Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 515 AND PROCOLS THAT REQUIRE AUTHENTICATION AS SMTP, FTP

Hi,

i have a very big problem with my pix 515 version 6.2 (2). I have just installed and configured it. I configured acls to permit ftp from inside to a server in dmz, and permit smtp from inside to a smtp server in Internet. Both requiere authentication.

The question is that when I go through the firewall I get an authentication failure (I see packets traversing the pix so the connection arrives to the peer). If i don´t use fw it works properly. I have fixup configured for ftp and smtp, but if I deactivate it, it does not work either.

Any clues?

Is it possible that the firewall could be changing data packets (user, password)?

Thanks a lot,

regards,

Nuria

1 REPLY
Bronze

Re: PIX 515 AND PROCOLS THAT REQUIRE AUTHENTICATION AS SMTP, FTP

Are you using RADIUS for authentication by any chance. If so, please see bug CSCdz64205 that talks about authentication failure while using RADIUS due to the PIX sending Incorrect Radius Request ID. The problem has been fixed in later versions of PIX os and upgrading would probably be a good idea.

77
Views
0
Helpful
1
Replies
CreatePlease login to create content