Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [cisco-pix]

The Cisco PIX line of products were devices that provided firewall and VPN functionality.

The Cisco PIX line of products were devices that provided firewall and VPN functionality.

They have been replaced by the Cisco ASA line of products. Many of the configuration commands used in PIX are the same or similar to those used in ASA, particularly earlier versions of the ASA operating system (version 7.x). Therefore, many useful answers to PIX related questions may be found under Cisco-ASA questions.

85 questions
1
vote
1 answer

Cisco pix - external interface goes down - is this the pix or network?

In December our Cisco PIX 501 appeared to hang taking the webservers behind it offline. It did this 4 times in the space of a couple of weeks and the "remote hands" engineer at the data-centre (where everything is colocated) reported: simply…
Dan
  • 783
  • 1
  • 13
  • 21
1
vote
2 answers

How Do i Add A LIne To A PIX Firewall's Access List?

I need to open a port on a PIX 515. Please can someone explain what I should be entering including the commands. For the purposes of the explanation (so I can understand it ) I've given the different elements the following ips Destination IP that…
Pete
1
vote
2 answers

Cisco PIX 8.0.4, static address mapping not working?

upgrading a working Pix running 5.3.1 to 8.0.4. The memory/IOS upgrade went fine, but the 8.0.4 configuration is not quite working 100%. The 5.3.1 config on which it was based is working fine. Basically, I have three networks (inside, outside, dmz)…
Bill
1
vote
1 answer

How do you open a port on a cisco firewall?

I'm sure this is simple but how do you open a port on a cisco firewall? I want to use fixup to alias a port and then actually open the port. But I don't know how to do it. Thank you.
johnny
  • 2,328
  • 9
  • 37
  • 57
1
vote
1 answer

How do I make a Cisco Pix forward to a specific port?

on a pix how do I make port traffic, port 25 for email in this case, usable by a specific ip address in my spread of IPs? I want to send email to someemail@192.168.0.1 and have the pix send it to port 25 on that IP if it is email and discard it if…
johnny
  • 2,328
  • 9
  • 37
  • 57
1
vote
1 answer

Cisco VPN endpoints disconnecting from a VLAN

I have a number of Cisco ASA 5505 and PIX 506e around the world acting as VPN endpoints. They connect to a Cisco VPN Concentrator 3000 at HQ. I am using Easy VPN to set up the VPN (i.e. most of the config is central on the VPN Concentrator) The…
dunxd
  • 9,632
  • 22
  • 81
  • 118
0
votes
0 answers

Postfix pix workaround for short mail work fine, but for long mail not worked

My postfix send email without problems. But one client domain enabled PIX workarounds. If mail message is short mail send without problems. But if mail is long - in log file I see " conversation with clientdomain.ltd[xxx.xxx.xxx.xxx] timed out while…
Evgheny Tanasov
  • 1
  • 2
0
votes
2 answers

Same VLAN, multiple interfaces on PIX?

I'm already pretty certain this is impossible, but it's at least the second time I've found myself in this situation and really wishing it could be done, so if for no other reason than to save others the time I've spent in the past looking at…
Nicholas Knight
  • 236
  • 2
  • 13
0
votes
2 answers

Change configuration of a cisco pix 515 via SNMP

I have a cisco pix 515 as firewall for some web servers. What I want to do is to automatically add banned ips to the firewall to block traffic at the network level. At the present time I have a software hooked on the web server software, monitoring…
user23758
0
votes
2 answers

pix 501 encryption license reduces inside hosts to 10

Possible Duplicate: Can you help me with my software licensing question? I have an unlimted pix 501 with no encryption license installed. I have applied for and received a 3DES license. When I install the 3DES license, the inside hosts goes…
None
0
votes
1 answer

VPN and overlapping subnets

I have a number of Cisco site-to-site VPNs between using ASA and Pix devices established for my clients. This is a hosted application and I need for the entire address range on the client's network to be able to hit my site. I've encountered a…
ewwhite
  • 197,159
  • 92
  • 443
  • 809
0
votes
0 answers

Cisco asa 8.4 PAT with static NAT

I am trying to make sense of the changes that Cisco has made to NAT on ASA > v8.3. I have a network which is being PAT'd to the outside interface address, and want to add a static NAT from the outside interface IP to a specific inside host. Relevant…
btongeorge
  • 277
  • 1
  • 11
0
votes
2 answers

Help Removing an IP from Cisco PIX (6.1)

I've got an aging (ancient?) PIX in front of a website that I need to move, and in order to do that I need to be ready to remove the IP serving that site from the PIX so that the main switches further up our network don't end up sending to the wrong…
epic9x
  • 1,618
  • 10
  • 9
0
votes
3 answers

Can Mac OS X interface with Cisco Pix 501 firewall?

Our office currently uses a dated Pix 501 to allow VPN connections. We have the option to upgrade to an ASA, but I'm wondering first if Pix are known to work with Macs? We've recently setup a Xserve storage array and need to get people remote…
iamgoat
  • 222
  • 3
  • 7
0
votes
2 answers

Moving a PIX config from one device to another

I recently backed up our current PIX config to our TFTP server. We're getting a second internet connection and as such, we ordered the same PIX device as the one in production. So, what we want to do is make the necessary IP changes in the backed up…
Citizen Chin
  • 532
  • 2
  • 12
  • 21
1 2
3
4 5 6