Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
695
Views
0
Helpful
1
Replies

Pix 6.2 - sysopt route dnat

wanhwai
Level 1
Level 1

‎10-21-2007 09:06 AM - edited ‎03-11-2019 04:28 AM

Hi,

I cannot find this command sysopt route dnat in Pix 7.1. Any idea is this command deprecated or enable by default.

Are there any new commands that should be considered for hardening of Cisco PIX firewalls?

Labels:
0 Helpful
1 Reply 1

yuri_slobodyanyuk
Level 1
Level 1

‎10-21-2007 10:39 AM

It was depreciated and long ago:

" ..The following commands are no longer used to configure the firewall: sysopt route dnat, sysopt security fragguard, fragguard, and session enable.

The sysopt route dnat command is ignored, starting in PIX Firewall software Version 6.2. Instead, overlapping configurations (network addresses and routes) are automatically handled by outside NAT. .."

from Cisco PIX Firewall Command Reference, Version 6.3

http://www.cisco.com/en/US/docs/security/pix/pix63/command/reference/intro.html

Regarding the second question - hardening against what ?

More info would help.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card