About brianhill88

brianhill88 · 03-17-2014

Hello,I see that with threat-detection enabled and configured, I can use the "threat-detection scanning-threat shun duration [time in seconds]" to shun IPs that are scanning for open ports.Is there a way to shun syn-attacks that I have a threshold se...

brianhill88 · 02-10-2014

Hello,Some of our web devs want to start using websockets. We are using Ironport S670's running 7.5.2. I enabled HTTP Connect ports under Protocol Controls under the default policy so that it works. My question is do the Ironport's have insight in...

brianhill88 · 04-30-2013

Hello,Let's say I have two switches (switch A and B). Switch A currently has VTP enabled and is mode server. It has VLANs 1 to 50. Switch B is not currently VTP enabled but has VLANs 1 to 10 manually created. There are active hosts in VLANs 2-10 ...

brianhill88 · 04-03-2013

Hello,We currently have an existing 6506 in data center that we want to add another 6506 to and do a VSS implementation.I'm trying to minimize down time so our current basic plan was to do the following:1. Bring up the new 6506 and configure it for V...

brianhill88 · 04-04-2012

Hello,We recently attempted an upgrade from 8.2.3 to 8.4.3 and one of the issues we experienced was an issue with traceroute through the firewall. Instead of the normal traceroute output, each hop is the same IP. But the traceroute completes succes...

brianhill88 · 03-20-2014

The answer to this is you can not. At least not in this way.What you can do is create a policy-map on the outside interface (or add a class-map if you already have an existing policy-map on the outside) and under connection settings limit the amount...

When you go to dynamic access · 03-20-2014

When you go to dynamic access policies in ASDM is your NoVPN ACL at the top of the list (highest ACL priority)? These get processed in order and if your user is in both groups the first will be taken and the rest ignored.Also, is your default policy...

What do you have under the · 03-17-2014

What do you have under the Network ACL Filters (client) tab? Did you create an deny any any ACL under the ACL Manager and then Add that to this profile under the Network ACL Filters tab?

brianhill88 · 02-11-2014

I have the answer to this. The data is completely obscured.Exerpt from a PDF on HTTP Connect (Method the Web Socket is initiated with) that I received from our rep:Please also note that WSA would not understand the protocol which is being used under ...

brianhill88 · 05-01-2013

Hello,I setup a test environment consisting of a 3750 and a 3560. The 3750 was setup as VTP Server with VLANs 1 -10. It had one laptop in VLAN 5. The 3560 was setup with no VTP and VLANs 1-5 created manually. The 3560 also had a laptop setup in VL...

Member Since	‎05-04-2009 05:18 PM
Date Last Visited	‎08-21-2024 07:38 PM
Posts	52
Total Helpful Votes Received	15

User Statistics

User Activity

ASA 5585 - Can I shun syn attacks as well as scanning threats?

Websockets - Is the data observable by the ironport

VTP overwrite question - Does it affect active links

Staged VSS deployment upgrade

ASA 8.4.3 - Traceroute returns same hop throughout

The answer to this is you can

When you go to dynamic access

What do you have under the

Websockets - Is the data observable by the ironport

VTP overwrite question - Does it affect active links