Network Security

Hello,I just setup a firewall on a series 800 router and shortly after the following message was displayed;Jun 10 00:11:32.814: %FW-4-TCP_OoO_SEG: Dropping TCP Segment: seq:1890440221 1460 bytes is out-of-order; expected seq:1890416081. Reason: TCP r...

Hi guys, I am a bit stucked configuring mail server in DMZ, I can not make it working, seems I have a problem with NAT rules. So, my inside interface is 192.168.1.1 (SecLevel 100)DMZ int 10.1.5.100 (SecLevel 50)outside int xx.xx.xx.xx (SecLevel 0)My ...

We have a PIX 515 with 6.2(2). It's been a long time since rebooting.  Browsing websites with HTTPS from within the network behind the PIX is pretty slow and in some cases graphics display poorly and HTML tables don't paint correctly. That's not the ...

Hi,I would like to limit scanning and syn flooding on ASA. I am thinking I can restrict any outside host to only be able to initiate maximum 500 tcp connections total to inside host at a given time it would help prevent syn flood and port scan attack...

Hi,I have configured threat-detection on ASA and it does not seem to be doing shun to IP addresses that are doing scanning or syn flooding. I have the following config. Any suggestions why this may not be working? I have  excluded my internal public ...

I'm trying to set a NAT rule to allow traffic from ports 20000-21000 to a server on the Inside. When I apply the changes in ASDM I receive this warning:   [WARNING] nat (Inside,Outside) after-auto 1 source static [host object] interface service PAS...

Hi All, I have got an new ASA 5505 and trying to config with ASDM, following all the procedure in the startup guide, but still cannot connect to ASDM, the firefox showing "ssl_error_no_cypher_overlap", and the CLI config show below, please help: cisc...

Hello,I was wondering if there was a way to have two syslog hosts configured on a cisco asa and have diff. severity of logs go to one host.. and another severity of logs to the other host.any info would be helpful.Thanks.

I have an unused 5525-X , what is the best version to use? The download page seems to recommend either 9.1.6 or 9.2.3. Is there a reason to not go with the latest, 9.4.1? Thanks.

Cisco asa5512 with:Cisco Adaptive Security Appliance Software Version 9.4(1)Device Manager Version 7.4(2) We can access the gui but the asdm process on the Mac spikes and the application hangs.i have attached screenshots of the steps before the gui h...