Cisco PIX Device Manager: Enterprise GUIs Episode 1

Поділитися
Вставка
  • Опубліковано 26 чер 2024
  • The first installment of a new a Enterprise Management GUIs series, the Cisco PIX Device Manager (or PDM)! We'll take a look at a Cisco PIX 515e firewall unit, perform a Noctua fan mod on it, install PDM 3.0 and get a VPN setup!
    Check me out on Patreon: / clabretro
    Rack stuff
    StarTech 25U Rack: amzn.to/3mEB7hS
    Tripp Lite SMART1500LCD UPS: amzn.to/3KZW3Jw
    1U 24 Port Patch Panel: amzn.to/3Nm0bFa
    1U Brush Panel: amzn.to/3mExAA3
    1U Rack Shelf: amzn.to/3oaDclT
    Note: The above are Amazon affiliate links. It doesn't cost you extra, but I'll receive a commission which will help keep the content coming. I only link to things I've personally ordered.
    Music by Karl Casey @ White Bat Audio
    00:00 Intro
    01:05 PIX 515e Hardware Overview
    02:57 Serial Management
    03:46 Cisco Secure ACS Sneak Peek
    04:39 Hooking up the 515e
    07:11 Noctua Fan Mod
    12:52 Looking at the 515e's PCI Cards
    20:38 Configuring the PIX 515e
    23:34 Installing PDM
    25:30 Running and Using PDM
    27:39 Setting up VPN Access with the Wizard
    28:57 Physical Network Setup
    30:10 Using Cisco VPN Client
    32:43 Outro
  • Наука та технологія

КОМЕНТАРІ • 193

  • @jfbeam
    @jfbeam 2 місяці тому +30

    Those little copper ears are indeed for grounding. Because it's not _actually_ metal-on-metal, there's a gap, and RF can leak through it. But it's not enough of a gap for the spongy mesh stuff. If I hadn't put things through UL and FCC testing, I'd question those things too. There's a lot of unusual things done to get those certification logos.

    • @clabretro
      @clabretro  2 місяці тому +6

      makes sense!

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +4

      Yep. It’s basically a spring to increase surface contact.

  • @kunarnav1985
    @kunarnav1985 2 місяці тому +6

    It was written in the manual that use a known bad hp ddr1 ram stick to open the cover up
    -Clabretro 2024 and Cisco 2000's

  • @jamesbender3809
    @jamesbender3809 2 місяці тому +23

    When I started my job as network engineer, I was given a Cisco style console cable that went straight to USB-C instead of the usual DB-9. Super Handy

    • @clabretro
      @clabretro  2 місяці тому +9

      yeah I need to get one of those lol

    • @jirehla-ab1671
      @jirehla-ab1671 2 місяці тому

      For u, How hard is it to find archaic software?​@@clabretro

    • @JoshLiechty
      @JoshLiechty 2 місяці тому +2

      Those are fantastic, I love that they work on not just Cisco but also Arista, Juniper, Mikrotik, etc. Unfortunately, some manufacturers had to be different and invent their own pinout (*cough*Ciena*cough*)... but overall, those cables are invaluable.

    • @rnts08
      @rnts08 2 місяці тому +1

      Kids these days don't even remember how we had to chain different console cables with serial to USB converters to be able to manage our ultra expensive network hardware.

  • @cromulence
    @cromulence 2 місяці тому +35

    I got into old Macs a little while ago and my mind was blown by the fact that Apple had a 'gigabit ethernet' model of G4 Mac shipping in July 2000. It's built into the main logic board too so you don't lose a PCI slot. The gigabit chip gets toasty and has a heatsink on it - makes me chuckle when you think how pedestrian gigabit controllers are now.

    • @zacheslick
      @zacheslick 2 місяці тому +11

      Especially since they still won’t put gigabit Ethernet on smart TVs

    • @cromulence
      @cromulence 2 місяці тому +9

      @@zacheslick but think of the 25¢ they saved!

    • @tech34756
      @tech34756 2 місяці тому +7

      ​@@zacheslickCould be worse, this morning I saw at my retail job a WiFi mesh kit which only had Fast Ethernet.
      At least a UHDTV can in theory get by with just Fast Ethernet for basic streaming.

    • @nickwallette6201
      @nickwallette6201 2 місяці тому

      What’s crazy to me - well, two things: First, that Ethernet grew by orders of magnitude. That’s quite an ambitious leap! But also, 20 years after that G4, Gigabit Ethernet is still the standard.
      While 10Gb-T exists, it isn’t necessary for most applications, and is kind of pushing it in terms of bandwidth over UTP. Shout out Gig-E.

