I have configured service policy rules on my ASA 5545 :
policy-map CONNS class AttackingTraffic inspect http HTTPDOS set connection conn-max 200000 embryonic-conn-max 10000 per-client-max 300 per-client-embryonic-max 20 set connectio...
We have Cisco ASA in production environment on which i see the connection count more than 300000 which is more than usual which we observe.
Kindly let me know is this normal or is there any way to reduce it.
Also if i clear the connection...
Hello All,I have a Cisco Router connected to two ISPs and behind that I have a Cisco ASA connected to internal LAN who access internet.I am trying to block an external public IP on ASA however it does not work as i see logs on the Server from that IP...
I need to know how many access-lists i can apply on the outside interface of ASA.
If only one then i already have a access-list running on my ASA which is:
access-list OUTSIDE-IN-ACL extended permit icmp any any
and i have applied to th...
I tried to run IPS IDM of my ASA 5545 from the inside interface however its not.....its saying "problem loading sensor"
Also i am able to access IPS from the command line but not through the IDM.
Any help would be highly appreciated.
u mean whole configuration of the ASA or just the below one?
CiscoASA# sh run policy-map !policy-map type inspect dns preset_dns_map parameters message-length maximum client auto message-length maximum 512policy-map type inspect http http_...
Thanks for the reply,
In our case we have a Web Server and the number of Active Users accessing the Server simultaneously are around 15-18k...so in that case is it normal to have such connections?
I did cleared the connections however after 15-20 min...
please note i am using Static NAT both on ASA and on Router.
This i guess will do bidirectional natting both for outgoing as well as incoming traffic.
Let me know if this is the case then why i see external IPs in the firewall logs.