Network Security

I have configure my 3750 switch for span. In this switch my IPS 4255, Internet router and Pix firewall is connected.Below mention is the span configurationmonitor session 1 source interface Gi1/0/1 - 3monitor session 1 destination interface Gi1/0/5no...

I get a lot of 'TCP SYN Host Sweep On Same Dest Port' events on my network that I want to filter out. All the events with destination port 0 are false positives since this is normal behaviour for many operating systems when starting a connection.Unfo...

Can't ping devices on the Internet from the inside interface, only from the outside interface. Also from a workstation that is plugged into port E01 through E1/7 on the ASA can't ping devices on the Internet (I can brows the Internet from a workstati...

Hi AllI am trying to configure SSL VPN I have attached my configuration. I guess missing NAT exemption and route inside. How to allow VPN users to access internal network? What Access-list I need to set for that? Please HelpThanks

I have a 1.x network and 10.The 10.x is behind a 1600 rotuer and all the rules are open to access the 1.x network, but I cant access the 1.x network from the 10.xIs there anything missing on the pix side the 1.x network that could be stopping access ...

Just "upgraded" to Vista and am unable to connect to any PDM v3 firewalls. I believe this issue is to do with SSL2. I have enabled this on IE and also firefox 2 but just get a page can't be displayed. Also enabled SSL via about:config but just say...

I am currently using my ASDM launcher 6.0 to access my ASA 5510 Firewall. Whenever i open the logging > Real time log viewer to see the logs. The ASDM Launcher hangs after you tried to see the individual logs. Any solutions , it is really frustratin...

have pix firewall 535 with IOS 7.x version. I have enable it with no-nat-control, to my understanding with this no-nat-control traffic from higher secuirty level to lower secuirty level allowed if there is no access-list. But from low to high still n...

Dear AllI have a network which segmented to 5 segments (Servers, Staff, Studnets, Guests, DMZ) + two fiber lines for internet connectivity from my ISP.I would like to find a solution which allow me to terminate all segments and internet lines to it t...

Hi all...Friends, I have 2 ASA FW 5510, and 5505. First one ASA (5510) is main. This ASA have access to internet, and second one is only just for VPN (site-to-site) connection with ASA 5510. Now i want users from ASA 5505 have access to internet, but...

Hi everyone,have a strange issue here: from one day to the other CSM 3.1.1 SP3 does not show any devices (using 42xx and IDSM2) or even the policy. The devices are accessible themselves, and they do fire if signatures are triggered. Anybody has a clu...

We have a cisco 2811 series router set up with a VPN tunnel to a remote site. The router is configured to allow 5 different subnets through.We are passing traffic on several subnets with one single subnet the bulk of the traffic. Before there was a 3...

Hi,Based on the data sheet and the config guide, the Cisco ASA 5500 series supports multiple VLANs. I can only assume that it also support 802.1Q trunk to carry multiple VLANs across the same physical link.What I'm wondering is whether the appliance ...

Hello,I hope somebody can help with thisI have a SonicWall SSL-VPN 2000 behind a PIX 515 which I cannot access from outside.The configuration is like this:name x.x.x.x SSLVPN_Extname y.y.y.y SSLVPN_Intstatic (inside,outside) SSLVPN_ext SSLVPN_Int net...

hi all,i have question i had cisco pix 505 and asa for vpn connection.when telco circuit is down what should be in logswill they indicate me if circuit is down if yes what would log say