RE: Cisco PIX: questions

Wed, 20 Jun 2001 11:42:03 -0700 

a) I have yet to find any reporting that I like for the PIX.  WebTrends is
supposed to work with the PIX, there is a perl script (PIXie -
http://www.retina.net/~jna/pixie/) out there that does basic traffic
analysis.  Other products include Private I (http://www.opensystems.com/),
Sawmill (http://www.flowerfire.com/sawmill/), Telemate.net (NetPerspective)
and others I'm sure I missed.  You can also log via SNMP traps in version 5
and higher.

b) Sorry, subnet masks are as good as it gets right now.

c) Not 100% certain but my gut tells me that a fast ethernet link will be
sufficient

d) Version 6 allows SSHv1 support.

Sean Settle
"The thirst after happiness is never extinguished in the heart of man" -
Jean Jacques Rousseau
X Network Services Q NPC X
SMTP:   [EMAIL PROTECTED]


-----Original Message-----
From: Pere Camps [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 20, 2001 9:33 AM
To: [EMAIL PROTECTED]
Subject: Cisco PIX: questions


Hello!

Some questions for the PIX guru's on the list.

a) Reporting: is there any way to get decent reporting on the PIX? 
Stuff like: accepted so many connections from that ip to that ip/port,
etc. I'm looking for something like webtrends but for the PIX.

I'm worried because it looks like the reporting is all done via syslog 
and I don't see how syslog can keep if there are 3000 new connections 
per second.

b) Managing access-list. Is there any way to group IPs other than 
via subnets? Is there any *good* product to manage them? Or should 
I better stick with very simple configurations.

c) For statefull failover on Gigabit enviorment (and working also 
with very high bandwith requirements), does the "link" between the 
PIXes need to be gigabit too? Can the statefull failover keep up 
with high bandwith?

d) SSH. Can I use ssh to log into the PIXes?

That's it for today. :)

Thanks a lot!

Pere.

-- p.







_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls

Reply via email to