Hi!I have configured lan/state failover with ASA 5520. When testing failover i loose contact in about 20 seconds is this normal?? does anyone know what time to expect, until the connection recover to secodary unit?/Regards
Hi all,Is it possible to clear the countersfrom ACL configured inside PIX after acommand sh access-list xxxx ?Or, only from desired line of some ACL ?BRjl
Hi,My set up of PIX and ISP router is like this : ISP router is using serial T1 link for internet connectivity for static (live) ip address. This router's eth0 has been connected to PIX outside interface. This interface is configured for one more i...
Greetings.I have a pix515 that is showing PAT entries in show xlate for a whole bunch of customers. But only some of the segments gain access to the outside. Some specifik segments fail to access even though they get PATéd.I have made sure that permi...
Hello,I'm configuring a new pix with 7.0 and having an issue with access-list inside_access_in extended permit udp any any eq domain and line 4 with tcp eq wwwThe traffic pass ok through the pix when I put: line 1 permit icmp any any (htcnt = 8457328...
We purchased a PIX 515E bundle s while back and have been using it for some time now just for firewall purposes, no vpn termination. It was working fine in stateful failover overmode running version 6.3.3. We recently upgraded to version 7.0.4 and ...
Currently, I view my syslogs with the Kiwi Syslog Daemon on a box in my dmz. I would like to add syslog viewing on my workstation on the inside interface.Is it possible to enable two logging hosts for syslog viewing?Thanks, Ben
I want to restore ips 5.1(1) -> 4.1.But, Restore was failed.Error Message is below.--------------------------------Error: execUpgradeSoftware : idsPackageMgr: digital signature of the update file was not valid, use CCO to replace corrupted fileTarget...
New IDSM2 installation here. Just got them to work last week so no real tuning done yet. They are running in promiscuous mode with software version 5.0(5sp2). We are using CN-MARS 4.1 to collect events.I'm seeing a lot of RPC DCOM overflow events ...
Tried CISCO IDS sensor 4250-XL with the following 4 interfaces: Int0- ethernetInt1- ethernet -- command and control interfaceInt2- fiber Int3- fiber Can we use Int0 (ethernet) interface as the sensoring interface? Whenever I tried to add it to sensor...
I have a strange problem on an ips mc / secmon 2.2 solution. When I open the security monitor from a specific time and date, the console shows events that have occurred prior to the date that I requested. Before experiencing this problem, I manually ...
I have a Pix 525 with multiple DMZ's. Behind one of the DMZ's lies my public interface of a traffic mitigation server. Fron this interface the server sends out TCP resets for P2P traffic to save upstream bandwidth. I am seeing that the pix is prev...
Hi All!I would like to know a little more about the "Generic Authorization Message Exchange" Protocol (GAME) used between ACS and audit Server.Is there any documentation ? .. other source of info?I also have another question:is there any Cisco Book a...
Can anyone tell me if v5 has increased the number of user-definable alarm channel address groups (USER-ADDRS1-5)? Or better yet if it lets you create unlimited custom named groups? Failing that, how do folks generally get around this limitation? I...
