Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Most servers are blocked by the access list. If a server is allowed to bypass the access list and a connection is created. Where does the connection cached in the FWSM?
Hi,This is the scenario:I am running Cisco 6006 with MSFC module that is connected directly to my inside net. All the traffics are sent to inside interface Pix firewall (515E). Than firewall performs NAT/PAT to riche the outside world. I would establ...
Does anyone know of any such 'script' or processing tool which will process a Cisco pix access list and convert it into Excel format?I currently use Voyence to capture pix configs / access lists however a lot of auditors like to see access-lists in '...
I created an ACL to allow only port 80 on my workstations. But most of the time, i can not able to access some websites. What port/s that needs to be allowed. I know that the internet is using a dynamic ports. can someone advise me or give some recom...
Am trying to debug a VPN on a PIX upgraded to 7.2(2) and am having no joy with debug output. (am using telnet)Config entered (always worked before!):logging enabledlogging monitor debugdebug crypto isakmp 7This is a working ipsec VPN between x2 PIX's...
Ooops, made a bit of a mess of this. I didn't do this on site (the datacenter is too far away) - now I have a very early start b4 clients connect unless I can fix this on the PIX over SSH (which I can connect to)!I've had a few issues with VLANs behi...
I'm researching possible ways to license signature updates for two new IDSM modules for Cat6500 and this license is one of the suggestions. However I'm unable to find further information on Cisco.com
I want to add an internet routable address that points to my inside interface but the ASA is automaticaly converting the first octect to a non routable address is there a way to prevent this?
HiFrom my inside pix users can go to internet. I configure PAT in PIX. I found one of use always eastablish session to internet and all time internet download file. so from My pix firewall can i do the stop of seesion for that time. I can not want pe...
I have a site-to-site tunnel terminated on an ASA 5520. I have syslog logging to an internal server, and I have setup a syslog server on the other side of the tunnel. I have created my acls for interesting traffic and I cannot get the ASA to send t...
Is it possible to have a PIX configured with OSPF, prefer a neighbor router over another neighbor router by using the distance command something like:distance <AD> <neighbor IP address> 0.0.0.0 I don't see what I am looking for in the command line.
For some strange reason, I don't have any connectivity from my LAN to the internet . My setup is this: Cable modem ---> c1710(12.4 3a) ----> testPC. A packet capture on the test PC shows outbound DNS request but not reply , so does ICMP traffic. The ...
