Network Security

I currently have dynamic nat in place for our schools lan, but I have two video conference units in place with public ip's off our catalyst 4503. Can I use static nat to place them behind the pix 501? If so what would the command look like if my publ...

Hi, there Can I put TWO IDSM-2 in a single C6500 Chassis and bunle them together to run in IDS mode, in order to have higher throughtput, and I am reluctant to run IPS mode, thanks.

Here's my question. I used to have all of my IPSEC L2L tunnels on the VPN Concentrator. I had the ability there to enable or disable each individual IPSEC L2L tunnel. On my ASA there does not appear to be such a function...at least not on the ASDM as...

Using CTA 4.0.2, ACS SE 4.x, and Windows AD the following occurs:1. When login to WindowsXP using Local Account, then CTA prompts its login. I can then put the AD account. This process works!2. When login to WindowsXP using AD Account, the error ms...

We have two ASA5540 in failover configuration; one of them some timecrashes with the error:An internal error occurred. Specifically, a programming assertion wasviolated. Copy the error message exactly as it appears, and get theMessage #96 : output ...

Ok. We are having problems getting on the internet. Our setup is like this, SBC modem -> PIX501 -> Switch -> Network of PCs. The IP of our modem is 10.10.10.100 and I believe the ip of our PIX is 10.10.10.1. DHCP is disabled on the modem but now the ...

Hi,I have a site-to-site VPN between an ASA 5505 and a PIX 501. The tunnel connects to private LANs A and B. Now from LAN A I can ping hosts on LAN B. From ASA on LAN A can ping hosts on LAN A.But I can't ping from ASA on A hosts behind PIX on remote...

Can we add more signatures in IP Audit Signatures other than available 51?

Hi,I have 5 public ip address that I would like to port foward port 25 to a single inside ip address. When I try to add more than 1 I get a dulication error.examplestatic (inside,outside) tcp 66.66.66.18 smtp 192.168.10.18 smtp netmask 255.255.255.2...

I have run into this a couple of times: I am continuously setting up new pixes for a site-to-site VPN. (All remote sites connect to a PIX 525 at the central site). I'm using network management extensions and a RADIUS server. What happens is the VPN d...

We recently added a number of VPNs (site to site) to our PIX 525. We would like to benchmark both the processor and memory on the PIX to determine any possible impact. Now I know that the PDM can do some limited benchmarking. I'm looking for some sof...

I would be grateful if anyone can enlighten me with regards to placing a server with a public IP within a DMZ on a PIX.I am relatively familar with static translations, those mapping public IPs to internal hosts but I have never had a host within a D...

is this a valid static PATaccess-list permit 100 tcp any host 10.1.1.1static(in,out) tcp 10.1.1.1 80 10.2.2.2 80access-list permit 100 tcp any host 10.1.1.1static(in,out) tcp 10.1.1.1 53 10.2.2.3 53

I use UltraVNC with a repeater for remote PC support, and the repeater is running on the DMZ of PIX with the viewer typically on the inside interface of the PIX. The server can be any host on the Internet that I support. The problem is that the sessi...

Please excuse my ignorance but I have a problem with a PIX 525 (failover) that I just cannot figure out.The outside interface has an address with a /27 mask. I am using a few statics to NAT inbound connections(for FTP use, etc). And the global I am...