Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Search results for query: *

  1. JEFF11

    PIX 506 inter VPN communication

    Hi I am site A with a PIX 506 (192.168.1.0/24). I have a site-to-site VPN with site B (192.168.10.0/24). I have a site-to-site VPN with site C (192.168.20.0/24). How would I get site B and site C talk to each others through site A? Thanks for your help Jeff
  2. JEFF11

    ESP packets blocked

    Hi, I have investigated a bit more as I had the same issue when trying to establish a VPN tunnel through PPTP from the same workstation. In order to have this working I had to add a fixup on the pptp protocol to see the packets over pptp going through the PIX. I then just thought I could do the...
  3. JEFF11

    ESP packets blocked

    Hi I'm running a PIX 506E which handles: - Internet access to my local network using PAT on the outside interface - 3 site-to-site VPNs on the outside interface - Cisco client VPN connections (on the outside interface too) All this is working perfectly fine. Now I need to establish from one...
  4. JEFF11

    multiple VPN with PIX506E

    ok, I finally got around it. For multiple VPN I need to give the same crypto map name for all VPN but give then different numbers.
  5. JEFF11

    multiple VPN with PIX506E

    Hi I am facing an issue which I hope is not a limitation of my PIX506E: I created two VPN: one site-to-site VPN (crypto map toCME) and one dynamic VPN for Cisco client applications (crypto map outside-map) When I run the command "crypto map toCME interface outside", the site-to-site VPN...
  6. JEFF11

    Linking domains

    Hi, I'll be more precise: I have an office in Paris: the server is a Win2003 and act as a domain controler and DNS server for the domain PARIS. I always log as Administrator of the domain PARIS on this machine. I have an office in London: the server is a Win2000 SP4 and act as a domain...
  7. JEFF11

    Linking domains

    Hi, Thanks for answering. I tried this solution of adding the oppsite DNS server to each servers. Although he finds it, I have an "Access denied" which I feel is normal as I am not logged on on the other domain. Jeff
  8. JEFF11

    Linking domains

    Hi I have the following setup: I have 2 sites, SITEA and SITEB, each site has it's own domain DOMAINA (win2000) and DOMAINB (win2003). A dns server is running on each site (actually there are installed on the domain controlers). Both sites are linked together by a site-to-site VPN. What do I...
  9. JEFF11

    pix 506E inbound connection

    Thanks Chris, I'll give it a go. Jeff
  10. JEFF11

    pix 506E inbound connection

    My ISP gave me a range of public IPs but I am able to intercept only the traffic of the one I setup on my outside interface (.233). Although they said all IPs are addressed to my network, the traffic of the .234 doesn't reach my pix. They said I should the setup the range of public IPs on the...
  11. JEFF11

    pix 506E inbound connection

    I saw we could alias an address but unfortunatly I can't do this as not all traffic should be directed to the same server: port 80 from the public address will be directed to one web server and port 87 from the public address will be directed to another server... Jeff
  12. JEFF11

    pix 506E inbound connection

    Hi, now I am facing another issue... The access to my web server from the outside world works fine but I am unable to access it from the inside using it's public address. Did I miss something? Thanks Jeff
  13. JEFF11

    pix 506E inbound connection

    ok guys, shame on me... I have to apologies for having wasted your time... The gateway of my web server was left to another router... Again many thanks for your help. Jeff.
  14. JEFF11

    pix 506E inbound connection

    doing the sh access-list I can see the correct access-list is hitted depending if I try to access port 80 or port 87: access-list outside-in; 2 elements access-list outside-in line 1 permit tcp any interface outside eq www log 7 interval 60 (hitcnt=1) access-list outside-in line 2 permit tcp...
  15. JEFF11

    pix 506E inbound connection

    Hi I run the following commands: debug access-list all debug packet outside debug route When, from the outside world, we run a "telnet 81.80.41.233 87" I have the following output on the console: --------- PACKET --------- -- IP -- 217.204.193.234 ==> 81.80.41.233 ver = 0x4...
  16. JEFF11

    pix 506E inbound connection

    this unfortunatly doesn't make any difference. I now have this in my setup: static (inside,outside) tcp interface www 192.168.96.230 www netmask 255.255.255.255 0 0 static (inside,outside) tcp interface 87 192.168.96.230 87 netmask 255.255.255.255 0 0 Regards Jeff
  17. JEFF11

    pix 506E inbound connection

    Here it is, please note that IP addresses shown bellow are the real ones. I used dummy ones in my previous posts. Building configuration... : Saved : PIX Version 6.3(4) interface ethernet0 auto interface ethernet1 auto nameif ethernet0 outside security0 nameif ethernet1 inside security100...
  18. JEFF11

    pix 506E inbound connection

    Thanks for the quick reply Chris but external users still can't access my web server. I think I had tried this solution in my numerous attempts. I there anyhting else I can provide to you ? Many thanks Jeff.
  19. JEFF11

    pix 506E inbound connection

    Hi, I spent those last days trying to setup inbound connections on my PIX 506 without success. Here is my configuration: ISP router: 72.73.74.78 PIX outside interface: 72.73.74.73 255.255.248 PIX inside interface: 192.168.10.207 255.255.255.0 I use the pix as a gateway for all my...

Part and Inventory Search

Back
Top