Cisco Firewall :: Websense PIX 515 Configuration Required

Jun 6, 2012

We have purchased a new Websense 10000 Appliance and I'm not a hundred percent how to set this up. I see that URL Filtering is a possibility and WCCP, which way to move forward on implementing this?

View 4 Replies


ADVERTISEMENT

Cisco Switching/Routing :: 3750 - SPAN Configuration For Websense

Jul 3, 2012

I have configured SPAN in cisco 3750 switch as below mentioned. but the destination port protocol is down.
 
Network Diagram:
 
switch(config)#monitor session 1 source interface gigabitethernet1/0/1switch(config)#monitor session 1 destination interface gigabitethernet1/0/11 ingress vlan 1

[Code]....

View 8 Replies View Related

Cisco Firewall :: Pix 515 Configuration Required

Oct 18, 2011

I am very confused on how I setup a Pix 515 that I just got to route traffic out a cable modem. First, let me give you a little details on my current network setup and what I am trying to accomplish with this Pix 515. Currently all my users go out the proxy for any internet access, however I have certain users that need to go out the cable modem instead of the proxy server. Below is an example of the current IP setup of a user A:The cable modem that we currently have has DHCP so I would need the external PIX address to accept a DHCP address. I also don't really understand what else I need to setup so if I have say four users hitting the cable modem through the pix how do I direct their web traffic to the correct computer (NAT ?),I will be plugging the PIX into a cisco switch that all ports are in VLAN 48 so hopefully a static internal address on the pix of 10.24.48.254 will keep me from having to do any routes since all traffic will be originating from the 10.24.48.0 network.

View 1 Replies View Related

Cisco Firewall :: Configuration Required For Transparent Firewall ASA 8.2?

Mar 31, 2013

I have one firewall need to be configured in transparent mode. I have inside and outside router. What is the configuration of transparent firewall ASA8.2. I didn't find the configuration on Cisco site.

View 17 Replies View Related

Cisco WAN :: 520 Basic Firewall Configuration With DMZ Required

Apr 19, 2011

I am trying to set up my Cisco 520 router with a firewall that will: Allow port 80 traffic to the vlan 20,Block all other incomming ports to vlan 20 (unless initalised from inside),Allow all outgoing ports on vlan 20,Block all access from vlan 20 to vlan 10 (unless initalised from vlan 10)

View 35 Replies View Related

Cisco Firewall :: ASA 5505 Configuration Required

Apr 29, 2013

I have a problem with the configuration of the ACL of my ASA 5505 router.However, the syntax seems okay,access-list 121 extended deny icmp 192.168.0.0 255.255.255.0 .

View 3 Replies View Related

Cisco Firewall :: ASA 5510 Dual ISP Configuration Required

Jul 13, 2011

I have existing Sonic FW in my company we are moving from sonic FW to ASA 5510 Security plus lice. I have two ISP currently connected to sonic Firewall I am planning to implement Dual ISP configuration on ASA5510.

View 12 Replies View Related

Cisco Firewall :: IOS Zone Based Firewall Websense URL Filtering Feature On 881G

Jul 27, 2011

I've been trying to configured Websense urlfiltering using ZFW feature on my Cisco 881G router. The router is running on IOS 15.0(1)M with Advanced IP Services. And I have confirmed it supports urlfilter feature.
 
This is what I tried to accomplish but IOS version 15.0x seems to have different command set.
-----------------------
class-map type inspect httptraffic
match protocol http
parameter-map type urlfilter param
server vendor websense 10.20.30.40
[Code]...

View 2 Replies View Related

Cisco Firewall :: ASA 5520 SSL VPN LDAP Authentication Configuration Required

Oct 16, 2012

I've gotten to the point where I can test against active directory and get in, also I can get AD groups from my server on the ASA. My problem, I can't connect in via my AnyConnect client on my Android. I immediately get a "log in failed" and I know I'm using the right username/pass. Doing a little troubleshooting, I have attached my AnyConnect debug log and the results of the "debug ldap 255" command on the ASA. Also, I've used ldp.exe to determine I can connect in with the username/password combo I'm using.Combing through the AnyConnect logs I see a few instances of "global error unexpected" but no Google searches have brought up anything useful.

View 7 Replies View Related

Cisco Firewall :: ASA5585 WCCP-GRE Redirection To Websense Times Out?

