Solved

can not enter to pix 525 direct

Posted on 2006-11-13
13
198 Views
Last Modified: 2013-11-16
hi
when i try to enter to my pix 525 using telnet 172.16.100.2 from any PC i can not enter but when i telnet to any switch in my network like (telnet 172.16.10.1) iam enter to switch and from these switch if i telnet to my pix i can enter to the pix

what is the problem

thanks
0
Comment
Question by:nasemabdullaa
  • 6
  • 5
  • 2
13 Comments
 
LVL 10

Expert Comment

by:Sorenson
ID: 17930148
The pix can be configured to only allow telnet from certain networks or devices.  It may also be configured to only allow SSH.  Without seeing the configuration it is impossible to tell.  If you cannot use https  telnet or ssh to reach it, then I would suggest connecting a serial cable to it and retreiving the config.

0
 

Author Comment

by:nasemabdullaa
ID: 17930208
hi
thanks for your reply
iam not configure pix to restrict  any network from connect to pix

thanks
0
 
LVL 10

Expert Comment

by:Sorenson
ID: 17930222
please post a copy of the config
0
 

Author Comment

by:nasemabdullaa
ID: 17930262
hi
thanks
i do not have it now
i send it  tomorrow  

thanks
0
 
LVL 10

Accepted Solution

by:
fm250 earned 250 total points
ID: 17930852
You can config your pix to allow you to telnet from any host like this:

> enable
> pass
# config t
# telnet 172.16.0.0 255.255.0.0 inside

but this not good for security, you can enbale it to accept only connections from your pc like this:

# telnet 172.16.10.5 255.255.255.255 inside

assuming 172.16.10.5 is your pc ip address

hope this helps!
0
 
LVL 10

Assisted Solution

by:fm250
fm250 earned 250 total points
ID: 17930952
You can also add multiple computers to be able to access your pic:

telnet 172.16.10.5 255.255.255.255 inside
telnet 172.16.10.7 255.255.255.255 inside
telnet 172.16.10.10 255.255.255.255 inside
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 

Author Comment

by:nasemabdullaa
ID: 17947768
hi
thanks for your reply
when iam setup my pix i can enter to it from any host direct and suddenly  i can not enter to it direct but from any pc if i telnet to any switch in my network like telnet 172.16.10.1 then from this switch telnet to pix i can enter

thanks
0
 
LVL 10

Expert Comment

by:fm250
ID: 17948075
Did you add your computer ip address to the config?

telnet 172.16.10.5 255.255.255.255 inside

where 172.16.10.5 is your computer ip address
0
 

Author Comment

by:nasemabdullaa
ID: 17948088
hi
thanks for your reply
yes
but its not work
0
 
LVL 10

Expert Comment

by:fm250
ID: 17948104
or if you would like to access it from any host then use this:

telnet 172.16.0.0 255.255.0.0 inside

assuming your computer start with 172.16.x.x
if you have different subnet then it won't work.

hope this helps!
0
 
LVL 10

Expert Comment

by:fm250
ID: 17948144
oh, I did not read your comments!
what is the pix internal ip and what is your. are they in the same subnet also do you have vlan from the switches, if they are managable switches?
0
 

Author Comment

by:nasemabdullaa
ID: 17948177
hi
thanks for your reply
>>>what is the pix internal ip and what is your
pix ip 172.16.100.2
my ip 172.16.2.50
i have VLAN (i have 14 VLAN in my network)
>>> if they are managable switches?
yes all is cisco switch  

thanks
0
 

Author Comment

by:nasemabdullaa
ID: 17979172
hi
thanks its work
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now