  • @dapullia
    @dapullia 2 місяці тому +14

    I can confirm that copy and paste of saved configuration script text files to a serial terminal is exactly how you would manage this generation of Cisco equipment. I studied CCNA back in high school and we worked on this generation of equipment in our lab environment. You would have all of your configs saved to text files in case you had the “Oh !” moment. I remember a passing requirement for the course was that you had to troubleshoot and bring up an entire 5 router network correctly. You had exactly 5 minutes to repair the entire company’s network or you’re fired for the purposes of the test. A second test was that we had to bring up a Cisco router of this generation from nothing to fully configured for memory without saved config files by hand in less than 3 minutes and yes it was a class performance standard. You would have to learn all of the short commands. Most of them can be shortened to 2 to 3 characters. Good memories but it’s been 25ish years since then for me and I ended up going into application development myself instead of networking.

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +1

      I would say it’s mixed. I did a lot back then direct on the CLI. But because some Cisco devices didn’t even have the crudest of editing facilities for lists like ACLs, you were forced to drop the entire thing and recreate it with your edits in place. And since every change was live the moment you pressed Enter, the gap between dropping the ACL and having it fully replaced needed to be minimal. So, pasting it was the way to go - not to even mention the reduced likelihood of typos and other errors.
      (Granted, a workaround was to use two ACLs, and update the pointer to one or the other as you make changes. Then at least you’re never half-implemented. Still just goes to show how primitive the CLI was back then.)

    • @dapullia
      @dapullia 2 місяці тому

      @@nickwallette6201 Granted that you used what tools you had. In our case, on the hardware we had, it i did not even have any GUI or web based admin interfaces which was kind of by design so you learned it the hard way first. We never saw anything but CLI.

  • @Dygear
    @Dygear 2 місяці тому +75

    *Inhales deeply -- Exhales while saying:* Fuckin' Java.

    • @jfbeam
      @jfbeam 2 місяці тому +3

      Yeap. In this era, it was the only way to do it. (short of a native windows application)

    • @megan_alnico
      @megan_alnico 2 місяці тому +4

      ​@@jfbeamYeah I mean...what were the alternatives? Visual basic, Delphi, C++ Builder, just raw Win32 calls?

    • @cromulence
      @cromulence 2 місяці тому +5

      Remember Microsofts Java Virtual Machine debacle? lol. I still have a JVM install CD somewhere.

    • @SB-qm5wg
      @SB-qm5wg 2 місяці тому +4

      Having to set special Java permissions for every IP in IE. 😡

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +1

      This guy knows.

  • @JoshsYouTube
    @JoshsYouTube 2 місяці тому +17

    That fan is worth more $ than the PIX. XD I remember these PIX devices, they were dated and slated to be replaced when i started my career.

    • @rnts08
      @rnts08 2 місяці тому

      You'd be horrified how many pix and asa devices that are still in production, old firmware and stuck in closets no one knows about. But Martha from accounting needs to connect to the VPN from home.

  • @KJ7BZC
    @KJ7BZC 2 місяці тому +4

    After living in ASDM (which is the very similar equivalent for the newer ASA firewalls) at my work for the past month or so, I must say I love the simplicity of the PIX lol. Great demo, makes me want to get one of these to add to the collection of far EOL'd networking equipment to obsess over...

    • @clabretro
      @clabretro  2 місяці тому

      the PIX are really fun to mess around with!

  • @VK2FVAX
    @VK2FVAX 2 місяці тому +18

    For a CISCO video.. there was a surprising lack of IBM gear...

    • @clabretro
      @clabretro  2 місяці тому +5

      I know, it's disappointing

    • @VK2FVAX
      @VK2FVAX 2 місяці тому

      @@clabretro Not particularly just funny given your comment about Cisco in IBM vids. You'll get around to the gear in time. :)

  • @truckerallikatuk
    @truckerallikatuk 2 місяці тому +4

    Those copper things are for EMI reduction. It was a common technique at that time. I have a pile of them from cases.

  • @kenmurphy4259
    @kenmurphy4259 2 місяці тому +6

    PDM rocks! I have a little Cisco PIX 501, best little firewall ever! Great Video clabretro, love your channel! ISDN next please

    • @clabretro
      @clabretro  2 місяці тому +1

      ISDN eventually!

