We have the following issue and hope someone can help:
We have a huge network (over 200 Vlans) 50 cisco switches (incl. , 12 cisco core switches), 12 servers, 2 ASA 5550,and,.....
Our homepage is hosted by an external company and went down 2 days ago. The hosting company said that their server is being hit very often from inside our network, that’s why our external IP (which is our firewall IP) has been blocked, so we need to block cpanel ports for the outbound traffic (ports 2082,2085).
Is there any way to know which network or user is causing this, e.g. syslog in the ASAs ?
What I would suggest in this instance would be to setup NetFlow on your ASA or a SPAN port on the interfaces that are connecting to your firewalls.
Once you have established the NetFlow configuration, install the free version of Paessler PRTG, and configure a NetFlow sensor (custom)
Within the custom NetFlow sensor on PRTG, configure a filter that will look for all traffic with a destination port of 2082, 2085 and the destination of your hosting provider. That will provide you with the source IP address of the device completing the connection.
Did the ACL that we discussed in "https://supportforums.cisco.com/discussion/13177726/need-block-cpanel-ports-asa-5550-please" resolve this issue?
Cisco DNA Center version 2.2.2.x includes the features and improvements that
New intelligence provides an easy, gradual, and complete adoption of SD-Access. Faster Cisco DNA Center set-up saves time and effort.
When using Cisco cellular modules with a SIM card an APN must be provided. The APN cannot be stored in the SIM card and is supplied by your SIM card provider. Cisco cellular software contains a database of well-known APNs based on the country and ...
Cisco 3850: IOS-XE/Firmware Upgrade
This procedure is aimed at Cisco 3850 switch ONLY.
IOS-XE Bundle Mode is not covered.
9300, 9500 (vanilla & high-performance), ISR 1k, ISR 4k and ASR is not covered.
Listen: https://smarturl.it/CCRS8E46Follow us: twitter.com/ciscochampionsIt’s been several years since the release of Cisco DNA Center, and it’s matured into a complete network management system, an automation and orchestration engine, an AI/ML analy...
The 2021 IT Blog Awards, hosted by Cisco, is now open for submissions. Submit your blog, vlog or podcast today. For more information, including category details, the process, past winners and FAQs, check out: https://www.cisco.com/c/en/us/t...