Network Security

Hi All,A subnet connecting a router, some workstations and the inside interface of an ASA 5510 by a Cisco 2950 switch.The router is connected to remote sites. The default gateway of the workstations is pointing to the router. And on the router, there...

Dear all, I am having problem when configuring NAT in multiple context. Since the 2 context are sharing the same subnet in some interfaces, I use the same nat/global command in both contexts. But turns out reporting 'the same global ip is used by an...

hi all can someone pls help me. i am able to authenticate rdp and all other kinds of trafic with the help of virtual http and virtual telnet from inside to outside. but i am unable to achieve the same from outside to inside. int e0 no sh nameif outsi...

Can anyone point me in the right direction. I would like to use a pix running 7.2 code with my Trend suite using WCCP or transparent proxy.

Hi All,I have posted a couple of times on this already, but still cant quite get my head around it as I seem to be getting conflicting information.All I am looking to do is to allow communications bi-directionally between 2 DMZ servers and 1 Inside s...

On our router I am trying to configure th IPS to only alarm on its rules. I do not want it to drop packets. If I right click on a rule and select actions and uncheck "drop" and "deny" then hit "Apply Changes" This does not work; it does not save the ...

Hi!I've been noticing that some mail-servers (SMTP) and web-servers (HTTP(HTTPS) use dynamic connections when we connect to them.Lets say we are on a PIX/ASA inside network and do a 'http://www.xpto.com' to access this web site. Basicaly we are acess...

Dear ALL,I'd like subscribe for 3DES free activation keys, but in the form are requested "PAK or SW Serial Number".I've bought 2 PIX (unrestricted+stand by) but please, where I can find these numbers ? Regards Alberto br...

okay I have written an ACL that permits internal hosts access to the outside. I also have a DMZ which VPN traffic should be routed to, and which should not be natted. I understand that I can create and ACL for the traffic to be natted and apply it t...

We need solve following scenario LAN(192.168.10.x) | | router-----------HQ(10.130.10.0/24) | | PIX | |Partner network (10.130.10.0/24)Our LAN 192.168.10.x is connected vi...

Hi,We have a 515e with the four port expansion card and a Citrix CAG which we want to use to give users web access to to citrix. I am presuming that the best way to do this is by setting up a DMZ.The outside interace of the pix has a public ip 194.xx...

Hi All, Can I have multiple subnet on an interface of PIX/ASA firewall..Like if I have two different public range from ISP & i want to use both the range for my servers kept behind the DMZ & firewall has only three interfaces..inside,outside & DMZ.....

Dear ALL,I'm going to replace a PIX 515E running 6.1 with a new Unresticted PIX515E running 6.3, so I canwork offline with the old one to run all update tasks.Configurations are exactly the same, but when I replace PIX , the new one does not run prop...

i have ASA5510 with the ff access-list_1where:xxx= inside subnetxxx_1=allowed internet accessyyy=public host hosting mail serveraccess-list acl_in permit ip xxx anyaccess-group in interface insideaccess-list permit tcp xxx_1 any eq httpaccess-list pe...

Hi,I'm not able to update (reinstall) a ASA-SSM-CSC-10 module. I used the CLI-Command : "hw module 1 recover boot". But the module is still in the Recover-mode. Output from CLI (I used the image: csc6.1-b1519.bin):Slot-1 890> !!!!!!!!!!!!!!!!!!!!!!!!...