Network Security

Hi Netpros,when searching through the event log in CSA MC 5.2 we get the message that sql full text search is not installed.Did not find any info on how to do this other than under "maintenance - database maintenance - full-text search":---SQL Serve...

Can i use the same name/IP address for LAN and statefull link ?Below is the config, PIX accepts this config, just wanted to confirm if it'll wrk fine this way.failover lan interface LAN-AND-STATE Ethernet2failover link LAN-AND-STATE Ethernet2failover...

I have a request from some of our internal app developers who have WBI and MQ sessions across DMZ domains to expand the timeout values on the firewall for their apps. As far as I can tell, the timeout values are global for the entire firewall TCP/IP...

hi all,i am configuring cut-thru proxy on asa.the config guide says that the authorization acl should be a subset of the acl used for authentication.in my scenario i am using telnet to auhenticate the user and i want to authorize traffic from 2.1.1.2...

hi all,i need some help in configuring downloadable acls on asa.i have configured a downloadable acl on the asa as follows - permit tcp host 2.1.1.2 host 1.1.1.2 eq 80. i get authenticated successfully , but i get an error saying acl authorizaion den...

Does anyone know of a way that i can turn on Secure desktop for on group policy and not turn it on for another one? Meaning if i login as one group policy SD wont run, if i login as another it will download an run

Hi all, I am currently testing some ASA's in a lab but need to test HA w/ Active-standby & Active-active configs. Do I absolutely need 2 of the SAME model ASA's or can I still test HA w/ let's say 1 5510 & 1 5520?Thanks,-ZO

is the following ok? I am unsure if I can nat my 47.15 address to 3.21 with the interface alreading having a NAT that appears to be for all traffic going over the interface. Any guidence on this would be great.global (outside_datae) 1 192.168.1.25g...

We have 2 FWSM's in 2 6509 chassis and are able to upgrade the FWSM and Maintenance partition. However, we are having problems reverting our code back to 1.1.3. Any Ideas as to why?

Hi,I know the default MTU for a ethernet is 1500. But what's the default MTU size on a windows OS, xp/2000/2003 ?? and how to check this value? Thanks

Whenever I apply change in HTTP scanning (url blocking, file blocking), the CSC module will reboot by itself. Is it normal? Below is the log i see when it happens.1|Jul 20 2007 09:23:00|505013: ASA-SSM-CSC-10 Module in slot 1, application reloading "...

Does anyone know how to change the location of logging files of CSA and/or disabling local logging.

Hi,I was wondering if there is anything I need to do to a router which is infront of my PIX515E.The setup I have is a PIX515E with a 3660 Router infront of this before the internet. On this router is the public IP addresses which are then nat'ed to i...

How to check the packet drops on pix?