PIX 506 -> Firebox x1000

From: Shane Malden (shane_at_nedlam.com)
Date: 06/18/05 

Date: Sat, 18 Jun 2005 11:08:55 GMT

Hi. Quick question for everyone. We have our Parent company who has a PIX
506 trying to connect to our Watchguard Firebox x1000 via IPSEC. We have
PIX Firewalls configured but they use the conventional way of doing access
lists (1.2.3.0 255.255.255.0 -> 9.8.7.0 255.255.255.0) where our head office
is using 'name' and 'object-group' commands. Will the PIX convert the group
commands to single entries when a tunnel tries to establish or will they
only work PIX to PIX? Any assistance would be greatly appreciated.

Regards,
Shane

Relevant Pages

  • Re: PIX to replace router
    ... :like to replace with a PIX. ... Then you get your various overhead commands like controlling remote ssh ...
    (comp.dcom.sys.cisco)
  • Re: [fw-wiz] PIX Transparent proxy
    ... >> commands are not on the pix... ... >packets to a cache based on the port, protocol or any other ACL match) ... It appears the PIX will do a static PAT in order to ...
    (Firewall-Wizards)
  • Re: Cisco PIX 501 port forwarding trouble
    ... i did a configuration reset on the pix before inputing your commands. ... did not do a clear xlate, ...
    (comp.dcom.sys.cisco)
  • Re: Network range on PIX
    ... :Does the PIX not support some equivalent of the filter masks used on ... :Cisco routers to define specific networks of a subnet? ... Those commands mostly have to do with access ...
    (comp.dcom.sys.cisco)
  • Re: WILL PAY. Need help to setup VPN between a PIX 506 and a Checkpoint 4.1 Firewall
    ... remove the failover commands: failover is not supported on the PIX 506 ... if some inside host forges random IPs ... as the source for packets, the PIX would let the packets out (replies ...
    (comp.security.firewalls)