Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I see that with threat-detection enabled and configured, I can use the "threat-detection scanning-threat shun duration [time in seconds]" to shun IPs that are scanning for open ports.Is there a way to shun syn-attacks that I have a threshold se...
Hello,Some of our web devs want to start using websockets. We are using Ironport S670's running 7.5.2. I enabled HTTP Connect ports under Protocol Controls under the default policy so that it works. My question is do the Ironport's have insight in...
Hello,Let's say I have two switches (switch A and B). Switch A currently has VTP enabled and is mode server. It has VLANs 1 to 50. Switch B is not currently VTP enabled but has VLANs 1 to 10 manually created. There are active hosts in VLANs 2-10 ...
Hello,We currently have an existing 6506 in data center that we want to add another 6506 to and do a VSS implementation.I'm trying to minimize down time so our current basic plan was to do the following:1. Bring up the new 6506 and configure it for V...
Hello,We recently attempted an upgrade from 8.2.3 to 8.4.3 and one of the issues we experienced was an issue with traceroute through the firewall. Instead of the normal traceroute output, each hop is the same IP. But the traceroute completes succes...
The answer to this is you can not. At least not in this way.What you can do is create a policy-map on the outside interface (or add a class-map if you already have an existing policy-map on the outside) and under connection settings limit the amount...
When you go to dynamic access policies in ASDM is your NoVPN ACL at the top of the list (highest ACL priority)? These get processed in order and if your user is in both groups the first will be taken and the rest ignored.Also, is your default policy...
What do you have under the Network ACL Filters (client) tab? Did you create an deny any any ACL under the ACL Manager and then Add that to this profile under the Network ACL Filters tab?
I have the answer to this. The data is completely obscured.Exerpt from a PDF on HTTP Connect (Method the Web Socket is initiated with) that I received from our rep:Please also note that WSA would not understand the protocol which is being used under ...
Hello,I setup a test environment consisting of a 3750 and a 3560. The 3750 was setup as VTP Server with VLANs 1 -10. It had one laptop in VLAN 5. The 3560 was setup with no VTP and VLANs 1-5 created manually. The 3560 also had a laptop setup in VL...
