Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
I have a number of PIX 515E firewalls. To manage them securely in CiscoWorks LMS, I prefer to use SNMP v3 instead of SNMP v2c.Do you know if any PIX OS supports SNMP v3?Thank you!
I have PIX running 6.3 software with a few site to site VPN tunnels. Is there any way to monitor the bandwidth utilization of a particular tunnel? Same question goes with ASAs and using ASDM...no plans to get CSM here... Thanks, Jason
Hi guys,Got an issue with a site-to-site vpn. Bear in mind this VPN is over our gigabit core network. Doing an scp from one unix box to another it shows us speeds of starting at approx 500KB/s and over about 10 secs goes down to about 200KB/s.We test...
Getting a FLOOD, huge flood of " reason: MSS exceeded, MSS 1300, data 1360" on Port 25running Pix 7.0.4 code.What is up with this? Have seen some of these in the past, but nothing like the 1 to 3 every second. I think someone is trying to run a SMT...
I have a 4240 IPS in inline interface mode between our edge firewall and core switch. This connection is a trunk port with 2 VLANs, lets call them A and B. Everything works 100% fine between VLANs (the firewall is doing the inter-vlan routing) with t...
Error Message   %ASA-3-713042: IKE Initiator unable to find policy: Intf interface_number, Src: source_address, Dst: dest_addressExplanation   This message indicates that the IPsec fast path processed a packet that triggered IKE, but IKE's poli...
Hi,Has anyone of you guys configured Lan & stateful failover interface on a single physical interface with two subinterfaces dedicated for each?I am configuring 5520's in an Active/Standby mode and falling short on the physical interfaces...Pls advis...
Hello everybodyI have PIX 501 conected a modem where i configured a vpn, I created a vpngroup and I give all the permission, I can connect across the vpn but my problem is that I can't to ping the pix and inside network.I used the command split tunn...
I will be changing the public IP of the outside interface on my ASA 5510 (8.0(3). I have an IP Sec connection profile setup with users accessing our LAN remotely with Cisco VPN client. The connection profile uses a shared secret that is not changing,...
Hi,What I mean is I want to give a company access to an internal website and another company access to a different website, they can only access one website (bookmark)?Thanks
is there a way to set the IME to login on a per user basis?I have designated users that are to only have log viewing access. The IME login seems to be global. If I want to configure the IPS (4240), I have to login with the IDM. Is there some way to c...
Can we get some details on what this signatures is looking at? Does it do anything more intelligent than look at query throughput? I'm thinking something more along the lines of these Snort rules:#by many very smart people# This may be a high load s...
Hi,I'm trying to set up port mirroring on my asa 5505 so that all incoming traffic on interface "outside" gets sent to, let's say port 0/7. But I can't seem to find much info on it.
