Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is it possible to get NCM to backup the firewall and all its contexts via access through the admin context? So far Ive only been able to backup just the admin context and cant find documentation that says it can do the other contexts and how to do it...
Hi Im having problems with updating the signatures on the IDSM2. I keep getting the following error. The ftp site does work because Ive redone the application partition using this site.sensorA(config)# upgrade ftp://jerry@192.168.198.191/users/jerry/...
I have the following problem with the way the pix authentication works . It only maps a username to a ip address. The pix only authenticates machines and not users. This is a problem because if you have 50 users who use a terminal server like win2k o...
I have my firewalls installed with ver 6.1(1) and I dont use pdm to manage them. I have also disabled logging history debugging. All works fine until the firewall is rebooted ( ie for software upgrades or whatever). After the reboot I find that the l...
There seems to be a problem with the lastest sig update file for the IDSM.WARNING: Installing Signature Update will temporally disable IDS.Continue with IDS Signature Update install?: yesEnter the FTP user password: ******Connecting to site...Receiv...
Hi Thanks for the reply. This still doesnt answer how to do this using ncm. You cannot log directly into the system context as far as I can see. Any documentation showing how this is done using NCM would be useful.ThanksJerry
Have you tried to block the server login.icq.com on all ports? For users to be able to use ICQ they have to authenticate to the login server for their status to be known to other users
I am currently using AAA with tacacs. This still wont solve the problem. There is a fundamental flaw in the authentication system on the pix which wont allow for multiple users being authenticated all coming from 1 ip address.
I would agree but our clients outsourced the security to us and dont have the skills or dont want to do it this way. So Im going to have to wait for Cisco to fix the problem and possibly loose a few clients.
