I'm runningNetwork Module IDS ona 3845 router. The build is 6.0(5)E3. Up until last week, Cisco has been putting out signatures for the E3. The last one I've seen is the IPS-sig-S479-req-E3.pkg. I've noticed that over the last week they issued IP...
Hello, I have a client that needs access to a particular server on the DMZ from the outside Interface - I have created a static PAT statement 1200 translated to 1200 (I have created the 1200 port so they can access this particular server) and created...
Hi,iam kalyan.Can you please tell me how to configure AIP-SSM-10 module in ASA 5510 on inline mode.1.what are the steps to be done in ASA and IPS (SSM module) for inline configuration.The ASA is in active/standby failover configuration.2.How the sign...
Hi guys:This is the firstime that I post something here, so here's my question:I got a problem with an IPS Module, because when I want to download something from the web (FTP, HTTP,etc) it's very slow, for example if I want to download something of 3...
Hello all, very quick one for you:I want to create a L2L tunnel that allows all traffic in one direction for management purposes, and just port 80 traffic back in the other direction.I'm guessing this isn't possible with just the match access-lists (...
Hi,I have a quick question regarding the auditing system in CSM. In Checkpoint, we can do an audit via SmartView Tracker to determine who was the last person did a change to the Checkpoint firewall. How about CSM? I believe CSM have something similar...
Hi there,PFA,We are facing an issue while accessing one of our Server in DMZ, which is connected to 2960 switch in DMZ from inside segment of ASA.We have two IPS boxes which are connected as per network diag attached.We are able to access that partic...
I am trying to limit the amount of typing by creating groups and adding an acl dependent on those groups, however i cannot get it to work. Attached you will see (hopefully) what I am trying to accomplish. I need to allow a few remote hosts to contact...
For Cisco Security Agent, is there a way I can tell what Shim's are enabled on an agent for a host? Is there a report? Some way from the Console I can tell wothout have to be on the host? Thanks!
I performed a maintenance on an ASA last night (simple ACL, static NAT updates) and this morning was suprised to find that the name of my outside interface changed from outside to outside%"#. Every line that referenced outside was updated and from wh...
We have an interface on a ASA5520 connected to the internet. On one of the other interfaces we have the wireless gateway configured for guests to access the internet when needed. Now employees are using their personal laptops to take advantage of u...
I am setting up a WRVS4400N to login in With just QuickVPN. I can not get a connection on my laptop but it will show me logged onto the router sometimes. any ideas
Per the release notes:If the configuration specifies both a global access policy and interface-specific access policies, the interface-specific policies are evaluated before the global policy.How does this work with the implicit deny rules on an inte...
Have an ASA 5520 and downloaded 8.3.1.1 Interun release today. When ever I try toload the image to flash, either using ASDM or tftp, the ASA will rebootbefore done writing image to flash. Can download it to ASA just fine, then starts writing to flash...
