when u configure the dynamic nat
users will start connecting
i dont know what u done with the config
send me the config
to block some port
u need
for static mapping
static (inside,outside) 204.31.17.4 192.168.3.4 netmask 255.255.255.255
conduit permit tcp host 10.1.1.1 eq smtp any
]
Subject: RE: Ports with PIX Firewall [7:12605]
when u configure the dynamic nat
users will start connecting
i dont know what u done with the config
send me the config
to block some port
u need
for static mapping
static (inside,outside) 204.31.17.4 192.168.3.4 netmask 255.255.255.255
conduit
access-list ping_acl permit icmp any any
access-list ping_acl permit tcp any any eq www
access-list ping_acl permit tcp any any
access-list ping_acl permit udp any any
access-list acl_out permit icmp any any
access-list acl_out permit tcp any any eq www
access-list acl_out permit tcp any
Lano,
No offense intended, but I think you need to do some research. I _strongly_
recommend that if you intend to setup and administer your companies PIX
firewall, you read at least:
Building Internet Firewalls - Chapman and Zwicky
The PIX configuration guide - cisco systems
(you can probably
automatically.
Bottom line, this config is downright dangerous and would completely open
the firewall.
-Kent
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 17, 2001 4:17 AM
To: [EMAIL PROTECTED]
Subject: RE: Ports with PIX Firewall [7:12605
Dear Friends,
This is the configuration done till now.
Do I need to open some port for DNS
Building configuration...
: Saved
:
PIX Version 6.0(1)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password 2KFQnbNIdI.2KYOU encrypted
passwd 2KFQnbNIdI.2KYOU
Building configuration...
: Saved
:
PIX Version 6.0(1)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password 2KFQnbNIdI.2KYOU encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
hostname pixfirewall
fixup protocol ftp 21
fixup protocol http 80
fixup protocol h323 1720
Building configuration...
: Saved
:
PIX Version 6.0(1)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password 2KFQnbNIdI.2KYOU encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
hostname pixfirewall
fixup protocol ftp 21
fixup protocol http 80
fixup protocol h323 1720
Your config will let everything in!!! Is that what you want???
Lano Kris wrote:
Building configuration...
: Saved
:
PIX Version 6.0(1)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password 2KFQnbNIdI.2KYOU encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
9 matches
Mail list logo