Network Security

pix logging and tcp flags

where can I find a good resource that explains that meanings of the various flags and logging messages as displayed in the logging output of a pix firewall. I'm looking to get more familiar with distinguishing which end is sending what flags, tcp res...

reason 427: unknown error occurred at peer VPN3020

Help can anyone explain wht this means keep getting disconnected to VPN concentrator

Resolved! PIX and Anti Spoofing

Hi,Could you please brief me how anti-spoofing works on PIX firewall.Is it enabled by default?what command to desable it?Any know issues when enable this on PIX?

Where are the Perl Scripts?

I have been reading the doc on Maintaining Security Monitor since having my issues. I noticed several mentions of perl scripts such as "PruneDefault.pl" I search the HD where VMS is installed and I can't locate this script or others mentioned in the ...

IIDSMDC.LOG and IDSMDC.DB

I have these two files taking up GB of space on the CiscoWorks VMS box. I can not seem to find how to purge or manage these files. Any help would greatly appreciated.

SEV=4 AUTH/28 disconnected: Reason: Lost Service

I have lots of users connecting remote access as well as remote 3002's disconnecting with the above message.I have not been able to identify a trend of any kind or even find more information on what is happening to cause the disconnect.Does anyone ha...

PIX 501 Crashes

Hi there, im using 3 Pix 501 for a VPN over PPPOE. The first Pix is acting as the VPN Server with an static external IP Adress. The other both establish the IPSec Tunnels to it. The "server" PIX is working on a 2Mbit SDSL PPPOE Connection. The Pix Cr...

routing VPN traffic through PIX from Netscreen device

I have a Netscreen to PIX VPN connection. The PIX acts as a hub to other VPN devices. I need to have hosts behind the Netscreen connect to hosts behind a third device. I have attached a jpg file to illustrate the topology. All vpns are up and working...

PIX restricted unit to be used as failover with a PIX UR unit

Is there anyone out there..that knows for sure that a PIX515e-R can be downgraded to a FO status....so that the pix can be used for Failover with an UR PIX that is identical...I've checked for the past two years and noone seems to have an answer...or...

PIX access across WAN

Using a PIX 515 I've allowed external access on port 1677 to 2 NAT'd servers. One server sits on the same LAN as the PIX, the other sits on another site over an MPLS core.I can attach externally to the server on the same LAN, but cannot attach to the...

Help with Pix Firewall 515 restricted bundle

Hello there,I am new to Cisco Pix and was wondering if I can get some inputs as to where I can go from my situation.I need to open several ports on the Pix 515 we have right now. It has ISO 4.4 (1) install on it currently. My manager is leery about ...

Resolved! Is this a Pix issue?

Hi guys,I got a 515E with Pix os 7.0. This Pix work as a border firewall between my border router and my internal network.Some of my customers inside require a SMTP over SSL connection to the outside SMTP server. I opened up all necessary ports on th...

Sig 5237: HTTP Connect tunnel

The regex for this sig is as follows (and can't be changed):[Cc][Oo][Nn][Nn][Ee][Cc][Tt][ \t].*[:].*[ \t][Hh][Tt][Tt][Pp]Why can't we make sure the port is specified in the regex to reduce false positives? Something like:[Cc][Oo][Nn][Nn][Ee][Cc][Tt][...

"Hitless" Pix Upgrade - V7.02 -> 7.11

I have seen several references to a no downtime upgrade capability with the Pix 7.x software, but have been unable to find a documented procedure on cisco.com. Can anyone point me to the procedure? Thank you!

ERROR after PIX upgrade from 6.3 to 7.0(4)

Configuration shows ERROR: Command requires failover license6.3 config ip audit name info-sign info action alarmip audit name attack-sign attack action resetip audit interface outside info-signip audit interface outside attack-signip audit attack act...

Network Security

Forum Posts

pix logging and tcp flags

reason 427: unknown error occurred at peer VPN3020

Resolved! PIX and Anti Spoofing

Where are the Perl Scripts?

IIDSMDC.LOG and IDSMDC.DB

SEV=4 AUTH/28 disconnected: Reason: Lost Service

PIX 501 Crashes

routing VPN traffic through PIX from Netscreen device

PIX restricted unit to be used as failover with a PIX UR unit

PIX access across WAN

Help with Pix Firewall 515 restricted bundle

Resolved! Is this a Pix issue?

Sig 5237: HTTP Connect tunnel

"Hitless" Pix Upgrade - V7.02 -> 7.11

ERROR after PIX upgrade from 6.3 to 7.0(4)

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Firepower 1010 Interface config to connect vlans to remote switch

Failover license

Cisco Firepower - icmp thru FW, inside to outside interfaces

FTD Back-to-Back VXLAN

HTTP download stops and gives "Network Error" during FTD Failover

Which interface to enable in Passive mode for FTDv for monitoring?

FPR-2110 (ASA-Image): Correct option at image upload?

FTD Firepower 1150 active/standby failover link

Policy Set to block specific IP address after a so many failed logins

Firepower 1120 SSD replacement procedure.