Solved

Adding remarks to the PIX

Posted on 2006-07-07
4
961 Views
Last Modified: 2013-11-16
Hi,

Am working with a 525 Pix. Is there any way to add remarks to the config file (besides the ACL's) and it will show up doing a show run command ? Would like to add remarks to some of the nat lines.

Thank you
0
Comment
Question by:mdelaine
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 17062708
That depends.. what version PIX OS?
6.x gives you much more flexibility to add remarks in many places throughout the config using the PDM GUI
0
 

Author Comment

by:mdelaine
ID: 17066989
Am using version 6.3. Remarks can only be done thru GUI ?  Not CLI ?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 250 total points
ID: 17067523
Yes, you can use CLI:
  access-list <acl> remark <text whatever>

It appears that acls are about the only place after all where you can add remarks.

You can always save the config as a text file and edit the text to add comments for record and reference.
You can even use this "edited" file as a backup config as long as you put a "!" or "#" in front of each line of inserted text so that the pix will ignore it, but it still won't show up in the "show config"

In addition to the acl remarks, PIX 7.0 adds text Descriptions for interfaces, service groups, names, and some NAT rules
i.e.
 name <ip address> <NAME> description <text string>
interface Ethernet0
 nameif outside
 description <text string>
 object-group service <tag> tcp
  description <text>

 
0
 

Author Comment

by:mdelaine
ID: 17070549
Thank you. I had done a little research on this, but had no success.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question