Pix firewall and checkpt firewall using IPSec.
TIA
Cheers
Ramesh
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=27787t=27787
--
FAQ, list
1) I got a pix in test(all internal) environment (configured as
outside,inside and DMZ).Do I need to use NAT to connect to the outside
segment from inside or vice versa.Since Pix can act as a router ,will
enabling routing solve this purpose without use of NAT.Applying access list
later for
My setup as follows
I got VLAN and my IP range is xxx.xxx.xxx.xxx/25 and gateway being
xxx.xxx.yyy.254/20 .I got a Win2k machine with IP address xxx.xxx.xxx.129
and am able to ping the router and other systems.
Now I plug in a Sun system with Ip address xxx.xxx.xxx.130 ,also specify
Hey guys,
I am sure many would done thisplease help me
I have connected my SUN SYSTEM serial port A to the laptop serial port and
am using hyper terminal for console login.I get console login screen and
boot up messages.Everything works fine..I am able to login.
My question how do I
Hey Guys,
My setup as follows
Internet -- Router PIX -- Internal network
We are using a 192.168.x.x network and using NAT to change to valid ip
address.So when I need to setup VPN should I use the 192.168.x.x or the
Valid Ip address?
My internet router config
interface
Hey gurus,
I am using NAT in my setup and I find only these entires related to
NAT...what is really happening here?
interface Ethernet0/0
ip address 10.1.1.1 255.255.255.255
ip nat inside
interface serial0
ip address xxx...(Connected to Internet)
Anyone can help?
Make a
1) Does a Network Interface card support 2^47 ethernet multicast address.If
so how are the Addresses generated or stored?
2)How are the Ip Multicast address mapped to Ethernet multicast address?
Cheers
Get 250 color business cards for FREE!
http://businesscards.lycos.com/vp/fastpath/
sending them (0:8:c7:d2:4a:ab) and
check its configuration?
Priscilla
At 05:20 AM 6/26/01, Ramesh c wrote:
I did a kind of traffic study on my network and here it goes
1)I get about 2100 broadcast packets in 30minutes.Does that sound a alarm
in
my network
I did a kind of traffic study on my network and here it goes
1)I get about 2100 broadcast packets in 30minutes.Does that sound a alarm in
my network?
-
2)Most of the Broadcast of this type...
57 0.03870 10.65.2.192 -
I am running NIS+ Root server (solaris 8) on a Intel(#Server1).I have
configured the NIS+ server and populated the tables.I have also intialised
the Client(#Machine1). When I try to login at client(#Machine1) as usr1 I
get a error message "unable to access home directory".But the same works on
Hi,
I am trying to install Oracle 8i(8.1.6)on RedHat linux 7.0.(2.2.16-22)The Glib which
comes along with RedHat is glibc 2.2
The installation of Oracle is successful.But when I try to create a database I get the
following error message.
svrmgrl
"ORA-03113 end-of-file on communication
Hi,
Some thing strange happend on my exchange server.My exchange server started to send
out old mails.To be precise it started to send replicas of message already sent.
what is the reason for this kind of strange behaviour and any solution for it?
Any help would be appreciated.
Sorry to post
Hi cisco guru,
I have a lease line(connected to serial port).I get about 60% crc error per day on the
line.What could be the cause and any solutions?
Thanks
Regards
Ramesh
Get FREE Email/Voicemail with 15MB at Lycos Communications at http://comm.lycos.com
_
Hello group ,
I am on the look out for Sun Solaris System Administration -I and Sun Solaris System
Administration - II books.
I prefer Sun Microsystems Course Material.
The version is Solaris 7.
If anyone of you is willing to sell those books please let me know.I desperately need
that.
Hi ISDN gurus,
Please find below the error message i get when i try to connect to my remote router.
Both routers are running PPP CHAP authentication.
What could be reson for line to get diconnected quickly.
BR0/0:1 LCP: TIMEout: Time = 0x34C62A5C State = REQsent
BR0/0:1 LCP: O CONFREQ
31 matches
Mail list logo
