Network Security

I have installled LMS 2.5 I can discover devices and display them with CM Topology Services, but they don?t change its color from green to red if I switch off the power of the devices (p. example). Is it normal or it?s a bug and I need to patch the ...

Are the NIC cards in the PIX boxes just a regular PCI NIC card? I want to put a four port Intel NIC card in and they look the same.

Hi guys,i was about to purchase a recommended PIX-515E-MEM128 for my redundant PIX ...before doing so , one of my coleague told that PIX required a SDRAM (which actually is true) - so we can plug any good kingston PC133 SDRAM in it...i dont want to g...

Recently, I've been seeing a ton of messages on the IPS Event Viewer stating that TCP Segment Overwrites have been detected. The events are from either the IPS-A to our DMZ or vice versa. It just started whenever we added some servers to the network...

Can MARS replace Kiwi as our syslog collection?

I created a drop rule, dest and src ip's are "ANY", and the hostnames as seen in MARS. I chose to "drop" as action...not "log to db only". The event is "Inactive CS-MARS reporting device, device is "ANY", severity is "ANY", time range is "ANY" I ...

Hi, we have an issue with our client's IDS4215 presently it is using v5.0 but the customer prefer to downgrade to 4.1, which image/service pack should I download first?TIA

Remote users using Cisco VPN 4.2 connect successfully to a Cisco Pix 515 (ver. 6.3). The client is configured to allow Transparent Tunneling and Local Lan access, but once connected to the Pix, these two options are disabled. What configuration chang...

Hi,I have an issue with routing in PIX firewall. we have three DMZs in total. One DMZ for Public servers like proxy, web. Two DMZs are for a 3rd party server connection using Lease line. The problem lies in this 3rd pary area.The communication with t...

Hi,We have a CS-MARS 100 with the last 4.2.1 and I've configured several reports to be sending by email. I'd like to change the default subject that it's shown as "System Scheduler (scheduler)" in the email client (Outlook, p.e.) and if it's possible...

Can I build a signature (and if so can you walk me through how) to alert me of any traffic containing "filename.exe"?So that for example if an email was on its way to our mailserver with such a file attached or a user was downloading such a file via ...

Hey guys, this may be a silly question but what are the HEX numbers after the ACL all about? Can you use them to tie the ACCESS list hit with the line in the ASA? That would be cool. Thanks. access-list inside-in line 8 extended permit tcp any any eq...

When I try to run the CSM Client from my laptop over a vpn the client always hangs when it says synchronzing with DCR. I believe it might be an MTU issue but can not test at the moment. Has anyone had trouble with this?

Hi,Customer is asking for a solution wherein ASA will be in transparent mode. 2 of the interfaces will fall in Admin context while other two will be part of a new context, say Context Traffic1. Now as he is also buying AIP SSM module with the boxes h...