Hello,There is a "show running-config all" command, which allow you to see default parameters of all features on ASA/PixDoes the Cisco IOS have the similar command?
Hello,I have some questions related ACSThere are several products1.The Cisco Secure Access Control Server (ACS) Solution Engine2.Cisco Secure Access Control Server for Windows3.Cisco Secure ACS Express 5.0The only difference between the Solution Engi...
Hello,Scenario2 networksoutside network ANYinside network 192.168.1.0How can i simulate the work of AIP-SSM to be at behind of firewall?My version.access-list test extended permit ip any 192.168.1.0 255.255.255.0class-map testmatch access-group name...
Hello,I have downloaded:1.IPS-SSM-K9-sys-1.1-a-6.0-3-E1.img2.IPS-K9-6.0-3-E1.pkgBut managed to install only second one.For fist one it said that it was a wrong image.Has anybody know why?
Hi Marcabal,Thanks for your detailed answer.Your post is very helpful for understanding some key concepts.The one thing from your post confused me a little bit is:VPN scenario:"The packets from the server will be checked against ACLS, AND decrypted ...
Hi,Thanks for your reply.From your post i understood.Let's imagine ASA has 2 interfaces.Inside and Outsideclass-map testmatch anypolicy-map testclass testips inline fail-openservice-policy interface xxxxxPackets would be analyzed in both direction(in...
No. I don't. Forget about Nat acl. (It has already been done)As we know IPS Appliance can be installed before or after firewall.In case of Cisco IPS 42xx series we can install it physically before or after firewall.My question was how can it be done ...