    • @peppigue
      @peppigue 2 місяці тому

      @@clabretro we got dialup in 94, when i was 14. first 28.8, then isdn - single line i think (128?). only got into tech professionally the last few years, looking forward to learn more about the infrastructure underpinning my mod tracker techno infused trolling of italian irc channels

    • @dragonballbw3
      @dragonballbw3 Місяць тому

      PDM was OK, ASDM was a quantum leap upgrade (PixOS 7.x+)

  • @leo_craft1
    @leo_craft1 2 місяці тому +5

    Crazy how you can substitute all this with pfsense nowadays

  • @LB4FH
    @LB4FH 2 місяці тому +4

    I love these Sunday morning flashbacks to old Cisco gear. Had a lot of fun setting up both office to office and client VPN's on these 😁

  • @AnonyDave
    @AnonyDave 2 місяці тому +28

    Oh dear, pdm. I don't think I ever heard a good word about it when I had to deal with a few pix devices around 2004. Or rather it was so bad, no one ever used it. It was all ssh and *shudder* telnet (but thankfully telnet was rarely used by then). cli management is fine for most network gear, but I definitely find with complex acls and nat rules on a firewall then a gui with a table of all your rules is just soo much easier to look at.
    edit: as a note, I see you trying to get a gig card working in it. Franken pixes were a thing back then, the software itself only supports a handful of intel chipsets

    • @jfbeam
      @jfbeam 2 місяці тому +2

      Anyone with a clue would use the cli, but PDM was not total trash. There are a few things it can do way faster than a person at the keyboard. (VPN wizard for one.) If you check the correct box, it'll show you what it's doing.

    • @adampope5107
      @adampope5107 2 місяці тому +1

      For some reason where I work like 95% of devs call ssh telnet. It infuriates me.

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +1

      In 2003, to a PIX, I would’ve still been using telnet some. Remember, Windows was woefully incomplete for IT purposes. No SSH client, no ISO mounting, couldn’t even handle CR/LF/CRLF variants of text files in Notepad.
      I never actually used PDM, but did my time with ASDM. I hated ASDM, and _to this day_ still run into configs on ASAs that have ASDM Herpes - all those network and service objects with names that end in numbers and mean nothing to anybody because you can’t put a bare IP or port number in an ACL.
      But yes, ACLs and object references lend themselves to GUIs with as much screen real estate as you can give them. So we needed something. But if I ever again deal with Java runtimes and certificates to get an ASDM login working, it’ll be too soon.
      Definitely remember discovering that the PIX was just a PC with PCI slots, and as luck would have it, I had an Intel NIC hanging around that did … mostly … work. I remember it had _some_ strange behavior - something benign but annoying. Certainly cheaper.
      Cisco site-to-site VPN suuuucckkked, and still does, and I can’t fathom why, in 2024, I still run into peers that need a proxy list of A and B side IP or subnet pairings when routed tunnels have been a thing for a long, long time now. A security association for each combination of source and destination networks was dumb then, and dumber today. Thank you Cisco for the recurring paper cut with that Meraki nonsense, which STILL behaves this way, decades past its sell-by date.
      … I think I might be hate-watching this video. Signed, a recovering Cisco networking guy, that has since found greener pastures with Juniper and Palo Alto Networks.

  • @markpriceful
    @markpriceful 2 місяці тому +2

    wow, nice job enabling remote work for your enterprise users with the Cisco VPN! I am also shocked it "just worked" out of the box

  • @RealEngineer
    @RealEngineer 2 місяці тому +2

    Studied for 4 years and specialized in C#. What do I work with? You guessed it.. Java. 😂

  • @drgti16v
    @drgti16v 2 місяці тому +10

    It's a "roll-over" cable per Cisco lingo

  • @juanstdio
    @juanstdio 2 місяці тому

    thanks to you, I have a proxmox server with a late 2008 mac.. and some 2000's devices to play with... man I love this channel

  • @Username00011000
    @Username00011000 2 місяці тому +1

    Exciting series! Very cool.

  • @questionablecommands9423
    @questionablecommands9423 2 місяці тому +1

    9:08 lol, you're the Hand Tool Rescue troll (most memorable is the time he sharpened a chisel to open a can of paint) of the vintage computing world.

  • @RandomTechWZ
    @RandomTechWZ 2 місяці тому

    Networking is so cool, especially when it just works.

  • @uiopuiop3472
    @uiopuiop3472 2 місяці тому +1

    the squid cable.. so cool

  • @DanielTekmyster
    @DanielTekmyster 2 місяці тому +2

    I built several franken pix firewalls in my dat, intel 1000TX worked for me, both fiber and copper.

  • @halitimes2
    @halitimes2 2 місяці тому +4

    The PIX 535 had 64-bit PCI slots and the quad port card would run full speed in that box.

  • @KonradParzymieso
    @KonradParzymieso 2 місяці тому

    The nightmares of config pasting and instantly being taken by box welcome to OG Cisco

  • @Jamesaepp
    @Jamesaepp 2 місяці тому +1

    I know economizing video content is important but I wanted to throw out there - another reason for a minimum of two of everything is you can be nearly guaranteed to install system updates or perform maintenance at some point. Best to have two to minimize downtime. If not updates, you're guaranteed to make a configuration change at *some point*. Having an instant replica of the previous config in case a new config fails to take and crashes the system is always welcome.

  • @jeffmoss26
    @jeffmoss26 Місяць тому

    Wow, a throwback!

