Network Security

hi all, i am trying to apply some QOS to prioritise VOIP traffic over a VPN to a headend PBX i have found numerous examples of this however they utilise the "shape average" command which after some research is not available on the next gen firewall r...

We are receiving thousands of "Deny inbound UDP from x.x.x.x/53 to x.x.x.x/2713 due to DNS Response" per minute on our ASA 5510. All of the responses are destined to a signal one of our external IP's. This is overloading the our ASA and preventing tr...

IME version 7.2.6 loads and displays the IPS integrated ASA5515X software modules.All screens are accessible but selecting the "configuration" icon just hangs with spinning hour glass and "Loading Configuration" for several minutes and eventually tim...

Hi All,Have a challenge for you guys and gals.  I am trying to working out if the following is possible...In detail, the exmaple below has a pair of ASAs that are cascaded at a remote site, say ASA_LAN and ASA_WAN.  Both would be in L3 routed mode (c...

I have got two Cisco ASA 5520 running with IOS version 8.4.I am trying to get all the packet events for a given "specific source" IP address > send to a syslog server. Syslog server has been configured and working fine for other ASA events.I have cre...

Am trying the following command on ASA 8.61, however it appears the static command no longer works.  Would appreciate any insights.static (inside,outside) 10.25.0.1 10.25.0.1 netmask 255.255.240.0Thanks.

Hi All Security Experts, I upgraded a ASA firewall using the 8.6(1) version with the LOCAL_CA_SERVER, which is for the VPN clients, e.g. one time auth cert deployment, revoking. Unfortunately, I have to upgrade the version to 9.1 or above, because I ...

Hi Experts,In my topology i have pix 525e and asa 5520 in a parallel connection. I want to implement redundancy between this two firewall.My question is "is that possible to implement openBSD CARP protocol in PIX/ASA firewall?" if so please guide me ...

Good afternoon gentlemen Suddenly I could not connect to an ASA 8.2.1 firewall by SSH anymore. When we tried, connection closed in the same time. No changes has being performed.We could configure by ASDM telnet access, working perfectly. Other issue,...

At this time I have on my firewall the following;Subnet; 24.222.61.xGateway; 24.222.61.xSubnet Mask; 255.255.255.240Usable IP Range; 24.222.61.x to x They gave me a new outside IP Addresses and GW;Subnet; 24.222.92.xGateway; 24.222.92.xSubnet Mask; 2...

Hello, i'm trying to configure indentity NAT of my inside directed attached network 172.24.10.0/24 and it doesn't work.Identity NAT of inside not directly attached network are working.If I use a dynamic PAT of the directly attached network with an ex...

Hello,I have a problem with my ASA 5505, I am not able to transfer files bigger than 100ko using TFTP. Below my archiecture:CME<->ASA5505<->SW3650Here is what I get when I try to download a file located on the 3650 on my CME:CME#copy tftp flashAddres...

Hi, I have been on and off this project for a month but hopfully will have the next week or two to focus on it.I have a cisco ASA 5512X and i'm trying to get the IPS working.Looking on google and cisco forums it says you need a management interface. ...