Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Shaun E on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

501 Configuration Support

Status
Not open for further replies.
TVVV

TVVV

Technical User
May 2, 2002
5
US
Since I am new to the PIX world, I am going to use PDM to configure my 501. I am using PAT (I only have one outside address). I also am need to setup a static route to my W2K server (192.168.1.2) running Terminal Services (TCP port 3389) and my workstation (192.168.1.10) running PCAnywhere (TCP ports 5631 and 5632). My IP address on my DSL connection is 24.144.43.104. I need to make these available to my software provide for remote support. His IP address changes sometime due to DHCP reassigning his address.

In case PDM does not fully support this configuration, I am trying to get the correct syntax to input this via the CLI. Any suggestions would be greatly appreciated.
 
Sort by date Sort by votes
HI.

* You can find most of the info in Cisco web site:

* It is best to use the pix with more then a single registered ip address on the outside, however it can also work with a single ip address.
Ask your ISP if you can get a range of 8 registered ip addresses.

* Unlike previous versions, the new pix 501 comes preconfigured with default settings, which are documented in its manual. If you wish, you can use this configuration as a baseline.

* You can use pixcript for the initial configuration or for generating sample CLI commands for specific task like VPN:
Port forwarding is currently not supported in this program.

* You should limit the access to your TS and PCAW hosts.

This can be done with access-list that will permit only known ip address or range of the support personal. If the remote ip changes but is still within a known specific range than this is a good option.
If the remote party is behind a NAT device, you can ask him to visit this page
Or to ask his network administrator for the registered ip range in use.

Another option is using VPN (either IPSEC or PPTP).

In any case you should have real passwords at the server and at the PCAW host configuration.

Bye
Yizhar Hurwitz
 
Upvote 0 Downvote
I have a pix 501. at two different sites. I want to be able to use RDP from one pc site to another. I have a pix on both sites. Can someone please tell me what statements I should on my pix config on both sites.

greatly appreciated.

pcman1987
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

xwray
  • Locked
  • Question
PIX 501 DHCP Server function
Replies
0
Views
226
xwray
xwray
xylax
  • Locked
  • Question
DHCP issues for AnyConnect configuration.
Replies
3
Views
343
ADB100
ADB100
anoble1
  • Locked
  • Question
Need help setting up PIX 515 for home use along with DMZ PS4 configuration
Replies
0
Views
216
anoble1
anoble1
Ditmar
  • Locked
  • Question
Firebox X configuration
Replies
4
Views
246
hairlessupportmonkey
hairlessupportmonkey
katheer4u
  • Locked
  • Question
Pix 501 authenticate data server config
Replies
0
Views
125
katheer4u
katheer4u

Part and Inventory Search

Sponsor

Back
Top