  • @WooShell
    @WooShell 2 місяці тому +6

    Just in case you have a little time to waste, could you maybe put any old PCI VGA card in one of the slots? Since it's a regular x86 machine, I wonder whether it'd give a regular boot screen and BIOS, or whether that's all modified to their serial interface bootloader only.

    • @clabretro
      @clabretro  2 місяці тому +1

      Only one way to find out

  • @ayitsyaboi
    @ayitsyaboi Місяць тому

    Truth about the Noctua fans. Any device I have that has a fan has a Noctua fan now. Notably my 3D printers. They're pricey but man is it worth it.

  • @gametec_live
    @gametec_live 2 місяці тому

    another awsome obscure enterprise video, love it...

  • @callmebigpapa
    @callmebigpapa 2 місяці тому +1

    Fantastic video as always!! For all of my old gear that still uses Java and other outdated tech I have a dedicated XP VM with FF ESR 50 so it wont auto update......the VM is like a time capsule. Also you need a set of spludgers.

  • @seshpenguin
    @seshpenguin 2 місяці тому +2

    Honestly I was 100% expecting that VPN connection to fail, because how could it actually be that easy, right? I'm surprised, those kinds of things can be really finicky!

  • @dss12
    @dss12 2 місяці тому

    Keep these coming!

  • @Redd00
    @Redd00 2 місяці тому

    Man I loved early 2000’s vpns

  • @VSteam81
    @VSteam81 2 місяці тому

    Wow I'm early. I love this stuff!

  • @Jamesaepp
    @Jamesaepp 2 місяці тому +1

    A thought on your wiring of the USB/serial connection. It's hard to describe succinctly, but at my college we had a setup where basically every row of students shared a rack of equipment. Each workstation on that row had something like four RJ45 connections (keystones) to the patch panel. You don't *have* to run ethernet protocol over ethernet cabling. It was very common for us to run serial connections over that wiring.
    Switch/Firewall/Router Console Port < -- Ethernet Cable -- > Rack Keystone < -- Structured Cabling -- > Workstation Keystone < -- Ethernet Cable -- > < -- RS232/USB Adapter -- > Terminal

  • @derwildeKnut
    @derwildeKnut 2 місяці тому +1

    I have thousands of those blue rollover cables, they are almost one-Time-Use in my Hands

  • @-r-495
    @-r-495 2 місяці тому

    that VAC is hot. I really like that concept as it is exactly what you‘d want, even before TPM really came to play.
    I used to have a date with corp IT, they plugged my units into their PiX and configured and validated their part and after a few dates we had dozens of units connected and configured.
    I need to get myself that HP brand squeegee. looks perfect 👌🏼

    • @-r-495
      @-r-495 2 місяці тому

      „I don’t need these PiX machines“
      we all do.

    • @clabretro
      @clabretro  2 місяці тому +1

      😂

  • @peppigue
    @peppigue 2 місяці тому

    this channel is tha bomb

  • @ranke
    @ranke 2 місяці тому

    Can confirm as ex cisco employee that the ram-stick is in the manual :-)

  • @taldmd
    @taldmd 2 місяці тому +2

    Beware about overlapping the VPN ip address pool with an existing ethernet subnet. In your demonstration it worked fine, but you might encounter issues if a device connected to the ethernet gets or sets an IP belonging to the VPN pool. Best is to use separate IP pools for the VPN service (client-to-site). Your PIX will know how to route between them.

    • @nickwallette6201
      @nickwallette6201 2 місяці тому

      Was looking for this comment. When I first learned PIX, it was a bit of a head trip that things like VPN user pools and NAT pools could exist in an entirely ephemeral subnet with no “gateway” interface. They’re just … there … in the routing table, accessible via PFM.

    • @clabretro
      @clabretro  2 місяці тому

      definitely, I didn't even realize I had done that until I edited the video, didn't actually mean to overlap. was surprised it worked, feels like a headache in the making haha

  • @johnkreno2488
    @johnkreno2488 2 місяці тому

    Great video, Keep it up

  • @cypher543
    @cypher543 2 місяці тому

    I love old enterprise GUIs too! Digging into the hardware is interesting, but that probably should have been its own video. Just something to think about for future videos in the series. :)

    • @clabretro
      @clabretro  2 місяці тому

      yeah i got a little carried away there 😂

  • @The_Electronic_Beard
    @The_Electronic_Beard 2 місяці тому +2

    Another excellent video! Thanks for buying this stuff so i dont have to! 😂

    • @clabretro
      @clabretro  2 місяці тому +1

      haha thanks. my pleasure as always 🫡

  • @dragonballbw3
    @dragonballbw3 Місяць тому

    Uses for 4x 10/100 ports:
    - DMZ vlans (Pix5xx was not 802.1Q aware IIRC)
    - Inside/Outside ports for "firewall contexts" (aka VRFs) which I think required the big upgrade to PixOS 7+.
    I used Pix515Es as point-solution firewalls in a pinch if a system needed isolated in a subnet/vlan.
    3 context, each with In/Out ports, all in transparent/layer2 mode = inline firewall, no IP re-addressing, etc.

