Hi Luc,
If the TFTP server is internal to your network, then you should not need to
alter your security policy. You might need to do so if your TFTP server is
located externally to the firewall, but that is generally a poor design
from a security standpoint. Or am I missing something here?
Let me know.
Thanks,
Lisa Napier
Product Security Incident Response Team
Cisco Systems
At 12:09 PM 1/13/2000 +0000, Luc Amouriaux wrote:
>PIX has TFTP feature.
>But in order to do this, you have to make little holes in your security
>policy...
>
>At 15:53 12/01/00 -0800, Neil Buckley wrote:
> ><Disclaimer>Just a curiosity question</Disclaimer>
> >
> >In the past router configs could be stored on TFTP servers where they could
> >be commented, does this suggest that the PIX has no TFTP feature, or that it
> >does but the PIX has a problem parsing non-config/comment lines?
> >
> >--Neil
> >
> >> -----Original Message-----
> >> From: [EMAIL PROTECTED]
> >> [mailto:[EMAIL PROTECTED]]On Behalf Of Marc Renner
> >> Sent: Wednesday, January 12, 2000 10:25 AM
> >> To: [EMAIL PROTECTED]
> >> Subject: Cisco PIX IOS info
> >>
> >>
> >> I just wanted to flame CISCO PIX IOS developers for not enabling
> >> the use of remark lines in Cisco PIX configuration files.
> >>
> >> I have a configuration file thats about 15 pages long (4
> >> different network segments). You can imagine how confusing this gets.
> >>
> >> If there are any Cisco IOS developers who pay attention to this
> >> list, it sure would be nice to be able to put remark lines in my
> >> config file.
>
>__________________________________________________________
>Luc Amouriaux tel. 01 46 25 52 21
>SR - Services Intra/Internet Atos Infogerance
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
