radiusdude
asked on
Initiate VPN Client Behind PIX Firewall
I have just installed a Cisco PIX 506E in my network. The outside interface is connected to my cable modem and the internal interface to a switch. Everything works fine, except when I try to initiate a VPN client connection to my office network from my internal network (this worked fine when I used a Linksys router).
I assume I must be missing some additional commands for the PIX to pass the IPSec traffic, but I haven't been able to figure out what I need to do. Thanks.
I assume I must be missing some additional commands for the PIX to pass the IPSec traffic, but I haven't been able to figure out what I need to do. Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
What is the security problem with 6.3(3) ?
Very minor SSL vulnerability, but if you use SSH and HTTPS to manage it...
http://www.cisco.com/en/US/products/products_security_advisory09186a0080207d5f.shtml
6.3(3)124 build is the "fixed" version
http://www.cisco.com/en/US/products/products_security_advisory09186a0080207d5f.shtml
6.3(3)124 build is the "fixed" version
ASKER
Thanks! I was running 6.2(2) - I'll see if I can get the upgrade from Cisco (I bought the PIX used - I'm not sure what Cisco's upgrade policy is...)
How do I find out what build version I am running? I assume that as the build date is last year it is a version which needs upgrading anyway.
'show ver' shows :-
Cisco PIX Firewall Version 6.3(3)
Cisco PIX Device Manager Version 3.0(1)
Compiled on Wed 13-Aug-03 13:55 by morlee
'show ver' shows :-
Cisco PIX Firewall Version 6.3(3)
Cisco PIX Device Manager Version 3.0(1)
Compiled on Wed 13-Aug-03 13:55 by morlee
>Cisco PIX Firewall Version 6.3(3)
Yours
Mine:
Cisco PIX Firewall Version 6.3(3)124
Yours
Mine:
Cisco PIX Firewall Version 6.3(3)124
https://www.experts-exchange.com/questions/20587556/Cisco-PIX-passthrough-to-VPN-Concentrator.html