Network Security

At what point does the PIX issue the 'connection built' syslog message. Example - 04 04 12:42:38 DMZPIX %PIX-6-302013: Built outbound TCP connection -668712345 for outside:xxx.xxx.xxx.xxx/1234 (xxx.xxx.xxx.xxx/1234) to inside:xxx.xxx.xxx.xxx/4514 (x...

Everytime I re-import sensors into IPS MC and to later attempt to generate sensor configuration, they always fail with the following sensor error(s): "The configuration of Sensor contains duplicate SigEvent Action Filters.This was probably caused by ...

I have a weird situation. I can surf the internet just fine with most web sites. However there are a few that I can't get to through my PIX (i.e. microsoft, ebay, yahoo mail). Can anyone think of anything that might be the cause? I know it has someth...

Dear all,in one of my client site, i tried to access the ftp server hosted in USA from the internal network behind the ASA 5520. Please find below the script of the firewall.The internal ftp client is connected to the inside ISA server and the ISA se...

I'm want to upgrade my pix firewall 515 from 6.1 to 6.3. I'm wondering if the config would stay intact or will that all be lost? and also if i copy config, could i just put that back if it gets changed?sorry, i'm new o this. thank you ahead of time.

I have seen various references in this forum and in Cisco documentation to upgrading the MARS signatures using the Admin>System Maintenance>Upgrade path. I am currently running release 4.1.4 and was wondering if there are signature upgrade packages a...

Hi All Expert,If I need to buy extra 1 year Antivirus subscription for CSC module in ASA5520, which part number should I used in Cisco? Or I need to order from Trend Micro directly?Thank you.Rgds,Au Yeong Shaw Voel

can anyone just tell me that on PIX 515E is it important to have a global statement, meaning i have few ip address given by service provider out of which we have one setup for the global statement in pix. also we have NAT for different server. proble...

I'm pretty new working with the Cisco products, however I have the privledge to test the ASA 5520. I'm unable to ping the outside interface from the inside network. I'm unable to go out to the Internet. Any help is appreciated. Here is my config:...

I have version 4.7.2.e and cisco have informed me the ios is correct and this should work. i have two vpn concentrators and both at the same time are not allowing me to log in via http or telnet. i can console in. This has been working for months. I ...

Okay I am starting to go insane!!! I have setup a red hat box at home with the SSHD started and running. Now I have putty and cygwin on my PC at work, I am trying to setup an SSH tunnel back to my red hat box at home. I want to be able to use local p...

Our business is repairing service about cisco product,thanks

Hello,My goal is to access tcp port 1723 and GRE (IP 47) on a Windows server inside our LAN from the Internet. I am having trouble connecting through the router and PIX. Internet > Router > PIX > LAN (Server)Router External IP (Serial): xx.216.35.242...

I receive this messagge from my pix 525 7.1.2:"INFO: Outside address overlap with static NAT configuration"What is means?

Have an edge router "outside" of the PIX, and a TFTP server "inside" the PIX, but when I TFTP the running config from the edge router to the server, the file shows up for a few seconds and then goes to a size of zero. I can TFTP from devices inside ...