Network Security

hey everyone...i'm trying to configure a simple ACL to block smtp traffic from leaving my LAN -- basically prevent internal users from setting up internet email accounts in their email clients and sending through that smtp server. i want my Exchange ...

I have a strange business case that requires us to use 2 ASA's to protect an internal system. I'm trying to figure out if there is a way to connect the 2 without using a NAT between them.The setup looks like this, sorry for the crude drawingright now...

Hi all,I configured ASA to open port 21, 3389, 5900 (outside access in) but when i check port just success : 21 and 3389, Error: 5900 If i configured with only one port 5900 or 3389, is't ok, i don't undesrtand what 's the problem?ASA5510>        ASA...

ASA 5520 running 8.4.5:We had an issue with a remote SMTP connection getting screwed up as a result of ESMPT inspect.It took me 3 hours of troubleshooting the SMTP connection before finally figuring out that the firewall was the culprit. What really ...

I'm working on setting up a backup link for our ASA 5505 and I've followed these directions:  http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtmlThe backup ISP gives us a dynamic address, however...

Hi,Hope you are doing great!the "show resource usage" indicate the  resource usage of the security appliance or for each context.I am wondering the below output:FWSM# show resource usage Resource              Current         Peak      Limit        De...

Hi..Today I tried to redietribute EIGRP into OSPF but when I apply this command:Redistribute eigrp 1 subnetI recive this message:Too many ip routing process for this routing protocol.What is the problem I have?Tks

Hello,i have a couple of ASA 5510 in Active/Failover configuration.Failover LAN is configured on management0/0 e the ASA are connected with a back-to-back direct cable.ASA has an interface in access mode inside with standby ip address and show failov...

Hi,I have a probelem with one of my s2s vpn tunnel. i am gettign the below error message "group = x.x.x.x, ip =y.y.y.y, duplicate phase 2 packet detected. retransmitting last packet" . the tunnel was down with out making any chages at both ends. chna...

Hi guys,I'm stuck on a particular issue, I can see this in SYSLOG:Deny TCP (no connection) from 192.168.112.x./x to 192.168.115.x/x flags SYN ACK  on interface insideTeardown TCP connection 7844974 for fw-mgmt:192.168.115.x/x to inside:192.168.112.x/...

Hi All   we have two fireawalls configured in active/active mode with two context.All the interface of two contexts are shared.How can i change the mode of failover from active/active to active/standby with minimum disruptionThanks in advance

Hi guys,We are encountering several problems with regards to the NAC Agent. We are deploying AD SSO and for some reason, on the same switch other hosts are performing SSO correctly and others are being prompted for a user name and password by the NAC...