Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
I wanted to get some clarification on the supported signatures for the 4260. I understand that the 4260 is no longer supported and to upgrade to the ASA55xx-x with IPS/IDS module. We are planning to upgrade sometime this year but our custome...
Hello,
I am in need to verify that I have configured our ipsec tunnel to be FIPS compliant. Here is a sample that I created to make sure I am good:
crypto ipsec ikev2 ipsec-proposal testing protocol esp encryption aes-256 aes-192 protocol esp integr...
Hello,
I was curious if ACS version 5.8.1 is affected by this bug. We recently upgraded to 5.8.1 from 5.8.0.32 and wanted to confirm that 5.8.1 is vulnerable or not.
Thanks
Hello,
I saw that they revised the security notice for the SNMP vulnerability and listed the fixed software. I saw that 9.6.1(11) fixes this vulnerability but I only see (10) listed in the software downloads. I also noticed that Cisco has 9.6(2) rele...
Hello,
This may be a dumb question but I am trying to prove to our customer that our ASA 5525-X does not pass traffic when there is a hardware problem or if the firewall were to power off due to some catastrophic event. I planned on just powering dow...
Hello mcvosi,
Not sure if this is still an issue for you or not but what worked for us connecting to our Windows Server 2012 using the RDP client was to use Internet Explorer as I have researched that Java does not jive well with 2012 OS. We used IE ...
Hello,
I am also seeing this with our stacked 3750x devices. I used the command stated earlier and that worked with stopping the logs from reappearing. However, when we test fail over with our stacked switches, the log comes back after rebooting or p...
Thank you both for the feedback. As expected I didn't believe that there was any documentation about this, just that it would be common knowledge that only certain devices would a "fail bypass" function because they are not truly needed for security ...
Thanks for the reply Jason!I was wondering though would a blacklist/whitelist be beneficial since our implementation of the IDS is not inline to the data flow? The IDS implementation that we were approved to do is monitoring a switch port that is is ...
Thanks for the reply to both of you!!!So why did the clear ip arp command work and not the clear arp-cache? Wouldn't the clear arp work as well? To make things more confusing, we did a clear mac-add-table dynamic interface and performed a show mac-...
