Network Security

We have a user who needs to access a vpn from his MAC through an ASA 5505.  The user is getting an IP via DHCP and the outside interface of the ASA gets it's address via DHCP as well.  The user states that when he is home or anywhere else but behind ...

Hi everyone,I have a very "interesting" que from my customer.He is asking me how much disk space is needed for an event log. Just one event log. Because I told him that IPS itself has limited space for logs and to archive it, please use IME installed...

I've run into an interesting problem.ASA: 8.4(2)ASDM: 6.4(5)When I make a change at the CLI, syslog message ASA-5-111008 is generated and sent to the syslog servers, local buffer, and ASDM.When I make a change in ASDM, syslog message ASA-5-111008 is ...

Any idea what this means? Why are these packets being dropped?Mar  2 13:46:11.315: %FW-4-TCP_OoO_SEG: Dropping TCP Segment: seq:1826858942 1492 bytes is out-of-order; expected seq:1826829902. Reason: TCP reassembly queue overflow - session 10.2.31.31...

We have some Windows 7 clients that are running the 4.8 agent. NAC will process the user and move them to the trusted vlan. However, the agent stays open and appears to keep running/processing something. THe user can minimize the agent and work norma...

I want to make it so if a user tries to use a different DNS server the request will be redirected to the one they should be using.I thought this might work but the ASA doesn't do PB routingip access-list extended transparent_dnspermit udp any any eq ...

HI there.I've had a request that i'd like to run past the group as i'm confused on how this may look / work.A client has asked us to setup a VPN to thier office but only allow the connection from one internal IP. Users would have to access this remot...

hi all,I have some issues with Twin  PAT on ASA (8.4.2), there is sth I dont udnerstandFTP server is on the inside and client is in outside.I did sth like thisobject network NATED-11 host 20.20.20.11object network REAL-2 host 10.200.200.2object serv...

hello i'm little confused about argument "source" and "destination" behind object service protocal.here is simple example:ASA-FW01(config)# object service 3389 ASA-FW01(config-service-object)#  service tcp ?service-object mode commands/options:  dest...

Hi, I want to create a Dual DMZ in a ASA5510 however it is not like I used to in ASA5505 In ASA5505 I create a Outside, Inside and DMZ VLAN and there after add the interfaces into the VLAN.This way I can have two DMZ interfaces, but how do I do it in...

Hi,I see this is a popular one, but I can't see what I have done wrong.the set-up is: a DSL modem in half bridge (it does all the PPPoE connection) passes our static IP (55.167.x.x) to the ASA's outside interface ... (the modem has an IP of 192.168.1...

Hey guys,We have 2 Cisco 5510's setup in active/passive firewall mode with both firewalls running ASA version 8.2(2)I've reviewed the syslogs and from one incident this morning the active/primary started giving 211001: Memory allocation Error, which ...