Network Security

I wish to block P2p & IM but, I also deny Yahoo & Google web sites

PIX 515E 7.0 (4)Following http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtmlAll commands excepted without problems however, yahoo/google are blocked - i can get onto cisco.com. Any ideas?Here is the config...

lab on ASA 5510 with SSM-10

Hi,I am new in security. I have ASA 5510 with SSM-10 module in my lab. I want to do some labs for basic concepts and configurations. Can anyone send me small lab on ASA 5510 with SSM-10. (OS ver: 2.4.26-IDS-smp-bigphys). mtahirkhan@hotmail.co.ukRegds...

ssh access on multiple interfaces on soho 92 router

In my current config, I have:ip ssh source-interface Ethernet0Is it possible to configure ssh on both interfaces? The above command forces one to specify either ehternet0 or ehternet1, not both. Thus, with my current config, I can ssh to the soho92 f...

Resolved! ASA Software Version Confusion

Per the new Cisco advisory cisco-sa-20080604-asa for PIX and ASA devices, I'm looking at some version updates on some of my ASAs. The Software Versions and Fixes portion of the advisory page at http://www.cisco.com/en/US/products/products_security_a...

Weird MAC address in "show dhcpd binding"

Has anyone seen addresses like this in Pix?0152.4153.2000.1617.8117.d000.0001.0000.00they keep showing up in output of "show dhcpd binding" and block other legitimate client machine.

Dynamic Routing to DMZ- Is this a good idea?

We currently have a site with ASA5510's in active/standby. There are only two interfaces today. Inside and outside. Both interfaces are advertised to the internal network via seperate OSPF instances. We are adding a DMZ. My quesiton is;Is it acc...

understanding ASA logs

Please, can you help me about this log? what is the problem aroung here? what is the meaning of this log?:%ASA-6-106015: Deny TCP (no connection) from 20.121.245.140/52284 to 172.46.3.234/443 flags FIN PSH ACK on interface outside

Resolved! Flood of "TLS connection exception: handshake incomplete"

Good day every body! I am using 4215 IPS-K9-6.0-4a-E1 image. Recently our sensor started to generate a lot of errors like that (when connected by IDM):evError: eventId=1208572151825393108 severity=error vendor=Cisco originator: hostId: sens-1 ...

Cisco ASA - 2 Site to Site routes needed for failover -Is possible?

3 physical sites. 2 ASA 5510 (routing mode_). 3rd site is in between ASA sites. 2 different connections. Depending on which link goes down, a certain set of Network Lists for Site to Site VPN is needed to place the 3rd site subnets where they belong ...

Zone-Based Firewall on Cisco 850

Hi all,I tried to activate the zone based firewall feature in a Cisco 850 router running 12.4(15)T5. I can successfully define zones, zone-pairs and assign interfaces to zones. However, I am unable to define class-maps and policy maps.Did anybody run...

Resolved! QOS giving outbound priority to a port, is it possible with C850/IOS 12.3?

I've got a realtime application that uses a particular port, say, 9000 for inbound and outbound UDP traffic. Since I have off-site users that can use up all my outbound bandwidth at times, when they do this, the realtime app suffers. I would love t...

Firewall

Hi,We are going to setup an firewall which as to be enable for all our secuirty concern like VPN,IDS,Content filtering,AntivirusWe are expecting a firewall with allin one service pls suggest me any cisco firewall with this

NAT not NATTING

Morning, Well, we tried. But we were unsuccessful. In the last steps of moving our data center, we moved our default route from our old PIX-525 (6.2.3) to the FWSM (4.0.1). So everything looked good. Those hitting the proxy were still working f...

LLQ Help required

I want to configure LLQ on my Router which has 2 FE interface.I want only application always gets min 5990 Bandwidth in either case. and one user get 8 kbps. I configure the router with below mention command but still not able to get the desired resu...

Resolved! asa ipsec problem

Hello,While configuring ipsec tunnel between ASA and ISR 1811 I've got somenegative issues:pc host (192.168.56.1) <-----> (inside 192.168.56.56) ASA (outside x.x.x.56)<-------> (outside x.x.x.55) ISR (lo 192.168.55.55)When I ping from ISR to ASA ever...

Network Security

Forum Posts

I wish to block P2p & IM but, I also deny Yahoo & Google web sites

lab on ASA 5510 with SSM-10

ssh access on multiple interfaces on soho 92 router

Resolved! ASA Software Version Confusion

Weird MAC address in "show dhcpd binding"

Dynamic Routing to DMZ- Is this a good idea?

understanding ASA logs

Resolved! Flood of "TLS connection exception: handshake incomplete"

Cisco ASA - 2 Site to Site routes needed for failover -Is possible?

Zone-Based Firewall on Cisco 850

Resolved! QOS giving outbound priority to a port, is it possible with C850/IOS 12.3?

Firewall

NAT not NATTING

LLQ Help required

Resolved! asa ipsec problem

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco FTD Migration from 4100 to 4245

My CSLU(Cisco Smart License Utility) can't login into Cisco.

same question, same issue, Intervlan routing not possible at FTD

Migrate from FMC virtual 300 to FMC virtual

FMC Connection Events Export

FTD and FMC backup creating a sf-storage folder

Route Based VPN FTD

Multi instance 3120 FTD - Each instance in different FMC Domain

FDM DHCP Relay

Need expert help with Firepower intervlan routing