  • @JoshLiechty
    @JoshLiechty 2 місяці тому

    Well this explains a lot of the weirdness I remember from my time learning and using ASAs. I can't say that this makes ASDM make any more sense, but it does illuminate that that apple did not fall far from the tree.

    • @clabretro
      @clabretro  2 місяці тому +1

      I think you're right! I'll cover ASA someday too

  • @casperghst42
    @casperghst42 2 місяці тому

    I remember the VPN Client and I do not miss it. But back then it was basically the only thing which existed. I think I still have the VPN Client for MacOS (from 2007 I think) which works with PiX (if I recall correctly).

  • @GeoffSeeley
    @GeoffSeeley 2 місяці тому

    It's been a few years since I last saw that VPN client software!

  • @hw2508
    @hw2508 2 місяці тому +2

    The copper is for "grounding" or more precise for emc.

  • @SB-qm5wg
    @SB-qm5wg 2 місяці тому +1

    I was doing networking in late 90s/early 2k. These 1st attempts at hardware admin guis were pretty bad. Everything Web-based wasn't really a thing yet. Some needed special Java versions. Others specific versions of Internet Explorer. When sonicwall came out I was blown away on how good the GUIs were compared to Cisco products.

  • @sedrosken831
    @sedrosken831 2 місяці тому +2

    Just a PSA, I don't know if you've got some sort of deal going on with Noctua, but I don't understand why they're so deeply loved in the community -- Arctic Cooling and beQuiet both make fans that are either just as good or better, and for less money. Though that color scheme is distinctive, so it's easy to tell at a glance if it's been modded or if the fan's just not spinning.

    • @clabretro
      @clabretro  2 місяці тому +2

      lol no special deal, I just know they work. they are damn expensive though, I'll try out Arctic Cooling and beQuiet next!

  • @bleeedthebrakes
    @bleeedthebrakes 2 місяці тому +1

    Fortinet sells a USB Console Cable with integrated serial converter. Never had strange issues with them
    Apple pushed gigabit ethernet to their PowerMac G4s in 2000, I will always remember the moment I discovered that fact.

  • @vinatron8075
    @vinatron8075 2 місяці тому

    Same with the ASA5520s I have.

  • @rweninger
    @rweninger 2 місяці тому +2

    I wonder if you can add a graphics card in there and play Doom! 🙂
    Also guess, you made the first documented Noctua mod of a PIX Firewall! :-)

  • @adslf874yti3q7u4hf83
    @adslf874yti3q7u4hf83 2 місяці тому

    I worked at Cisco when these things were being rolled out new. I think everyone hated PDM, but it was _very_ Cisco. The main backbone of Cisco support back then was "C3" (Cisco Customer... Connection? Care? I forget) which was an awful Java-based system that was slow as molasses. They really went into Java with both feet back then.
    I noticed it's running the UR license, which was _very_ expensive back in the day as well.

  • @dross1705
    @dross1705 2 місяці тому +4

    What do kids use?? Kid Pix. What do adults use?? Cisco Pix.

  • @zelllers
    @zelllers 2 місяці тому +1

    I remember if you had a large config, always having to be careful not to paste too much configuration at a time. The stdin was buffered before it reached the CPU and if the CPU was still processing the previous commands entered, eventually the buffer would run out. Pasted characters would be missed/skipped and some commands wouldn't work resulting in bad configuration. You would see the errors if this happened as it the config was being pasted... So in some cases you would have to copy and paste sections of the large config one at a time.

  • @pepelustig1802
    @pepelustig1802 2 місяці тому

    Nice

  • @StephenSD-P25
    @StephenSD-P25 2 місяці тому

    I’m the type of person that doesn’t mind the extreme fan sound. I’ve got a 42U rack in my room that’s got a Cisco 2811, two 3524’s, one 1760, and the big daddy a Catalyst 5505 that’s been running in the background for the last 10 years or so. It’s to the point now that as whenever the power goes off it’s instantly too quiet and if I happen to be asleep when it happens, I’m wide awake because the silence is deafening. Hell my desktop has a total of 5 fans and I’ve got them cranked as high as they’ll go lol.

