Network Security

Hi,I have read on a previous thread about QoS on the firewall an read the link provided.I have one question regarding QoS on firewallI have read that the QoS supports Priority traffic and Policed (rate limiting) traffic.For example:i have a 256K FR.I...

I am looking for the most efficient way to configure NAT exempt statements for a multiple interface ASA. I know I will need to write ACL's but do I write based on source and destination networks? Or source network to Any? Any suggestions would be gre...

I have a PIX-515E, Software Version 7.2(1) with NAT disabled, in router mode, and almost all inspection off. REcently i noticed that PIX randomizing TCP sequence in ICMP Frag embedded message, that is last 4 bytes of the packet. Looks like windows ho...

Hi, I've a question regarding the email topic: How's the behavior of ASA/PIX ACL vs Router ACL? Let's say for Router: R1 (s0/0) --- (s0/0) R2 --- CS-ACS - R1 has an inbound ACL on interface s0/0- R1 and R2 running OSPF- Therefore, we need a "access-l...

I have an interesting PIX issue. A client is trying to route outside traffic to a gateway in a different subnet. I have never seen this configuration before. According to the ISP, I need to run the following config.:ip address outside 206.138.x.x ...

For the longest time I was able to connect to a PIX 506e using SSH Secure Shell, but now I can not. It gives this error message "Connection closed by remote host" We haven't made any changes to it. It just stopped working. Do you have any suggestions...

Can token base security implement by ASA for Servers or is there any document to do this....

When I configure subinterfaces on an ASA, how does the security level of the physical interface interact with the security levels of the subinterfaces? Can I make the subinterfaces security levels different from the security level of the physical in...

I have a frame connection to a class C network and want to segregate the traffic into four categories to be plugged into fa0 through fa3. I assigned an IP to fa4 and put vlan1 in switchport access mode with no ip but that does not allow firewalling ...

Hi all,I've a cisco PIX model 515 with OS version 6.0(1), i want to upgrade the OS to a newer version, i know it needs a RAM upgrade to go with the OS version 7. But what i'm asking about, is...Now i want to upgrade it to version 6.3, for this do i n...

Hello,I am trying to configure PAT on our ASA. I've been reading through the following documentation but can't seem to get things working righthttp://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/cfgnat.html#wp1043281What I'm tryin...

Hi, I have one cisco router and there are two different ISP links is configured on router interface e0 and e1, and s1 serial port is directly connected with outside interface of pix firewall.Router ConfigurationIp address e0 125.19.43.1/24 (Public Ra...