Re: Please help with Pix 501
- From: roberson@xxxxxxxxxxxxxxxxxx (Walter Roberson)
- Date: Sun, 30 Oct 2005 21:08:58 +0000 (UTC)
In article <1130699883.279570.226920@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>,
millsusaf <ebrianmills@xxxxxxxxx> wrote:
:If someone can write me a 100% functional config that does everything I
:want from my original post I will give them $50 upon conformation that
:the config works.
We can't do that without knowing the internal IP addresses.
Without those, the best we could do (without chance) would be a
configuration that worked 100% for some location that remarkably
resembled yours in structure but not in detail.
It's your sentance about keeping everything blocked except for
the things you listed that is the problem: that sentance disallows
the use of sysopt connection permit-ipsec to bypass ACLs for VPNs.
Because we can't bypass them, we need to know the internal details
so we know what to permit them to.
--
I was very young in those days, but I was also rather dim.
-- Christopher Priest
.
- References:
- Re: Please help with Pix 501
- From: millsusaf
- Re: Please help with Pix 501
- From: Walter Roberson
- Re: Please help with Pix 501
- From: millsusaf
- Re: Please help with Pix 501
- Prev by Date: RAS on serial with cell phone (Nokia)
- Next by Date: Re: Please help with Pix 501
- Previous by thread: Re: Please help with Pix 501
- Next by thread: Re: Please help with Pix 501
- Index(es):
