Re: Scheduling PIX commands

["Christopher J. Wargaski" <wargo1 () gmail com>]

Ian--

   PIX-OS does not have any sort of scheduling mechanism. If I had to
implement this, I would write an Expect script to perform the ssh or telnet
to the PIX to clear the NAT table. Expect will run on Linux or Cygwin. Use
cron or at to schedule this.

On Thu, Jul 3, 2008 at 9:22 AM, Ian Rarity <Ian.Rarity () espc com> wrote:

> Hi all,
>
> We've just made some changes to our PIX config, and we need to clear
> the xlates to make the changes fully live.  The only problem with this
> is that we also have another system that will react badly (to put it
> mildly) to the state of all its connections disappearing when we do
> this.  This system gets an hour's downtime at 2am, so the ideal time to
> clear the xlates on the PIX seems obvious.
> The only problem is that, although I'm mainly nocturnal, I really can
> think of better things to be doing at 2am than sitting in our server
> room.  Does anyone know of a way to schedule commands to run at a
> specified time on a PIX 6.3 firewall?
>
> Ta,
> IR.
>
> *********************************
> Ian Rarity
> Technical Engineer
> ESPC (UK) Ltd.
> T: (44)131 624 8000
> F: (44)131 624 8509
> http://www.espc.com ( http://www.espc.com/ )
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards