Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello, I was wondering if anyone ever tried to make a routing protocol (any routing protocol for that matter) distribute a standby address of hsrp group as a next hop router?I know this is not a regular scenario, and HSRP is not used for such impleme...
Hi, Well, I have this strange problem with 6500 and 4215. Everything works just fine, sensor is blocking and no real problem with that.But, I get high cpu usage on my 6500 device whenever IDS is accessing it for ACL configuration.I tried to sniff on ...
I have 42xx sensor configured to shun on Cat6500. I see telnet connection established on Cat6500, but when I look at "show statistics networkAccess" command, instead of geting state=active, I never pass initialization phase. There are regular shun re...
Hello, I have IDS 4215 and PIX 515 in failover with 7.0 image.IDS is configured for shuning connection on specified signature regarding DNS looping.Everthing works fine, and I get connection shuned on PIX with the following entry: shun (interface) 1....
Hi, I'm having this issue with split-tunneling for VPN client 4.03.part of PIX config:access-li 80 permit ip 192.168.1.0 255.255.255.0 192.168.5.0 255.255.255.0ip local pool vpn 192.168.5.1-192.168.5.200vpngroup remote_access split-tunnel 80VPN clien...
Thanks to you all on your answers.This is something I sure would never thought of using in a real world situation, but rather something I came up to as an interesting problem during my CCIE exam preparation, so I was wondering if there is some clever...
Offcourse, hence the question...But, fot the rest of your answer, I am not sure if I understood the following: "When the packet match the table and forward to the particular subnet and interface. Therefore, it does not require the virtual IP."As far ...
Well, static (dmz, outside) public_ip_of_exchange 10.100.10.101 access-list outside permit tcp any host public_ip_of_exchange eq 25would do If you want to publish some other service (like pop3, nntp or similiar) just add it to an access-list...Also,...
But ftp logins are in clear text. The similiar stands for smb null logins...those signatures are mostly not user adjustible.I suppose you should check with CSA for that.
I'm not sure how you plan to 'sense' login attempts since all are encrypted. (NTLM, Kerberos...)You should rather think of using event loggin on the windows platform itself.Sasa
