Network Security

Dear All,Can we filter Application level traffic coming from ISA server ,going to Internet through PIX firewall ??Layer 3/4 traffic can be controlled using Access-list. Is there any other way to control HTTP tunneling through PIX ???Thanx

If you have the time, I would like to run a problem past u that I am sure there is an easy answer to, but I keep running into a major brick wall, every way I go. It basically has to do with changing to a new ISPand new T1, losing the IP block, moving...

How do I define what DNS servers my PIX will use to lookup hostnames? For example, if I want to ping google.com rather then it's IP address I can type 'ping google.com' and it'll resolve it using DNS.-ee99ee

HI,I want to know-Can a PIX 520 Working with PIX 515 in statefull failover-If answer to before question is YES, what are system and software requerimients for do this ?Thanks

My customer have pb with mail which have attachment.Since Pix was installed,mail with attachment do not go throught the PIX.I want to know if the Pix 515 is responsible for this situation ?

Does anyone knows what would happen if a forged ICMP echo reply packet coming from the Internet to a inside host hit the outside interface of the Pix?.The inside host is static translated on the pix. And an ACL which permits ICMP echo-reply, time-exc...

Ladies and Gentlemen, Apparently there is no FIX for this Problem(s). However, If one of you CISCO Ladies or Gentlemen can Figure this out, Please let me know Soonest... Thank You in advance.I have a PIX 5 15 w/failover. On one of my Networks, I h...

I have a PIX 6.2 with 6 interfaces and VPN client 3.0. I have configured the firewall to permit a VPN connection using the following confaccess-list 100 permit ip x.x.x.x 255.255.255.0 y.y.y.y 255.255.255.0nat (dmz2) 0 access-list 100sysopt connectio...

I have configurated my pix 515 (ver. 6.22) to logging to my webtrend servereverything seems ok ,the logging level is debuggingbut something wrongall my hosts on inside can not use DNS to reslove DNS (port 53 )name to access the internet , my network ...

I want to protect an existing internal network. Can the inside and outside interfaces addresses be on the same subnet. I want to avoid creating more subnets. Thanks

Okay this question is kind of a double-shot. One thing you need to know before you read this is that my background is iptables on Linux.Now, question 1: Let's say I've got a 3-interface firewall, one external interface, one DMZ, and one private LAN. ...

Hi,I've a numerous ISDN users dialing to a Cisco1720 router which is connected to a Pix525 one of the ethernet port to access one of the zone secured by the Pix. I'm able to dial-in and get an IP address from the router but cannot access other zone, ...