Network Security

Hi Folks,I am considering deploying a fail-over firewall pair to include IPS modules on a private network. My hardware is provided through a channel partner; maintenance is provided by another entity - so I don't have direct sight of any support cont...

Hello, I've received a new ASA5550 with version 7.2.4 pre-installed. Now, regarding CSA vulnerabilities published in april (http://www.cisco.com/warp/public/707/cisco-sa-20090408-asa.shtml), should I:1- keep this version 7.2.4 even it it does not fix...

Hi all,I have FWSM in 6500. The FWSM has 10 contexts configured. Can I perform syslog and and backups to a server on a network connected to the Admin context... or do I have to have visibility to my syslog/backup server from all contexts?The way it...

Hi All,I have an ASA with 2 Security Contexts license. I see that I can create two contexts and I will still have the admin context. This mean that I have three contexts? In other words, can I use the admin context as a regular context or is it restr...

Hi All, I just want to know why there's not an option to redirect web traffic to the IronPort WebFiltering appliance from the ASA (like it works with Websense or Smartfilter N2H2). The ASA can specify only those two vendors and not the IronPort (whic...

We use an ASA 5510 as our firewall with a IDS security module. Upon running reports this morning I came across this and I am baffled.Please see attached document.What I want to know is why is it picking up an IP addy of 0.0.0.0 that's hitting our out...

Doing speed tests from speakeasy.net without going through the VPN Client I get roughly 31000kbps / 3500 kbps down/up. VPN connected I roughly get 1500kbps / 1000 kbps. Any ideas why download speeds dramatically drops? I know encryption taxes a par...

Dear All,I am having difficulty looking information regarding upgrade of FWSM. Currently, we have ver 2.3, can I upgrade direct to 4.0 or do I need to upgrade ti 3.0 first? Same for PDM. Can I upgrade to 6.0 direct?

I want to have know which model of ASA has 5 ethernet interfaces not including the management port ? and also How can i use the management port as a port for pass through traffic?

Hi AllI've managed to establish a VPN with another cisco device and can successfully ping a pc on remote end but only if i use command like :ping 3.0.3.242 source 192.168.6.254if i try just a ping from router - no luckif i try to ping from PC on lan ...

Hi Folks,I have a remote access VPN setup on an ASA5510. I am making a connection using Cisco VPN client (5.0.04.300).I am able to make the connection and authenticate, but I am not able to access any of the local resources. I can't ping them or acce...

HiIn case someone has worked on this, please let me know in case any specific changes have to be done at DFM end to forward traps to NNM port 162. Other than adding the NNM IP and port 162 to the SNMP trap notification section. Please guide me throug...

My situation is my customers travel all the time so their ip's are rarely the same unless they are docked at home station. I would like our application to see if they are on an ip that has access and if not to send a request to add their current ip ...

We have our CSC-SSM device configured to append disclaimers to all outgoing messages. Messages that are sent to an external MS Exchange server result in the original message being delivered as an attachment with the disclaimer in the body of the mes...