Hi,We have a customer with a PIX525 configured with two contexts. When displaying memory usage in one of the contexts it reads memory usage of 453%(approx. 1.2Gb) & the PIX only has 256Mb installed.The PIX is operating fine but I'm concerned with mem...
Hi everyone, I got a strange problem, on my FWSM, when i use the command wr mem i get a error, any one seen this befor ??ipmsap/act# wr memBuilding configuration...Cryptochecksum: xxx%Error copying flash:/startup-config (Cannot overwrite image (asdm)...
I've been reveiving events in my network firing the Signature 1300 TCP Segment Overwrite. What is the cause of this firing? Could anyone tell me the potential danger of this in my net? Does anyone recommend a filter between inside sources and destina...
Hi, I can't get port forwarding working into a PIX515E. This is what I have done and port 80 doesn't open. name 203.144.238.79 WEBSVRstatic (PublicDMZ,outside) 203.144.238.79 192.168.10.17 netmask 255.255.255.255 0 0 access-list PublicDMZ_access_in p...
Hi all,I have some internal users who are trying to connect to an offsite VPN server using Cisco VPN client. The client will connect but timeout at 1 min 40 sec each time. I have a PIX 525 on my Internet conncection. Is there anything I need to do on...
Hi.I want to use pbr on a firewall.I want to set up the following:I have a proxy in an dmz configured in the firewall.I want to rederect all http and https traffic through te firewall.So how is it possible to let all outgoing www traffic go pass the ...
HI,Guys:I am configuring Failover on two ASA5510,but some Failover commands take no effect when I entered them into ASA.For exmaple:I entered the following commands in the mode of ASA5510A(config)#:failoverfailover lan unit primaryfailover link FailO...
Hi, two days ago, the cisco pix's messages shows the follow:106016: Deny IP spoof from (127.0.0.1) to 10.82.239.198 on interface WAN106016: Deny IP spoof from (127.0.0.1) to 10.82.239.230 on interface WAN106016: Deny IP spoof from (127.0.0.1) to 10.8...
From the attached config I cannot explain why a system with IP address 10.7.1.35/28 for example would loose packets to a system with IP address 10.7.1.36/28 which are in the same subnet. This is just an example. More systems on 10.7.1.32/28 subnet lo...
Just hooked this up today and with Vibhor's help I have the DMZ working with nothing but a test server in it replying to ping. But I noticed that the firewall slowed down after about an hour when I was viewing the configs and whatnot and I did a sh ...
Hi friends,Just came across an issue with ASA 5540 and PIX 7.1.There is a VPN client behind the ASA and the ASA is a PAT device. The ASA is just a pass-through device which needs to allow the vpn traffic through it connecting to a remote server. I ha...
I need to NAT an outside IP to an inside IP, but I do not want to change the source IP address.Anyone have any luck with getting SIP to pass through the 5520 without changing the source IP?
Ok a few issues here.I just installed a PIX515 replacing my 506. I have 3 interfaces now:Inside 10.0.10.0/24DMZ 10.0.20.0/24Outside 64.69.117.0I have attached my configuration, but here's my dilemna.I have mapped a test box on the DMZ, and it's IP ...
We currently have a CSA MC on site, We have another site in the US that will be running another CSA MC, Is it possible to replicate or save the running policies on our current MC and to install then onto the CSA MC in the US ? Or is the only way to c...
