Bill,
Any device connected to a PIX console port should have it's own authentication and
session time-out mechanisms. I believe there are special modems that can do this.
The PIX, unlike Cisco routers, has no session time-out on it's console port. I used
to administer my PIX through SSH to a cheap Linux PC connected to the console port.
It worked, but I stopped when I realized that if I ever forgot to log off, someone
could walk up, disconnect the PC, connect their own laptop/palm/whatever, and have
full privileges. I know physical security should prevent this, but physical security
can be circumvented at most shops. If you succeed in connecting a regular modem to
your PIX, then it will be left wide open if your modem disconnects in mid session.
If your client can afford a PIX, they can afford "Extra Equipment".
Jim Eckford
[EMAIL PROTECTED] wrote:
> At present, I have a customer who wants to hang a modem off the console port
> of the PIX. They know it is a bad idea but they want to avoid buying additioanl
> equipment.
>
> We have tried to dial into a test PIX using a modem and HyperTerm.
>
> So far no luck.
>
> We have received conflicting info from CISCO about whether or not this is
> possible. We have ASA 5.0(3) installed.
>
> Any ideas.
>
> If it can't be done, we need to be able to prove it to the customer.
>
> Bill Bradd
> [EMAIL PROTECTED]
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
