Network Security

We currently have a Catalyst 6509 which terminates the IPSec/GRE tunnels. We would like to then connect our ASA5540 to this 6509 to inspect the traffic once the packets have been decrypted and then send it back again to the 6509 to route it to its fi...

Dear All;i have PIX 525. i have configure PIX in such a way that my all Exchange, VPN, any inbound traffic would cross the firewall. i also define some conduit against smtp, imap, www, pop3, https. now when i tried to implement a Access-list on outsi...

Dear All; i have PIX 525. i have configure PIX in such a way that my all Exchange, VPN, any inbound traffic would cross the firewall. i also define some conduit against smtp, imap, www, pop3, https. now when i tried to implement a Access-list on outs...

Hello,the organization I work for has purchased two Cisco ASA 5500 series and wants to get rid off two PIXs (515E, image 7.1) and use the Cisco ASA to do Firewalling plus VPN. Well this is my frist exposure to Cisco ASA and I have read almost all the...

I have a remote location that connects through Sprint to my central site (NYC)via a Sprint directed VPN called a half-tunnel. I recently had a new circuit installed at the remote location for redundancy which points to the Internet and I have set an ...

I am trying to configure logical interfaces on a PIX 515 with 7.2(2)The documentation for the PIX 6.3 shows the steps:interface ethernet0 aut0interface ethernet0 vlan2 physical interface ethernet0 vlan3 logicalnameif ethernet0 outside security0nameif...

Hi.We have a very interesting problem. Using KIWI as a syslog server, we are trying to record each and every time a user logs into a pix or asa device and ALSO every command entered. Is this possible via programming on the security device OR MUST i...

Hello,since Cisco has been telling us that AnyConnect is the upgrade path from the old IPsec client for x64 machines, I am wondering if you require WebVPN licences to use the AnyConnect client. ASDM reports the number of "clientless SSL VPN" peers, s...

How do I block outbound traffic?

Hi,Ive been having issues when creating subinterfaces with vlan id's on the 5550.The port connecting to the ASA5550 is a trunked port and has the same vlan id as the sub-int on the 5550 and is allowed to trunk the vlan. When this is configured you ar...

what is the difference between L2 & L3 NAC?

Hi everbody,I need your help! I have Server 2003 Domain Controller running Exchange and OWA. Sending and Receiving Email no problem. when I want to access OWA from outside that doesnt work. If I change the settings OWA works but clients(inside) cann...

I was able to get a web server that we have on our DMZ to communicate with my SQL server but I wanted to know if anyone knew why I needed to use gt 1024 in my access statement.I orginialy tried to useaccess-list DMZ extended permit tcp host 192.168.1...