Solved

CISCO PIX default value?

Posted on 2006-11-30
3
366 Views
Last Modified: 2010-04-10
http://www.fredshack.com/docs/ciscopix.html

"
no rip outside passive
no rip outside default
no rip inside passive
no rip inside default " 

If I remove this line from the config file, is that mean RIP is enabled by default? I am just confused , what would be the default value for each config parameters if it is not shown on the config files? Any references for this/


# wr t
 
Building configuration...
: Saved
:
PIX Version 5.0(2)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password oKroi3K/PjdKC0cb encrypted
passwd Qsk.IjEXMTnDdvO0 encrypted
hostname mypix
fixup protocol ftp 21
fixup protocol http 80
fixup protocol smtp 25
fixup protocol h323 1720
fixup protocol rsh 514
fixup protocol sqlnet 1521
names
pager lines 24
no logging timestamp
no logging standby
no logging console
no logging monitor
no logging buffered
no logging trap
logging facility 20
logging queue 512
interface ethernet0 auto
interface ethernet1 auto
mtu outside 1500
mtu inside 1500
ip address outside 100.100.100..253 255.255.255.0
ip address inside 172.20.1.253 255.255.0.0
no failover
failover timeout 0:00:00
failover ip address outside 0.0.0.0
failover ip address inside 0.0.0.0
arp timeout 14
global (outside) 1 100.100.100..20-100.100.100..250 netmask 255.255.255.0
nat (inside) 0 200.200.200.0 255.255.255.0 0 0
nat (inside) 1 172.20.0.0 255.255.0.0 0 0
static (inside,outside) 100.100.100..3 172.20.1.125 netmask 255.255.255.255 0 0
static (inside,outside) 100.100.100..4 172.20.1.102 netmask 255.255.255.255 0 0
conduit permit icmp any any
conduit permit tcp host 100.100.100..3 eq domain any
conduit permit udp host 100.100.100..3 eq domain any
conduit permit tcp host 100.100.100..3 gt 1023 any
conduit permit udp host 100.100.100..3 gt 1023 any
conduit permit tcp host 100.100.100..4 eq 6101 host 100.100.100..1
conduit permit tcp host 100.100.100..4 eq 6101 host 100.100.100..2
no rip outside passive
no rip outside default
no rip inside passive
no rip inside default
route outside 0.0.0.0 0.0.0.0 100.100.100..254 1
route inside 0.0.0.0 0.0.0.0 172.20.1.254 1
timeout xlate 3:00:00 conn 1:00:00 half-closed 0:10:00 udp 0:02:00
timeout rpc 0:10:00 h323 0:05:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server RADIUS protocol radius
no snmp-server location
no snmp-server contact
snmp-server community public
no snmp-server enable traps
telnet 172.20.1.99 255.255.255.255 inside
telnet timeout 5
terminal width 80
0
Comment
Question by:kecoak
3 Comments
 
LVL 1

Expert Comment

by:ondemandns
ID: 18049969
Well, RIP is not enabled by default on PIX interfaces.  I'm not sure why these commands were included in the example config.  I guess the example is showing how one could forcefully turn RIP off for the "inside" and "outside" interfaces.
0
 
LVL 7

Expert Comment

by:killbrad
ID: 18050552
If you purchased the PIX used it may have been put in the config just to ensure the system worked correctly when delivered.
0
 
LVL 10

Accepted Solution

by:
naveedb earned 500 total points
ID: 18050619
Have a look at the following link for syntax

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00800ec9e9.html#1027517

As ondemandns stated, it is not enabled by default. You can turn it on and off. You can use show rip to check the current status of rip.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Routing between two networks? 10 56
Setting up a VPN 60 140
Cisco switch suggestion 5 47
Support licences 3 25
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question