Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Hello all I'm trying to establish a VPN with a Checkpoint NGX from my PIX and the IKE phase one works but apparently when trying phase 2 the connection cannot be established. Here is a debug message:crypto_isakmp_process_block:src:w.x.y.z, dest:z.y....
Hi,Need some config help on the ASA.I got Lease line link on ethernet to my premises with following WAN IP.i.e 122.x.x.114/30 and gateway 122.x.x.113.DNS server are 202.56.215.54 and 202.56.215.55.Moreover I have pool of 16 ip adresses starting from ...
Currently hosting FWSM 2.3(3) which according to docs has capability of 128,000 ACLs, but the practical number supported is about 85,000.Are the new versions of of FWSM increasing this capacity?
When I create a crypto map, do I still need to create an access list rule for it? Or anything on the cryptomap will be enrypted and I don't need to create an access rule?
ok so I know that the ASA is dropping packets beacuse of an TCP MSS mismatch.and I know how to tune the ASA not to do it.but my question is based on this log, what device is setting the MSS at 1380, beacuse as far as I can see everything is set at MT...
Hello, What is the confreg value to tell the ASA5550 to ignore the startup-config on bootup.I load (tftp) the wrong configuration on my ASA and it is throwing errors.
I have a situation where a user on a vlan needs to recieve scanned items from a large multifunction copier/printer/scanner to a file share on his computer. Here is the scenario: Using SMB, the copier is able to see shared folders that reside on the ...
We currently have a 3-party SIMS and Snort/tipppoint IDS in the network. Testing the Cisco module to replace these IDS systems, questions is how to config the Cisco module to forward events to the SIMS. thx
I had created one user with privilege level 2 on PIX 515.Level 2 privileges given are:privilege show level 2 command running-configprivilege show level 2 command xlateprivilege show level 2 command versionBut the user is not restricted with only the ...
I need to allow traffic in and out through port 5003 for a couple of credit card machines we have. I created the access-list below access-list test2 permit tcp any host xx.xxx.xx.xxx eq 50003It still will not allow it to connect to the credit card c...
Hi,I have ASA 5540 with 8.0(3) version installed.When I do : "clear interface name_of_interface" I notice an expected and high number ok packets in and out that interface from my system management.Why?Thank you.Best regards.Massimiliano.
I'm attempting to copy a new startup config to my FWSM via ftp, but see only "protocol error"s. The 6500 hosting the FWSM can make the same copy command without issue, and the FWSM can ping the ftp server.Would anyone be so kind as to suggest some d...
Hi, I have an fwsm blade on a Cat6500 series switch, with multiple contexts in transparent mode. Is there a way to redirect requests coming in on a certain port to a certain ip address to a different port number? For example, we want all smtp conne...
