Network Security

Resolved! ASA5505 trouble opening port 443 for remote users Groupwise WebAccess

We have a GroupWise server running WebAccess sitting behind ASA5505. I have opened port 25 and can send and recieve emails but can't get access to WebAccess. I can internally at https://192.168.1.50/servlet/webacc and everything is running fine. But ...

Resolved! enabling a third interface

question is more cosmetic I guess but I'm trying to name a third interface and I get an error stating you cannot have more than 2 named non-management interfaces on your system. My other ASAs can do this with the excpetion of this one. We are all on ...

NAT and ARP

Is it possible to configure a static NAT for which PIX will not reply any arp request?

ASA 5510 questions

When I go into the ASDM on my 5510 and uncheck the "Force maximum segment size for TCP proxy connections to be 1380" will that let the firewall accept packets larger than 1380? I am trying to limit fragmenting of some packets that are close to this ...

site-site VPN. remote site has same private network id

We are trying to plan a site-site vpn connecting our corporate network to a vendor's network. Both firewalls are Cisco ASA 5510s. The problem is, their private network ID matches a network ID that exists on our private WAN, which is 192.168.100.0/2...

Resolved! Interface Type on Pix 515.

Hello all, how does one find what type of a Gigabit Ethernet interface is installed on a PIX 515? I need to find out if it is a 1000BASE-T or a 1000BASE-SX type of an interface.What command would I use?Thank you very much.Dmitry.

how to remove tunnel-group

we have pix and it has "tunnel-group 1.1.1.1 type ipsec-l2l" config statement.we are changing 1.1.1.1 to different IP and need to remove/modify "tunnel-group" command. How do we do it? I am having trouble removing it.Thanks,

Resolved! PIX 501 Switch Hardware Issue

My PIX 501's switch stopped working or failed. The PIX is 10 months old. This is the second time I have seen this happen. The first time I sent it out to be fixed by out-of-warranty repair, but they could not fix it. They stated it was a proprieta...

How to monitor ASA5510 with AIP-SSM remotely?

Hi all,Last week I purchased a brand new ASA 5510 with AIP-SSM (ASA5510-AIP10-K9). It came in with ASA version 7.2(2) and IPS version 5.1(1)S205.0.I cannot monitor the IPS from within ASDM because IPS 6.0.1 or higher is required. My questions:1. Why ...

active/active failover config on asa 5520

can someone help me with active/active failover config on asa 5520

ASA 5505....beware

I'd just like to share with the group something that I learned the hard way. It's ebarassing, but I'd like to keep anyone from getting as frustrated as I was.About 24 hours straight of battling a pair of 5510's and a 5505 and they will now finally p...

Pix Global Nat

Hello all,I ask me about something:PC1----Inside-PIX-Outside----PC2I have a global on inside and nat on outside.I use static (out,in) @ipPC1 @ipPC1 because the computer on ouside need to connect on internal IP of the PC1. My question is, when pc2 sen...

Deny Inbound Message

I am having an issue with trying to get a ping through a PIX515 with OS6.2(4). The message I keep getting, and I am unsure as to why, is as follows:106011: Deny inbound (No xlate) icmp src ACCNT:ACCA2-BK_Fas00 dst ACCNT:ACCAS1_Tunnel3 (type 8, code ...

ASA/IPS Current Version

Hello:Gotta start by saying, I'm new at this, so please indulge me.The following is the current version of MY ASA/IPS software:Platform: ASA-SSM-20 Build Version: 5.1(1)S205.0Signature Update S205.0 2005-11-30Os Version: 2.4.26-IDS-smp-bigphy...

AIP-SSM - Disabling a Signature for a specific host

Hi,I am using an ASA-5510 with AIP-SSM, running 5.1 E1.I am getting a lot of false positives from one internal relating to a TCP SYN Sweep.I would like these not to be logged for this single host, but don't wish to globally disable or retire the sign...

Network Security

Forum Posts

Resolved! ASA5505 trouble opening port 443 for remote users Groupwise WebAccess

Resolved! enabling a third interface

NAT and ARP

ASA 5510 questions

site-site VPN. remote site has same private network id

Resolved! Interface Type on Pix 515.

how to remove tunnel-group

Resolved! PIX 501 Switch Hardware Issue

How to monitor ASA5510 with AIP-SSM remotely?

active/active failover config on asa 5520

ASA 5505....beware

Pix Global Nat

Deny Inbound Message

ASA/IPS Current Version

AIP-SSM - Disabling a Signature for a specific host

pxGrid session subscription missing radius accounting session Id

Model Migration - 4110 Native to 4225 Instance S2S VPN Configs

ASA upgrade procedure on Hyper-V

Announcing the release of Firewall Migration Tool Version 7.7.10

CSCvx25052 - DOC: FTD Syslog messages 43000x missing from FMC

Upgrade 7.6 -> 7.7 stopped media and ftp, is inspection the culprit ??

SFDataCorrelator down on Standby FMC

Recovery of "admin" password in CIsco ASAv runnin on AWS

Cisco FMC Access control policy under default

AnyConnect MAC OSX exclude/include DNS not working