[fw-wiz] Ciscoworks with IPTables

From: Nathaniel Hall (halln_at_otc.edu)
Date: 01/18/05

  • Next message: Paul D. Robertson: "Re: [fw-wiz] Per application port DMZ segments?"
    To: firewall-wizards@honor.icsalabs.com
    Date: Tue, 18 Jan 2005 11:34:18 -0600
    
    

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Hi all,

    I have been trying to allow access to a Cisco switch that is behind an
    AS3 IPTables firewall, but I cannot get everything to work correctly. I
    have a similar problem when going through a Checkpoint firewall.

    The guys that administer the Cisco devices use Ciscoworks to access all
    of these switches with the exception of the ones in a different DMZ as
    the Ciscoworks box. When they do the test to check connectivity,
    Ciscoworks tries to get tftp to connect, but cannot complete the
    connection. I have allowed a wide open rule to and from the switch and
    it still does not work. Does anybody have any ideas?

    BTW, I have loaded the ip_conntrack_tftp and ip_nat_tftp modules. Still
    not help.

    Thanks a lot.
    - --

    Nathaniel Hall, GSEC
    Intrusion Detection and Firewall Technician
    Ozarks Technical Community College -- Office of Computer Networking

    halln@otc.edu
    417-447-7535

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.2.1 (MingW32)

    iD8DBQFB7Uiac+QrUawYcxIRAgrtAJ9SXqAFXfMOGrc4FZweLkeEWdAinACePCjI
    PBitH7WIaHHtS3hdb7F/Yv4=
    =URYI
    -----END PGP SIGNATURE-----

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


  • Next message: Paul D. Robertson: "Re: [fw-wiz] Per application port DMZ segments?"

    Relevant Pages

    • Ciscoworks with IPTables
      ... I have been trying to allow access to a Cisco switch that is behind an ... AS3 IPtables firewall, but I cannot get everything to work correctly. ... The guys that administer the Cisco devices use Ciscoworks to access all ...
      (RedHat)
    • Re: Security Appliance With 12 Network Segments
      ... You configure some things in the firewall, ... therefore if somebody gets access to the switch he can't bypass ... why don't I have to label that one port? ... I configure it usually with an access list wth the network which is ...
      (comp.security.firewalls)
    • Re: One workstation cant access email from ISP - CROSSPOST
      ... Remove or disable the ISA Firewall client. ... Ethernet adapter Wireless Network Connection: ... Switch is nothing more than a patch panel; ... port - same result. ...
      (microsoft.public.exchange.admin)
    • Bridged firewall, port flapping
      ... Cisco Catalyst 2960G switch segmented into two vlans. ... Pair of Debian boxes with a transparent bridging firewall comprising ... Merely restarting networking, however, does not. ... iface lo inet loopback ...
      (Debian-User)
    • Re: SBS2008 Monitor internet usage
      ... You'll want to look at hardware with that configuration. ... a good firewall to properly protect your network from the outside world. ... > connected to the switch as well. ...
      (microsoft.public.windows.server.sbs)