backing up PIX 6.3.1 over outside interface

Unanswered Question
Aug 14th, 2008

I have a PIX 525 running 6.3(1). There firewall is within my internal network and protects a server segment. I don't have a TFTP server on the "inside" side of the PIX. So the TFTP transfer has to go out the "oustide" interface to my workstation (10.10.10.50) . This however is not working due to what I believe is a security limitation. Does anyone know how I can make this work?

inside interface: 192.168.0.1

outside interface: 10.10.10.1 (aka interface 4)

TFP server: 10.10.10.50

FW# write net 10.10.10.50:FW

Building configuration...

TFTP write 'FW' at 10.10.10.50 on interface 4

Timed out attempting to connect

[FAILED]

FW#

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
vman1976nj Thu, 08/14/2008 - 07:47

Nevermind, I did a little digging and found the answer via google.

To use TFTP going over a low secuirty (0) interface you need to define the server in your config.

In my example

conf t

tftp-server outside 10.10.10.50 fw

then from enable prompt:

write net:

Actions

This Discussion