How could I set up site to site vpn on my PIX
I need set up a site to site vpn from a router provided by Verion and my enterprise firewall cisco PIX 515E device. The PIX version for this firewall is 7.2(4). I am using ASDM version 5.2(4) to manage this device.
I am attaching some of the print screen for the configuration. please check these attachments and advise me the procedure.
it's kind of urgent, thank you all for replying my post.
firewall-main-page.png
firewall-settings-1.png
firewall-settings-2.png
I am attaching some of the print screen for the configuration. please check these attachments and advise me the procedure.
it's kind of urgent, thank you all for replying my post.
firewall-main-page.png
firewall-settings-1.png
firewall-settings-2.png
rauenpc
For me, it would be easier to see a scrubbed command line config to give assistance. The attached screen shots do not show all the config necessary to create the connection.
ASKER
How could I get a command line config, could you please provide me the command.
thank you.
thank you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The "show run" command result is way too long, is there a way I can spool the output to a file?
thanks.
pix515e> enable
Password: ********
Invalid password
Password: ******
pix515e# show run
: Saved
:
PIX Version 7.2(4)
!
hostname pix515e
domain-name minkagroup.net
enable password 18KJC8i2oGWNhsX0 encrypted
passwd b/JoC9zf2wWKXgAO encrypted
names
name 109.104.109.0 Hethway-network description Hethway Public IPs
name 75.139.232.27 Jon-Home description Jon's home Public IP
name 10.10.4.55 Titan description Titan Backup Server
name 208.65.144.0 McAfee1
name 208.81.64.0 McAfee2
name 10.10.4.11 Aegis_Private description Email server LAN IP
name 10.10.28.101 NCFedEx description NC FedEx server
name 10.0.3.12 apollo description future dealer webserver
name 10.10.4.36 atlas_internal_ip description created by jason for vpn connection
name 10.10.20.2 Alcoa_MPLS_Gateway description created by jason
name 10.10.32.1 San_Diego_Firewall description San Diego Firewall Internal IP
name 192.208.251.94 Aegis_Public description Email server public IP
name 192.208.251.104 Apollo_Public description Apollo Public IP
name 192.208.251.98 Atlas_VPN description Created by Jason for vpn access
name 10.0.3.2 Blackhole_Internal description Blackhole Email filter
name 192.208.251.83 Bfdweb02_Public description Created by jason
name 192.208.251.97 Blackhole_Public description Created by Jason
name 10.0.3.3 Bfdweb02_Internal description current dealer server created by Jason
name 10.10.4.131 Luna_Internal description Created by Jason for Luna Server
name 192.208.251.82 Luna_External description Created by jason for Luna Server
name 10.0.3.7 Hera_Internal description Created by Jason
name 10.0.3.4 Mailer_Internal description Created by Jason for Mailer Server
name 192.208.251.85 Nova_Public description Created by
name 192.208.251.81 Mailer_Public description Created by Jason for Mailer Server
name 10.10.20.0 Alcoa_Network description Created by Jason
name 192.208.251.90 MV_DACS_SSH description Created by Jason
name 192.208.251.91 BFD_DACS_SSH description Created by jason
name 192.208.251.92 MV_DACS2_SSH description Created by Jason
name 192.208.251.95 BFD_DACS_4.140_SSH description Created by Jason
name 192.208.251.96 BFD_DACS_4.141_SSH description Created by Jason
name 10.10.20.240 AOC_VPN_Internal description Created by Jason
name 192.208.251.100 AOC_VPN_Public description Created by Jason for AOC VPN
name 192.208.251.103 Orion_Public description Created by jason for warranty web server
name 192.208.251.84 Hera_Public description Created by Jason for Hera/Ftp
name 72.29.171.50 Hathway-Publi-IP description Created by Jason
name 219.95.232.132 IBM_Sterling_Van description Created for Richard by Jason
name 10.10.4.133 Luna-d_server description created by jason for the luna-d service
name 10.10.4.5 Firewal_LAN_IP description Created by Jason
name 10.10.4.1 MPLS_Interface description created by jason
name 10.10.4.128 FEDEXSERVER description created by jason
name 10.10.4.60 Barracuda60 description Primary Load Balancer
name 10.10.42.0 New_Warehouse description Created by jason
name 192.208.251.76 Firewall_Public description Created by Jason
dns-guard
!
interface Ethernet0
description This is the Ip address for the PIX firewall, updated by Jason Yu on 09/27/2013
nameif outside
security-level 0
ip address Firewall_Public 255.255.255.192
ospf cost 10
!
interface Ethernet1
nameif inside
security-level 100
ip address Firewal_LAN_IP 255.255.252.0
ospf cost 10
!
interface Ethernet2
nameif DMZ
security-level 50
ip address 10.0.3.1 255.255.255.224
ospf cost 10
!
