Re: PIX 506e
- From: roberson@xxxxxxxxxxxx (Walter Roberson)
- Date: Tue, 28 Feb 2006 15:02:10 GMT
In article <1141094611.318423.277870@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>,
starman7@xxxxxxxxxxx <starman7@xxxxxxxxxxx> wrote:
I have a few questions before buying the 506e:
Can I configure this via a web interface, or must I use the CLI (and
commands) to do the above config; or can I generate the config via some
software program?
The standard warning I give here is that if you think you might
be asking questions configuring PIX here, then you had best learn
the CLI (possibly in addition to the GUI.) The answers here are
almost always in terms of the CLI. The people who answer questions
here generally don't have time to figure out and write down the
long sequence of menu items and drop-boxes that are needed in
the GUI to configure things that take only a few lines in the CLI.
The reason we are wanting a firewall (aside from being able to control
it ourself, and for the other benefits) is to see if we can gain better
insight into some network problems we are having (mainly spikes in
bandwidth, in and out, and it maxing it out), does the 506e have robust
logging, to help determine the source and destination addresses/ports
of the problematic traffic?
If that is your main purpose then just configure your 1600 to
SPAN or RSPAN the traffic off to a computer that is running a
network analysis program. PIX are not designed to be able to
correlate traffic spikes and particular traffic. You can do it
to some extent, but the PIX is designed for security not for
volume control.
.
- Follow-Ups:
- Re: PIX 506e
- From: starman7@xxxxxxxxxxx
- Re: PIX 506e
- References:
- PIX 506e
- From: starman7@xxxxxxxxxxx
- PIX 506e
- Prev by Date: tacacs-server key password
- Next by Date: Re: HSRP on Catalyst
- Previous by thread: Re: PIX 506e
- Next by thread: Re: PIX 506e
- Index(es):
Relevant Pages
|
