I am a total cisco newbie, so please don't make fun if me if I am doing something totally stupid.
I am haveing some problems setting up my pix 501 to allow access to an internal host. I originally tried the web based setup for the 501, but it didn't work. So I am trying the command line to set it up. So, here goes.
I am trying to allow access to an internal web server (and allow icmp packets, ping, to reach it). Here is one of many things i have tried.
(*all IP's are used as examples only)
Internal IP of HOST - 192.168.1.1
Internal IP of PIX - 192.168.1.3
External IP of PIX - 18.104.22.168
O.K.. So I set up the internal and external interfaces (by default, the 501 names them inside and outside, go figure).
I then ping the external ip from and external machine and the internal ip (of the pix) from an internal ip. They both work fine. Time to move on.
When I do this, I can no longer ping the outside IP address of the pix. Thats how it's supposed to be (I assume). I have to set up permissions.. Since the 501 doesn't support access-list. I have to use conduit.
conduit permit icmp host 22.214.171.124 eq icmp all
I have tried various commands on the conduit command includeing
conduit permit tcp host 126.96.36.199 eq http any (etc, etc, etc).. Each time trying the approprait thing I had tried to set up (web, mail, telnet, ftp, etc. etc.)..
I have NO idea what I am doing wrong here. Nothing seems to work. As soon as I start setting up the static nat, nothing seems to work any longer..
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :