Network Security

Resolved! FWSM 2.3

Hi, We are trying to deploy a FWSM in one of the 6500 switch in the lab. To start with, we are using this FWSM in routed mode. The inside vlan 100 and outside vlan 200. The MSFC has layer 2 vlan configured for these 2 VLANS. We are able to ping from ...

PIX 525 stops traffic at inside interface

After 9 or 10 hours of normal operation the pix stops traffic at the inside interface. It's a PIX 525 with PIX 6.3(5). Logging is disabled at all - so I guess no problem with the syslog service. Any ideas or recommendations where to start troubleshoo...

Resolved! FWSM --NAT

Hi, Is it mandatory to have NAT configured, when the traffic flow between two security levels in the FWSM.Kindly let me know Thanks RegardsAnantha Subramanian Natarajan

Static NAT Problem - Help Me Understand This

In my ASA 5510 config (posted below), I have an inside interface, two DMZ's, and an outside interface. I have a web server on the 1st DMZ at local address 10.1.2.2. I want this web server to be accessible from the Internet at global address xx.xx.150...

Permanent DHCP Leases on ASA5505

What are the commands to assign a client device the same dhcp ip address? I want to define the mac-address of the client so that it awlays gets the same ip address from the dhcpd server on the ASA5505.Thanks,-Scott

PIX, as a router on a stick, inside int redirect ??

Not sure why the customer wants this but they want to use the inside int of a PIX as a default gateway for users on one inside network, 192.168.x.x to redirect to another inside network 10.x.x.x, I.e. router on a stick kind of deal.I don't think the ...

heavy timeouts on PIX 501

Hello,My network goes like this. VSAT -> IRGmodem -> switch(which splits two public IPs), one IP goes to a PIX 501 and the other to a 2600 router. Suddenly, i started noticing heavy timeouts (pinging outside). I have finally discovered that i get thi...

ASA 5510 and proxy

Hello,I have 200 PC with one linux Proxy for Internet connexion.There is no gateway on each PC, only Proxy settings configure in IE.I want to change my proxy with an ASA 5510. Is it possible to configure this Firewall like a proxy (I don't want modif...

strange issue with PIX and TomCat - very very strange

Dear All, I am facing a strange issue with TomCat application . But before all getting in to a conclusion that application could be the culprit let me explain the situation.Application runs on tomcat which is having a ssl running on it. Server runnin...

ASA 5500 AIP-SSM

Hi Is AIP-SSM optional or default install with ASA 5520? What is difference PIX inspection feature with AIP-SSM? Thanksben

SMARTnet for ASA5510?

How do I determine which SMARTnet SKU I need for an ASA5510 SEC-BUN-K9?

Resolved! assistance setting a PIX to PIX tunnel

Hi,We are replacing a PIX at a branch office. A tunnel was establised with old PIX at branch office. A tunnel cannot beestablished with new PIX and central office PIX. Branch office has connection to the internet with new PIX. A tunnel can not be ...

TCP Segment Overwrite

I'm getting ~ 330,000 "TCP Segment Overwrite" alerts a day from the 6 IDS/IPS sensors. Destination of these packets are 0.0.0.0 or Internal IPs(10.x.x.x). The source IP is mostly Internal Subnet (10.x.x.x). Do I need to investigate these events/alert...

Resolved! Receving packets from outside source over PIX

Hi.I have a rather strange problem. We have a PIX515E in our company and for the last couple of days we have been receiving packets with an invalid domain name on our DNS server from addresses outside of our network. What is really strange is that fr...

Pulling packet capture from IPS device

I work for a MSP (Managed Services Provider), we currently are evaluating CSM for mgt of 50 IPS/IDSM devices. To make analysis more effective, want to be able to pull the packet capture from the device. We have our own correlation engine, so we do ...

Network Security

Forum Posts

Resolved! FWSM 2.3

PIX 525 stops traffic at inside interface

Resolved! FWSM --NAT

Static NAT Problem - Help Me Understand This

Permanent DHCP Leases on ASA5505

PIX, as a router on a stick, inside int redirect ??

heavy timeouts on PIX 501

ASA 5510 and proxy

strange issue with PIX and TomCat - very very strange

ASA 5500 AIP-SSM

SMARTnet for ASA5510?

Resolved! assistance setting a PIX to PIX tunnel

TCP Segment Overwrite

Resolved! Receving packets from outside source over PIX

Pulling packet capture from IPS device

pxGrid session subscription missing radius accounting session Id

Model Migration - 4110 Native to 4225 Instance S2S VPN Configs

ASA upgrade procedure on Hyper-V

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

Upgrade 7.6 -> 7.7 stopped media and ftp, is inspection the culprit ??

SFDataCorrelator down on Standby FMC

Recovery of "admin" password in CIsco ASAv runnin on AWS

Cisco FMC Access control policy under default

AnyConnect MAC OSX exclude/include DNS not working