Other Security Subjects

Hi, I have just upgraded the one of our 515Es to V7.0. The problem I'm having is that previously, we had passive connections working (from trusted to DMZ) and now they don't. I have had a play around with the FTP inspection, but it's still not hap...

Hi,I have FWSM with 15 interfaces (vlans). Some of them have same security level and some have different. In my scenario all the users on each interface of FWSM need to communicate with other interfaces of FWSM by keeping the source IP address same. ...

A 1720 running 12.2(11)10T attached to ADSL external Negotiated static IP addres from DSL supplier, Fastethernet internal. NAT from internal to external.CABC configured to inspect all TCP/UDP and GRE traffic from inside to outside as per configuratio...

All of a sudden I am unable to browse to the VPN 3030 concentrator. Unit has been operational for greater than 2 years. I can telnet to the server.Browser error "You are not authorized to view this page" HTTP Error 403-Forbidden. Ther have been n...

Hi everyone;I need a recommendation please;My following connection is a inside router, pix 525, then an external router terminating my serial ISP line. Between my firewall and my outside router, I have a L2 switch. I need to setup a DHCP service so t...

Hello,We are having major permormance problems with the hardware client and a 0,5Mbps connection.Software clients and 0,5Mbps works fine, but with the hardware client it is so slow that we cant make it work.Any suggestions?Kind regards,Rutger

Hi Sir,Referring to attached network diagram, the first diagram represents existing PIX connections on my network. Both PIX firewalls have their "inside" networks on shared VLAN2 facing the MSFC.The second diagram represents the equivalent network by...

Hello,What is better to use to autorize traffic from DMZ to inside.1) Static on same IP : Like this static (inside,dmz) 192.168.100.0 192.168.100.0 netmask 255.255.255.0 2) Or Static with address translationI have a Web server on DMZ and must reach a...

Inbound is working fine. I want to give the laddr a designated fixed gaddr for outbound smtp.Current static and related config as follows:static (inside,outside) tcp <gaddr> smtp <laddr> smtp netmask 255.255.255.255 0 0access-list 110 permit tcp hos...

My FWSM is 2.2.1.10 version ，It's works normal ，for security issuen ，I just configure AAA Authtication through ACS Server ，I found I can authentication successful ，then I configure authorization ，When i input "aaa authorization command TACSERVER" com...

What are the risk of using ports 1-12 on a 3550 for your DMZ network and using port 13-24 on the same 3550 for public network. port 1-12 will be vlan 222 ports 13-24 will be vlan 333. NO routing no telnet no vlan interface on switch. just layer 2 vla...

Hi,Is it possible to use your own CA for generating the VMS SSL certificate ? Would this effect the existing CSA MC setup ?Regards \\ Naman

Hi,Is anyone tell me how log and see all traffic which's PIX's blocked ?I see deny traffic but it is limited. Do i have to add all hosts or networks what i want to trace ?Ertunc

We deploy some of our 3002 with individual user authenication active. The users would connect to the 3002 and launch their IE and the connection status page would automatically pull up for them to log in. We recently upgraded our 3002 hardware clie...