Network Security

Hi,I need some clarification on the classification criteria on multiple contexts. As mentioned in the documents there are 3 different methods which are1. Unique MAC2. Unique Interfaces3. NAT ConfigIn Unique Interfaces, as per the document "If only on...

I have an ASA running 8.0(4) and am sending log messages to two different syslog servers. However, I want to send different levels of logging to one server verses the other. Is there a way to do it? Thanks!

Hello,Can anyone help me out with the Port forwarding in ASA 5520 My Client from outside connecting to My inside SFTP server using port 21 and they use secure key but when they trying to connect client geeting an error authentication fail so we decid...

Hi,Scenario; Network: New York = 172.30.7.0/24Network: Washington = 172.30.8.0/24Network California = 172.30.9.0/24Network: new Location = 172.30.10.0/24WAN Mesh = MPLSNew York facility (Users, packaging, warehousing, etc) will be systematically movi...

I have an ASA5510 running 8.2.1 code for site-2-site VPN.I want to establish VPN between this ASA5510 and a remote peer which is a Cisco 1841 which has an external IP address of 1.2.3.4I would like to be to allow ONLY IP address 1.2.3.4 to establish ...

I have an old Cisco pix 515r v6.3I need to permit a range of IP's to our mail server on port 25 (only this range should be able to access PORT 24 on the mail server). I'm not very familiar with the PIX, so any help with this would be appreciated. Wha...

Hello,i have upgraded a cisco pix 515E, from version 6.3.5 to 8.0.4.the steps i followed was: 1.- upgrade from 6.3.5 to 7.0.82.- upgrade from 7.0.8 to 7.2.43.- upgrade from 7.2.4 to 8.0.4in each step i make testings and was ok.But now im having a log...

Hi all, I'm trying to define if implementing policy based destination NAT on FWSM is possible. I found several examples of policy NAT but it seems that it only applies to source. I did tests on a router and I am quite sure it is not possible, but now...

we r using ASA5510 for internet link.we activated basic threat detection.to access internet users must use one BlueCoat Proxy.in ASA i allowed all IP traffic coming from the proxy.in firewall dashboard, under Top 10 protected servers under sync attac...

I have a lab setup with a 1721 connected to the Internet. I have enabled ip inspection with several engines including http and https, on the outside interface out bound. I also have an access list on the outside interface blocking inbound traffic. ...

Hi,A company is switching the ISP so PIX515E IP needs to be changed. I found that the DMZ interface is using a public IP and a web sever is using a puplic IP as well. Please see the configuration below:...name 206.x.x.211 DMZ-WEB...interface ethernet...

HelloCan incoming and outgoing SMTP traffic for internet be restricted. SMTP Server is in DMZ.Incoming smtp traffic host will be differentOutgoing smtp trafic host will be DMZServer 192.168.1.5Restricting Bandwidth = 1MB

We have an ASA in a colo environment that has a full 100Mbps Internet connection. we are billed at a 95th percentile rate and want to limit ourselves to 34Mbps. I believe this can be done by traffic shaping. I want all traffic affected by this. Our i...