Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Please can anyone on this list tell me if there are any signatures to capture “HTTP REQUEST SMUGGLING”URL: www.watchfire.com/resources/HTTP-Request-Smuggling.pdf
Hello I have a Cisco PIX 515e (software v. 6.3(4)), and Windows 2000 with WinRadius, providing authentication for incoming VPN connections, This works well for general users. However, I have a group of users who need to be assigned static IPs when...
Hi, I have setup vpn on my pix using xauth through radius by way of IAS on our w2k3 server. The problem i am having is that i cannot log in with vpn client using any of the accounts in active directory. I have setup the radius client in ias and set t...
Greetings All,I have configured a few of our Cisco2651 routers for CW2000,but the problem is that once discovered they are shown as CiscoProducts.471 not as normal routers I have tried searching on the Internet to find what’s causing it but no luck a...
Hello,I have a client who has a cable modem with a dynamic ip. Currently checkpoint does not support remote vpntunnels over daip (with r60 they now support site to site though).Cisco can support client to site vpn's over daip so what I would like to...
Hi I have a problem with NATing and Pix. I have a Linux machine doing mail scanning on the inside network. I am forwarding all mail on port 25 to this machine. However this machine is also acting as a firewall for another internet connection and is ...
I have CiscoWorks VMS setup to auto download new IDS signature files, this works great, however is there a way I can have those signatures automatically installed to my sensors?
Hello, I am trying to access a PcAnywhere host on the internet from a pc behind a 506E. The host is known good. I have added the following to the PIX to allow traffic for PcAnywhere:access-list inside_access_in permit tcp any anyaccess-list inside...
I'm using a PIX 515E firewall to protect two of my servers, with another server in the DMZ acting as a web server. However, I can't seem to communicate between the web server and anything else. I've permitted ICMP traffic for all interfaces, so pin...
Hi,I cant seem to create a static nat rule on the concentrator that works, need to create a static nat that all the vpn tunnels could connect to and be translated to an ip that is located on the same lan as the concentrator.Seems easy enough, NAT rul...
Hi,My provider gives me a pair of router for Internet Access. The 2 routers are running HSRP. Behind the routers I have a PIX firewall. I also have /28 public subnet.I have no problem to access Internet but I have problem with incoming traffic. For e...
Can anyone show me where to find a sample configuration for PIX 515E 6.3? Required:static routesNATDMZ with DNS serverFailover is configured, and appears to be working fine
I have recently installed 2 scanning machines on my network and am wondering what the best approach would be for ignoring the IDS alarms that they set off.I am using VMS to view events from a number of sensors, it is set to view 50k events by default...
Hi!I have installed IDSM-2(5.0) in 6509 chassis.Before, using IEV in 4.0, it was very useful to monitor realtime traffic and matched signature.But I found that IEV no long supports realtime monitoring in 5.0, especially inline mode.Also IDM doesn't w...
