Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello All,Here is my question, according to Cisco all attempted TCP connections that are denied by a ruleset will be dropped (There will be no reply to the initial SYN). I currently have a 515 running version 6.2 configured to deny 5190 traffic on t...
I have a question to the forum,Can you apply security to incoming ipsec traffic once it has been decrypted? I've done some research and can only come to this conclusion, with a LAN to LAN Vpn using the sysopt permit ipsec command you bypass all ACL ...
This will work!, but it is a work around solution. I have pondered doing such a thing but this will break ASA within the firewall and will become an administrative headache., especially when I'm working with large production networks. Ultimately if...
(This applies to ontrack as well)Hmm,Are your crypto access-lists defined like this?access-list 100 permit ip <> <> Or like this?access-list 100 permit ip <> <> My pix is configured with the networks vs the global IP's. If yours are defined like ...
Just curious,1) Will you be running NAT or can you run NAT?If so, your ISP's router should already by adversting its directly connected network therefore, Is it possible you can NAT/PAT all inside networks to the existing address 'you hold' and jus...
