W are running an ASA 5540 failover pair with SSM-40 modules. When using the IME version 7.0.2 to manage the IPS we have not been successful in getting anything to work but "Deny Attacker Inline." Nothing else works. We have tried every option unde...
WE have our PIX version 7.2(2) using http inspection and set to drop protocol violations. The problem is, that it drops the Microsoft Updates. Anybody have an idea how to allow the MS Updates to work while still using the inspect http policy.
Has anyone else seen a problem with the Cisco VPN client versions 4.8 and 5.0. We have always used the NAT-T successfully. After upgrading to version 4.8 and 5.0 the UDP connections no longer work. TCP works but UDP doesn't. All of the previos older ...
We use split tunneling and policy push the Cisco integrated firewall to the clients. What we noticed is that people using VNC and terminal services can hit the VPN client computer remotely and then bring up a tunnel. We thought the default action of...
We have had and still have problems with it too. We were elated when CiscoFINALLY added the signatures to the IPS. Of course, then we found out it didn't work. The IPS doesn't see it.Hopefully, Cisco will fix this for its customer base.
The IPS sees the event and logs it, the action selected doesn't work other than the "Deny Attacker." We would like to have the IPS just stop the event, but that is the problem. We have used ASDM and IME latest versions. The IPS has the latest vers...