Network Security

I recently turned the Firewall Feature set on for one of our remote sites that previously had only PAT for security. We are seeing about 1600 attempts an hour to access the PAT address on TCP and UDP port 15687. Anyone have any idea what is going on?...

I want to change up the current config of my 4215 to use two ports for a IPS inline pair pass thru setup. If you have come across the documentation on this I would appreciate if could you link the relevant documentation to your reply. I currently hav...

Hello,We recently bought a Cisco Pix 506E firewall app. for our (small sized) network. The specs state that the pix 506 is capable of using a DMZ interface, however there are only two physical interfaces. I figure that for a DMZ i have to configure a...

Hi,I have the Following scenario, The source on the DMZ will be accessing the Server at Inside. when ever It downs, the same traffic has to reach the another Server with the same IP which is on the Inside as well. Is it Possible to route the traffic ...

Hi,I am facing a peculiar NAT situation on a Pix with multiple interfaces, config below-nameif ethernet0 outside security0nameif ethernet1 inside security100nameif ethernet2 dmz1 security10nameif ethernet3 dmz2 security40nat (inside) 1 10.0.1.0 255.2...

hi all i am trying to setup asa failover using the management interface.asa1int e0/0nameif insideip add 10.1.1.1 255.255.255.0 standy 10.1.1.2no shint e0/1nameif outsideip add 1.1.1.1 255.255.255.0 standy 1.1.1.2no shint m0/0no shno management-onlyin...

Hello.I have two FWSMs, running in Failover Active/Standby mode. I would like to run OSPF on one of the FWSM's interface (int vlan2). I have two questions regarding that:1) Will both FWSMs participate in the OSPF, even when the Primary is working ?...

Hi,I need advice for hardware selection.Which hardware-model would you recommend with proper failover considering the following<> Business is 24X7X4 [ International 10 sites ]<> SAP Application accessibility and Lotus Notes replication is a big facto...

Hello All,When a remote user connects via the VPN client, they experience a disconnection a few seconds after they have authenticated successfully.I checked the ASA logs and notice the following msg:%ASA-4-402123: CRYPTO: The ASA hardware accelerator...

Hii'm just converting my ACLs to use object-groups and just wanted ti check the ACLs I have written are OK. To start with I have some ACLs of:access-list example permit ip 192.x.x.0 255.255.255.0 10.x.0.0 255.255.0.0access-list example permit ip 192...

I have two PIXs one in Active and other in Standby mode .I had face some problem in standby PIX ,due to which I want to change my Standby PIX. Kindly let me know what all steps should I keep in mind before going ahead to do this activity.Those are P...

Hi friends,There is a ASA 7.2 acting as a VPN gateway for a Remote Access VPN. There are primarily three networks behind the ASA inside network that are accessed by Remote VPN clients. They are: 192.168.7.0192.168.8.010.10.0.0There is an access-list ...

I want to configure a active/active failover using asa5520 and ips ssm module in itwht i have tried but before that i will connecting the interfaces of these firewalls to a 3548 switchwht i hv triedasa1---g/0 goes to a 3548A switchasa1---g0/3 is the ...

Hi all,We have configured a user on 1 of the PIX firewall's witch privilege level 15.When we do a "sh run" or "sh user *****" the it shows us that the configured user has a privilege level 2 instead of 15.When I logon with the specific user and then ...

Hi,I've got a headache with the failover of 2 asa 5540 in master/standby configuration. I've already 2x 5520 in master/stanby and they are working OK.The command sh fail on the 5540s shows:Failover OnFailover unit PrimaryFailover LAN Interface: failo...