Network Security

We have the problem of multiple VPNs connected by UMTS-Routers to our RV042. Often our provider routes different UMTS-connections through ONE public ip-address, so that some Remotegateways on our VPN-Router show the same ip-address. Only one remotega...

Hi,I've recently installed AIP-SSM-20 in the ASA, I need to know the following info.1. Is keeping the latest sig.def file (Sig.420) with default actions, will be sufficient for the protection?2. If I change any one signature behavior, what will happe...

I have a question concerning dual homing connections from the ASA 5510 to two switches (See Attached). What I am trying to do is see if there is a way to load share between the switches on the untrusted side (in RED) from the traffic that is coming ...

Is there a way to write a custom signature that looks for a IP address making rapid connection attempts to an IPSec termination device trying to brute force a pre-shared key? Would this be something the Anomaly Detection engine would detect?

Hey All,Scenario:I have a cisco 851 that is connection to an ASA box. I don't have access to the ASA (outsourced company) but the 851 is local. They initially wanted to run private Ip's on the switching side but we told them thats not the standard fo...

Dear All,I know that the asr-group command permit to a couple of interfaces (belonging to the same group) to re-route a return packet for a connection thatoriginated through its peer unit.But the asr works also for the new connections?If a new connec...

Anyone ever experienced an issue where your Sophos appliance that sits behind the ASA firewall cannot make a TLS connection outbound due to the ESMTP inspect option?I don't want to disable it entirely. Is there a way to create a policy map to disabl...

Hi Guys, I have pix firewall 525 with software V 6.3. In that pix firewall, i can able to access the one of the dmz server using both nated ip( let say 10.80.80.2) and the original DMZ IP (let say 172.80.1.2). Recently i tried to upgrade to ...

Is there any CSA compatible with MsWindows 2008We need this version of CSA.

Hi All, I have SSM 10 with ASA 5510. in ASA, I've configured NTP server and it shows correct time. In IPS, I didn't configure NTP server because I assume it gets the time from ASA, and there is no summer time enable in SSM. But it shows one hour off ...

I am contemplating deploying two ISR routers as zone based firewalls. They would have possibly up to four zones on them. I have both 2811s and 3845s and would prefer to use the 2811s as the 3845s have already been ear marked. Does anyone know what ty...

Hi All, we have a 7609 chassis where we have installed the FWSM module and IPsec VPN module.we would like to configure a Site to Site VPN. how do we do that now ? Below is the VLAN interface configuration (outside)on the fwsminterface Vlan601 descri...

Trying to re-image a CSC-SSM module but the recover boot procedure seems to be looping.I configure then start the "hw mod 1 recover boot"...thmasa1f# hw m 1 recover bootThe module in slot 1 will be recovered. This mayerase all configuration and all ...