Network Security

I have a problem with the setup of a pure Cisco VPNAt one end I have a 1721 router and at the other ends I have two 831 routers.I am using site to site VPN and the good news is both VPN tunnels are up and running. The bad news is that one of the tun...

Help!, can you help me about logging the VPN client username this include when and what time he/she connects via dial-up line.Is this possible?Thanks in advance

Hi I am getting the error message on my PIX firewall.%PIX-4-402101: decaps: rec'd IPSEC packet has invalid spi for destaddr=ip-addr, prot=protocol, spi=spiCan anybody help me how to resolve the isuue.

I currently have a PIX 515E connected to my internal LAN on the Inside interface. The inside interface connects to a 2950 switch that acts as the "core". I am replacing the 2950 with a 4507 and am having problems with the clients on the 4507 connec...

I have two questions, and will appreciate a quick response.I have a VPN 3030 connected on a DMZ Interface via public address. We put the VPN 3030 behind PIX for added security.1) What kind of address translation do I need to allow VPN users coming f...

We currently have a Installation of Ciscoworks Lan that was upgraded to all of the latestest versions(RME 3.5, Common Services SP2, DFM 1.2, CM 3.3) as well as windows 2000 SP4 and all current windows updates. Also all of the Apache and SSL updates w...

Has anybody deployed dmvpn with vrf forwarding?I can not get eigrp working under the address family.For example:interface Tunnel10 ip vrf forwarding SDPI ip address 206.200.167.1 255.255.255.0 no ip redirects ip mtu 1300 ip nhrp map multicast dynamic...

trying to use static (inside,outside) and access list to make use of aditional ip.access-list acl_out permit icmp any any echo-reply access-list acl_out permit icmp any any unreachable access-list acl_out permit icmp any any time-exceeded access-list...

I am having an issue with my pix stopping traffic between inside to DMZ web server. Normally, I can get from an inside computer to the web server in the DMZ. Then all of a sudden it stops. The PC's can no longer get to the web server. I have to g...

Anyone heard of a restricted license on the switch interfaces of a 501? I have a customer that can only access 2 of the 4 switch ports? As far as I know, the 501 only comes with user based licenses. Any ideas?Cisco PIX Firewall Version 6.3(3)134Ci...

HiWe are migrating from Checkpoint to PIX. We have inside, outside, and DMZ interfaces. On the DMZ, we will have web servers with private addresses, the outside world connects to these servers through statics on the PIX.We currently have the CP in pl...

I had enabled timestamp by the follow commands.clock set 14:25:00 apr 1 2000logging timestampbut when i use sh log command to view the log,there is no timestamps:302015: Built inbound UDP connection -540117333 for outside:10.0.0.1/64911(10.1.1.1/6490...

When the secondary is active, the primary answers for the shared mac-address, this should not be the case. The switches get confused and intermitten problems occur. This only happens on the outside interface.Any suggestions

I currently have two problems with my setup. They may be connected but not sure.1. The outside link on the firewall will not reapond to and requests. I know that the exgternal connection is working but nothing is communicating. The internal network i...

I am in the process of setting up VMS and have noticed that with every 'save and deploy' that I do, that all of my Pix's (which run VPN's) are given the following commands:‘no crypto map x interface outside’‘crypto map x 20 set security-association l...