Network Security

If I issued "show threat-detection rate"I dont know what is different between Trigger and Event(Average(eps) and Current(eps))?How are measure and increment both parameters??I read all documentation but I still understand this topic.

Hello,On my ASA I have this rule, is it a default rule as I have never added this myself:access-list outside_mpc extended permit ip any anyThanks

Hi all,I have read through countless posts on my question and have gleaned a lot of information from them.My scenario is this.We have a 6500 core connected to two ASA's in active/standby mode. The ASAs are connected to two 3550 switches which are pro...

hi,I am trying to publish a web site on 80.2.100.85/80 and access it from 78.109.177.183. when I try to access the server on port 80, I get the following log message: Deny tcp src WAN:78.109.177.183/64679 dst PRG_LAN:80.2.100.85/80 by access-group "P...

Hi All,I'm trying to NAT the source address of incoming ssl traffic to the physical inside interface. So on the inside network all ssl traffic should be sourced from the inside interface. Does anyone know if this is possible? I was trying something l...

Hello,I hope someone has met this issue and found a solution.We have two sites with an ASA 5520 in each. We use ipsec l2l between the sites. My problem is that after upgrading to 8.2 an interesting and pesky problem arised. After the SA expires it re...

guys, the only way I can access my ASA is via SSH. It asks me for username which I put "pix" and for the password, I put the enable password I created.This however only gets me half way in because it then asks for the enable password. I type the enab...

I am seeing the following in the ASA syslog:[ Scanning] drop rate-1 exceeded. Current burst rate is 10 per second, max configured rate is 10; Current average rate is 43 per second, max configured rate is 5; Cumulative total count is 26209According to...

Hi there,I have a funny problem.I build up a hub and spoke VPN, with RAS Client VPN access for the central location.All tunnels and the RAS VPN access are working fine. I use the tunnels for Voip, terminal server access and a few other services.The o...

Given the following config,host 192.168.0.1 should only open ports 80, 5067 to the outside world and should be able to access the web on port 80 and outside smtp servers on port 25 only.The problem is that host 192.168.0.1 allows all traffic in and...

Does anyone know of a way I can setup SSL VPN to allow users to remote desktop into their own individual PCs? I am looking into a way to allow a number of normally non-remoting, mostly non-technical users remote access back to their PCs. Our normal r...

GreetingCould anyone advice me why asa5520 keep dns udp connection and never expaired.my other connection seems ok, only udp:53 can not expire.my timeout configure is:sh run timeouttimeout xlate 1193:00:00timeout conn 0:00:00 half-closed 0:00:00 udp ...

I tried to set up traffic shaping on our PIX to restrict users from reaching th 3mb limit of our bonded Ts. One I applied it to the outside interface, all outbound traffic was shutdown completely. When i removed it from the interface, traffic immed...

Currently we have 5 remote IP Phone users. They use Nortel IP Phones(model#2004) which are plugged into a Nortel Contivity 221 VPN switch. Presently, they connect to a Nortel 1100 router at the office. The goal is the following:1. Set up VPN betwe...

I am having slow application performance thru a site to site VPN. I am running MS SQL and Oracle database applications thru the tunnel. I have a 10 MB pipe from the ISP on both ends of the pipe. These are different ISPs. I have done speed tests a...