Network Security

Brute Force FTP attack

OK, so I noticed on my server today a host from IP address 200.69.119.228 flooded my server this morning with 4,878 login attempts; in only 1/2 hour!Are there any good ways to prevent this from my PIX standpoint?Appliance: PIX 506 5.2(6)Any help woul...

ASA 5505 Port forwarding

I cannot seem to get port forwarding working on my ASA 5505. I am running everything through one outside IP and do not have additional public IPs to use. I think I have the configuration right, but it is still not working. Through ASDM I do a packet ...

Resolved! AIP-SSM configuration assistance

I have two questions regarding the AIP-SSM.1) Does the ACL on AIP-SSM have any type of relations to the ASA ACL?2) Our four interfaces are all in use. Is it possible to assign the SSM an IP address in the same subnet as the management interface?3) Sh...

Customizing a Sig 3171

I need some help on customizing sig 3171, FTP priviledged login. I would like once this sig fires a certain number of times it will block the host. I have my device setup for blocking and I thought I had this sig cloned correctly to block the host af...

Cisco IPS 6.0

What hardware does it run on? Is it the ASA-5500?For some reason I can't find that info.Thanks!

Resolved! Quick PIX syslog Q!

If a PIX closes a half-closed TCP connection after it's timeout period (default 10 mins), what code/text would that be logged as?Thanks,J

When will release the ASA 5500 Series OS 8.0?

I am using three PIX 506E 6.3 in main office & outside shops, and want to purchase two ASA5505 for our new shop.I find "Cisco ASA 5500 Series 8.0" in the Cisco->Security and VPN Product page, but can't find any other information about this new ASA 8....

Resolved! Monitoring Load on IDS

Hi.At present I am monitoring the traffic that flows on the Inside Int of my firewall. I need to sniff the traffic on the other INT as well. before doing that activity I wanted to know my IDS-4235 would take the load or not.kindly help me to know how...

Resolved! NAT and PIX VPN issue?

Dear all,We are trying to work out why a user is unable to connect to a pptp vpn server through our firewall.They are on a NAT network going through our PIX and then to their Windows 2003 VPN server, now this works fine from an normal un-NAT network ...

Impossible IP packet: SIG 1102 (0) - (0.1.0.4 address)

I have just noticed that this signature has fired for 2 of our different clients but with the same source/ destination IP's. I would normally assume that this is either impossible or very strange.I think that might be where the name of the signature ...

New config add ACL for ICMP and lose implicit ACL

Yes, I am a newbie... I have the initial configuration of the ASA5520 finished and started adding some ACL. I can access lower security levels just fine but I want everybody to be able to ping everybody else. I tried:icmp permit 0.0.0.0 0.0.0.0 insid...

Resolved! FWSM blockes same-security-traffic

Hi,Firewall blockes traffic between two level-0 - Interfaces."same-security-traffic permit inter-interface" is configured. The Access-list is correct an the log containes without matches:"Mar 30 13:52:51 pix Mar 30 2007 13:55:13 z084nlf-h008001 : %FW...

Zone based configuration

Hello,I'm testing a 2811 router with IOS 12.4(9)T2 (IOS Firewall enabled). As I'm interested in Cisco new approach to firewalls, with Zone Based design, I tried to use it to build my configuration.My scenario is as follows:- Router 2801 - Router 2811...

intermittent mail access through PIX

Hi Forum,I have a mail server sitting inside the PIX DMZ, I have intermittent outgoing mail failure issue. For those mails that failed, I can ping the Host on the firewall, but when I tried to ping it on the mailserver, I can't ping the host. Could i...

Failover Methods?

Hi all,How do folks handle failover for say a MARS box? Will future models address this issue, or does Cisco see this as a non-issue for a MARS?Thanks,Bob

Network Security

Forum Posts

Brute Force FTP attack

ASA 5505 Port forwarding

Resolved! AIP-SSM configuration assistance

Customizing a Sig 3171

Cisco IPS 6.0

Resolved! Quick PIX syslog Q!

When will release the ASA 5500 Series OS 8.0?

Resolved! Monitoring Load on IDS

Resolved! NAT and PIX VPN issue?

Impossible IP packet: SIG 1102 (0) - (0.1.0.4 address)

New config add ACL for ICMP and lose implicit ACL

Resolved! FWSM blockes same-security-traffic

Zone based configuration

intermittent mail access through PIX

Failover Methods?

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

GeoLocation IP Package Download In 7.4.2 FMC

ISA 3000 I/O contacts for red light kill switch ?

ERROR(567): No database files are available on Cisco Security Manager

CSSM On-Prem with FTD on FMC

ASA5506-X SFR module always switches off after 10 minutes

Adding an FTD with existing Config to an FMC

Can ASA5555 License transfer to Cisco Firepower 2100 ASA?

ASA to FTD migration

FDM1120 Management Interface IP Address

OSPF Passive interface in FTDs