Dear All,DHCP client is directly connected to the FWSM interface vlan 100, and DHCP server is also directly connected to interface vlan 200. FWSM act as a DHCP relay agent only.We have reserved the IP & MAC for one of our DHCP client in microsoft DHC...
If I have ASA's in remote locations with site to site tunnels to the home office where the websense is, can I have the remote ASA make calls to websense like a router can? If so, how do I force the source address from the remote ASA so it is an encr...
the default session timeout timers for NAC is :Role Session timeoutunauthenticated Role DisabledTemporary Role 4Quarantine Role 4what is the ordering of applying these roles and...
I've been studying how inspect policy maps work on an ASA, and I come across the part where they talk about blocking content using regex expressions. I see that there are plenty of examples published by Cisco (and many threads on various discussio...
Hi all:I have to upgrade a FWSM from 3.1 to 4.0(10). I have some doubts to this respect:1. May I do it directly or I need an intermediate jump before (let's say 4.0(0))?.2. Once I upload the new version and reboot the appliance, it will detect the ne...
Hi everyone, On my pix, I have 2 tunnels which has been already set up.I'm currently trying to create a third one between a PIX 515 and a VPN Concentrator 3000. I used the ASDM Site-to-Site Wizard to create the tunnel. But when I applied the changes,...
As of the lastest upgrade on my ASR, the list of inspectable protocolswent from a very manageable 30 or so core protocols to almost 150.I don't particularly care to see l4 statistics for stuff like "hp-managed-node"or "creativeserver" and would prefe...
Hello experts,I'm working with 2 4260 and a 4270, I will be implementing vlan pair and I would like to know what happens with the traffic if for any reason the IPS fails. Lets say that the failure is due to a power issue.Thanks,
Greetings,I'm attempting to force/initiate a Cisco ASA VPN tunnel connection from a remote location and I'm wondering if there is a way to make the Isakmp and Ipsec SAs come up from either the command prompt or from the ASDM.In the past when configur...
Hi,I want to get statistics about how often I am under attacks and the nature of the attacks.I read many documents about how to activate threat-detection in ASA v8. For this, I need to type the following command: threat-detection basic-threat. Unfort...
Hello everyone,Here's my setup:PIX-515E Release 6.33 physical interface: IN, OUT, DMZI have a problem about the flow through between a PC on the inside and a pc on the DMZ.The flow between the 2 machines is about 60kB in one direction and about 500kB...
Hello all,I need to upgrade the licenses on a failover pair remotely and have a few questions. I was following the guide at:http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00806b1c0f.shtmlbut it doesn't seem to have gone...
