Network Security

I have an FWSM context that we use to secure our Network Management vlan. Vlan 900 is level 100 and vlan 200 is level 0. We use static NAT translations for all devices behind the FWSM. The outside of the FWSM via VLAN 200 connectes to the the rest...

It's normal a PIX 525 with 50Mb traffic using more than 50% CPU?CPU utilization for 5 seconds = 76%; 1 minute: 49%; 5 minutes: 48%logs are in the attach.Thanks.

This seems like a very basic question, but I cannot find the answer anywhere.I am connecting to an ASA 5505 via ASDM, but it tells me that I am only authorized for Home and Monitoring. I want to be authorized for Configuration. How do I do it?

Does anybody know if there is a limit on the total number of network-objects that can belong to a single network object-group? ASA 5520 8.0.2Thanks.

how we can configure loadbalancing in router where there two ILL ( Differenet ISP) terminated at Router

Hi, If we want to authenticate users through ASA, and we want to use the accounts from windows active directory, how can we do that.thanks in advance.

Hi!I just get brand new Cisco ASA 5505 and of course I wanted to test it immediately.I just connected it to our old 2950 switch and made identical vlan setup both with static ip addresses.However I can't ping either way.I allowed from ASDM the icmp a...

Hi,I am trying to use the RADIUS server in the inside interface to authenticate the remote users.What happens is that the RADIUS server is using MS-CHAPv2 and the ASDM keeps sending PAP requests.When I configure the RADIUS servers I try the "Test" fu...

I am setting up some systems at a remote collocation facility as part of our disaster recovery plan and would like to know if the ASA 5505 will handle what I need.There will be 4 servers:* Exchange 2003* Active Directory 2003* Linux Server for WWW & ...

Greetings,I have a device(s) on the outside of my network that I have to access from a specific ip:port on my network.inside ip: 192.168.1.1firewall ip inside 192.168.1.254firewall outside: 172.25.25.25i have to access device from 172.25.25.27:9000de...

I'm sure this is standard stuff, but I cant figure it out. I want to allow MS VPN connections initiated from inside to get out a PIX 501. Any help?

On an ASA 5500 I have setup basic extended access-lists (eg access-list inside_access_out)My connections work, however I am seeing alot of Denies such as:Deny tcp src 192.168.1.1/80 to 192.168.2.1:65535 which is the reply to a connection started on t...

My ISP has given me two different ip ranges, a /30 and a /29. The /30 is to connect to them, and the /29 are all mine to use.Normally, I'd set up a router to translate between the /30 and the /29. give the router the first address, the fw the second ...

Hi,After upgrading my asa devices (2*5510) I started to getting odd messages which relate to lan-to-lan connection between these:Dec 4 03:18:15 stasa1 %ASA-3-713227: IP = A.B.C.D, Rejecting new IPSec SA negotiation for peer D.C.B.A. A negotiation was...