  • @mamba3968
    @mamba3968 2 місяці тому

    The VM in proxmox with the direct Network Cable is hella smart

    • @clabretro
      @clabretro  2 місяці тому

      it's been super useful

  • @mateuszsp8ebc691
    @mateuszsp8ebc691 2 місяці тому +4

    Stupid question, but. Did You try to put VGA card in the PCI slot and check what happens? Of course I doubt that custom firmware will be able to boot anything but IOS, but just to curiosity :)

    • @clabretro
      @clabretro  2 місяці тому

      I didn't but I'm definitely going to try next time haha

  • @cda32
    @cda32 2 місяці тому +1

    you should try those rubber pull through mounts noctua provides for more noise reduction

    • @clabretro
      @clabretro  2 місяці тому +2

      yeah I thought about it but it ended up basically silent even without them haha

  • @TheStefanskoglund1
    @TheStefanskoglund1 2 місяці тому +1

    3:15 i believe the RJ socket is a fair bit less expensive and it is more compact too, so less area wasted on the rear of a device

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +1

      I see this as the biggest reason on a 1U network device. Having 8-port serial cards would be a lot more difficult with DE-9 plugs. Not to mention the convenience of patch panels.

  • @frasermips
    @frasermips 2 місяці тому +1

    CFM != Static Pressure
    Careful when replacing fans in old equipment, high CFM fans aren't perfect.
    CFM is more like a big room fan, it's great when there is lots of air to move around in an open room like air in a tower PC case.
    Static Pressure is more like a vacuum cleaner that can really suck the hot air of very small spaces.
    Some high performance computers required High Static Pressure, I know many SGI systems are like this but there are others. 1U & 2U Rack mount units can be pretty cozy, especially depending on the extra cards (heat generators / air blockers) that you have installed.

  • @leo_craft1
    @leo_craft1 2 місяці тому +1

    You should disable noise reduction so we can hear the fans

  • @LB4FH
    @LB4FH 2 місяці тому +1

    By the way, I seem to remember that you could slide the entire bracket with the cards sideways to extract them, just remove the two screws attaching it to the chassis and not those attaching it to the card. That may have been a different model though.

    • @clabretro
      @clabretro  2 місяці тому +1

      I'll have to try that!

  • @TheStefanskoglund1
    @TheStefanskoglund1 2 місяці тому

    I'm thinking about the probable thinking in Sun when they did the SC2000, the later E10k and E20k is this:
    SCSI has a number of problem so there was a multiple reasons for FC:
    a SC2k can use a LOT of Ultra SCSI interfaces - multiple interfaces/system card in fact - one blocker then became the size of the Ultra-Wide connector which restricts the number of possible interfaces - ie change connector
    Trouble with cable routing and cable lengths though differential signalling simplified that partly - but still a bulky cabling and still a restriction on how many disk enclosures/server and a restriction on possible layout in a DC.
    The answer was FC with compared with Ultrawide SCSI a nice increase in thruput and very large possiblity of higher speeds ie good enough for the next 20 years.
    The same with RJ modular plugs for ethernet over copper - suddenly being able to have 4 iface on one Sbus card....
    So, Moore´s law also creates a demand for a more compact physical interface design if the capacity possibilities in a card is to be exploited fully.
    I wonder how early Solaris got the ability to trunk a lot of ifaces .... trunking is partly enabled by more compact phys designs.

  • @Nabeelco
    @Nabeelco 2 місяці тому

    Apple's been shipping GigE since 1999, and I think it was standard on everything as of 2001.

  • @Seris_
    @Seris_ 2 місяці тому +1

    You should go over some lantronix devices

  • @ricardog2165
    @ricardog2165 2 місяці тому

    Don't forget to replace the button batteries!

  • @questionablecommands9423
    @questionablecommands9423 2 місяці тому

    Every time I've worked for a company that had that same Cisco VPN software, I wondered, who the heck has so many VPN connections that they actually fill up the ... I _think_ Windows called it a 'watches' ... spreadsheet style view in the UI.

  • @Wintersky136
    @Wintersky136 2 місяці тому +1

    14:54 VPN Hardware Encryption

  • @tompointdll
    @tompointdll 2 місяці тому +1

    Would love to know if a Pix could run somekind of OpenWRT or OPNSense 👀 would be a fun experiment

  • @idahofur
    @idahofur 2 місяці тому +3

    When I got into (well forced into. Different story.) Cisto asa firewalls. I decided to look into regular Cisco stuff. That is when I found out about GUI management software. Up until that point. I thought it was all console based using the cable. I even found out depending on what image? you could load on a cisco 2600 router had a built in web interface. Oh, and yes. I never seen such a convoluted use of web browser windows in my life. The Asa was just as bad requiring java to. The only other thing I can think of is I have a old intel net express and maybe some ILO or what not server managers via web interface.

