DISQUS

Hello! Tech-Recipes is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

www.tech-recipes.com/ Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- davak
  76 comments · 1 points
- shamanstears
  26 comments · 1 points
- Quinn McHenry
  23 comments · 2 points
- seamonkey420
  18 comments · 1 points
- flexinfo
  11 comments · 1 points
Popular Threads
- Firefox 3.5: How to Disable Location-Aware Browsing
  1 dag dage siden · 1 comment
- Using iPhone 3G S Voice Control Commands
  1 uge dage siden · 7 comments
- iPhone 3.0: Show Battery Percentage
  1 uge dage siden · 7 comments
- Windows 7: How to Reset the Recycle Bin
  1 uge dage siden · 1 comment
- Windows 7: Make Aero Perform Faster
  2 uger dage siden · 2 comments
Recent Comments
- Google is the best search engine...what else I can say? But I dont use google chrome, I prefer other browser
  2 timer dage siden by Henry
  
  in Google Chrome: Change the Default Search Engine | Google | Tech-Recipes
- Thank you so much i haven't had to do that on vista and nearly two years and have used a seperate quick launce bar for many many years and it was driving me insane
  4 timer dage siden by Tania
  
  in Vista: Move Quick Launch to Side of Screen (with Screencast) | Microsoft Vista | Tech-Recipes
- Lovely! I completely forgot about dos2unix and sincerely I like to use vim better if I can :)
  5 timer dage siden by Ciprian
  
  in Remove ^M characters at end of lines in vi | UNIX | Tech-Recipes
- hey shay, just added you. add me if you want 4285 2670 2528 4658
  5 timer dage siden by Rusty
  
  in Wii: How do I Find My Wii Number and Register Friends? | Nintendo Wii | Tech-Recipes
- Thats cool Stuff as i m Nebie to unix
  5 timer dage siden by Mukul
  
  in OpenOffice.org: Play TicTacToe (Easter Egg) | OpenOffice | Tech-Recipes

Tech-Recipes

Cookbook of Tech Tutorials

Jump to original thread »

Cisco PIX: Allow traffic to an internal host | Cisco firewall | Tech-Recipes

Started by qdideas · 9 måneder dage siden

No excerpt available. Jump to website »

3 comments

Anonymous
5 år dage siden

FYI: ACL's were added in IOS 5.3. All major releases after 6.3 have dropped support for conduits and you must use ACLs.

reply

Anonymous
5 år dage siden

Sorry I should have posted this above. Cisco has a tool on their website to help in converting conduits to ACLs. It works pretty well but YMMV. <span style="text-decoration:underline">Always</span> check the configuration file afterward.

Online tool:
https://cco-dev.cisco.com/cgi-bin/Support/Outpu...

Downloadable tool if you have a CCO login:
http://www.cisco.com/cgi-bin/tablebuild.pl/pix

-Tom

reply

Flibble
4 år dage siden

or rather ICMP doesn't JUST equal PING. Opening up all of the ICMP protocol allows source quenches, router redirection and a whole host of stuff that can cause problems. If all that is required is PING then restrict the traffic to echo request <->echo reply.

reply

Add New Comment

Returning? Login