I've IOS firewall configured on one of my 2921 cisco router, (my current internet traffic is destination to a wan proxy) and i've using the inspect command to enable DPI and to track the sessions, and the configuration details are as follows,
Router(config)# class-map type inspect match-any All_ProtocolsRouter(config-cmap)# match protocol tcpRouter(config-cmap)# match protocol udpRouter(config-cmap)# match protocol icmp
and I'm using zone pairs as trusted and internet,
policy-map type inspect Trusted
policy-map type inspect Trusted_to_Internet
class type inspect All_Protocols
how my problem is the IOS firewall blocks certain return traffic particularly when certain websites accept the request on one IP address and send the reply via another IP address due to the IOS firewall's basic behaviour, and what I want to know is, is it possible to allow the return traffic coming from the wan proxy ip via on the IOS firewall, or is there any other alternatives avialble to achieve the same? Please advise.
Looks like the traffic pattern we are seeing here does not seems the appropiate to a FW due to the fact that traffic that is not being expected is being received..
For that the only way to make it happen across the Firewall is basically bypass the security policy using a PASS action on both zone-pairs (From trusted to internet and Internet to trusted) but only matching the specitic traffic so the rest of the traffic can still be secured!
We have the Endpoint purge to delete any thing over 365 days, but this wasn't working as standard since in was installedSo disabled and enabled again and this seem to fix it, as had just under 200k endpoints captured. But it removed all clients that ...
When we unregister FTD from FMC and re-register, all the static routes are lost on it. Sometimes device has database corruption, if re-image is the only solution then upon re-image, FTD comes up fresh and we need to configure everything from scra...
Hi,I have a very simple question; we have two ASA 5585-X working in Active/Standby Mode with multiuser Contexts.Normally Primary Unit is active for failover group 1 and 2; Secondary Unit is standby !At the moment our Secondary Unit is completely disconnec...
Meet the Authors Event - CCIE Security and Practical Applications in Today’s Network: Zero Trust
(Live event – Thursday, 29th, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 6:00 p.m. Paris)
This event will have place on Thursday 29th, October 2020 at 1...
My company uses Microsoft Azure AD, and I sign into all my applications using that account. Can I use that account when I sign in?
Yes - all applications that support SecureX sign-on allow direct login with your Microsoft Azure AD accou...