Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We run a pair of ASA's with a Botnet license. Recently (like this week) I have been noticing an increase of dynamic filter alerts for IP 65.55.239.168. This is a registered Microsoft IP, which makes me suspect that someone is running possibly a DNS...
I have a 7200VXR running static, eigrp, and ibgp/ebgp. This router has a LAN interface and two serial interfaces each attached to a DS3. I have a route-map that I believe should be using "AND" logic which must match all conditions for the route act...
I have hundreds of IPSec tunnels terminating to (2) ASA 5540's running 8.0(4) code. All IPSec traffic seems to route properly. However recently a server was added to the same network as where the "outside" interface of the ASA's are located. IPSec...
When I checked last, it was out. Then when I got back from lunch, our SIEM product has sent me an email alert of more blocked activity from that IP. Most recent search for the IP as of 1:07 pm central:# dynamic-filter database find 65.55.239.168 65...
Brendan, Thank you for your help to this point. I have verified that my senderbase database is up to date. It has downloaded several times since your last point. Yet I continue to see dynamic filter blocks for this specific IP. I am hesitant ...
Thanks Brendan. I am interested in how they respond. As a side note, what is the best way for me to submit request for IP reputation validation? I have tried in the past to directly contact senderbase support. Once they figured out I was running t...
I have, but the IPSec appliance cannot run BGP. Yes, this scenario is a bit complicated, but gets less each day that passes. By the end of July, this will no longer be an issue and the current PBR will work as designed. I was just trying to find a...
Hey Harold,That makes perfect sense. I tested it in my lab and does work, however I see one issue. There is no built in mechanism for failover for an IPSec network learn via IGP. Failover does still work for BGP. Currently failover works like thi...
