Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have pix 515E with FOS ver 7 .We would like to know how to ping the outside interface from a host on the insideThere is NO nat-control and even after we gave icmp permit any any on the outside interface and inside interface the inside hosts whose ...
With ASA now supporting OSPF over ipsec and RRI featurs is it possible to failover a VPN between two peers to another IPSEC tunnel using same peers BUT diff routable ipsANy pointers appreciated
Hi All,We have ASA which has default service policies .Most of our SMTP mails bounce due to ESMTP inspection.Pls let us know how can we disable only the default ESMTP in default service policy and how can SMTP mails be passed thru an ASA without any ...
Can anyone throw some light on the interaction between1)ACE loggingand2)Global logging trapIf i have logging trap warning and alos have log keyword in one of my ACE what will be interaction.Will one override the other Pointers appreciated
WE have a pix 515 running Ver 7 Fos standalone .We would like to understand what are the methods/best practices available to test the PIXs availability1)Snmp traps2)Mail alerts3)Snmp polling4)Icmp pollingWe would like to know which of the above would...
Hi we suspect the PIX ASA does not allow ESMTP verb "8 bit mime"250-8bitmime .ANy ideas how to let this pass thru ASA ESMTP inspection ???Is there anyway to capture the same and find out if its the ASA which is actually causing the problem??
SO i understand there is no interaction between the two and that i would have to have global trap at 6 ...so then why would i have to do an ACE logging cos the global trap 6 would anyways send the same to destination syslog if configured.In summary w...
Hi,Thanks for the reply...my query was from a perspective of a syslog server1. In an active standby scenario....what wud be the traffic flowing thru standby....?? for itto syslog2 If its not that is it just that duplicate logs are sent from both act...
WEll i could do the same thing with a policy based NAT on the pix and provided NAT happens before VPN i could put the source ip as the NAtted ip in the crypto access listfor ex:NAT(inside) 3 acl source detination peer domainGlobal(outside)3 Natted ip...
Is the same infomation possible from a webtrends after setting logging in the pix to informational???I would like to pull other reports from pix other than VPN connection
