Recent content by andf1

Hello all, We are a campus with about 3000 switch ports. The switches used are either Cisco Catalyst 3548XL, Cisco Catalyst 4506 or Cisco Catalyst 6509s. I have been asked to come up with an easy and automated method of identifying switch ports that have been unused for more than 30 days. Does...

Is there any way on a Netscreen firewall to use a NAT-SRC pool from a subnet other than the subnet of the IP address or secondary address configured on the incoming interface? I am using a Netscreen 204 with 5.0.0r8.0 (Firewall+VPN). Thanks, Andy

Hello, I am interested in picking up Netscreen concepts quickly. I picked up a Netscreen 5GT from Ebay, which should arrive shortly. I am wondering if anyone has Netscreen courseware for sale that would help me with my learning attempts. Contact me at ANDF1 AT YAHOO DOT COM if you do. Thanks...

Hello, I have been thrust into a project where I may have to work with Netscreen firewalls. I have Checkpoint and PIX experience but have not worked with Netscreen equipment. What is the best way to pick up Netscreen concepts quickly? Are there any recommended books? Does it make sense to...

The Cisco web site has a million examples. Please see; http://www.cisco.com/en/US/tech/tk583/tk372/tech_configuration_examples_list.html or http://makeashorterlink.com/?K5B532F38 Andy

Have you confirmed that your mail server is not an open relay? Andy

I have not tried the solution proposed above but the PIX documentation on VLANs should be a start. http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/config/bafwcfg.htm#1113411

Is the client receiving the correct IP address assignment from your PIX? What happens when you PING hosts on the inside network? It would be best if you post your configuration after masking confidential information. Andy

What model of the PIX do you have? It sound like you have low end PIX, that is a PIX 501 or 506. They do not support VLANs. So, you probably cannot both both the T1 and the DSL at the same time. If you have a high end PIX that supports VLANs, you could probably have two virtual interfaces on...

I assume you have a DSL modem/router on a segment with public addresses outside the PIX. Where is the T1 router plugged in? How many interfaces do you have on your PIX?

Have you overruled the VPN capability of the PIX to achieve your goal? Andy

I assume you want filter incoming email. The PIX cannot do that. You will have to filter those extensions at your email server. Andy

You have to use the service module commands to set the following. T1 CLOCK SOURCE LINE T1 TIME SLOTS 1-24 SPEED 64 T1 FRAMING ESF T1 LINECODE B8ZS Your settings may differ. Please check with your service provider. SHOW SERVICE-MODULE will let you know if you have configured these correctly...

WIC-1DSU-T1 . Andy

I am sorry, I do not understand the problem. Which device do you have problems reaching? As mentioned in a previous post you should use extended PING from the router if you want to PING the server. What operating system are you running on the server? Could you not assign addresses from both...