    • @nickwallette6201
      @nickwallette6201 2 місяці тому +1

      The early web GUIs were really stretching the definition of GUI. They just gave you a point-and-click CLI. You clicked “show” and got a list of commands, so you could click “running-config” and it would then show you the configuration. It counts. I guess. :-)

    • @idahofur
      @idahofur 2 місяці тому +1

      @@nickwallette6201 I remember seeing the first version of windows and thought it looked nothing more like dosshell. Then again remember the draw? Then you have dos menu systems that was nothing more than lines with title and then the title would just load your program. Oh and yes I know the Windows 1.x is more under the hood than just being a Dos Shell.

  • @cocusar
    @cocusar 2 місяці тому +9

    This comment is not about the video, but you know I was subscribed to your channel and commented a handful of times, but all of the sudden, I'm unsubscribed. Wtf? I got this video from the "home" section, checked my subs feed and wasn't there. I'm really pissed because I don't want to miss your content. Oh man, I hope this doesn't happen again

    • @James76767
      @James76767 2 місяці тому +2

      Same thing happened to me, annoying.

    • @clabretro
      @clabretro  2 місяці тому +4

      happens to me too! seems like that bug has been around forever

    • @flp322
      @flp322 7 днів тому

      I’ve heard that this happens when a channel grows quickly and UA-cam thinks it’s bots. Not sure whether that’s really true, though.

  • @kostis2849
    @kostis2849 2 місяці тому

    AVID used Gigabit in a lot of low-res networked editing systems in like 2002.

  • @MrAzztech
    @MrAzztech 2 місяці тому

    stuck those fans in a few switches, the difference is night and day lol

  • @waterflame321
    @waterflame321 2 місяці тому +3

    Time for comfy times. Damn that fan on the bottom when they stacked... Wouldn't it be useless?

    • @clabretro
      @clabretro  2 місяці тому +2

      yeah always thought that was weird

  • @perryraybuck1239
    @perryraybuck1239 2 місяці тому

    Great video! any chance I can get a link to the archive where to get the PDM software from? I have a pix 115E myself and I would like to try this out.

    • @clabretro
      @clabretro  2 місяці тому

      yeah there's a few if you search "cisco pix product" on archive.org. I think this is the one I used: archive.org/details/cisco-pix-500-series-security-appliances-and-cisco-asdm-product-cd

    • @perryraybuck1239
      @perryraybuck1239 2 місяці тому

      @@clabretro thanks a lot! I tried installing it but sadly I don’t have enough RAM. I need to figure out how to get an unrestricted license on it, it currently has a restricted license, which I pretty sure limits it to only 96 MB of RAM. Which is what is currently installed.

  • @danieltaon
    @danieltaon Місяць тому

    Processors is Pentium II 433MHz

  • @KalamazooEAS
    @KalamazooEAS 2 місяці тому +1

    Did you know they make RJ45 to USB console cables? I have one and manage all of my cisco gear with it- it's great! One less thing for me to carry around.

    • @clabretro
      @clabretro  2 місяці тому

      yeah just don't have one haha

  • @stonent
    @stonent 2 місяці тому +2

    I'm curious if this VPN client would still install on Windows 10, if not the 64bit version, maybe the 32bit version.

    • @clabretro
      @clabretro  2 місяці тому

      It installs on Win 11, doesn't run of course lol

  • @jfbeam
    @jfbeam 2 місяці тому +2

    CiscoSecure ACS is a TACACS+/RADIUS server. Not some magic serial management voodoo. The windows version is actually quite usable. The UNIX (Solaris) versions is absolute dog shit. Cisco used to have demo versions, but good luck find anything on ACS these days. (the modern-ish product is "ISA") That sticker just means it shipped with a demo version in the box.

  • @1993MAZDAMIATA
    @1993MAZDAMIATA 2 місяці тому

    Looks like morlee still works at Cisco haha

  • @Jae_972
    @Jae_972 Місяць тому

    trying to setup mine right now. what version of java JRE did you use? I'm not able to get PDM to launch from firefox or ie.

    • @clabretro
      @clabretro  Місяць тому +1

      I was able to run it with Java 1.3.1 and Firefox 3.0.3 on Windows XP

  • @megan_alnico
    @megan_alnico 2 місяці тому

    Hey so I don't know if I should admit this or not but... I was a Java dev in the early 2000s and did GUIs in Swing for managing telecommunications equipment.
    I've got some war stories if you want some kind of insight as to what the industry was like back then.

    • @clabretro
      @clabretro  2 місяці тому

      No shame in that haha! If you want you can reach out to the email in the channel's about page, I'd love to hear the war stories.

  • @studioxxswe
    @studioxxswe 2 місяці тому +1

    I have spent more time than I want to admit configuring Cisco ASAs using ASDM? but it I can see it roots came from PIX/PDM.....
    Fun fact: the VPN Wizard In one version of ASDM was broken, it didn't save all settings, quite irritating for a new network guy as I was at that time..
    Fun fact 2 about pix/asa: in one version they changed I think NAT rules direction, outside became inside or something similar..

