Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Problem upgrading Pix 535 to 7.04

From: "Avishai Wool" <avishai.wool () gmail com>
Date: Thu, 11 May 2006 21:57:30 +0300
James,

<snip>


There should be no gateway
needed, as the laptop running the TFTP server is directly connected on
ethernet0, but I have to specify one for the route - is the IP of the
interface the correct address to be using, or should it be the next hop
"device" - which in this case is actually the laptop?


route has to be to the next hop - and your laptop must have
an IP address in the 20.0.0.* subnet, like 20.0.0.1. If you do this then
you probably won't need a route statement. If you do put in a route
then it should be:
 route inside 0.0.0.0 0.0.0.0 20.0.0.1 1

HTH
 Avishai



Pix Version 7.0(4)
!
hostname pixfirewall
domain-name xxxxxxxxxxxxxxxxxxxxx
enable password xxxxxxxxxxxxxx encrypted
!
interface GigabitEthernet0
 no nameif
 no security-level
 no ip address
!
interface GigabitEthernet1
 no nameif
 no security-level
 no ip address
!
interface Ethernet0
 nameif inside
 security-level 100
 ip address 20.0.0.20 255.255.255.0
!
interface Ethernet1
 no nameif
 no security-level
 no ip address
!
passwd xxxxxxxx encrypted
ftp mode passive
pager lines 24
mtu inside 1500
mtu outside 1500
no failover
no asdm history enable
route inside 0.0.0.0 0.0.0.0 20.0.0.20 1
!
! timeout and snmp lines removed here
!
telnet timeout 5
ssh timeout 5
console timeout 5
Cryptochecksum: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
: end

Any help you could give is very much appreciated.

Cheers,
James Burns
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards




-- 
Avishai Wool, Ph.D.,
Chief Technical Officer,       Algorithmic Security Inc.
                  http://www.algosec.com
*******    Making your firewalls really safe    *******
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: