Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Recent content by JEFF11
-
PIX 506 inter VPN communication
Hi I am site A with a PIX 506 (192.168.1.0/24). I have a site-to-site VPN with site B (192.168.10.0/24). I have a site-to-site VPN with site C (192.168.20.0/24). How would I get site B and site C talk to each others through site A? Thanks for your help Jeff -
ESP packets blocked
Hi, I have investigated a bit more as I had the same issue when trying to establish a VPN tunnel through PPTP from the same workstation. In order to have this working I had to add a fixup on the pptp protocol to see the packets over pptp going through the PIX. I then just thought I could do the... -
ESP packets blocked
Hi I'm running a PIX 506E which handles: - Internet access to my local network using PAT on the outside interface - 3 site-to-site VPNs on the outside interface - Cisco client VPN connections (on the outside interface too) All this is working perfectly fine. Now I need to establish from one... -
multiple VPN with PIX506E
ok, I finally got around it. For multiple VPN I need to give the same crypto map name for all VPN but give then different numbers. -
multiple VPN with PIX506E
Hi I am facing an issue which I hope is not a limitation of my PIX506E: I created two VPN: one site-to-site VPN (crypto map toCME) and one dynamic VPN for Cisco client applications (crypto map outside-map) When I run the command "crypto map toCME interface outside", the site-to-site VPN... -
Linking domains
Hi, I'll be more precise: I have an office in Paris: the server is a Win2003 and act as a domain controler and DNS server for the domain PARIS. I always log as Administrator of the domain PARIS on this machine. I have an office in London: the server is a Win2000 SP4 and act as a domain...- JEFF11
- Post #5
- Forum: Microsoft: Windows servers
-
Linking domains
Hi, Thanks for answering. I tried this solution of adding the oppsite DNS server to each servers. Although he finds it, I have an "Access denied" which I feel is normal as I am not logged on on the other domain. Jeff- JEFF11
- Post #3
- Forum: Microsoft: Windows servers
-
Linking domains
Hi I have the following setup: I have 2 sites, SITEA and SITEB, each site has it's own domain DOMAINA (win2000) and DOMAINB (win2003). A dns server is running on each site (actually there are installed on the domain controlers). Both sites are linked together by a site-to-site VPN. What do I...- JEFF11
- Thread
- Replies: 4
- Forum: Microsoft: Windows servers
-
pix 506E inbound connection
Thanks Chris, I'll give it a go. Jeff- JEFF11
- Post #23
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
My ISP gave me a range of public IPs but I am able to intercept only the traffic of the one I setup on my outside interface (.233). Although they said all IPs are addressed to my network, the traffic of the .234 doesn't reach my pix. They said I should the setup the range of public IPs on the...- JEFF11
- Post #21
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
I saw we could alias an address but unfortunatly I can't do this as not all traffic should be directed to the same server: port 80 from the public address will be directed to one web server and port 87 from the public address will be directed to another server... Jeff- JEFF11
- Post #19
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
Hi, now I am facing another issue... The access to my web server from the outside world works fine but I am unable to access it from the inside using it's public address. Did I miss something? Thanks Jeff- JEFF11
- Post #17
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
ok guys, shame on me... I have to apologies for having wasted your time... The gateway of my web server was left to another router... Again many thanks for your help. Jeff.- JEFF11
- Post #14
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
doing the sh access-list I can see the correct access-list is hitted depending if I try to access port 80 or port 87: access-list outside-in; 2 elements access-list outside-in line 1 permit tcp any interface outside eq www log 7 interval 60 (hitcnt=1) access-list outside-in line 2 permit tcp...- JEFF11
- Post #12
- Forum: Security, hacker detection & forensics
-
pix 506E inbound connection
Hi I run the following commands: debug access-list all debug packet outside debug route When, from the outside world, we run a "telnet 81.80.41.233 87" I have the following output on the console: --------- PACKET --------- -- IP -- 217.204.193.234 ==> 81.80.41.233 ver = 0x4...- JEFF11
- Post #9
- Forum: Security, hacker detection & forensics
