Open ports on a cisco PIX 501
in [Firewalls]
|
Prev: SonicWall SOHO3
Next: Netscreen 5XP Firmware...
From: Julien Pham on 19 Jan 2006 08:19 Hi, I'm wondering how I can open some ports in my cisco pix 501, so I can use the server as a mail server. Anybody has an idea ? Thanks
From: Johhny on 19 Jan 2006 08:34 http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800b6e1a.shtml
From: Julien Pham on 19 Jan 2006 10:10 "Johhny" <exter_c(a)hotmail.com> a ?crit dans le message de news: 1137677650.012469.284000(a)o13g2000cwo.googlegroups.com... > http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800b6e1a.shtml > Thanks, I'll try to do with it. I hate those cisco products, they are sooo hard to configure :) I would like a graphical interface to configure it. I heard it is possible to have one, but I didn't understand how to configure it though...
From: Walter Roberson on 19 Jan 2006 13:19 In article <43cfac6e$0$10663$626a54ce(a)news.free.fr>, Julien Pham <privacy(a)invalid.net> wrote: >Thanks, I'll try to do with it. I hate those cisco products, they are sooo >hard to configure :) I would like a graphical interface to configure it. I >heard it is possible to have one, but I didn't understand how to configure >it though... There is indeed a graphics interface for the PIX 501; if I recall properly it comes pre-installed on new 501s. You can find the documentaton at http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pdm/v_30/pdm_ig/index.htm I would, though, issue two cautions: 1) There are parts of the PDM that are not intuitive, and for which really the only way to make sense of them is to understand how the underlying feature works at the command line level. This is particularily the case for the task you were asking about, of configuring port forwarding. 2) If you encounter questions or difficulties with your PIX configuration and ask in newsgroups about how to configure something or what something means, then in practice posters are only occasionally willing to write down the entire sequence of menu selections, description of which field to use, which drop box value, and so on. Thus, if you think you might be asking for assistance on the newsgroups, you should take the time to at least learn how to enter commands at the command line, and how to list the current configuration in order to post it, and you should expect that the answers will be in command-line configuration format. I am not saying "Don't use the GUI": I'm saying that historically posters are seldom willing to give assistance in terms of how you would achieve the desired effect with the GUI, so you need enough about the CLI to be able to converse with them. Sorry, but talking about GUI's takes too long! If I can give two lines of text commands that will solve the problem, then I'm not often going to be willing to describe the 15 step process to get the GUI to do the same thing. By the way, for future information: most PIX questions go to comp.dcom.sys.cisco rather than comp.security.firewalls . There is a fair bit of overlap of skills and concepts between the PIX OS ("Finesse") and Cisco's IOS (for their switches and routers), so you have a much wider pool of qualified people to draw upon in comp.dcom.sys.cisco than in comp.security.firewalls .
From: Julien Pham on 20 Jan 2006 02:24
Sure, sure, thanks for your anwser. At home I have a netgear firewall, and it is so easy to configure ports, I just have to enter port number, and the IP address it has to be redirected to, and click on "apply" ;) With cisco all is so hard. I know how to enter commands in the term, but I just try to figure out what is the exact command to use... Because if I cannot configure our firewall, then our network is not really secure. CISCO likes hard configuration stuff because then people HAVE to buy their configuration lessons ;) |