Network Security

Hello,we are trying to design a sandwich ASA with contexts mode.we have a couple ASA 5505 with licences for context and failover.we are thinking on Active-Pasive and two context:internet --- ASA1andASA2 in failover Context 1 ---- DMZ  --- ASA1andASA2...

after changing admin password on CLI and then logging in on web interface, I can no longer log into CLI from old admin, new acsadmin/new password, new accounts created with passwords with SuperAdmin status...what am I missing?

Hello, I have installed Cisco security manager 4.8 on a new 2012 server.  I have csm 4.6 sp1 running on a windows 2008 server and want to take a backup and restore it onto the new server.  Is this possible?  I cant get it working just yet I planned t...

on PIX 515 - how to make interface throughput more with Fast Ethernet multiple port? any idea ? other solution like creating vlan on pix and assigning multiple port with same security level?   and  as i know pix wont support etherchannel

I'll tell you the problem: From a machine outside my network I can access my internal network past the ASA 5525 pinging and perfect answers I mean I ping from outside network to the server handle this after the firewall and the ping responds ...

So i want to access a webserver in DMZ from Inside by both its internal and Outside public IP (assigned via DHCP) without using DNS doctoring. Can access it via internal no problem and found few articles that cover hairpining but they usually cover i...

signature description: Web Application Security Test/AttackSignature ID 7212/0 We have an IPS in front of an eCommerce site, and we see this signature fire frequently. I'm having trouble determining if the signature is misfiring, or if these are legi...

Hi,I have an ASA 5505 with SW 9.2(2)4 on a cable connection with an external modem. Behind the ASA are a number of services including one Asterisk server which maintains a connection to a SIP provider. SIP inspection is disabled in the ASA because it...

Hi,I am moving FWSM 4.1(15) config to ASA 9.2. I have some specific static natting on FWSM where I have both static (inside,outside) and static (inside,inside) for the same set of internal and external address. It is working fine with the 'alias' for...

we have two firewallold firewall pix outside IP 192.168.100.1/24New Firewall ASA outside Ip 192.168.100.10/24the Old Firewall (PIX) is NATTED (Globally) inside with interface for most of the network segments which include many applications and other ...

Dear All,I have an environment as follow:ISP->C3945 router --> ASA5585X with FirePower--> C4503 switch (VSS cluster configured)And it was OK before I put ASA5585X to the network. But after I put ASA to the production network, internet connection goes...

Hello people! I have the next issue.We have bought a SSM 4 Gigabit module for our ASA 5510. So now I want to migrate an interface that now is "Eth0/0.10" to the new SFP "Gi1/0.10".Question is: what is the right way to do it?I have many features runni...