Network Security

I have an ASA 5520, and I need to take all traffic from one external IP, and move it to an internal IP, except SMTP, which i need to forward to a different Internal IP. For example, I have nat set so that 64.64.64.64 external NATs to 10.10.10.10, but...

Hi, I'm configuring ips con my cisco router.There are several options that I really interested in activating, but I'm not sure this activation will provocate connection problems...these are the options:Ip->Tcp Anomalies->-frag null packet-null packet...

I have a PIX515e in which I can access through the console, I can ping from the inside (1) but I can not telnet or access PDM from the inside. Any suggestions? I have even reloaded flash from default.

Hello,I'm looking into disabling streaming audio/video on our PIX firewalls. Does anyone have any information on this? I found a cisco white paper on the internet for disabling P2P software which was very helpful, but would like to disable the stre...

This signature fires on NTLM authentications.

I have just loaded a new pix v7 image on a 525 PIX.PIX721.bin 8kasdm-506.bin 5.6kI am unable to tftp a asdm-506.bin image I get a the error (Not enough space on device)Directory of flash:/5 -rw- 8202240 07:34:12 Nov 20 2006 pix721.bin1612...

Hi,We allow clients to connect to us over BT Radianz. One client is refusing to use our services as the traffic is not encrypted. At the moment we tell BT Radianz the internal IP of a server clients can connect to. The give us a global address tha...

Hi recentely i am facing problem in enterprice pix firewall.its goes up to 95%.what is the average cpu utilisation and maximum utilisation for pix 525 series.

Our sensors are false negative on all syn ack scans that are received. Is there a signature current on the ids that will capture the following? 1 2006-11-14 14:27:04.287620 202.103.178.165 my.net.163.77 TCP http > 21129 [SYN, ...

Hi Sir,I used to be able to configure IPSec over TCP (port 443) using the following command on an ASA 7.1(2):isakmp ipsec-over-tcp port 443Lately I upgraded the ASA to version 7.2(1)24. After rebooted, the above command went missing. I configured it ...

hi all,i am trying to configure a vpn setup, where i have configured the crypto map and isakmp configuration but as for the acl and natting problem, i face the following issue.I want to establish a VPN tunnel from a PIX to another IPSec gateway that ...

PIX 501 Config not savingI have tried over and over and over again reseting back to default and it will not save the default. any ideas?

all, TCP connections stay open after a VPN user logs out. I don't see anything on "sh xlate" but "sh conn" shows the connections.Is there a "clear conn" command? I been searching but can't find anything.TX

I want to replace my PIX 501 with a PIX 506e, but I'd like to avoid having to manually reconfigure the 506e to match the config on the 501.Is there any reason why I can't just backup the 501's config and restore it onto the 506e?

I just figured this out yesterday and figured I'd share it because I've seen similar problems posted before.I'm using a PIX515E with OS 6.3(4) and VPN client 4.6 to connect to our corporate site via dynamic VPN.The problem was that even though I adde...