Network Security

Hi,We have an Outlook 2003 clients that connect to an exchange server through the PIX but are experiencing 40 to 50 sec delay in being prompted for authentication. Firewall rules allow the client out for any connection to exchange. Clients function f...

I am running wireless off of the External Interface of our 3030. The External filter is permiting DHCP in/out to allow wireless clients to get an address. Clients are required to authenticate via VPN and when connected, no split tunneling is allowe...

Greetings all. I have a 4215 appliance running 5.0(5)S203.0. I'm attempting to apply IPS-K9-min-5.1-1a.pkg via the 'upgrade' CLI command but keep receiving the "AnalysisEngine is currently busy and unable to process this update. Please wait several ...

Hi,I keep getting this error when I try to access the IPS 4255 thro' the IDM.“Error Connecting to sensor. Failed to load Sensor- errSystemError-ct-sensorApp332 not responding, please check the system processes- the connect to the specified lo:: Clien...

looking for the sigID that would fire on this. We are running 4.1(5)S216.

I have a problem with 2 pix connected as follow:CLIENT INSIDE ---> PIX 6 (NAT) ---> PIX 7 (NAT) ---> INTERNET SMTP SERVER OUTSIDE.if the client try to connect to ANY the ESMTP Server on internet (telnet to port TCP 25) the connection hang up: on the ...

Hi all,I'm trying to configure all IDS systems to use NTP service, but the software (IDM as well as VMS) asks for NTP server IP, Key and Key ID. All these fields seem to be mandatory. My NTP server is not configured for authentication. What can I do?...

HiI have the following setup:Cisco ACS 4 for WindowsCatalyst 2950 EMI with the latest imageCisco Trust Agent client 2.0 with the supplicant for 802.1x authenticationI only want to configure posture validation. The client should not be prompted for cr...

How do I install an existing configuration to a PIX 501 firewall?regradsPascal

Hi,I want to configure my sensor such that it sends a reset packet if it detect string "ool" in the payload. Also, the sensor should send the original packet from the attacker included in the alert. I created a custome signature with STRING.TCP, but ...

I am trying to understand how event or alert filters work in version 5.x. If I use VMS ipsmc to manage the sensors, how do you add a sensor filter for a particular event that we do not want to see appear in the SecMon console any more. It looks like ...

What is the correct way to bring the vms server back in sync with the sensor signature version? E.g. if the sensor is already at version 5.1(1)S221.0 because upgrades to the sensor were applied via the CLI and you would now like to add the sensor to ...

Regarding above signature, I already checking on my exchange server (2003 with SP2) and confirmed we are patching with MS05-021 (KB894549) but there is still huge alarm fire between my exchange servers on this signature daily.Any1 experienced this be...

Anyone know the best way to block Instant Messaging on an ASA (7.1) box? I'm taking that using a service policy is the correct method? I'm currently using the default service policy so I'm not sure what I need to remove from the default policy to acc...