Dec 9, 2012

I have a ASA5585 running 8.4 that is redirecting Internet http to a websense server via GRE.The integration is working fine, except when a user PC sends a large packet (~1500 bytes).With WCCP/GRE headers, the user packet is too large to be transmitted to websense, so the ASA fragments the packet in two and transmits both to websense.
 
A sniffer trace confirms that both fragments reach the websense server, but the TCP packet is never acknowledged.User-side TCP retransmits the large packet three times over 15 seconds, and eventually retransmits fine with smaller packets.  The 15 second delay is of course not acceptable.Users and Websense server are both on the Inside interface.
 
We are considering imposing browser proxy to websense (which works fine), but would prefer not, considering the increasing diversity of devices.

View 4 Replies View Related

Cisco Firewall :: 2851 - Unable To Filter Https Traffic With Router And Websense

May 25, 2011

I am having a setup with a 2851 router & websense url filtering server where I need to forward the traffic to websense server for all the internet requests. The http traffic is getting filtered properly, but the https traffic is not getting filtered. The two commands I ahev given for http & http are as follows: ip inspect name test http urlfilter ip inspect name test https.

View 9 Replies View Related

Cisco Wireless :: AP 1142N-K9 Configuration Required

Feb 9, 2012

How can I have access to the cisco "AP#" prompt? When I try to acees the AP through hyperterminal, it gives me the attached messages. The message keeps looping and not letting me access the AP# command prompt to assign an IP address so that I can control it in mode HTTP.

View 2 Replies View Related

Cisco WAN :: 2921 Router - Configuration Required As NAT / PAT Gateway

Jan 14, 2013

I have a Cisco 2921 Router,with 3 giga interfacesi have a leased line for the internet with a public ip address and i want to configure this router as NAT /PAT gateway, so that users in my network can ue the internet by the router,my wan interface is g0/0 - ip 122.xx.xx.xx lan is g 0/1 -- 192.168.1.1 /24 . i have tried doing nat once but i was not able to make the wan port up.using cisco CP when i test the interface it givves error and i dont get internet to my users.

View 10 Replies View Related

Cisco WAN :: 2600 Sample Subnet Configuration Required

Sep 5, 2012

I have a /25 block of public ips from my ISP which I'd like to subnet into two /26  blocks. I have a Cisco 2600 with 2 ethernet ports in it. What are the commands I'd need to take my 200.180.200.0  255.255.255.128, gateway 200.180.200.1 and turn it into 200.180.200.0  255.255.255.192, gateway 200.180.200.1 and 200.180.200.64  255.255.255.192, gateway 200.180.200.65? One of the interfaces will be connected to the ISP & the other to a switch, and then we could access the two subnets through the switch.

View 6 Replies View Related

Cisco :: LMS4.1 SNMPV3 Configuration Template Required

Apr 6, 2013

Who can give me a SNMPv3 configuration template.I tried many times has been a problem

View 5 Replies View Related

Cisco Routers :: RV082 Dual WAN Configuration Required

Jun 12, 2012

RV082 configured for Dual WAN [Code]....

(2) identical DSL connections, configured as Static IP (not PPPoE) with modems in bridged mode. Static IP's are /25 subnet and same gateway  ** this may be a problem? Dual WAN set for Load Balance, network service detection is OFF
 
We have a 2003 terminal server running and successfully receiving connections through both WAN connections.  Depending on location, half the users are connecting to WAN1 IP and the other half to WAN2 IP.  We are getting sporadic disconnects of the remote users when they are idle for a couple minutes and automatic reconnection of the session takes over a minute.  If they close the (locked up) session and reconnect manually it will let them in right away. 
 
Could the handling of the Dual-WAN be the culprit?   Could the same gateway for both WAN's create this issue upstream (out of my control)?I am going to move everyone to connecting through WAN1 and then change to Smart Link Backup and see if the issues persist.
 
Another thought is to use a secondary IP on the terminal server and use Protocol Binding to match "All traffic" for IP1 to WAN1 and IP2 to WAN2, which theoretically would stabilize the situation?

View 36 Replies View Related

Cisco Wireless :: 1941W Basic Configuration Required

Apr 22, 2012

I am replacing a cisco linksys router with a 1941w.
 
I have the 0/0 accepting a DHCP from the ISP then I have 0/1 going to a switch and hosting a dhcp server.
 
