Network Security

I have a cisco Asa 5510. The purpose of this firewall is to block all traffic between two servers and only open port 5450. I have attached a diagram of the connection of the two servers and the firewall. Basically one server is connected to eth0/0 di...

I am attempting to configure my PIX 501 to port forward SSL traffic from the Internet to my SSL Concentrator located inside my network ? which has an address of 172.20.1.201In the PIX, I entered the following:Static (inside,outside) tcp interface 443...

Hi. I am not 100% sure this is the best forum for this question but here goes... Two ISPs are connected to two interfaces on our ASA 5550. G0/0 = ISP1 and G1/0 = ISP2. How should failover best be approached? I was told active / active via multipl...

Is it possible to clear all the interface counters? I noticed errors on my PIX's outside interface and wanted to clear them, but I couldn't find the command.My sho int output showed:MPA-PIX# sh intinterface ethernet0 "outside" is up, line protocol i...

I am planning to divide outside interfaces into mutliple logical interfaces:int Ethernet0/0.101ip address x.x.237.2 255.255.255.248int Ethernet0/0.102ip address x.x.x.237.9 255.255.255.248int Ethernet0/0.103ip address x.x.x.237.9 255.255.255.128I wan...

OK, Vista's been out for 6 months now, and while Cisco doesn't list support for Vista with ASDM 5.2x, can anyone tell me if they have successfully loaded and used ASDM on Vista?Am I going to have to upgrade my rather large installation of ASA code ju...

I have been reading up on Dynamic Multipoint VPN, and it would be a great solution to our VPN needs (we have many home-office users who need to call each-other's IP phones, which requires traffic to be able to pass from one spoke to another). Howeve...

I have 2 PIX firewalls that I am removing and replacing with a router (2811) that has 2 FE ports on it. We're trying to merge networks, but still need to route our traffic and do some static NATting. I'm pretty PIX illiterate, but I'll show you the c...

I am trying to connect to an ASA 5520 7.2(1) using Cisco VPN Client 4.8.01.0300 and it fails with:Attempt to get Phase 1 ID data failed while constructing IDI have attached a text document with the entire debug log of the connection.I can provide mor...

Is it possible to translate a single global address into multiple local IP based on the source IP address.Basically, if company x.x.x.x connects to a web server with an external address of Z.Z.Z.Z the ASA NATs it to the internal address of w.w.w.1. ...

Hi, I have some problems with my 3140 appliance, here's what I have when booting my CASStarting perfigo: No env file found. IPsec not started.<stdin>:1: syntax error near ':'<stdin>:1: syntax error near '-'<stdin>:1: syntax error near '.'<stdin>:1:<...

I have configured my IPS to manage a router and block traffice when certain sig. fire. I created the login info and ACL through the IDM. My question is by setting up the ACL through the IDM do I still need to apply the ACL to an interface on the rout...

I have clients VPN in with 4.8.00.0440 client Cisco VPN and they get dissconnected while working with this error: QM FSM error (P2 struct &0xaaf71c8 mess id 0x8ce5a771)!What does it mean ?