Hi Champs,I have configured timestamp logging on PIX 506E version 6.3(5). However the output of the log message does not give the timestamp. Let me know if i am missing out of anything. Thanks in advance.show logSyslog logging: enabled Facility: ...
Hi,who can help me to understand how work sla monitor IpIcmpEcho parameters?I have a problem with a Dual ISP configuration: the main one is connected to a DSL router while the backup router is an ISDN one.I configured sla monitor in the way of cisco ...
Hello, I hope someone can help me. Users on the inside of a ASA 5510 cannot access an external webvpn site. I have allowed https on the outside interface as well as on the inside interface. Is there anything that I am missing? I have attached a porti...
Hi,In our organisation ASA 5520 with version 8.0,which is VPN Plus license.In that Webvpn session are only 2 as per license.How to Increase the sessions.Is CCIE login is sufficient to upgrade or do we must purchase the license key.Kindly confirm.
Hi to all,the Cisco IOS ZONE BASED Firewall support the feature "TCP Out-of-Order Packet support" ? https://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/sec_out_order_fwall.html#wp1049430RegardsRoberto Taccon
I have a strange problem when setting up an ipsec-tunnel between my ASA 5520 and a remote peer. The tunnel comes up fine and when I am initiating traffic from my side everything is working fine, I can log into SAP and worh in the system. But if I try...
I have setup a capture on our ASA. We are trying to connect across a VPN tunnel wiht a certain app and it wont connect. We can telnet and SSH to the device across the tunnel OK. It is just this one app that wont start.I have a capture set up on th...
I need to setup a hairpin on my PIX running 7.2 PIX-OS. I have the configuration set but this isn't working. I need to do this because we are moving a critial host (172.16.100.62) to another network in another facility and listening on a new IP addre...
Hi,I have a 1841 cisco router with ports and ip remote access to locally connected 2 firewalls.Those firewalls stablish 2 vpn tunnels. 1 is up an the other one no.This warning is show:packet has invalid spi for dest address=213.171.249.86, prot=50 ...
I am trying to create an access rule in th e DMZ on a PIX 515E to one server in the DMZ (192.168.30.10) from two different IPs:74.125.45.8374.125.45.17From these two IPs I want to permit https & ping traffic only. This is where I'm running into a pro...
I have so many questions about MPF inspect maps I don't know where to start. I'm going to ask a simple question that will probably induce 100 more.Let's start with policy-maps and class-maps. Everywhere I have read says class-maps define traffic an...
We have a new ASA5505 with the Security Plus Unlimited License. We are trying to setup two web servers in our DMZ with PUBLIC IP addresses (as required by our application). These machines CANNOT be NAT'ed in the DMZ. Network Space (IP's have been s...
Dear ALL,I have a PIX 515E 6.3 , a ftp server on windows 2000. A customer of me, sometimes esperinces ftp sessions hung without any particular reason. In the PIX's log I can find this error: Deny tcp src inside:192.168.0.239/20 dst outside: a.b.c.d/2...
Hi,I am just trying to setup the email notification for failed ssh attempts and/or https request to the asdm.Do I have to create an event list or can I handle it with syslog ids?!?Every help is appreciated!ThxTom
What's the best way to do something like HSRP (I need my users to point to a redundant virtual address like in HSRP) with two 6500s with the FWSM.I will have about 20 VLANs. I want the FWSM to be active/passive. Should I put the virtual IPs on the ...
