Network Security

Hi all, I know the asa randomizes the tcp sequence number, what is the beneift of this ?

Dear AllAt one of our customers, four IDSM-2 blades stopped reponding 'ALL' at the same time (7 AM this morning). I can login to the CLI and see the following message:Error: Cannot communicate with mainApp (getVersion). Please contact your system adm...

I have an ASA 5510 running ver 7.0.7. I have an L2L tunnel connecting to it. I am trying to manage the ASA via ssh or telnet to the inside interface from the L2L remote end and not able to. I have the command management-access inside configured as we...

hi all, can anyone tell me what lab I can do with 1 cisco asa 5505 and a 1800 router? what kind of things can i practice on this and whats best to practice ?

Hi all,I'm having a problem with the established connections through an ASA 5540 firewall.The scenario contains two interfaces, outside and inside.I want to allow navigation and ICMP connection from hosts from the inside with a NAT configured public ...

I have a router I'd like to get netflow data from. I see drops on the FWSM - %FWSM-3-106010: Deny inbound udp src Outside:(outside IP)/54995 dst Inside:10.62.5.252/2055Here are my ACL entries to allow this traffic:access-list Outside_In extended perm...

What factors should be considered when deciding where to place an IDS on a network?

On Concentrators you can go to tunnel admin page and see a list of active tunnels and client connections. I can't find anything close in ASA or ASDM that will provide a list of active connections. I can only find "23 active tunnels" in monitor, or ma...

Hi,I have configured my ASA, which is already setup for site to site VPN's and Client access VPN using the Cisco Client, for L2TP/IPSEC VPN access. However, I am unable to connect from a Windows client. Below is my config and I've attached a copy of ...

is it possible to police or shape traffic on the asa, and if so how would I do it via the gui ?

Hi, i am a bit disappointed by the ability of cisco IPS to block sql injections, even with the new added generic sql injection signatures not long ago, still websites hosted with us are being hacked.i know its vulnerabilities in the sites, but the co...

Hello,I have a customer who purchased a GE IP Camera / DVR for one of their remote sites and we're having problems accessing it from behind our ASA 5520s 7.2(4).What I've discovered is that when any user connects to the DVR's external IP, the webpage...

The Pix525 had FO enabled in A/A mode with an UR license when I bought it. It is not meant for FO setup and I want to use 3DES for VPN. The activation-key process went fine except for saying about Failover being different. After the reboot the box is...