answer to question four.
Your assessnment is very true. you can declare two illegal networks
(one for internal and one for DMZ) and make em' route through the
firewall's interface( one with a legal address). hope that helps
Amit Kaushal
eBusiness Technologies and Security
Deloitte & Touche llp
______________________________ Reply Separator _________________________________
Subject: More Minor PIX Questions
Author: [EMAIL PROTECTED] at Internet-USA
Date: 5/23/2000 1:28 PM
Whew! This list has certainly helped me get my 520 PIX running.
Thanks to
all the very knowledgeable folks who have helped me!!
Some more minor questions:
1. If I'm attempting to modify the configuration on a terminal while there
is activity on the box (e.g. HTTP traffic), the logging text makes it hard
to enter new configuration commands. How does one shut the logging off/on
in 'real time'?
2. How can I get a clean printout of my configuration? Can I dump/print the
diskette image? I could capture it using my terminal program, but I would
need to shut off the page breaking <more> which occurs line by line after
about 24 lines have printed.
3. Operationally, how does one upgrade the license count? I have a box with
128 connections. I see upgrade software available for purchase to go from
128->1024 and 128->64,000. How does one apply this new license material
(diskette?) to the box? Do you upgrade the software concurrently? (I'm
running version 5.0 (3) ).
4. My box has a third interface card for a "dmz" or "peripheral network".
It would seem that the primary reason for using this would be if I had two
distinct subnets which I want to make protected "inside" networks. Is that
a correct assessment?
TIA
Harry
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
