Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
I have a DMZ on my ASA 5510 that is working for everything except internal DNS. If I try to ping an internal IP of 192.168.200.10 it responds but if I try to ping that IP by name it won't resolve.This is the DMZ related part of the config:static (In...
I see that starting from version 8.x of ASA, an optional word "secure" has been added with logging host command. That is.,logging host <int> <ip> <tcp/port> secure,But has any one got it working, without using Cisco MARS. I am trying this with other ...
We are getting ready to set up active/standby failover on 5520 ASAs.My question is when we set this up is it going to cause a down time on our network.
Im sure everyone has figured out what to do with this signature. It fires a lot due to the code (ad revolver) used on some high traffic websites like lanebryant. Intelli Shield recommends we filter out webservers hosting non-ASCII web pages.How am I ...
We occasionally get "5930 - Generic SQL Injection" alerts on our network.Signature Details: "Union All? Select". Unfortunately I can't find a match for this string in attacker context. I have even looked at PIX logs which contains "x.x.x.x Accessed U...
Hello all,I have two PIX-515 with ver 6.3(4) failover to each one. My monitoring tool tells us a hacker from China is hacking our SQL database. I blocked the hacker's IP address on the outside interface of PIX and clear the session. After that, I don...
I can't figure this one out. I have an ASA5505 at home that I use for VPN access. Occasionally when I connect I can't ping anything. I check config and it shows:no crypto isakmp nat-traversalI've configured "crypto isakmp nat-traversal" so many ti...
Hi,I just got an ASA 5520 and it will be used for our proxy server. Before putting it to production i used one of our DSL line to simulate for internet access. What supposed to work:An inside user will access the internet thru outside interface to ga...
I have 2 sites that are connected through IPSEC VPN between 2 PIX 525 firewalls and i have replication between 2 NETAPP storage devices that is not performing and it appears that the MTU and fragmentation is affecting it. When i do a ping with size ...
I have an IPS 4255 running 6.0(5)E2. The device is not running inline, it is functioning pretty much as an IDS. It has devices with which it can request blocks via ACLs on an interface. My problem is that the IPS seems to be blocking traffic witho...
Data center = 45Mbps circuit. Branch offices connected to data center = 4. Total of 30 users per site. So therefore ingress traffic is 120 people.I know that you consider about 10 TCP connections per user. If so, that is 120 x 10 = 1,200 connections....
