Network Security

Hi,Any chance anyone knows the specific MIB's for an ASA 5520 and 2821 ISR?Finding it difficult to track down the exact ones I needhttp://tools.cisco.com/Support/SNMP/do/BrowseMIB.do?local=en&step=2Thanks,Denis

I have 4 - 871's running 12.4(T8) that connect to an ASA running 8.x code utilizing EasyVPN. The problem is that 2 of the 871's connect and pass traffic without issue but the other 2 connect only for about 5 minutes. The configuration are all the s...

I am trying to allow SMTP through a PIX 525 running ver 7.2(2). When the banner comes back to the server it is 2's and astericks (*). I have done the "no inspection esmtp" commmand in the global policy, so that should turn off the inspection. However...

I'm setting up a new ACL on our PIX firewall (running version 7.x) to block FTP. Someone asked if I could enable FTP downloading for some machines but prevent from uploading. Is that possible? What would the ACL look like?

Hello,I have following problem with NAC 4.1.3 - it's happen sometimes that clients have NEWER virus definition than in NAC rules and checks database.And than clients can't get access to network. NAC rules updates are scheduled twice a day (should it ...

I want to start the asdm-launcher from the windows command-line with a specific asa ip-address (script). So i must only insert the username and password and not the ip-adress .Is this possible? Thx for your positive answer :-)Andreas

HiI've got a pix 501 and I've permitted ALL icmp through the outside and inside access-lists, yet traceroute through this firewall still does not work, it just shows stars for all hops past the pix until the actual final destination. I've read a ton...

Hi All, I have setup a lab to test ASA faillover situation. The lab is success that Secondary ASA can change standby mode to active mode once Primary ASA is failure. However, When I test stateful failover that use a PC to FTP file from FTP server. Th...

I need to setup 2 VLANS 100 and 55. The topology of the network is internet-->cisco 2811 router-->cisco 515 PIX-->PC users. The PIX is the gateway for the PC users. Normally I would setup the VLANS on the router, but I have PIX now, and I am not su...

Ok, I am stumped, so here I am :)I have a 1721 router with a DSL WIC for a location for their internet access and with a VPN tunnel to HQ. The problem is that SPI lets MOST traffic in and out, but it is blocking some sites... microsoft.com and southw...

Hello, all.I've noticed an interesting behavior of the Windows clients.We have NAC OOB L3 deployment + ip-telephony. Workstations are behind ip-phones (cisco). Users do not have administrator privileges on their PCs.When the user is authenticated the...

I have ACLs blocking most P2Ps on our edge rtrs. But they still coming in...can anyone post their P2P ACLs...I just want to compare with what I have. How about NBAR? How reliable is it running in a large network? TXAlex

Hello all,Is it possible to migrate LMS 2.6 into LMS 3.0 ?