Controlling VPN access
Here’s my scenario. I fall under guidelines of HIPPA. I have mobile users using laptops and tablets loaded with Cisco VPN CLient connecting to my Cisco 2811 ISR which functions as my router/firewall/VPN. I am using Micorosoft AD in my domain. To authenticate users to the domain. Is there an easy way to assure that [...]
Answer Question
| February 6, 2007 7:41 AM
Access, Cisco, Desktops, Firewalls, Forensics, Incident response, Intrusion management, Management, Microsoft Windows, Network security, OS, Security, Servers, SQL Server, VPN, Wireless
Here’s my scenario. I fall under guidelines of HIPPA. I have mobile users using laptops and tablets loaded with Cisco VPN CLient connecting to my Cisco 2811 ISR which functions as my router/firewall/VPN. I am using Micorosoft AD in my domain. To authenticate users to the domain. Is there an easy way to assure that [...]
Answer Question
| February 6, 2007 7:41 AM
Access, Cisco, Desktops, Firewalls, Forensics, Incident response, Intrusion management, Management, Microsoft Windows, Network security, OS, Security, Servers, SQL Server, VPN, Wireless
Find ISP that does not have port 25 blocked or another SMTP server for own DNS?
I need to either find an ISP that does not have port 25 blocked or an SMTP mail server in Southern California that allows you to use your own DNS. Earthlink is a pain !Any ideas ? Please advise. Thanks. Best Regards, syscameleon888
Answer Question
| January 24, 2007 7:07 PM
Exchange, Firewalls, Forensics, Incident response, Intrusion management, Network security, Spam, VPN, Web Services Standards, Wireless
I need to either find an ISP that does not have port 25 blocked or an SMTP mail server in Southern California that allows you to use your own DNS. Earthlink is a pain !Any ideas ? Please advise. Thanks. Best Regards, syscameleon888
Answer Question
| January 24, 2007 7:07 PM
Exchange, Firewalls, Forensics, Incident response, Intrusion management, Network security, Spam, VPN, Web Services Standards, Wireless
Is there a way in ISA server 2004 for nating a pool of valid address to lan…
Hi, In a router we can define a pool of our valid addresses and define an access-list for our lan addresses and NAt this access-list by valid pool address and overload it. Can I do it in ISA when I don’t have a router device? Bacause now I just use of one valid ip address [...]
Answer Question
| January 23, 2007 6:36 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Security, VPN, Wireless
Hi, In a router we can define a pool of our valid addresses and define an access-list for our lan addresses and NAt this access-list by valid pool address and overload it. Can I do it in ISA when I don’t have a router device? Bacause now I just use of one valid ip address [...]
Answer Question
| January 23, 2007 6:36 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Security, VPN, Wireless
Lotus Notes Incident Response
Hi, I should start by saying that I come from an Exchange background so the Lotus email environment is still a bit new to me…but I’ve been tasked to put together a checklist for Lotus Notes Incident Response and am wondering if anyone is willing to share incident response guidelines or recommendations for reviewing a [...]
Answer Question
| January 16, 2007 3:17 PM
backdoors, Current threats, Firewalls, Forensics, Hacking, human factors, Incident response, Intrusion management, Lotus Domino, Network security, Spyware, Trojans, Viruses, VPN, Wireless, worms
Hi, I should start by saying that I come from an Exchange background so the Lotus email environment is still a bit new to me…but I’ve been tasked to put together a checklist for Lotus Notes Incident Response and am wondering if anyone is willing to share incident response guidelines or recommendations for reviewing a [...]
Answer Question
| January 16, 2007 3:17 PM
backdoors, Current threats, Firewalls, Forensics, Hacking, human factors, Incident response, Intrusion management, Lotus Domino, Network security, Spyware, Trojans, Viruses, VPN, Wireless, worms
Securing Public Wireless
I have more of a theory or concept type question. My place of work offers free wireless internet to customers. One costomer asked me if it were a secured connection. I have no WEP (which in insecure anyway) or WAP1/2 or anything else. Question 1: If one customer is surfing the internet through the wireless, [...]
Answer Question
| January 13, 2007 12:13 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
I have more of a theory or concept type question. My place of work offers free wireless internet to customers. One costomer asked me if it were a secured connection. I have no WEP (which in insecure anyway) or WAP1/2 or anything else. Question 1: If one customer is surfing the internet through the wireless, [...]
Answer Question
| January 13, 2007 12:13 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
malformed packet alert
I get this message from my router every 2 minuets or so. I tried blocking to ports that it attacks and the IP but the major issue is that, that IP is a broadcast IP, so i don’t know where it is coming from. What my question is, is how do is stop these alerts [...]
