Solved

Is my Cisco PIX 501 Wide open?

Posted on 2008-10-09
5
219 Views
Last Modified: 2010-04-09
So i have to replace my nice little dlink router/FW with a cisco PIX 501 (i need the VPN stuff)

I have installed it and everything appears to be working.

I took the default settings of the router getting it up and running.

My concern is i think i am running wide open.

When i look at the access rule, there is only one action and the allows traffice from any source to any source.

Am i understanding that correctly.

Do i need to do a deny everything rule from the outside and add the exceptions?

is the a nice set of default acceptions i can use?

thanks for any help

Randy
0
Comment
Question by:paries
  • 3
  • 2
5 Comments
 
LVL 17

Expert Comment

by:Andres Perales
ID: 22680375
By default your pix should deny everything coming in, that rule you see if to allow all out, from you internal network.
0
 

Author Comment

by:paries
ID: 22680582
so if shieldsup says all my ports are stealth I am ok?

thanks
0
 
LVL 17

Expert Comment

by:Andres Perales
ID: 22680820
i am assuming that shieldup is a personal firewall installed on your computer?
0
 

Author Comment

by:paries
ID: 22680983
sorry, shields up is
https://www.grc.com/x/ne.dll?bh0bkyd2
i assumed it was a well known site
0
 
LVL 17

Accepted Solution

by:
Andres Perales earned 500 total points
ID: 22681290
Not sure about that site, try these
http://www.hackerwatch.org/probe/
http://www.auditmypc.com/
 
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Radius Debug Error 16 91
ACL Logging Optimization 7 41
VXLAN - same in VMWare NSX and Cisco Environments? 2 59
Cisco ASA 3 27
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question