Network Security

Hi,I could do with a little help with some kit I've recently acquired. I have a PIX 501 with a Linksys DSL modem (adsl2mue) between it and my ISP. The modem is a DHCP client of my ISP and DHCP server for the PIX outside interface. The PIX inside inte...

For CSA 6.0.0.220 - Can someone post how to check what SHIM's are enabled on Unix boxes?Secondarily How to Disable individual SHIM's on Unix?

Is there a way to make it so that remote vpn users dont get the ASA as their gateway when they connect? Its causing me some routing issues with them. Thank you

Is it possible to turn off nat on some interfaces and use nat rules towards internet? Or do i have to use nat on all other interfaces when i enable nat on one?

I have an ASA5520 and am considering what I do when I start to reach capacity on the box.I have been told to look at clustering ASA's together, but all of the information I can find seems to refer only to additional VPN connections when using a clust...

I am trying to do a Pathping across my network from inside to an external address.I am foxed as to what I can do - it is the ASA that is blocking it.Ping and Tracert does not work either

Are NAT statements on the PIX processed in order of NAT ID?

I've got a slight problem with a site to site vpn setup between site A and site B and the ability to authenticate against an RSA SecurID appliance located at Site A if the user VPNs in to Site B.Basically, the setup is as follows:Site A:Cisco ASA 551...

I have a PIX in routed mode. I have another one exactly the same plus the serial failover cable. The problem is that in order to use Active/Standby configuration I need to use 2 IP per interface (Active and standby).Unfortunately my networks use real...

Swapping out a CheckPoint firewall for a new set of ASA's, running 8.0(3) and ASDM 6.1(1).One of the features that I'm trying to replicate with the crossgrade is HTTPS based direct network access authentication (or client auth in CheckPoint-speak)Wit...

Hi,This is a wierd request as it flies in the face of the purpose of vpn clients but I ahve my reasons:We don't like Split-T but we have a userbase on a customer site that require it. I have made a special profile for them but they tend to hand out t...

We have a webpage that uses java, and we are unable to make it work on web vpn on mac os. On the windows side, we added the following to the webvpn smart tunnel and it works: smart-tunnel list banner WebStart javaws.exe platform windows smart-tunnel ...

I just got a report from our security scan company that we failed our quarterly audit because:Category: Denial of ServiceTitle: spank.cSummary: Sends a TCP packet from a multicast addressDescription: Your machine answers to TCP packets that are comin...

Inbound emails are down. Outbound works.the ASA 5510 shows this in the log.Deny tcp src outside:209.252.33.110/38723 dst inside:63.243.80.11/25 by access-group "inside_access_out" [0x0, 0x0]One minute everything was ok then it stopped working.In the...