Answer Question
| January 10, 2007 1:28 AM
Application security, configuration, Database, Encryption, Exchange, Firewalls, Forensics, Incident response, Instant Messaging, Intrusion management, Network security, patching, PEN testing, Platform Security, Secure Coding, Security, VPN, vulnerability management, Wireless
I get this message from my router every 2 minuets or so. I tried blocking to ports that it attacks and the IP but the major issue is that, that IP is a broadcast IP, so i don’t know where it is coming from. What my question is, is how do is stop these alerts [...]
Answer Question
| January 10, 2007 1:28 AM
Application security, configuration, Database, Encryption, Exchange, Firewalls, Forensics, Incident response, Instant Messaging, Intrusion management, Network security, patching, PEN testing, Platform Security, Secure Coding, Security, VPN, vulnerability management, Wireless
Messengers restriction by ISA………………..
Hi, Here is my configuration: In Router I set denny any to any by UDP, The Default GateWay is Router for every body, In IE I set the address of ISA with port 8080 as proxy for all users, I don’t have any rules for messengers, A.Now when I set in yahoo messenger NO Proxy [...]
Answer Question
| December 27, 2006 1:15 AM
Firewalls, Forensics, Incident response, Intrusion management, Network monitoring, Network security, Networking, VPN, Wireless
Hi, Here is my configuration: In Router I set denny any to any by UDP, The Default GateWay is Router for every body, In IE I set the address of ISA with port 8080 as proxy for all users, I don’t have any rules for messengers, A.Now when I set in yahoo messenger NO Proxy [...]
Answer Question
| December 27, 2006 1:15 AM
Firewalls, Forensics, Incident response, Intrusion management, Network monitoring, Network security, Networking, VPN, Wireless
Isa Server message….
Hi, I restrict a group of user for accessing to internet,when user try to connect to internet a page message appear for him or her that can’t access to internet. I want to change or edit the text of this message page!!! Could you please help me? Thank you. —- Regards Mahnaz
Answer Question
| December 26, 2006 7:41 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, Tech support, VPN, Wireless
Hi, I restrict a group of user for accessing to internet,when user try to connect to internet a page message appear for him or her that can’t access to internet. I want to change or edit the text of this message page!!! Could you please help me? Thank you. —- Regards Mahnaz
Answer Question
| December 26, 2006 7:41 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, Tech support, VPN, Wireless
mmc error in isa server……….
Hi, When I want to edit an Access rule and clicking the Protocol Tab it get an error: MMC has detected an error in snap-in.It is recommended that you shut down and restart MMC” But I should restart the computer!!!!! My OS is Win 2003 Server Enterprise R2 and IsaServer 2004 Enterprise. Could you please [...]
Answer Question
| January 1, 2007 4:06 AM
Firewalls, Forensics, Incident response, Intrusion management, Microsoft Windows, Network security, VPN, Wireless
Hi, When I want to edit an Access rule and clicking the Protocol Tab it get an error: MMC has detected an error in snap-in.It is recommended that you shut down and restart MMC” But I should restart the computer!!!!! My OS is Win 2003 Server Enterprise R2 and IsaServer 2004 Enterprise. Could you please [...]
Answer Question
| January 1, 2007 4:06 AM
Firewalls, Forensics, Incident response, Intrusion management, Microsoft Windows, Network security, VPN, Wireless
Hardware firewall solutions
Hi all – I need to find a replacement for our current hardware firewall (Checkpoint 100 user). We are downsizing the office it’s in and the current mainenance of $1500/year is rather high. So I’m looking for other solutions, the new office is going to have only 5 people in it, we need to be [...]
Answer Question
| December 21, 2006 6:44 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
Hi all – I need to find a replacement for our current hardware firewall (Checkpoint 100 user). We are downsizing the office it’s in and the current mainenance of $1500/year is rather high. So I’m looking for other solutions, the new office is going to have only 5 people in it, we need to be [...]
Answer Question
| December 21, 2006 6:44 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
Firewall
I?m looking for firewall solution for my network. Right now we have a router that was provided by IPS then a firewall (3com office connect) after firewall is the main router (cisco 2600) that is our gateway and DHCP. Our network is made of several subnet. All (about 90) workstations are XP Pro, with windows [...]
Answer Question
| December 14, 2006 5:22 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, Security, VPN, Wireless
I?m looking for firewall solution for my network. Right now we have a router that was provided by IPS then a firewall (3com office connect) after firewall is the main router (cisco 2600) that is our gateway and DHCP. Our network is made of several subnet. All (about 90) workstations are XP Pro, with windows [...]
