I install two ASA5540 with IPS modules. One is active and the other is stanby. Some users complain that gmail users can not send mail to us. I have try with my gmail account and some time is not comming thru and some time is fine. Any ideas?
If the PIX has it's inside interface on it's own subnet, uplinked to 4503 switch (10.10.10.0), and the workstations and servers are on different subnets (10.10.20.0, 10.10.30.0), and using the switch as their default gateway, how do you set up the NA...
Is it possible to change the mac address of the outside interface of a pix firewall (e.g PIX 506E) running 6.3(5)?Background: My ISP bound the MAC address of my other firewall (SMC) when offering the DHCP lease. As a result, when I plug the PIX I am ...
I have a 506E that is used to seperate an internal lan segment from another lan segment (it is a police department). The problem i am having is we set up a second domain controller on the other side of the pix and need to open it up to allow dns traf...
Greetings,Users on remote network behind Cisco 2821 reporting dropped connections to mail server behind ASA. 20-seconds later, the connections get re-established. I run a constant "ping" to the remote LAN and do not see a drop over the tunnel.Any i...
Hello,I have done some research looking around the forum, docs and could not find any details whether a static route could be added onto 4215 sensor besides the default gateway.Is that feature not supported? Has anyone ran into similar issue?Thanks,
We have an ASA 5510 with AIP-SSM10 and will be migrating 515E ruleset in the future. For right now I want to use the ASA behind the PIX as a bridge in order to use the IPS functionality. Would tranparent mode with access lists that allow all traffic ...
We upgraded one of our sensors to 6.0(1)E1 and now we are seeing extremely high alerts on this particular signature. The signature is NOT set to alert. Any ideas on what we can do to stop the alert other than filter something that should not need f...
Hi Everyone,I have a new ISDM-2 Module (Version 6.0(1)E1) and I?m thinking use Inline VLAN Pairs to bridge two vlans, in my case vlan 100 and vlan 101. Vlan 100 is the vlan used by MSFC and Vlan 101 is the vlan used by the outside of my FWSM . In thi...
There seems to be a recent issue that has come up when gmail users are e-mailing into organizations using ASA-55xx firewalls. Has anyone had this problem and have any suggestions? These errors only occur with inbound messages originating from Gmail. ...
Hi Forum,I have 2 ISP links connected to my ASA firewall, I have an internal ISA 2004 proxy server initially PAT to a public IP address of one ISP, now I have another ISP public IP address PAT to it as well, When one of the link fail, the other link ...
I have a single static IP and currently serve http, https, & SMTP (successfully) through PAT with a PIX 501.I've tried every combination of Outside_in ACL's, even a permit any any and incoming traffic is still blocked by ACL. The logged event is:TCP...
Hi,I'm currently seeing an issue on our VPN Conc. the device is running the latest software. We have in the region of 1000 users that connect remotely. However, when monitoring the device via snmp. At no point throughout the day can I get the interfa...
A one page description of the problem is attached with a sketch. The Firewall is not allowing access from a router that it should be by access rules. A sanitized version of the running cfg is also attached.