Where I have an issue is:
 
A) Finding a way to turn on the wireless and make it use the same DHCP as wired and setting up a user name/wep password
 
B) Turning on the GUI that is supposed to be embedded on this.
 
C) Finding a way to make the DNS point to the default gateway so that I don't have to set the address everytime we move the box.
 
Here is my current configuration, and with it I can get onto the wired network and get to the internet.
 
Current configuration : 4712 bytes
!
! No configuration change since last restart
version 15.1
[Code]...

View 6 Replies View Related

Cisco Wireless :: WLC5508 Required For Outdoor Mesh Configuration?

Jan 3, 2012

I want to start implementing a small outdoor mesh network of 3 APs Aironet 1550 in order to grow afterward with more APs. Is there any way to configure those 3 APs in an outdoor mesh configuration (for example, only one RAP and two MAPs) without a Wireless LAN Controller or I have to have at least, one WLC? My idea is to have a WLC 5508, but at the very beginning I don't know if my budget is gonna allow me to cost the WLC.

View 7 Replies View Related

Cisco Wireless :: 6504-E VSS And WLC 5508 Integration Configuration Required

Dec 14, 2012

We have implemented VSS on Cisco 6504-E switches using the 10GE links on the Sup-720-10GE. Two Cisco WLC 5508 controllers are planned to be connected in a LAG configuration, (consisting of eight links per LAG bundle) to each of the  6504-E chassis( Total of four WLC, two for primary and two for secondary). WLC HA feature may be implemented on the primary and secondary WLC controllers using the 7.3 latest code release.

View 9 Replies View Related

Cisco Routers :: SRP527w Static Routes Configuration Required

Feb 20, 2012

We have 2 sites with 2 internet connections at each site. All are SRP527w routers. 1 is for internet and 1 is for a site to site VPN as,Currently we are using Static Routes on the PC's so they can access each server no matter what site they are at. I have looked at using the Static Routes section on the SRP's but cannot get it to work.

View 2 Replies View Related

Cisco Switching/Routing :: 4900M Management Configuration Required

Dec 8, 2011

I am just going to deploy some new 4900Ms for a customer. Want to know if configuring management for 4900 (everything like NTP, AAA, SNMP , DNS ) is doable through management interface in management VRF and there are no caveats to be aware of.

View 1 Replies View Related

Cisco Wireless :: 1200 Connecting Access Point With Configuration Required

Apr 30, 2007

I have a cable broadband installed in my home i just bought cisco 1200 series access point...now how to configure my access point. I believe I have to plugged fastethernet cable coming out of my cable modem to access point after that? What I have to do ....do I have to configure the cable modem as wlel or not???

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 5000 Device Logging Configuration Required

Apr 7, 2013

This is regarding CISCO logging configuration.We palnned to implement enable logging on all the cisco nexus switchs.we are running HP arc sight in our DC this device monitor all the CISCO devices.We want to enable logging with this Arc sight device.Just I would like to know about config commands for Nexus device, what is the command to enable logs which is include "who is login & logout?, interface down information?,who was did conf t ? & every logs"

View 8 Replies View Related

Cisco VPN :: ASA5510 - AnyConnect With Websense Endpoint

Apr 16, 2013

We have about 160 users setup using the Anyconnect client connecting to a ASA 5510. We are using split tunneling and also using the Websense endpoint client. Every now and again after installing the endpoint client we are unable to connect the AnyConnect. It asks for credentials waits for a while and then fails with the error "AnyConnect was not able to establish a connection to the specified secure gateway.Please try again later."

If we uninstall the endpoint client it works again and normally after reinstall it fails again ( I know). Eventually it just works and then its fine.

We have logged a call with websense and sent packet traces of working and none working . Then only thing they came back with is if we filtered the non working trace with port 80 you could see a few RST,ACK coming from the ASA to the client so they blamed the Cisco components.

View 1 Replies View Related

Cisco Firewall :: Is ASA 5510 Firewall Required Any Subscription Or License

Nov 15, 2012

I am quite new to firewall, in my company one asa 5510 firewall is there.I configured inside, outside, dns, dhcp and nating.I need to config bandwidth limit (1Mbps) for inside port and I restruct like facebook, youtube and pornsites..And I heard that some subscription is required, really is it required?

View 1 Replies View Related

Cisco Firewall :: ASA 5500 Ssl Vpn Required

Jun 14, 2011

I have two ASA 5510 with Security Plus license and Shared SSL VPN licensing enabled.

