asked on How to show access policy and forward policy on Cisco PIX 515E firewall device
I switched a new company with only Cisco PIX 515E as the firewall. I need list the access policy and change a domain name pointing from a web server on DMZ to a web server on LAN zone.
I have many years experiences for using sonic wall and junimper wall. But after I use putty login to the PIX 515E, I don't know how to enable the GUI interface, anybody can help me for the job.
1. list all access rules and NAT rules.
2. change the point to a new server.
3. enable the web interface so that I can manage it through a browser.
thank you for the help.
I have many years experiences for using sonic wall and junimper wall. But after I use putty login to the PIX 515E, I don't know how to enable the GUI interface, anybody can help me for the job.
1. list all access rules and NAT rules.
2. change the point to a new server.
3. enable the web interface so that I can manage it through a browser.
thank you for the help.
CiscoRoutersHardware Firewalls
Last Comment
Jason Yu
SOLUTION
Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a questionSOLUTION
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
ASKER CERTIFIED SOLUTION
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
ASKER
thank you experts, I really glad to see so many replies even in this biggest long holiday.
I will try the commands here next Wednesday when I go back to work.
Merry Christmas for all experts working here.
thanks.
I will try the commands here next Wednesday when I go back to work.
Merry Christmas for all experts working here.
thanks.
ASKER
does "wri rem " has any negative effect on the sysem, do I need backup the configuration file and how to do it? I was gonna to enable the http server.
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
ASKER
Got this WARNING message;
pix515e(config)# http server enable
pix515e(config)# http 10.10.4.48 255.255.252.0 inside
WARNING: IP address <10.10.4.48> and netmask <255.255.252.0> inconsistent
pix515e(config)#
Do I need keep goint and "wri rem", thanks.
pix515e(config)# http server enable
pix515e(config)# http 10.10.4.48 255.255.252.0 inside
WARNING: IP address <10.10.4.48> and netmask <255.255.252.0> inconsistent
pix515e(config)#
Do I need keep goint and "wri rem", thanks.
ASKER
formely, this public ip was pointed to a web server on DMZ zone, but we want to point the Ip to a server on LAN (behind the firewall), is the command the same?
ASKER
Hi, Jjerster:
Thank you for your reply, I appreciate your help and advise.
I tried to run the commands you provided, and the result is as follows. After running, I tried to open a browser and input the IP address of 10.10.4.5, but I still couldn't open the web interface, could you please take a look. the only abnormal thing is it gives me IP address and netmask inconsistent warning, I am not sure if it's the reason.
pix515e# config t
pix515e(config)# http server enable
pix515e(config)# http 10.10.4.5 255.255.252.0 inside
WARNING: IP address <10.10.4.5> and netmask <255.255.252.0> inconsistent
pix515e(config)#
pix515e# wri mem
Building configuration...
Cryptochecksum: 62a45e24 1ee2542b fd9611be a2a0da7f
27511 bytes copied in 0.980 secs
[OK]
Thank you for your reply, I appreciate your help and advise.
I tried to run the commands you provided, and the result is as follows. After running, I tried to open a browser and input the IP address of 10.10.4.5, but I still couldn't open the web interface, could you please take a look. the only abnormal thing is it gives me IP address and netmask inconsistent warning, I am not sure if it's the reason.
pix515e# config t
pix515e(config)# http server enable
pix515e(config)# http 10.10.4.5 255.255.252.0 inside
WARNING: IP address <10.10.4.5> and netmask <255.255.252.0> inconsistent
pix515e(config)#
pix515e# wri mem
Building configuration...
Cryptochecksum: 62a45e24 1ee2542b fd9611be a2a0da7f
27511 bytes copied in 0.980 secs
[OK]
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
ASKER
I downloaded a cisco ASDM v 1.4 version and try to connect to the firewall, but it says invalid username or password, I was wondering where I can reset the password for remote management.
thank you.
ASDM-login.jpg
thank you.
ASDM-login.jpg
ASKER
Got is solved, I installed ASDM and connect to the device.
Thank you very much.
Thank you very much.
"static (DMZ,outside) 209.58.242.157 10.0.3.12 netmask 255.255.255.255 tcp 7000 0"
Is this the policy forwarding http policy from public ip 209.58.242.157 to private ip 10.0.3.12.
if I moved the webserver from DMZ to LAN, can I just change this policy's ip to the new one.
which command do I need use to change, thank yohttps://www.experts-exchange.com/questions/27975801/How-to-show-access-policy-and-forward-policy-on-Cisco-PIX-515E-firewall-device.html#u.