Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
882
Views
0
Helpful
12
Replies

CONNECTION TRACKING ON PIX

giuliano
Level 1
Level 1

‎02-03-2003 04:06 AM - edited ‎02-20-2020 10:32 PM

Hi.

How can i implement connection tracking acl on pix firewall?

Like cisco ios "access-list permit ip any any gt 1024 established".

Thanks.

0 Helpful
12 Replies 12

kevin-reynolds
Level 1
Level 1

‎02-03-2003 10:40 AM

The PIX does this much better than a router and you do not even need an ACL entry. Make sure you are logging the following syslog messages:

302013 - Built TCP connection

302014 - Teardown TCP connection

302015 - Built UDP connection

302016 - Teardown UDP connection

For details,

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/syslog/pixemsgs.htm

I wrote a perl script that is capable of quickly summarizing information gathered by these messages. I could send it to you if you like.

Kevin

0 Helpful

mklaphek
Level 1
Level 1
In response to kevin-reynolds

‎02-04-2003 11:08 AM

I would like a copy of the script, please! Can you post it here? Thanks!

0 Helpful

kevin-reynolds
Level 1
Level 1
In response to mklaphek

‎02-04-2003 12:32 PM

The script did not transfer well into the message box. I can email to you if you like?

Kevin

0 Helpful

pixit
Level 1
Level 1
In response to kevin-reynolds

‎02-04-2003 01:58 PM

Hi Kevin,

would you please send me the script as well. thanks

nowcheckit@yahoo.com

0 Helpful

blackwoj
Level 1
Level 1
In response to pixit

‎02-11-2003 03:00 PM

Hi Kevin,

I'd love a copy of the script.

Appreciate it.

blackwoj@stjosephs_marshfield.org

0 Helpful

giuliano
Level 1
Level 1
In response to kevin-reynolds

‎02-05-2003 11:33 PM

Ok thanks, send me at

odoresemprevivo@hotmail.com

0 Helpful

giuliano
Level 1
Level 1
In response to kevin-reynolds

‎02-05-2003 11:38 PM

And i cannot implenet nothing to do connection tracking???

0 Helpful

rbinc
Level 1
Level 1
In response to giuliano

‎02-06-2003 06:46 AM

Kevin, could you also send me the script! i have beenlooking for something like that (didn't want to reinvent the wheel)

jfountain@rbinc.com

thanks!

0 Helpful

matt.richard
Level 1
Level 1
In response to rbinc

‎02-06-2003 09:30 AM

Kevin, I'd love a copy of the script as well. matthew.richard@cocc.com.

If anyone is interested I have also written a perl script that shows all unusual messages as well as summaries of all denied packets. I have a version for the Pix 6.2 log files and one for IOS 12.x log files. Not sure if it is the same as Kevin's but I would be happy to share on request.

0 Helpful

jfanter
Level 1
Level 1
In response to kevin-reynolds

‎02-11-2003 08:17 AM

Kevin, could you send the script to me @ jfanter@stlcc.edu. Thanks

Jon F.

0 Helpful

gomesrichard
Level 1
Level 1
In response to kevin-reynolds

‎02-11-2003 10:14 AM

Kevin,

pls also send me the script and instructions:

gomesrichard@yahoo.com

thanks

richard

0 Helpful

robert.mcclain
Level 1
Level 1
In response to kevin-reynolds

‎02-11-2003 01:14 PM

Kevin could I get a copy of that script e-mailed to me also..

robert.mcclain@lendersservice.com

Thanks

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card