Network Security

Hello,I must change a 2610 router (using to interconnect VLAN) by a PIX Firewall 525.Then the technical support can better manage VLAN with the PIX PDM than CLI IOS.I cannot find a lot of information on how to configure PIX ver 6.3 and VLAN.But i hav...

All -->My goal? To redirect web traffic directed to the default 'www' port, to port 8080 on the web server in the DMZ.Below are the relevant command sets...static (DMZ,outside) tcp xx.xxx.xx.155 www 172.16.128.8 8080 netmask 255.255.255.255 0 0access...

We just upgraded a 4235 sensor to IPS 5.0. I can only access it via https on one machine. On every other machine I go to I have the same problem. I open up a browser and type in the URL. I get prompted a couple of times about a certificate and I ...

Hi, I have a strange problem since few week. We have started our Webvpn service. I have configured two groups in VPN called students and staff. Same groups I have configured in ACS 3.2 with the IETF attributes No 25 is set OU=groupname;. Both of our ...

Hicant figure it out what I´m doing wrong ....Cant get the inside net to go out on the internet please check myconfig.it works if I add this to the config."access-list outside_access_in permit ip any any"but isnt that dangerus ?what do I need to do t...

I am having troubles in getting passive ftp to work through my pix. I have no troubles with normal ftp but the second I try to use passive ftp the connection never gets established. What happens if I just use the "fixup protocol ftp" command instead ...

Scenario: Local lan 10.1.1.0 with subnets 10.1.2.0 and 10.1.3.0 (those two are voip system). Also, internal router (2511) for 10.2.4.0 (remote office runs our apps and we run theirs). But we get our web access from our default gateway: the pix 501.I ...

Can rip be used on a pix 501? I was told via a cisco tac engineer that pix 501 cannot route.

Hi We install a microsoft ISA server in the dmz for exchange server security. where can find document about ISA in the dmz setup?Thanksben

I have a group defined for internal Hosts:object-group network Dep_RH_Hosts network-object host 10.195.190.2 network-object host 10.195.190.5 network-object host 10.195.190.8... (plus 32 hosts)I have too a group for external IP addresses:object-gr...

We've been experiencing some false-positives with the Cursor/Icon File Format Buffer Overflow (SigID 5442) signature.We've had some instances where the alarm has fired on a string containing ".ani", but not at all related to a file of this type.Here'...

As demonstrated by attached screenshot, NSDB details for SigID 5489 state that this signature was released in version S164.IIRC, this signature was in fact the only new one made available via S165.Can this be corrected, assuming I'm right?Thanks in a...

Hisince V5 now is availablewhen 4.X will be EOL ?i didnt see it in CCO end of sale announcementthanks for any advanceJYP

Hi,I am new to PIX.Pls find the attached setup diagram and configuration.Customer using ADSL modem and Linksys router.ISP have given two IP address(200.a.b.c for mail.xyz.com) and 200.x.y.z public IP on PIX external interface for outgoing traffic.The...

I've installed the Hp Openview NNM on the DMZ of a PIX 515E in order to supervise my inside,DMZ and outside network. But, I did'nt manage to access to the inside network since I can't ping the inside machines from the DMZ. Of course, I can ping the i...