!
time-range ldap_blackhole
periodic daily 11:49 to 11:51
periodic daily 16:49 to 16:51
!
boot system flash:/pix724.bin
no ftp mode passive
clock timezone PST -8
clock summer-time pst recurring
dns server-group DefaultDNS
domain-name minkagroup.net
same-security-traffic permit inter-interface
object-group service Inside-deny tcp-udp
port-object range 445 445
port-object range 8200 8200
port-object range 1214 1214
port-object range 135 139
port-object range 8100 8100
object-group network mv
description MV Network defined by network/subnet
network-object 10.10.24.0 255.255.254.0
object-group network alc
description Alcoa Network defined by network/subnet
network-object Alcoa_Network 255.255.252.0
<--- More --->
thanks.
pix515e> enable
Password: ********
Invalid password
Password: ******
pix515e# show run
: Saved
:
PIX Version 7.2(4)
!
hostname pix515e
domain-name minkagroup.net
enable password 18KJC8i2oGWNhsX0 encrypted
passwd b/JoC9zf2wWKXgAO encrypted
names
name 109.104.109.0 Hethway-network description Hethway Public IPs
name 75.139.232.27 Jon-Home description Jon's home Public IP
name 10.10.4.55 Titan description Titan Backup Server
name 208.65.144.0 McAfee1
name 208.81.64.0 McAfee2
name 10.10.4.11 Aegis_Private description Email server LAN IP
name 10.10.28.101 NCFedEx description NC FedEx server
name 10.0.3.12 apollo description future dealer webserver
name 10.10.4.36 atlas_internal_ip description created by jason for vpn connection
name 10.10.20.2 Alcoa_MPLS_Gateway description created by jason
name 10.10.32.1 San_Diego_Firewall description San Diego Firewall Internal IP
name 192.208.251.94 Aegis_Public description Email server public IP
name 192.208.251.104 Apollo_Public description Apollo Public IP
name 192.208.251.98 Atlas_VPN description Created by Jason for vpn access
name 10.0.3.2 Blackhole_Internal description Blackhole Email filter
name 192.208.251.83 Bfdweb02_Public description Created by jason
name 192.208.251.97 Blackhole_Public description Created by Jason
name 10.0.3.3 Bfdweb02_Internal description current dealer server created by Jason
name 10.10.4.131 Luna_Internal description Created by Jason for Luna Server
name 192.208.251.82 Luna_External description Created by jason for Luna Server
name 10.0.3.7 Hera_Internal description Created by Jason
name 10.0.3.4 Mailer_Internal description Created by Jason for Mailer Server
name 192.208.251.85 Nova_Public description Created by
name 192.208.251.81 Mailer_Public description Created by Jason for Mailer Server
name 10.10.20.0 Alcoa_Network description Created by Jason
name 192.208.251.90 MV_DACS_SSH description Created by Jason
name 192.208.251.91 BFD_DACS_SSH description Created by jason
name 192.208.251.92 MV_DACS2_SSH description Created by Jason
name 192.208.251.95 BFD_DACS_4.140_SSH description Created by Jason
name 192.208.251.96 BFD_DACS_4.141_SSH description Created by Jason
name 10.10.20.240 AOC_VPN_Internal description Created by Jason
name 192.208.251.100 AOC_VPN_Public description Created by Jason for AOC VPN
name 192.208.251.103 Orion_Public description Created by jason for warranty web server
name 192.208.251.84 Hera_Public description Created by Jason for Hera/Ftp
name 72.29.171.50 Hathway-Publi-IP description Created by Jason
name 219.95.232.132 IBM_Sterling_Van description Created for Richard by Jason
name 10.10.4.133 Luna-d_server description created by jason for the luna-d service
name 10.10.4.5 Firewal_LAN_IP description Created by Jason
name 10.10.4.1 MPLS_Interface description created by jason
name 10.10.4.128 FEDEXSERVER description created by jason
name 10.10.4.60 Barracuda60 description Primary Load Balancer
name 10.10.42.0 New_Warehouse description Created by jason
name 192.208.251.76 Firewall_Public description Created by Jason
dns-guard
!
interface Ethernet0
description This is the Ip address for the PIX firewall, updated by Jason Yu on 09/27/2013
nameif outside
security-level 0
ip address Firewall_Public 255.255.255.192
ospf cost 10
!
interface Ethernet1
nameif inside
security-level 100
ip address Firewal_LAN_IP 255.255.252.0
ospf cost 10
!
interface Ethernet2
nameif DMZ
security-level 50
ip address 10.0.3.1 255.255.255.224
ospf cost 10
!
!
time-range ldap_blackhole
periodic daily 11:49 to 11:51
periodic daily 16:49 to 16:51
!
boot system flash:/pix724.bin
no ftp mode passive
clock timezone PST -8
clock summer-time pst recurring
dns server-group DefaultDNS
domain-name minkagroup.net
same-security-traffic permit inter-interface
object-group service Inside-deny tcp-udp
port-object range 445 445
port-object range 8200 8200
port-object range 1214 1214
port-object range 135 139
port-object range 8100 8100
object-group network mv
description MV Network defined by network/subnet
network-object 10.10.24.0 255.255.254.0
object-group network alc
description Alcoa Network defined by network/subnet
network-object Alcoa_Network 255.255.252.0
<--- More --->