I need a sample DMZ config for a 515. I am placing a FTP server in my dmz running SFTP
I need a sample DMZ config for a 515. I am placing a FTP server in my dmz running SFTP
I have a pix501 software 6.3(4)Working from the PDM I can bring up the Command line tool and enter the command:icmp deny any outsideThe command works i.e no error message and it appears when I do 'show running-config.If I try this same command using ...
Hello all, i created a new sub interface on my PIX with the same security level as another one. The option : "enable traffic between two or more interfaces which are configured with the same security levels". on each objects on both interfaces in the...
Hi,I am using a Pix 525 (version 7.04). I have several questions about the TCP SYNC.1) What is the default behaviour for TCP-SYNC-CHECK on Pix? 2) Does Pix have the option to disable TCP-SYNC-CHECK?3) Does Pix send TCP_RST/FIN to both server and host...
Dear all,i have this problem wiht fwsm, currently we have a data channel between the fwsm and msfc, the svi does not appear in the router routing table as connected, you can not ping the svi from the router side, while the fwsm can ping its interface...
I want to limit access for branch personnel to prevent them from changing configuration on Catalyst Switches, Routers and an ASA Firewall.For Switches and Firewalls, I configured usernames with Privilege 7 and enabled local authentication (login loca...
I have read through the documents on Identity NAT but few things are not clear to me. Consider the following network setup and the requirement. PC1 ----[Inside]-PIX--[Dmz]---PC2PC1 - 10.1.1.1Inside - 10.1.1.2DMZ - 10.2.2.1PC2 -- 10.2.2.2RequirementPC...
What are the porpose of proxy arps setting, and how should be be setup?
HiI established a site-to-site tunnel (ASA 5540 here) with remote Datacenter(Netscreen), in which I have a server with IP 192.168.1.x. I added the 192.168.1.x in exempt nat rule, so I can establish connection to this IP (RDP telnet etc) from a server...
The server that I will be deploying with the CSA Agent, should it only be attached to the Group "Servers - Internally Deployed" or should it be joined to other groups as well? This server is not a file or print server but a will maintain logs so i do...
Hi, friends,Does anyone know if RPS 2300 system supports ASA 5520 with DC power supplies? I need to deploy a firewall solution with redundant power supplies. As ASA simply doesn't have an option like that, I was wondering I could use DC versions of t...
Friends, I have PIX 525 and want to divide inside interface into 3 sabinterfaces (VLANs)... Is it possable to filter internet traffic (sach as: http, xxx, traffic shapping, TCP connections, FTP and etc ....) through the PIX >>> and if it possable how...
Dear All,I am getting the below message on FWSM console when try to create the vlan interface.Should i do anything on switch consoleFWSM(config)# inter vlan 30FWSM(config-if)# nameif outsideWARNING: VLAN *30* is not configured.INFO: Security level fo...
I have a public address or 204.50.0.100 that is NAT'd to my internal server of 10.1.1.100. My external clients connect to this server by the 204 address no problem.The issue is when the internal uses (on a differnt LAN than the 10.1.1.0/24) try to ge...
Hi allCan anyone give me say the top ten tips for what to do and what not do do on firewalls to ensure maximum securitythanksCarl
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 07-02-2026 03:17 AM | ||
| 07-01-2026 01:03 PM | ||
| 06-24-2026 08:00 AM | ||
| 05-26-2026 07:54 AM | ||
| 05-02-2026 06:09 AM |
| User | Count |
|---|---|
| 4 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |