Recent content by dopehead

ya, i realise that if you can figure out how the validation works you can use that. But i actually didn't think that the pdm does that.....the pix can validate the activation key itself so why put it in the pdm as well ? Network Systems Engineer CCNA/CQS/CCSP/Infosec Check the danish Cisco CSA...

Sounds interesting, however feature licenses on the pix platform are done by getting a new activation key, i seriously doubt that the algorithm for creating a new one is embedded in some java code in the pdm....not that it can't be cracked, but i don't see why the java code would need to be able...

Hey guys i just passed the ccie written exam (71% :-), after many years in the business i decided now was the time. Since i didn't really study for it, i have no idea what to do next specifically. What places would you guys look for virtual labs, what books should i get, have been looking at...

This way of doing it is only usable for one vpn tunnel, if you were to have more than one tunnel you would have to create a second acl for that tunnel, and also change the nat 0 acl to another acl that contains both tunnels traffic, and then a third acl for the new tunnel. This is why i always...

Hi, the pix config is pretty basic, static ips and some PAT. here is the config (removed all the basics) : management-access inside vpnclient server x.x.x.x vpnclient mode network-extension-mode vpnclient vpngroup XXXXXXXX password ******** vpnclient username XXX password ******** vpnclient...

Hey i have a strange problem that someone might have had before me ? I have around 250-300 pixes connecting to a set of cluster 3005's and some of them are loosing one command from the config when they are rebooted. "vpnclient enable" when the pixc is rebooted it then never attempts to...

You probably forgot to enable dns lookup before all this. permit udp port 53 for those machines that need inet access. Jan Network Systems Engineer CCNA/CQS/CCSP/Infosec Check the danish Cisco CSA Forum here : http://www.csaforum.dk

ok, i see. that server is already nat'ed to the adresse called sales_track here : "static (inside,dmz) sales_track xxx16.80.87 netmask 255.255.255.255 0 0" which means that if you wan't to reach the legato server from the dmz you need to connect using that adress (172.17.79.6). Now from your...

I Think maybe the alias command is making this fail, try removing "alias (inside) xx.xx.53.118 spny01spt002 255.255.255.255" also this static "static (inside,dmz) spny01spt002 xxx16.80.103 netmask 255.255.255.255 0 0" will nat the source of xxx16.80.103 to the adress of spny01spt002...

sure, go ahead Network Systems Engineer CCNA/CQS/CCSP/Infosec Check the danish Cisco CSA Forum here : http://www.csaforum.dk

one thing to remember when you use a std. telnet through pix for smtp testing, you need line mode, not char mode, and you can't use backspace to correct any typos, that will garble the commands. Network Systems Engineer CCNA/CQS/CCSP/Infosec Check the danish Cisco CSA Forum here ...

Cisco timetables will always give you 5 years until no replacements/support is given for any product. So until you hear an end of sale announcement you have 5 years to phase it out. And yes the asa will replace the pix line at some point, thats only natural. Network Systems Engineer...

Hmm, maybe i don't get it. But if you wan't SI and prod to be the same at all times, you would need to setup a backend sql and then just connect the SI and prod vms server to that, otherwise they will be the same for about 10 minutes untill some change is made or some dynamic ip/dynamic file...

probably your nat config is not done correctly, you need to decide if you wan't to do no-nat or nat in a pix, it wont forward the packets no matter how many alcs you create if your nat is not configured. I am guessing that your legato client needs access to the server and not the other way...

Just start putty, choose ssh1 and type in the address of the branch pix (the public one) username is pix and then your password, you should get a key, accept this and you are on the pix, then do a show version to check your license features. Network Systems Engineer CCNA/CQS/CCSP/Infosec Check...