Network Security

i m little confuse need your help.Stateful firewall in which state create whn packet comes from lower interface to higher interface it first check stateful if connection there packet allow if not pakect deny stateless no connection table create the...

This is a general query & doesnt the error seen is not of a cisco firewall. this is from a mcafee firewall which quite often gives "all nat ports being used" message.Not certain what it means & if it has impact on overall performance of the firewall....

Hello,i have pix 515E in failover mode with ver 6.3.5. Though i will be replacing those with ASA in next one year time, i want to know if there are reasons(security caveats, vpn compatability etc) for upgrading pix version to 8.x in the interim. I d...

Hi!I've run into a problem regarding Clientless SSL VPN. What i would like to do is to create a custom portal that the user will be directed to after successful login. I need to be able to tailor the portal depending on logged on user, i.e. user A sh...

Dear all,I am using URL filter by regex on my ASA 5510 version (7.2).It is working well, but, with a bug.The bug: is that any attachment in hotmail account only can't be accessed or downloaded, but, i aloow a certain ip to not to be affected by this ...

I have two sites and connected with MPLS links of 2MB with Cisco 2821 routers. Now a requirement came that two sites will have additional server ( one each location - for data replication purpose) and 75% of the bandwidth needs to be allocated to dat...

how can implement nac in non dhcp environment (all users have static ip) ?i need to use virtual GW mode?all the useres must be in the same access vlan ?

In certificate management link --> SSL certificate , here i want to change my signing algorithum from MD5 to SHA algorthiium along with RSA . how we change the signing alogorithum . highly help needed

I'm considering using an existing PIX-515E as one end of a site to site VPN, but can't find any stats for how many Mbps of throughput the unit with no VAC or VAC+ card will handle.Would it handle up to 10Mbps of 256 bit AES IPSEC VPN traffic?

3002 running 4.7 in network extension mode, pix running 6.3(5). Require connections from the private subnets behind the pix to private subnetsbehind the 3002. It appears the 3002 only supports the directly connected subnet off it's private interfac...

Here is my situation:I have a pix 515E currently running with private IPs on both the outside and inside interfaces. I now have to have the outside interface pingable from the Internet and cannot figure out how to do it.This is what I thought I need...