Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,Last night and this morning after the latest signature release s472 I have been getting hammered with alerts from this signature - nids http evasion - signature 24339. The description says it fires on the occurence of %3f in the URL. The desc...
I have been tasked with configuring acl's to block a number of countries from accessing a particular site. Is there a way in the asa to filter by country code? If not, I am planning on creating a network object group for these ip addresses. This o...
By default the "HIGHRISK" risk category has a risk range of 90-100. I am attempting to be much more aggressive in proactively stopping potential threats to my network. Has anyone experimented or currently using a wider range with this "HIGHRISK" ra...
I am having an issue with a windows vista ultimate laptop (32bit). I have thevpn client version 5.0.03.0560 installed and using ipsec. The client successfullyconnects and is authenticated. It gets an internal IP address from the vpn ip pool. When...
We are in the beginning stages of looking to implement NAC. Our network consists of 88 locations all on the same LAN. We want to implement OOB however we have run into a snag where there are an average of 20-30 unmanaged switches at each location t...
Most of what I am seeing is the same thing, various websites, searches but most are doubleclick adds.. Attached is the full packet info of the common alert I am getting.
I am acutally investigating the exact same question, so I look forward to any answers that come from this post. Thanks for posting the chart. I see that it is the chart for "Standard" mode, do you happen to have the "Aggressive" mode chart? Or kno...
