Network Security

Hello Experts,I am facing some issues with vpn tunnel.I have formed the vpn tunnel between cisco pix (ver 7.2) and fortigate(othervendor).Once i initiate tunnel from fortigate i can see ike phase up with ipsec upfor eg 1 IKE and 5 IPSEC and all subne...

HIHow can I monitor my inbound and outbound trafic on ASa 5505. I want to check which IP is misbehaving in netwrok.please helpThanksAmardeep  Rana

Dear's,Any different configuration for 6500 or IDSM-2 if i m placing with FWSM???? . I will place IDSM-2 in inline vlan pair mode,and all SVI will be created on FWSM instead of MSFC.Any suggestion please on above design and configuration.Thanks

Hi I have an ISR in a DMZ behind an ASA, both are doing NAT. The ISR is the VPN tunnel termination point to remote sites, but I do need to SSH into it if the internet goes down (in the cloud). My issue is I need to SSH to the outside interface of the...

Does someone have a simply document on installing the IPS 4240 and configuring SPAN port on the switch to monitor traffic coming from the ASA?

I would like some help please.We have purchased a 5510 and I am new to this piece of equipment and need some help.I have found a lot of information but they seem to mostly use the commend line and I am using the ASDM to configure my information.  I j...

My current setup has an ASA and a VPN3k with a public IP in the DMZ.  I've successfully tested using the ASA to terminate VPN connections and am planning on how best to retire the VPN3k.Here is an example using private range IPs to represent the publ...

Hello allA am new here and I did do a search and could not find any problems similar to mine, I hope you can help.My problem is that after my company's PIX 501 is unplugged after for a night or two when the firewall is plug back in it goes to an ftp ...

I understand that you can use WCCP redirects on the ASA to redirect traffic to a proxy server, and that you can have multiple WCCP groups but if the ACL used within the groups are the same, only the first group will be used.Is there anyway to declare...

Seems like a simple enough task, and yet...This is the syslog message from the ASA:Aug 17 10:45:40 10.22.151.50 local5.warn %ASA-4-402117: IPSEC: Received a non-IPSec packet (protocol= TCP) from CiscoworkServer to 10.22.151.50.FYI, 151.50 is the IP o...

Hi all!I have static IP (outside). Let's say it is 69.70.90.90.I want to map https://69.70.90.90:8080 to internal https://192.168.1.2:443But it doesn't seems to woks. How I do this?

Hello,Is there any failover mechanism for two IDSM installed in different 6500 chassis(chassis are configured as VSS)?

Hi TeamI need your help with the following question:We are preparing a design to one of our customers, using Catalyst 6504-E with VSS, and a Firewall Service Module (FWSM).Based on this document, the minimum IOS release required is 12.2(33)SXI:http:/...