Network Security

I have a small remote office that is only connected back to HQ with a Site to Site VPN connection, both sites running ASA's. The connectivity works fine and there really aren't any problems. My issue is when I'm on the remote ASA and I try to uploa...

Hi,I have an issue with my ASA where if i point a default route from the WAN router to the firewall i get incomplete arp records on the router and i cant get to anything behind the firewall. But if i put the specific statics in to the subnets behind...

We're seeing a lot of these alerts in the IPS and MARS. I've made a few packet captures, but have been unable to completely identify the issue. If I create a packet capture, I see an occasional duplicate ACK, but those same events don't appear to t...

Is it possible to store network data to an external usb harddrive on the IPS 4255 appliance. If not what can the USB port be used for?

I've been looking at the OpenVPN software.I have the OpenVPN software configured as a client and would like to use the ASA as the VPN server for this software.It is an SSL software and as such I've tried configuring the ASA to terminate such connecti...

HJi,<br />I've a Cisco ASA with software 8.0(3).<br />I've PC behind ASA (say for example 254 hosts on interface inside); I want to do global nat on interface outside with two adddresses (say for example 100.100.100.100 and 100.100.100.101).<br />The...

hello,i have Two ASA 5540 and because of some problems in the network diagram, i can't configure them as Active/Active or Active/Standby so, i want to make redundancy between them. does ASA 5540 support HSRP?

I am doing a source address nat in FWSM with the following. But sniffing the packet outside FWSM, I don't see the source IP being NAT'ed. Commandstatic (DMZ2,DMZ3) 10.1.1.5.0 192.168.50.0 netmask 255.255.255.0DMZ2 is where the traffic is originated a...

HiI have a requirement to dynamically learn routes on one side of a firewall pair and send them to the inside. I have suggested running one OSPF process on the outside and redistribute specific routes into another ospf process on the inside. The fi...

Hi folks,<br />I got curious after enabling and loading IPS signatures into our routers. I used the latest IOS-S376-CLI.pkg file to load basic signatures set. Now then I have signature definitions files in the routers flash in xml format. <br />How a...

We have upgraded pix 535 from 6.3 to 7.2 after which we are seeing high CPU utiliztion, system has 1Gb of RAM. If we verify in the pix it says more of the process is taken by "Dispatch Unit". pls can some help on this.--srini

I am getting the following message in PIX-515 log file:[ Scanning] drop rate-1 exceeded. Current burst rate is 10 per second, max configured rate is 10; Current average rate is 2 per second, max configured rate is 5; Cumulative total count is 1283Pix...

I am going to test the ASA performance to see how much heavy load it can handle especially for vpn traffic. The only command I knew areshow cpushow memoryIs any other command I can use to check the performance? Also, what's the recommend threshold fo...

We have established an MPLS connectivity towards the remote client end. All users in the LAN are able to access the remote end servers through PAT over the MPLS circuitnat (inside) 10 access-list mpls_trafficglobal (MPLS) 10 interfaceThe problem is t...