Network Security

Hi,We are in process of installing the AIP-SSM20 modules in ASA5520 (Active/passive). Currently its configured in promiscuous mode /w monitoring all the outside and dmz traffic... I have also tuned various signature to troubleshoot and increase the A...

I am modifying one of the policies on the IPS on my 5520 that I just setup.What I want to do is remove the false negatives coming from the DMZ with signature 3030 (TCP SYN Host Sweep)I want to filter out the IP range of 192.168.168.0/24 but I can't m...

Dear all,How to download or copy IOS Image from PIX535, which is currently running 6.3(3). or show me the site to download. Am looking for exact version. Much Appreciated.Basha.

Anyone interested in trading CSA Polices.I am running V5.2.0.203.We have been using CSA for about a year. I want to start creating advanced protection polices in Linux and Windows.

Hi - We have a NEC VOIP phone system that uses SIP port 5080 not the default port 5060. Can the inspect sip be changed on the Cisco ASA 7.2. Firewall like fixup could be changed on the PIX Firewall?Thanks

I have a conection with a costumer to FTP data to a server, but the transfer fail after the "Parent flow is closed" message.Anyone got any ideas?

The inside network is 10.66.70.0/24I need to apply an access-l to the inside interface to allow the hosts on this internal network to only access servers on port tcp 9890.These servers reside on destination network 192.168.90.0/24Also, my second requ...

I work for a video conferencing company and we are looking to get a new firewall as our current Adtran firewall has some issues with a certain codec.We are a small company that is trying to keep it cheap but I also don't want to waste time on somethi...

I am working at a customer site where he has an ASA deployed between the Internet and the Inside networks.I was examining the logs on the appliance today, and found this message repeating. I am curious if this is being caused by the following comman...

What is the way to get the arp table on an ASA using snmp? I tried doing an snmp walk on .1.3.6.1.2.1.4.22, which works on a Cisco router, but got nothing.ThanksMike

I have a customer whose IT guy left, and I am trying to gain access to their PIX 501 F/W via the http web interface. I do have telnet/enable access to the device, but I seem to be unable to re-enable the http interface from the telnet command line. ...

I have a PIX 501 that I am setting up at a site that has one static ip address and a router. I have never setup a PIX 501 without a public address on the WAN so this is new to me. I have assigned the outside interface of the pix to 192.168.0.254. ...

I have a IDS-4215 sensor with version 5.1(5)E1S333V1.2I tried several times updating signatures with next version on it but it doesnot get updated and only the local MC gets upgraded. I have other IDS sensors also but I dont have any problem updating...

Can anyone tell me what causes the errors and drops to increment on a show logging output? See below:Syslog logging: enabled Facility: 17 Timestamp logging: enabled Standby logging: enabled Deny Conn when Queue Full: disabled Console ...