Network Security

I have a site with a web server (192.168.1.10) needs 80 and 443.  Then I have a phone system (192.168.1.11) that needs tftp and rtp traffic (ports 10000-20000). finally I have a terminal server needing RDP 3389.  now I only have one external IP addre...

HelloWe have a setup with a MS-TMG - ASA (8.2.4(4) in routing mode) - (internal) Router - FWSM - Router - Exchange with NLB.  We have now the problem that IMAPS is not really working through this setup. It works from internal (without ASA and TMG inb...

Hi I am sending the informational log,specifically the message id302013 of cisco ASA to syslog server. I am only concern about the built in message created from outside to inside direction. Is it possible through configuration so that I can only rece...

Hi Experts,I built the network like attached diagram, and hoping it to work like this:the traffic coming from outside, which is VLAN 1, will pass through ASA and go to VLAN 100 and 254.Routing protocol between R0, ASA and R1 is OSPF.  The problem now...

HiI have enabled acl information log in cisco ASA.Now my question is why I am not getting both 302013 & 106100 mesages for every traffic. What I believe is that I should get two traffic details for every 1st  packet hits the ACL. Built in message3020...

                   Dear alli have a problem with ASA 5505 i have three vlans : Inside, Guest, Outsidethe Inside's vlan network is 172.16.100.0  255.255.252.0Guest                           is 192.168.1.0    255.255.252.0Outside                       ...

Hi Guys,I am currently getting DoS/DDoS on my asa 5520 , the attacker is hitting IP's that are not even open on any port. The attack is filling up the queues on the firewall which is at 99% CPU during the attack. here's the NetFlow info that I was ab...

hi ,I have a cisco asa 5510 with security plus license in Live enviroment .I need to add a secondary firewall . I was planning to do in active /standby mode for failover . But i have a doubt , when i do "show version " on live asa output says Active ...

Hi, I´m trying to make an upgrade of my ACS 4.0 (windows server 2003) to a new ACS 5.2 (appliance). According to Cisco papers, first step is to make an upgrade from ACS 4.0 to another ACS 4.1.1.23 or ACS 4.1.1.24 on Windows and then migrate my data t...

Hi, Since moving to the new object oriented nat syntax - i have encountered problems with using port address translation from many to many.With many thousands of users behind a firewall all passing traffic from inside to outside, I am required to res...

I want to make sure I understand how the nat requirements work on asa v8.0 when inter-interface is set.  Background:nat control is off.same-security-traffic permit inter-interface is on."inside" and "MPLS" interfaces are both at security level 100."o...