Solved

CISCO PIX default value?

Posted on 2006-11-30
3
355 Views
Last Modified: 2010-04-10
http://www.fredshack.com/docs/ciscopix.html

"
no rip outside passive
no rip outside default
no rip inside passive
no rip inside default "

If I remove this line from the config file, is that mean RIP is enabled by default? I am just confused , what would be the default value for each config parameters if it is not shown on the config files? Any references for this/


# wr t
 
Building configuration...
: Saved
:
PIX Version 5.0(2)
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password oKroi3K/PjdKC0cb encrypted
passwd Qsk.IjEXMTnDdvO0 encrypted
hostname mypix
fixup protocol ftp 21
fixup protocol http 80
fixup protocol smtp 25
fixup protocol h323 1720
fixup protocol rsh 514
fixup protocol sqlnet 1521
names
pager lines 24
no logging timestamp
no logging standby
no logging console
no logging monitor
no logging buffered
no logging trap
logging facility 20
logging queue 512
interface ethernet0 auto
interface ethernet1 auto
mtu outside 1500
mtu inside 1500
ip address outside 100.100.100..253 255.255.255.0
ip address inside 172.20.1.253 255.255.0.0
no failover
failover timeout 0:00:00
failover ip address outside 0.0.0.0
failover ip address inside 0.0.0.0
arp timeout 14
global (outside) 1 100.100.100..20-100.100.100..250 netmask 255.255.255.0
nat (inside) 0 200.200.200.0 255.255.255.0 0 0
nat (inside) 1 172.20.0.0 255.255.0.0 0 0
static (inside,outside) 100.100.100..3 172.20.1.125 netmask 255.255.255.255 0 0
static (inside,outside) 100.100.100..4 172.20.1.102 netmask 255.255.255.255 0 0
conduit permit icmp any any
conduit permit tcp host 100.100.100..3 eq domain any
conduit permit udp host 100.100.100..3 eq domain any
conduit permit tcp host 100.100.100..3 gt 1023 any
conduit permit udp host 100.100.100..3 gt 1023 any
conduit permit tcp host 100.100.100..4 eq 6101 host 100.100.100..1
conduit permit tcp host 100.100.100..4 eq 6101 host 100.100.100..2
no rip outside passive
no rip outside default
no rip inside passive
no rip inside default
route outside 0.0.0.0 0.0.0.0 100.100.100..254 1
route inside 0.0.0.0 0.0.0.0 172.20.1.254 1
timeout xlate 3:00:00 conn 1:00:00 half-closed 0:10:00 udp 0:02:00
timeout rpc 0:10:00 h323 0:05:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server RADIUS protocol radius
no snmp-server location
no snmp-server contact
snmp-server community public
no snmp-server enable traps
telnet 172.20.1.99 255.255.255.255 inside
telnet timeout 5
terminal width 80
0
Comment
Question by:kecoak
3 Comments
 
LVL 1

Expert Comment

by:ondemandns
Comment Utility
Well, RIP is not enabled by default on PIX interfaces.  I'm not sure why these commands were included in the example config.  I guess the example is showing how one could forcefully turn RIP off for the "inside" and "outside" interfaces.
0
 
LVL 7

Expert Comment

by:killbrad
Comment Utility
If you purchased the PIX used it may have been put in the config just to ensure the system worked correctly when delivered.
0
 
LVL 10

Accepted Solution

by:
naveedb earned 500 total points
Comment Utility
Have a look at the following link for syntax

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00800ec9e9.html#1027517

As ondemandns stated, it is not enabled by default. You can turn it on and off. You can use show rip to check the current status of rip.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now