×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

PIX and Netmeeting

Unanswered Question
Jun 3rd, 2001
User Badges:

I've configured my PIX to allow H.323 traffic. After read the reference from Netmeeting, I understanded that I have to allow secondary dynamic TCP port traffic after H.323 port is connected so I used "Establish" command to do so. Then I found the netmeeting parnter can connect to my defined dynamic port ranges besides the basic secondary port.


How can I stop this potential security hole?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
bstremp Thu, 06/07/2001 - 12:28
User Badges:

What version of PIX are you using? I think there was a bug on that on older PIX code.

j.joe Thu, 06/07/2001 - 18:28
User Badges:

Current my PIX is 5.2(3). Can I directly upgrade to 6.0 so that the prossible security hole can be stopped?

bstremp Fri, 06/08/2001 - 11:31
User Badges:

I thought 5.2 had that fix. You might just need to have Cisco’s tac look at your configuration. It’s not a good idea to try to do a code jump like that. You always need to upgrade 5.2.x to 5.3.x then 6.0 etc so the upgrade parser can handle any command syntax changes. If not, you could loose important configuration lines. ( I would first go to 5.2(5) and test it from there. There’s usually no good reason to be on the very latest PIX code.

Actions

This Discussion