Network Security

we are using external user DB to log into the Network devices to authenetication.I want set enable password on the ACS, I found from ACS server configuration page:"Configure Enable Password Behaviour:For newly created dynamic users, the TACACS+ enabl...

Hello allWe have recently upgraded our Internet capacity to 100/100 from 10/10.Problem is that we only get 50Mbit upload, 10-13 Mbit download.I got those results having the PC behind the pix. I also moved the laptop outside the firewall and got 80/80...

Good day,We are scheduling Power maintenance work in the next few weeks. We will be shutting down our 6509 switches. Should we also shutdown the IDSM-2 blades in our switches??ex: reset power down command via the CLIThanks,

I am trying to setup a wireless guest access for a customer that has an asa 5520 v 8.0(I think) In any case we have everything working and the wireless is going out to the internet fine. The issue we are seeing is that when they try to access their w...

Hi I am struggling with getting my Cisco ASA to enforce privilege levels to users that authenticate to ASDM via Radius.I am sending back the Priv-lvl=5 attribute but all users connecting to ASDM get level 15 no matter what?Any ideas?

Hi,I'm trying to remove the DHCP services from the ASA, thus I also need to enable the DHCP relay server feature. Do I have to disable the DHCPD config also for the management interface? Thanks.

Hi,I have a L3 swith where user vlan is created & the natting is done in ASA.In ASA:========nat (inside) 1 10.10.11.0 255.255.255.0global (outside) 1 210.212.10.x 210.212.10.20 netmask 255.255.255.240route outside 0 0 x.x.x.y (router interface connec...

Hi,I was looking through the web and doc for commands relating to the Pix and setup for attacks. One of the command mentioned wassysopt security fragguardWhich according to the docs protects against teardrop and land fragmentation style attacks. Upon...

if theres "no nat control" in an asa implementation, is there any security issue in here...

Hi, Our Web Servers are placed in DMZ and when i try to update time synchronization then it shows me error. Seems something is getting blocked. Has NTP required to be add in the default inspection. Please suggest. Thanks.

We are in the process of replacing our router due to obsolesence and due to the increased resource load on it over the years. We currently have an older Cisco 3640 router running IOS (C3640-I-M), Version 12.2(3), and use ACL's extensively in an attem...