Answer Question
| December 14, 2006 5:22 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, Security, VPN, Wireless
Moving into the InfoSec role
I work at a company that currently does not have a position dedicated to information security. I come from a background in networking with a good portion of my focus on firewalls and other security related technologies. I am interested in positioning myself into the role of InfoSec Admin at my compnay and was hoping [...]
Answer Question
| December 22, 2006 1:36 PM
Access control, Application security, backdoors, Biometrics, Browsers, Compliance, configuration, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Encryption, Exchange, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Instant Messaging, Intrusion management, Network security, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, vulnerability management, Web security, Wireless, worms
I work at a company that currently does not have a position dedicated to information security. I come from a background in networking with a good portion of my focus on firewalls and other security related technologies. I am interested in positioning myself into the role of InfoSec Admin at my compnay and was hoping [...]
Answer Question
| December 22, 2006 1:36 PM
Access control, Application security, backdoors, Biometrics, Browsers, Compliance, configuration, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Encryption, Exchange, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Instant Messaging, Intrusion management, Network security, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, vulnerability management, Web security, Wireless, worms
Nortel Contivity VPN CLient
I have an issue with a user of the above. V4.01. From home his VPN to a remote site in France is OK speed wise, even though his Broad band is only 500K up and 128K down. He can work all day with no speed degradation. From his office, BB is 3mb down and 400K [...]
Answer Question
| December 11, 2006 2:24 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
I have an issue with a user of the above. V4.01. From home his VPN to a remote site in France is OK speed wise, even though his Broad band is only 500K up and 128K down. He can work all day with no speed degradation. From his office, BB is 3mb down and 400K [...]
Answer Question
| December 11, 2006 2:24 PM
Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
Checkpoint firewall and Cisco VPN
Hi all – I have this problem now for 2 separate people and am a little perplexed. Here’s what’s happening: We have a Checkpoint firewall (Nokia), very restricted access. We have consultants or auditors that come in and need to access their Cisco VPN from inside our firewall and it always fails. I added them [...]
Answer Question
| November 28, 2007 12:07 PM
Cisco, Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
Hi all – I have this problem now for 2 separate people and am a little perplexed. Here’s what’s happening: We have a Checkpoint firewall (Nokia), very restricted access. We have consultants or auditors that come in and need to access their Cisco VPN from inside our firewall and it always fails. I added them [...]
Answer Question
| November 28, 2007 12:07 PM
Cisco, Firewalls, Forensics, Incident response, Intrusion management, Network security, VPN, Wireless
Networking DHCP growth
Okay, probably a simple question for a lot, but my experience has been more along the lines of many offices, with a typical setup of a border router (cisco, firewall (watchguard, new cisco ASA’s, Windows 2003 server DC, exchange server, etc….) I have been doing this a while now and have been working with everything, [...]
Answer Question
| November 22, 2006 7:39 PM
Active Directory, Availability, Cabling, Career development, Cisco, DataCenter, DHCP, DNS, Firewalls, Forensics, Hardware, Hubs, Incident response, Intrusion management, Microsoft Windows, Network monitoring, Network security, Networking, Networking services, Routers, Security, Switches, Tech support, Training, VPN, Wireless
Okay, probably a simple question for a lot, but my experience has been more along the lines of many offices, with a typical setup of a border router (cisco, firewall (watchguard, new cisco ASA’s, Windows 2003 server DC, exchange server, etc….) I have been doing this a while now and have been working with everything, [...]
Answer Question
| November 22, 2006 7:39 PM
Active Directory, Availability, Cabling, Career development, Cisco, DataCenter, DHCP, DNS, Firewalls, Forensics, Hardware, Hubs, Incident response, Intrusion management, Microsoft Windows, Network monitoring, Network security, Networking, Networking services, Routers, Security, Switches, Tech support, Training, VPN, Wireless
Create Domain and new exchange server
Pardon my ignorance, but I’ve looked everywhere for Exchange ’101′. Everywhere I look starts off with upgrading and existing situations… I have a small office (10 ppl) that currently just has an application server. I would like to implement a domain controller and also have exchange server setup. Do I need both a front-end (in [...]
