Network Security

I have 3 PIX 515E running 7.2(3)PIX1 can see PIX2 inside networksPIX2 can see PIX1 and PIX3 inside networksPIX3 can see PIX2 inside networksPIX1 192.168.2.0/24PIX2 192.168.104.0/24PIX3 134.71.123.112/28(I was not here for this numbering)All running I...

Hello,I have to connect a PIX 501 with a Linogate Defendo (Linux Firewall) using VPN IPSec.It doesn't really work i don't no why.The pix has much more preferences which can be changed.Many preferences of the Linogate Defendo are not visable and there...

I'am trying to enable access from inside to the vpn client range, but only ping worked. I made the configuration of the VPN ACL.What else ?

My customer has voice, video and data VLAN's. Customer wants to inspect only inter VLAN traffic ONLY for data to be inspected by IDSM-2 inline while bypassing other VLAN traffic to FWSM and then to WAN.Is that possible with Inline VLAN pair mode?I re...

Hi all, I think I know the answer to my post but I would like a second opinion. I am trying to trunk a Cisco 1200 AP to an ASA 5505. The AP must have a native VLAN on VLAN 1 according to this link: http://www.cisco.com/en/US/docs/wireless/access_poin...

Hi,I just following "http://cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml#user" to configure aaa authorization on ASA, but is does not work. I can login ASA, after that, I typing any command are not a...

HelloWe are thinking about moving towards NAC.Is NAC fully stable/mature/supported technology ? Was it tested/implemented in large enterprices ?Thanx

device: asa 5520how can i verify whether my nat is realy taking place aside from the sh xlate;static (dmz2,outside) IPoutside IPdmz2

Is it possible to have one inside address onto one same global address butin paralel on two different interfaces?- server_A is on interface_A of pix- pix also has interface_B and interface_C- I want to do followingstatic (interface_A,interface_B) 5.5...

We are seeing a simalr message as stated below. It seems to be coming from our Cisco AP. What could be causing this and is it a false positive?192.168.x.x/0 --> 192.168.x.x/0 N/A ARP Reply-to-Broadcast,NR-7102/0,Time:1192307707,Risk Rating:30,VLAN:x

Dear All, Can any one tell me the known bugs in ASA 5550? The problem i am facing is that nat 0 entries get deleted automatically when no nat access-list is applied with protocol and ports. also static natting enties were deleted twice in the device....

Is it possible to set "connection tcpmss <value>" by using policy-map and not the global command "sysopt connection tcpmss 1400". Reason is that the sysopt feature is extremely usefull when using tunelling [vpn]. For other communication though you ge...

hello all,i am kindly ask you for your help in a strange situation. attached you will find a layout of my network.all networks before R2 include the interface of this router on 10.10.10.0 network is pinging with Server X.the host on Lan 192.168.239.0...