    • @clabretro
      @clabretro  2 місяці тому

      ha geez that NAT thing probably caused a lot of pain

  • @spectreofspace
    @spectreofspace 2 місяці тому +1

    Would a Noctua mod be possible on a Sun T5140? I picked one up a couple weeks ago on eBay and that thing easily drowns out all the other equipment I have running. I was expecting something similar to my fairly quiet Sun Fire v100.

    • @clabretro
      @clabretro  2 місяці тому +1

      Possibly, but you'd have to be a lot more careful about temperatures when it comes to modding a server; take a lot of before and after temp measurements to ensure the new fans are cooling the machine adequately.

  • @bcupp15
    @bcupp15 2 місяці тому

    Are they standard PCI slots? What would happen if you threw a video card in one for giggles?

    • @clabretro
      @clabretro  2 місяці тому

      they are! I'll have to try that

  • @dawn1berlitz
    @dawn1berlitz 2 місяці тому +2

    that firewall probably would be a botttle netck on my home network if i knew how to use one of those but i did notice it identifies the processor as a pentium 2 in it which is weird

    • @thelettuceclub
      @thelettuceclub 2 місяці тому +3

      It's a pentium 2-based celeron processor. A previous video he did on a similar, smaller, PIX unit had him uncovering the chip to prove it.

    • @jfbeam
      @jfbeam 2 місяці тому +2

      No "probably" about it... it's a 100Mbps device. Unless you have the worse ISP in the world (or an internet package equiv of food stamps), your connection will be faster than that, at least in the downstream direction. That's why I stopped using them years ago. I do so love the 515, 501, even the 5505, but 100 is just too slow.

  • @xrtnn
    @xrtnn 2 місяці тому

    For gigabit connectivity you wolud like to install any Intel i82542 or i82543 based NIC

    • @jfbeam
      @jfbeam 2 місяці тому

      The only ones I recall the PIX software understanding were SX optical cards. (I've tried many others, and it wouldn't take them)

  • @andresbravo2003
    @andresbravo2003 2 місяці тому

    There’s a software?

  • @pavelvrasskii1359
    @pavelvrasskii1359 2 місяці тому

    New noctua FAN cost more expensive than two old cisco's equip =)

  • @revision386
    @revision386 2 місяці тому +1

    What would happen if you put a VGA card in it?

    • @clabretro
      @clabretro  2 місяці тому

      good question! probably not a lot, but i'll have to try that

  • @mrmikerotch
    @mrmikerotch 2 місяці тому +1

    Nah, need to upgrade to AT LEAST dd4 for opening chassis'. More cranks in ddr4.

  • @Ironapple09
    @Ironapple09 2 місяці тому +1

    Stick a GPU in the PIX lol, curious if it outputs anything

    • @jfbeam
      @jfbeam 2 місяці тому

      It won't. The early PIXen were literally PC's with a "magic" ISA (and later PCI) flash board. (Intel motherboards)

  • @d3yuen
    @d3yuen 2 місяці тому

    Most (?) Sun network cards have (IIRC) Sun "BIOS" on them ... maybe a more generic network cards like *gasp 3c905 might have a higher chance of working?

    • @clabretro
      @clabretro  2 місяці тому

      yeah didn't expect it to work, just the only NIC I had

  • @tehnics-optics4560
    @tehnics-optics4560 2 місяці тому

    Hello , Wooooooooooooooooooooooooooooooooooooooooooooooooooooooow !!!!!!!!!!!!!!!!!!!!!

  • @hw2508
    @hw2508 2 місяці тому +1

    Not only Java but also Flash. I wanted to access an old Watchguard device a couple of years ago and needed to find a working Flash installation.
    I think it was, even back then, a risky thing to base the configuration of devices on such software environments. Java a maybe back then, but Flash IMHO a total stupid decision for network infrastructure.

    • @cleverlyblonde
      @cleverlyblonde 2 місяці тому

      I believe Microsoft Lync 2010 both server AND client use Microsoft Silverlight, their Flash/Shockwave alternative. That's... fun 😅

  • @LeeZhiWei8219
    @LeeZhiWei8219 2 місяці тому +2

    Ooh you pronounce GUIs as (Gooeys), I pronounce them as (Gee-Yuu-Eyes), a bit weird to listen too 😂, don't worry though. Awesome video man.

    • @LeeZhiWei8219
      @LeeZhiWei8219 2 місяці тому

      Btw in the Datacenter, these console (RJ-45 CAT6) cable runs through the DC, to the terminal server, to a octopus cable, as RJ-45. You are correct, as you mention, convenience in the Datacenter. Funnily enough, we use Cisco ISR4200s as terminal servers. Haha.

    • @LeeZhiWei8219
      @LeeZhiWei8219 2 місяці тому

      Dude! Remote access VPN is so cool. With the PIX especially!