Recent content by bryan148

I think I figured it out. I got rid of the command: access-list dmz permit ip 192.168.50.0 255.255.255.0 any I guess it was that command that gave it access to the inside network. Is that correct?

That's what I was thinking also. Here is my config you can look at. Thanks for the help. PIX Version 6.3(3) interface ethernet0 auto interface ethernet1 auto interface ethernet2 auto nameif ethernet0 outside security0 nameif ethernet1 inside security100 nameif ethernet2 dmz security50 enable...

I have only been using two out of the tree ports omn my pix 515 for the past three years. I have decided to set up a dmz and have enabled the third port with a security level of 50. The interface is assigned 192.168.50.1. My inside network is 192.168.100.0. I have applied basic access lists to...

On both sides try issuing the command: isakmp keepalive 20 That has helped my connections.

I have a very similiar config that is working. You have bound the oranges crypto map to the outside interface, It looks like you have not tied in the dynamic map to oranges. Try this command: crypto map oranges 65535 ipsec-isakmp dynamic dynmap I hope this helps.

Hi, I had a similar problem with a cisco router doing nat translations and all of a sudden locking up. I also had to clear xlate to get it to work. The problem turned out to be a ram issue. I was maxing out the physical ram. We upgraded the memory and problem was solved. Hope this helps.