有些時候我們會需要從外部來管理公司的防火牆
當然,我們不可能允許任何來源都可以進入防火牆的管理介面
至少也要透過VPN來管理防火牆
本篇說明了如何設定Cisco PIX Firewall讓VPN網段可開啟PIX PDM管理頁面
資料來源:CCO Discussion Forum.
適用版本:PIX OS 6.x
According to some engineers who have worked on similar case, VPN client 4.0 won't work with PIX 6.2 code or earlier. The reason being that we have removed the IPSec SA between VPN client (assigned address) and PIX outside/public address. Therefore, since there is no SA, we can't access the outside interface anymore.
In order to manage the PIX using inside interface, we need 2 things.
1. Upgrade PIX firewall to 6.3 code.
2. Upgrade PDM to 3.0 code
3. Issue the following commands in your PIX configuration:
http x.x.x.x x.x.x.x inside
management-access inside
當然,我們不可能允許任何來源都可以進入防火牆的管理介面
至少也要透過VPN來管理防火牆
本篇說明了如何設定Cisco PIX Firewall讓VPN網段可開啟PIX PDM管理頁面
資料來源:CCO Discussion Forum.
適用版本:PIX OS 6.x
According to some engineers who have worked on similar case, VPN client 4.0 won't work with PIX 6.2 code or earlier. The reason being that we have removed the IPSec SA between VPN client (assigned address) and PIX outside/public address. Therefore, since there is no SA, we can't access the outside interface anymore.
In order to manage the PIX using inside interface, we need 2 things.
1. Upgrade PIX firewall to 6.3 code.
2. Upgrade PDM to 3.0 code
3. Issue the following commands in your PIX configuration:
http x.x.x.x x.x.x.x inside
management-access inside
文章標籤
全站熱搜
網路技術 (3)