The problem is that the client get “Session could not be established: session limit of 25 reached” but ther is only 6 ssl vpn user connected with AnyConnect.The software on the firewall’s is 8.2(1)Is there any BUG in this software related to this problem?

View 1 Replies View Related

Cisco Firewall :: ASA Software 8.2 And Earlier Required

Jan 10, 2012

I'm in the process of migrating a rather big NAT configuration from a customer running pre 8.2 ASA software.The customer has 2 Dynamic Policy NAT configured which have overlapping source addressesOther Dynamic Policy NAT has the destination address of "any"
 
Other Dynamic Policy NAT has a single host address as destination address towards InternetThe Dynamic Policy NAT configured with the "any" destination is applied to all translations for the source host towards Internet
 
What I'm interested in is the following
 
Since both NAT statements are equal in a sense (because they are of same type) what is the next deciding factor for ASA decides which translation rule to use?
 
Does the "nat_id" parameter define which rule is checked first? Is the NAT rule with the lowest "nat_id" value used regardless what the order of the NAT rules is when you check them on the CLI? (with "show run global" and "show run nat")I'm just interested on how the NAT operates in this case, even though were generally using 8.4 at the moment.

View 6 Replies View Related

Cisco Firewall :: ASA5520 Best Image To Use Required

May 16, 2011

 I upgraded my ASA 5520 with the latest image. Now I get an error upon launching ASDM.Your ASA image has a version number 7.2(4) which is not supported by ASDM 6.4(1), use Device Manager version 5.2(x)Continue Anyway?
 
What are the newest, recomended image versions of ASA and ASDM I should be using?I will also be using the SSM-20 module with this setup, so I would like to stay with a working version of ASDM.

View 1 Replies View Related

Cisco Firewall :: Information Required On ASA5505

Jan 1, 2012

I am looking into buying an ASA5505 but I would like to know if it is going to work in my setup.  I have an Internet connection and 2 seperate networks.  I know that the ASA5505 has 8 ports and I would like to know if I can assign each port to a different network zone?  I dont want to use VLAN but physical networks.  I know it is possible with ASA5510 and above but I want to make sure I can do the same with a ASA5505 (Without the security upgrade).  I want to get an ASA5505 unlimited users. 
 
So an Internet connection (with multiple IPs), 2 seperate networks, I want to filter traffic between all 3 and route between them also.

View 2 Replies View Related

Cisco Firewall :: Memory Required When Upgrading To 8.3 On ASA5520?

Aug 17, 2011

I am looking at upgrading an HA pair of ASA5520's from 8.2(2) to 8.3(1), and am just wondering why the huge upgrade in memory is needed. How are Cisco justifying where the additional memory is going to? Are there supposed to be some massive improvements in performance?

View 2 Replies View Related

Cisco Firewall :: ASA 5501 - Need To Open Required Ports

Nov 27, 2011

I have an ASA 5501 running latest code. Per the article at [URL], I need to open the below ports. I have 5 Xboxes (when people come over) and they all have a static IP. My network is 192.168.0.x and is a /24 network.Xbox LIVE requires the following ports to be open: Port 88 (UDP)Port 3074 (UDP and TCP)Port 53 (UDP and TCP)Port 80 (TCP)port 1863 (UDP and TCP) (Kinnect)  I defined the various network ports as a service and then created 5 hosts called xbox1, 2, etc with a static IP. I dont have access from the command line (forgot telnet and ssh passwords) , so from the gui, what do I do next?

View 7 Replies View Related

Cisco Firewall :: ASA 5505 Dual WAN Settings Required

Feb 27, 2012

I have a 5505 configured with a active/standby dual wan setup using the sla tracked connection settings. Is there a way to configure the ASA to stay on the backup connection after activating? We had a situation where the main T1 was bouncing, so the backup connection was being activated and deactivated very often. The problem is that there is an app being used that does not allow users to reconnect to dropped connections immediately, so every time the asa switches wan connections it causes a significant disruption.I should note that I already set monitor options frequency to 240 seconds. I could set it higher, but then we have a longer delay when the main connection dies.

View 2 Replies View Related

Cisco Firewall :: ASA Trial License 5500 Required

Feb 24, 2011

Is there a Security Plus trial license available for the ASA 5500 series? I currently have one sitting around that I would like to use for testing, but it only has the base license.

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved