Recent content by sghezzi

Hello, we have a remote site which is connecting to a central site via PIX-to-PIX VPN (PIX version 6.3(3)). At the remote site there is a client which enstablishes a connection in the central site and this application MUST stay up forever (unless the application is shutted down from the client...

We may have experienced the same problem. We had some remote devices connected via VPN to a central PIX (PIX to PIX VPN)and static NAT translation is applied on th remote PIX. Suddenly most of these devices (Automatic Teller Machines) could not connect anymore to our central server. The problem...

Adrian, thanks for the info! About your product, I am interested in evaluating it so I have downloaded the demo, but I was expecting to be able to use it uploading my personal log files, instead it seems that I can only use it with the sample log file that it is given with the software. Am I...

I use Kiwi Syslog. Best Silvia

Hello, we use PIX mainly for VPN with remote offices PIXes and we are managing the remote PIXes centrally from headoffice. We are wondering if it makes sense to collect logs from the remote PIXes to our central syslog server. In taking this decision we first need to know what level of log to...

Ok, this is exactly what we are testing now: Kiwi Syslog + Sawmill (evaluation version) so you suggest to go ahead with this scenario. Good. Thanks Silvia

Hello, we are using PIX 6.3(3) and we use Kiwi syslog for collecting logs. We would also like to have a log analyzer to easily process PIX messages. Can anyone suggest a good product? Thanks Silvia

Yes, I already read it, but the problem I see is that "static" command is not applicable to a specific access-list, it will interfere also on other VPNs. it is not like the global command that can be applied to access-list through NAt/ Silvia

In reply to dopehead: they can reach 192.168.160.0 only through the VPN that is established by the two peers using their public IPs. In reply to chicocouk: policy NAt combined with static NAt was exactly what I wanted to use but I had no experience with that yet....that's why I was asking help...

Hello, we have the following problem: we are using PIX 6.33 to handle many VPNs with different remote sites. All these remote sites need to access to our internal LAN 192.168.160.0, traffic comes inbound. The problem is that one of these remote sites has also 192.168.160.0 as their internal...

Hello, did you figure out how you fixed the problem? I habe PIX 6.3(3) and PDM 3.0(1) and the PDM Java applet doesn't pop-up. I get the first two windows from PDM, but then the second window hangs saying "loading PIX DeviceManager. Please wait..." and nothing happens. please help...

Hello, are there any known issues with PIX version 6.3(3) ? Is it 6.3(1) better or more stable? Thanks Silvia

Thanks to the both of you for your suggestions. Here it is more info to discuss about. ...and some more questions ;-) 1- We have around 250 users and more or less 20 of them are traveling and need access to the web interface. 2- We have to exclude the VPN approach for the moment because we...

Hello, we are planning to have Exchange 2003 as our internal mail server. At the moment we have an external ISP which acts as mail server as well and each user downloads mail from it. What is the best strategy? I can see different solution: 1- we put Exchange inside the PIX and we apply...

I have configured only NAT 0. "Static" I have not configured it? Is it mandatory? why ftp, http and so on work anyway? I don't like this unpredictable behaviour! I would like to have something that works or it doesn't, not something that half works!