Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am currently running an IDS-4235 Build Version: 5.1(4)S271.0. I need to create a custom signature that will alert when it detects social security numbers passing in the clear.Can anyone lend a hand on how to create this signature or point me to an...
I need to pass IPSec between two servers that are separated by our PIX 535. Can someone outline for me what needs to be configured for this to work properly?
We are currently using Windows XP SP2 machines with Microsoft Virtual PC installed and CSA running. When CSA is installed, IE will repeatedly crash at random intervals. When CSI is not installed, the crashing stops. There is nothing in the CSA log...
Early this morning, one of our applications which communicates across the firewall stopped working. As it turned out, the ACL that was in place specifically allowing that app. to communicate was no longer present on the firewall.After peeling throug...
Ok. I've found another disappearing act. One of our static NAT translations has also disappeared. It looks like it left around the same time as the ACL.
Our access lists are huge, but this is the only line I can find that has disappeared. I would say there is a decent possibility that something else has gone missing and we just haven't noticed it yet considering the size of the lists.Here's the actu...
It turns out that Trend Micro introduced a firewall in with their scan engine during one of their recent updates. It was this firewall that was blocking all TCP/UDP traffic through the VPN interface.
I've done that. When I do a show ntp association it shows the ip of the server by no address for its ref clock. It also states that it is configured, insane, invalid, unsynced, There has to be something I'm missing.
Unfortunately, this type of connection is being dictated to us by our customers and the option to switch to a different solution isn't available. We do have some sftp implementations in place, and they are certainly prefered.You've guessed correctly...