Answer Question
| November 28, 2006 5:58 PM
DataCenter, Desktops, Exchange, Exchange security, Firewalls, Forensics, Hardware, Incident response, Intrusion management, Management, Microsoft Windows, Network security, Networking, OS, Security, Servers, SQL Server, VPN, Wireless
Pardon my ignorance, but I’ve looked everywhere for Exchange ’101′. Everywhere I look starts off with upgrading and existing situations… I have a small office (10 ppl) that currently just has an application server. I would like to implement a domain controller and also have exchange server setup. Do I need both a front-end (in [...]
Answer Question
| November 28, 2006 5:58 PM
DataCenter, Desktops, Exchange, Exchange security, Firewalls, Forensics, Hardware, Incident response, Intrusion management, Management, Microsoft Windows, Network security, Networking, OS, Security, Servers, SQL Server, VPN, Wireless
Restrict traffic for Cisco VPN clients
Hi all, First some background for my question: I have recently set up a VPN tunnel between a Cisco PIX 506E (VPN server) and remote clients. The remote clients use Cisco VPN Client software version 4.8. Everything seems to work fine. But as it is configured right now the remote clients have full access to [...]
Answer Question
| May 17, 2011 5:28 AM
Cisco, Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, TCP, VPN, Wireless
Hi all, First some background for my question: I have recently set up a VPN tunnel between a Cisco PIX 506E (VPN server) and remote clients. The remote clients use Cisco VPN Client software version 4.8. Everything seems to work fine. But as it is configured right now the remote clients have full access to [...]
Answer Question
| May 17, 2011 5:28 AM
Cisco, Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, TCP, VPN, Wireless
Who is responsible for the Firewall
Our information Security department is different from the network group. Currently, we have Check Point firewalls running on Nokia boxes (IPSO image). The Network group handles the installation, upgrade, routing and IP address specification etc on the firewalls, while Information Security writes the rules. The problem is that almost all trouble shooting involves the two [...]
Answer Question
| February 4, 2009 7:48 AM
Cabling, Firewalls, Forensics, Hubs, Incident response, Intrusion management, Network protocols, Routers, Security, Switches, VPN, Wireless
Our information Security department is different from the network group. Currently, we have Check Point firewalls running on Nokia boxes (IPSO image). The Network group handles the installation, upgrade, routing and IP address specification etc on the firewalls, while Information Security writes the rules. The problem is that almost all trouble shooting involves the two [...]
Answer Question
| February 4, 2009 7:48 AM
Cabling, Firewalls, Forensics, Hubs, Incident response, Intrusion management, Network protocols, Routers, Security, Switches, VPN, Wireless
Blue Socket Gateway and Certificates
We are currently attempting to implement a Blue Socket Gateway in order to authenticate our wireless clients. I have been instructed by Blue Socket that the certificate used by them will not work through a NAT translation and that I should put this device on the outside of my ASA firewall. Apparently, when the Blue [...]
Answer Question
| November 8, 2006 5:05 PM
Access control, Active Directory, Application security, Browsers, Compliance, CRM, Database, Desktops, Disaster Recovery, Encryption, Exchange, filtering, Firewalls, Forensics, Incident response, Instant Messaging, Intrusion management, Management, Microsoft Windows, Network security, Networking, OS, Policies, Risk management, Secure Coding, Security, Security Program Management, Servers, SQL Server, SSL/TLS, VPN, Web security, Wireless
We are currently attempting to implement a Blue Socket Gateway in order to authenticate our wireless clients. I have been instructed by Blue Socket that the certificate used by them will not work through a NAT translation and that I should put this device on the outside of my ASA firewall. Apparently, when the Blue [...]
Answer Question
| November 8, 2006 5:05 PM
Access control, Active Directory, Application security, Browsers, Compliance, CRM, Database, Desktops, Disaster Recovery, Encryption, Exchange, filtering, Firewalls, Forensics, Incident response, Instant Messaging, Intrusion management, Management, Microsoft Windows, Network security, Networking, OS, Policies, Risk management, Secure Coding, Security, Security Program Management, Servers, SQL Server, SSL/TLS, VPN, Web security, Wireless
same user login to vpn twice
Hi Very simple question, can anyone think of a valid reason why a user can not vpn in from two differnet machines at the same time using the same username and password. So a user is at home and has a laptop and a desktop and wants to VPN into the office using his same [...]
Answer Question
| November 4, 2006 6:57 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, VPN, Wireless
Hi Very simple question, can anyone think of a valid reason why a user can not vpn in from two differnet machines at the same time using the same username and password. So a user is at home and has a laptop and a desktop and wants to VPN into the office using his same [...]
Answer Question
| November 4, 2006 6:57 AM
Firewalls, Forensics, Incident response, Intrusion management, Network security, Networking, VPN, Wireless
