Network Security

We are going to install two ASA 5520 boxes with HA ( Active-Active or Active-Passive )The boxes include 50 context licenses(virtual Firewalls) and SSL VPN licenses 750 Nos. each. IS it impossible to use VPNs and contexts licenses with HA?

Hi,ASA 5540 has 4 gigabit and 1 FE ports. ( most likely it is management - correct me if I am worng ). If we need three interfaces inside,outside and DMZ we are left with only one gigabit interface.if we need to configure failover in stateful mode we...

Hi,I'm really new to using a firewall, and need some help.I have a leased PIX 501.When I had this added to my server, my PHP  includes on my website that use the URL <?php include ('http://www.mydomain.com/footer.php');?>those files show up as not fo...

We are currently using CSA 5.2 and I'm trying to figure out a way to log whenever a user attempts to use removable media on the network. Specifically, USB flash drives. I know there is already a data theft prevention module that protects sensitive da...

Hi,I think this is a very simple problem but I don't see what's happening...I have an SA 540 allowing Internet access. The internal machines use an internal DNS server to get out to the Internet.Everything works fine.The problem is when I enabled Con...

Hello all,I am trying to setup an NAT exmption between two DMZ specific IP's on two ASA's, both with DMZ Interfaces but when I do Packet Tracer it fails on a Dynamic NAT statement we have setup. Here's the relevant config of one of the ASA's (the oth...

Hi everyoneI have a tftp server on my local network and devices based on remote sites. Between the two networks I have a firewall, ASA 7.2(4), routers and a MPLS VPN network. When the devices try to pull the image from the tftp server, the connection...

Hi,This is a strange situation.I cannot open some web pages on the Internet through the ASA. If I bypass the ASA I can open all the pages.There's no HTTP inspection on the ASA enabled.I am attaching the configuration.I am attaching a capture I did on...

Hi,Can anybody let me know how to disable or rename CISCO user in cisco IPSThanks in AdvanceSunil

Hi,I placed a ASA in front of FTP server.FTP server is running on win 2003 running with IIS6.Diffirent ftp ports being used for different sites.i.e port 21,35 n 36 under IIS.Internally all working fine.But from outside on publically natted IP the por...

hello,i was configuring an access-list on a FWSM and came across an option which i think might help me reduce the number of access-list statements.access-list xxxxx extended permit ipsec a.a.a.a a.a.a.acould some one tell me if the ipsec option in th...

Hi,It appears that multicast routing is not supported by the FWSM 4.1 when running in multiple context mode.Does anyone know if this support is on the roadmap ?Thanks

Dear allI want know Cisco Secure ACS Solution  Engine how to Generate new file of the service log file. I can not find the configuration item. The acs se os is 4.2Thanks~