Network Security

I have an internal workstation that needs to be NATed to an address separate from the Internet global pool that needs to communicate over a site-to-site VPN tunnel but still use the Internet global pool when accessing the Internet. The tunnel is crea...

what are the day to day activities of an IDS admin.

Not really sure what the problem is, but guessing it could be bad firmware. It copies from tftp server just fine in boot helper mode, then asks for activation key and boots into the IOS the first time just fine, but on power cycle or reload, it give...

hello experts - perhaps you could shed some light on a question that has popped up. i have a customer with a PIX 501. his original license key allowed him 10 users with AES/3DES and he purchased an upgrade to 50 users (PIX-501-SW-10-50) - when he a...

Hi Will the NATing at the Firewall reset the QOS info in the IP header ? As per my understanding it should not. Could someone please confirm this as what is the default behaviour.ThanksAti

I'm using PIX 515E 6.3(4) with 6 FE ports. I'v configured outside, inside and DMZ interfaces. I'm using NAT exemption between Inside and DMZ interface and NAT static translation without changes of IPs. If I make one download from DMZ to Inside (ftp o...

This isn't the normal question about setting up two PIX firewalls in a failover to each other setup.What I would like to know is if the PIX 501 is capable of detecting if the internal server is not responding and, if not, then switching the NAT table...

Salam i want to upgrade 4240 from 4.1 to 5.0 when i am in romon mode and i give ip address to managment Interface of IDS and Tftp Server Address. After giving address i am not able to ping in romon mode to tftp server. i have use cross cable between...

I would like an explanation of the upgrade process from a Cisco 4215 IDS sensor to the IPS 5.0 capabilities. Does it require extra hardware?

I am trying to upgrade a pix to 6.3(4) and was unsure of how to copy the image from a remote site to the firewall. I can access the firewall but only from the remote site core switch. someone mentioned copying the image via tftp through the core swit...

Hi! Anybody here know's how to block yahoo messanger on pix firewall 506e. I try to do port blocking but it did not work. those ports are 5000, 5050 etc. any help is greately appreciated.Thanks,Jeric

Hi!!Now I'm just testing the PIX v7.0.but once I type the "mode multiple" andPIX is reloaded,the configurations about ip and Firewall policy are all refused.Is any lisence required for the "Security Context" ?Is some action needed to activate it ??Do...

In the ISA server network environment, where can we place the pix whether infront of ISA or Behind the ISA server.Thanksswamy

I got a PIX 506e. With LAN IP subnet of 10.2.1.105. Default route to internet. All my PC point it as a default gateway. Now, I have another router with IP 10.2.1.1 which connected to remote network of 192.1.1.0. I added a route inside 192.1.1.0 255....

The intent is to only see this alert when the source is my IP space. Is it possible to create 2 seperate event filters for this sig? I'd like one sig to filter events when my IP space when it is the destination and the other would allow alerts when m...