I am trying to design a new DMZ. I have two internal subnets 172.16.0.0/16 and 192.168.9.0/24. My DMZ is going to be 172.28.2.192/28. For now I will have 1 web server in the DMZ with ports 80 and 443 needed in. I also want to allow the server in...
I am trying to design a new DMZ. I have two internal subnets 172.16.0.0/16 and 192.168.9.0/24. My DMZ is going to be 172.28.2.192/28. For now I will have 1 web server in the DMZ with ports 80 and 443 needed in. I also want to allow the server in...
Hello - I'm having connectivity issues while attempting to connect to the internal sql cluster name or ip address from my web server on the dmz, although I am able to get to one of the servers in the cluster directly via its name/ip, but not to the o...
I am having an issue with getting our email, web, etc. forwarded to our internal servers. We have a ASA 5520 running version ASA Version 7.0(6). The issue I have is that our "Outside" interface is a natted address, not a real "Public" address. The I...
Hello All,We recently added IDSM2s to our core using VACLs to capture traffic. How are others controlling which VLANS the IDSMs can inspect? Currently I have it set up where only certain VLANs are mapped on the VACL and allowed on the trunk. e.g. ...
I am trying to input a statement into a pix running 7.06 that we had in in a 6.3.4 version pix. The statement is as follows: nat (inside) 0 access-list no-natI get this error message on the console.ERROR: access-list has protocol or portWe do have a...
Hi!It seems that the most comfortable way of managing ACLs is to use the "configure net" command. Is there perhaps an even better way to do this?In contrary to a Cat6000, where i can use rsh to script FWSM-commands, i always have to log in to the FWS...
Hello all,I want to ask you some question about ASA AIP-SSM module licensing.For example, when we want to purchase a ASA 5520 with AIP-10 module, does it have a default AIP license to work without upgrading to new signatures?Out of box, when you open...
This is the output when the proccesor was high. Some of the VPN client users were unable to log in. when those users that were logged in started getting out the proccessor activity started going down until it reached 7%.
Hello all:I am in the initial stages of setting up an FTP server in our network which will need to be accessible from the outside and through our PIX. Is there any tutorial or article that anyone knows about which could guide me through the PIX port...
Does IEV v5 support IPS 6.0? If not, will there be a new version of IEV?
Hi,Recently we brought AIP-SSM-10 module in ASA, required licenses are updated by vendor. When it comes to updating signature files, Cisco requires valid CCO account, i have got guest level access only, my vendor he will provide signatures as and whe...
Hello all:This is probably a dumb question but I am still a Cisco noob so please bear with me.When clients connect remotely through VPN how does one configure their PIX to allow them to still use the Internet while connected?Thanks,John
Hi,How to block p2p application using AIP-SSM-10 working with ASA5520?AIP is on promiscuous mode.Thanks,Siva
hi all i have a little confusion abt the event count parameter in the signatures. i am not sure whether this parameter is for firing the signatures or for writing the events to the event store. by default the event count is set to 1. if i set the eve...
I only get the option to save the image file from tftp to flash.Any ideas?Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
10-08-2024 05:01 AM | ||
10-04-2024 08:14 AM | ||
10-02-2024 09:17 AM | ||
10-02-2024 09:13 AM | ||
09-30-2024 06:08 PM |
User | Count |
---|---|
14 | |
12 | |
6 | |
4 | |
4 |