Avon, CT 06001
Phone: (860) 678-3496
Fax: (860) 678-3449
[EMAIL PROTECTED]
-Original Message-
From: Patrick Ramsey [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 14, 2001 11:51 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: PIX Firewall question [7:19954]
I'm
I'm not sure I follow...
You want a host internal to your firewall to have access to a host outside
your firewall?
>>> "Soucy, Aaron" 09/14/01 11:10AM >>>
Does anyone know if it is possible to have a connection to a specific host
outside the network without having to re-authenticate? I am runn
Does anyone know if it is possible to have a connection to a specific host
outside the network without having to re-authenticate? I am running PIX IOS
4.4(5). Thanks in advance for any help.
Aaron Soucy
IT Support Analyst
Women's Health Connecticut
22 Waterville Road
Avon, CT 06001
Phone
Assuming you are using NAT, is your global (outside) address range large
enough to handle all of the users? If not, be sure to include a global
command, in the same NAT group, with a single address for overflow.
Check out the "Basic Two Interface Configuration" at
http://www.cisco.com/univercd/cc
well you could get an icmp flood but the problem is that you become a
security threath :)... you will becore a smurf relay... People from the
outisde world can spoof ping your broadcast addresss and all your host
will respond back...
I had to have an explicity deny to all my boradcast addresses be
Occasionally, I have users complain that they no longer can access the
internet. It seems to happen randomly with different users.
If I perform a
clear xlate
it immediately clears the problem. Obviously, I dont want to have to do
this every time.
Any ideas on what I could do to prevent this see
My pix firewall has the following in its current config
conduit permit icmp any any
Is there any security risks to our internal network with this configuration
Appreciate the help
Sam
___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FA
try CTRL + Q... works in Hyperterm...
GWA
Antonio Marfil wrote:
> what is the pix firewall 5.0 equivalent of hitting + on a
> cisco router to break out of a long 'show' command? + does
> not work.
>
> thanks in advance for your help.
>
> tony
>
> ___
> UPDAT
what is the pix firewall 5.0 equivalent of hitting + on a
cisco router to break out of a long 'show' command? + does
not work.
thanks in advance for your help.
tony
___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives,
9 matches
Mail list logo