Re: 2003 DNS is appending domain name to all lookups?

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

That's a lot of different questions!
The PIX is probably your gateway. The IP address is probably .1 but it could be anything.
If it is the gateway, the PIX should be the only thing connected to the ISP's device, and then the PIX should connect back to a switch with everything on the LAN connected to that.
On a client try setting that as a gateway and see if it works.
Yes, you need a firewall. If you have no access inbound, or very limited access in, you can use the access lists in a router. You can get something like a small Cisco with the firewall feature set, or any number of other internet routers. If you want to do inbound access, then you may want something with more features. The Cisco ASA 5505 replaces the small PIX. There is regular discussion about this on the SBS newsgroup so you could look there for more idea,
Hope that helps,
Anthony,
http://www.airdesk.com


"TwoBearCatz" <twobearcatz@xxxxxxxxx> wrote in message news:02939199-546a-4bf9-b0da-e4cc1f845576@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Sep 3, 11:35 am, "Phillip Windell" <philwind...@xxxxxxxxxxx> wrote:
"TwoBearCatz" <twobearc...@xxxxxxxxx> wrote in message

news:e9c343c8-605c-42d4-a98f-8bc363bae58e@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Sep 3, 11:03 am, TwoBearCatz <twobearc...@xxxxxxxxx> wrote:

Oh, but there is a small PIX firewall that sits between the Primary DC
Server and the ISP cable modem. Unfortunately, I know very little
about PIX firewalls. So far, I haven't really had to mess with that
device. Perhaps the gateway should be set to that device, however I'm
not even sure how to manage it. This thing is about the size of a
router and has some serial cable port on it for management.

--------------------------------------
Yes that should be the Default Gateway of everything.

You don't have to "manage" it,..you don't have to touch it,...if it is there
and running and doing what it is supposed to do, then someone else already
has.

--
Phillip Windellwww.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------

Well I see your point However here are the circumstances:

This client a private school and they have NO dedicated IT staff or
networking people.
The PIX firewall has been "in place" for about 10 years as best we can
estimate
The PIX firewall has been in place for at least two server "moves" and
multiple ISP's and unfortunately never been checked/changed if it's
necessary for these changes
The building tends to get struck by lightning and power surges a lot
which break all sorts of networking hardware.
While the PIX firewall may be working OK, we really have no idea if it
is.
The person or people that set the PIX up are long since gone and we
have no record of how they set it up or anything else.

At this point I don't even know offhand what the address of the PIX is
set to. I suppose I could somehow find that out even with my limited/
no knowledge of the firewall. However, after talking with the business
admin everyone is quite open to replacing the PIX with a simpler
device that we know how to setup and manage. Is there any way a router
can be hooked up to the server and still provide some sort of a
firewall for the server? Does the server in fact need a firewall
between it and the ISP? If the answer to these questions is no and yes
then what might be a good bet on simplifying this network while still
maintaning reasonable Internet security? Thanks so much for the help
so far and any more you gurus might offer. :)

.

Relevant Pages

  • [NEWS] Cisco PIX Firewall Manager Password Disclosure Vulnerability
    ... Cisco PIX Firewall Manager Password Disclosure Vulnerability ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... standard Windows NT workstation or server that serves as the management ...
    (Securiteam)
  • Vulnerability: Cisco PIX Firewall Manager
    ... Subject: Vulnerability: Cisco PIX Firewall Manager ... saved in plaintext on the management station. ...
    (Bugtraq)
  • Re: server publishing
    ... If the ISA does not have two nics already, then ISA is not even "in the ... The PIX is doing the ... > With server publishing, if I publish a SQL server that sits on the ... > PIX firewall ...
    (microsoft.public.isa)
  • Re: Server manchmal nicht =?UTF-8?B?w7xiZXIgUkRQIGVycmVpY2hiYXI=?=
    ... Both the host and the server can set the maximum segment size when they first establish a connection. ... If either maximum exceeds the value you set with the sysopt connection tcpmss command, then the PIX firewall overrides the maximum and inserts the value you set. ...
    (microsoft.public.de.german.windows.server.general)
  • [NEWS] Weak Cisco PIX Enable Password Encryption Algorithm
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The encryption algorithm used by Cisco PIX Firewall software to encrypt ...
    (Securiteam)