Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
We currently have a 3-party SIMS and Snort/tipppoint IDS in the network. Testing the Cisco module to replace these IDS systems, questions is how to config the Cisco module to forward events to the SIMS. thx
I had created one user with privilege level 2 on PIX 515.Level 2 privileges given are:privilege show level 2 command running-configprivilege show level 2 command xlateprivilege show level 2 command versionBut the user is not restricted with only the ...
I need to allow traffic in and out through port 5003 for a couple of credit card machines we have. I created the access-list below access-list test2 permit tcp any host xx.xxx.xx.xxx eq 50003It still will not allow it to connect to the credit card c...
Hi,I have ASA 5540 with 8.0(3) version installed.When I do : "clear interface name_of_interface" I notice an expected and high number ok packets in and out that interface from my system management.Why?Thank you.Best regards.Massimiliano.
I'm attempting to copy a new startup config to my FWSM via ftp, but see only "protocol error"s. The 6500 hosting the FWSM can make the same copy command without issue, and the FWSM can ping the ftp server.Would anyone be so kind as to suggest some d...
Hi, I have an fwsm blade on a Cat6500 series switch, with multiple contexts in transparent mode. Is there a way to redirect requests coming in on a certain port to a certain ip address to a different port number? For example, we want all smtp conne...
I have tried to use this feature of ASA 5510 email notification but it somehow cannot work. Is it a product problem? Or something I missed out.What I have do=>I have defined the SMTP server.I have specify the SMTP recipients for destination addressI ...
Hi all. In our company we have recently upgraded our firewall from PIX 515 to ASA 5520 and we have started experiencing an odd thing happening. On one of the sites we host I have observed a lot of MSS exceeded messages popping up and I believe they a...
config is similar to multiple context using "shared interface".Can multiple inside sub-interfaces (VLANS) route to a single interface on L3 switch? or does each sub-int need to route to a physical interface?L3 vlans not config'd on core switch to ke...
i have a big problem, not sure maybe i'm just doing something incorectly, but here is the thingi have a pix 515e with outside interface connected directly to my isp, and i have my local network on insideone of my computers has a local ip, and in orde...
Hello,I have PIX 515E, version 6.1(4) and I'd like to allow all traffic from DMZ to LAN and vice versa but can't get it to work.I do have nat, global, and acls configured but I must be doing something wrong.And also for some reason, the machines insi...
We have an auditor that wants to see all active signatures from our version 6.0(3) SSM-10s.Is there any way to export all active signatures in report form? The auditor says he has received this from other clients.We use CSM, ASDM, and MARS but I don'...
