Our vulnerability assessment has shown that we are potentially vulnerable to Layer 7 DoS attacks like slow http post (http://tinyurl.com/3l4fnjg) or slow http headers (http://tinyurl.com/lgph8j). I'm wondering if there is anything we can do at the A...
We're trying to send VPN users through our Ironport proxy when they're connected to the VPN on an ASA. They're not split tunneled, so internet browsing already goes through the VPN, but it seems like it's taking the default route on the outside inte...
Does anyone know how to block cloud-based storage sites such as dropbox, sugarsync, amazon, etc.? We don't necessarily want to block all file uploads, though.
I'm having an issue where our syslog server does not appear to be getting all of the data that we expect it to get from a couple of our ASA's. The ASA's that are syslogging properly show "Current 0 msg on queue, 512 msgs most on queue" while the pro...
We recently stopped receiving netflow from one of our devices after it had been rebooted. The configuration was written before the reload and the config still looks correct. A debug ip flow export shows:010023: *Oct 22 10:17:43.230 CDT: IPFLOW: Sen...
Does "no names" only affect logging data, or does it get rid of names in ASDM as well? We use names extensively in our configs and it makes administering with ASDM considerably easier. We're worried that if we issue the command, it will make it mor...
We found the option to add a "tunneled" route in ASDM, which says it's the default gateway for VPN Clients. Does anyone know if adding this route would resolve my issue? route inside 0.0.0.0 0.0.0.0 10.9.9.254 tunneledAlso, does anyone know if this...
