Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Pix to ASA migration

From: timpacalypse () yahoo com
Date: 2 Oct 2006 13:25:51 -0000
I am moving from a PIX 6.3(3) to an ASA 5520.  I thought it would be as easy as copying the configuration from the PIX 
into the ASA but apparently not.  The interface configuration syntax was a little off but easy enough fix.  Everything 
else seemed to go through fine.  

So I plug it in and it's angry.  It seems like DNS doesn't work.  

So I went back and did a little reading.  I think that when I was configuring the policy map for the IPS that I may 
have over written the default inspection policy map (fixup dns, fixup skinny, etc).  

My question is, if none of fixup protocols are set will that prevent me from getting out to the internet?  My 
understanding is that the appliance just inspects the traffic, I thought that if I set No fixup that it just wouldn't 
inspect it.  

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: