Network Security

Firewall Migration Tool v7.0.0.1 now live!

Enabling our customers to leverage their install base and take them to the next level with Cisco Secure Firewall Threat Defense has always been a key priority. The migration tool is available for download to migrate the configuration on the on-premi...

Resolved! Use a server as gateway in remote site of l2l tunnel

HiI established a site-to-site tunnel (ASA 5540 here) with remote Datacenter(Netscreen), in which I have a server with IP 192.168.1.x. I added the 192.168.1.x in exempt nat rule, so I can establish connection to this IP (RDP telnet etc) from a server...

Resolved! CSA 5,2.0.238 installed on a Win 2k3 Server

The server that I will be deploying with the CSA Agent, should it only be attached to the Group "Servers - Internally Deployed" or should it be joined to other groups as well? This server is not a file or print server but a will maintain logs so i d...

ASA 5520 and RPS 2300

Hi, friends,Does anyone know if RPS 2300 system supports ASA 5520 with DC power supplies? I need to deploy a firewall solution with redundant power supplies. As ASA simply doesn't have an option like that, I was wondering I could use DC versions of...

need your advice

Friends, I have PIX 525 and want to divide inside interface into 3 sabinterfaces (VLANs)... Is it possable to filter internet traffic (sach as: http, xxx, traffic shapping, TCP connections, FTP and etc ....) through the PIX >>> and if it possable how...

FWSM WARNING error

Dear All,I am getting the below message on FWSM console when try to create the vlan interface.Should i do anything on switch consoleFWSM(config)# inter vlan 30FWSM(config-if)# nameif outsideWARNING: VLAN *30* is not configured.INFO: Security level fo...

Can't connect to NAT'd address internally

I have a public address or 204.50.0.100 that is NAT'd to my internal server of 10.1.1.100. My external clients connect to this server by the 204 address no problem.The issue is when the internal uses (on a differnt LAN than the 10.1.1.0/24) try to g...

firewall essentials

Hi allCan anyone give me say the top ten tips for what to do and what not do do on firewalls to ensure maximum securitythanksCarl

Cisco Works

Hi..Is it possible to manage non-Cisco devices from Cisco Works?Regards

Need help on configure PIX 515e ver 6.3(5) to allow flows on same interf

What is the commands to enable flows between diffirent IP's on same interface

PAT internal to DMZ

Malaysia Biggest Internet provider recently announce that they will block port 25(SMTP) due to a lot of spam mail. (what a stupid provider). i'm using ASA5510, i plan to create 2 rule to solve this issues. 1) create a PAT rule for outside 210.x.x.x:2...

Asa 5505

Hi,Is it possible to confiure ssl vpn on an asa 5505? We want RDP connection to be visible over ssl vpn? On the remote sites it isn't possible to reconfigure the firewall. We use at this moment asa 5510 as transparent layer 2 firewall, thens isa s...

Regarding reboot of PIX 535

We have PIX 535 in A/A mode.Now in admin context mode CPU utilization was 99%.All of a sudden PIX got rebooted.After that it stabilizes to 2%.Can anybody tell why it might have happened?Secondly is it recommended to reboot PIX if we observer high CPU...

ACL COncerns

Hi All,I have a bunch of servers inside my network (all public IPs) and need to allow communications between a server in my site to another server outside of my site. I need to do this without it affecting current ACL 125.Is the following line correc...