Solved

Is my Cisco PIX 501 Wide open?

Posted on 2008-10-09
5
222 Views
Last Modified: 2010-04-09
So i have to replace my nice little dlink router/FW with a cisco PIX 501 (i need the VPN stuff)

I have installed it and everything appears to be working.

I took the default settings of the router getting it up and running.

My concern is i think i am running wide open.

When i look at the access rule, there is only one action and the allows traffice from any source to any source.

Am i understanding that correctly.

Do i need to do a deny everything rule from the outside and add the exceptions?

is the a nice set of default acceptions i can use?

thanks for any help

Randy
0
Comment
Question by:paries
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 17

Expert Comment

by:Andres Perales
ID: 22680375
By default your pix should deny everything coming in, that rule you see if to allow all out, from you internal network.
0
 

Author Comment

by:paries
ID: 22680582
so if shieldsup says all my ports are stealth I am ok?

thanks
0
 
LVL 17

Expert Comment

by:Andres Perales
ID: 22680820
i am assuming that shieldup is a personal firewall installed on your computer?
0
 

Author Comment

by:paries
ID: 22680983
sorry, shields up is
https://www.grc.com/x/ne.dll?bh0bkyd2
i assumed it was a well known site
0
 
LVL 17

Accepted Solution

by:
Andres Perales earned 500 total points
ID: 22681290
Not sure about that site, try these
http://www.hackerwatch.org/probe/
http://www.auditmypc.com/
 
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses
Course of the Month10 days, 7 hours left to enroll

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question