blocking arbitrary traffic

Dear Firewallers:

I am interested in blocking arbitrary traffic to leave my office through my PIX501 on my cable ISP...

Is there a way to make the PIX "application aware" as some firewalls software based can be?

My goal is to prevent malicious programs of communication between my machine but inhibits not my daily web surfing.

I could use an access list to block all outgoing without port 80 desitnation, but how this stop malicious code to communicate with an external web server?

Any advice would be greatly appreciated.

Thank you

The PIX is not really designed to do this, after all, what exactly is the malicious traffic? All the PIX sees traffic based on source and destination address, Protocol and port, and as you say, how can it tell whether it is malicious or not.

This is a job for a firewall like Zone Alarm, which you install on your PC and set up a list of programs that are allowed to access the Internet. If you happen to get some malicious programs on your PC, it won ' be able to access the Internet unless you give permission.

Zone Alarm is free and can be downloaded here:

http://download.com.com/3000-2092-10282359.HTML?tag=lst-0-5

Almost 29 million downloads can't be wrong.

Tags: Cisco Security

Similar Questions

  • Fire power Cisco not be able to block torrent traffic

    Hello, I'm testing a Cisco ASA 5515 x with firepower (IPS, AMP, licenses of URL filtering). I created and implemented an access control strategy. The traffic of the L3 - L4 moment in our Organization is blocked by Firewall ASA. With SFR module I want to block Skype, Teamviewer, Torrent and intrusions from the Internet.

    My IPS policy is applied to the rule of Inspection of the threat which is the last rule in the policy of the CA. What I understand all traffic will be allowed, if it will be accepted by the IPS policies and AMP. The problem is that if I disable rule number 8 (Torrent of deny), then I can download torrent files and I am able to download torrent using Utorrent application content, but I think that this traffic should be removed by IPS policy. If I activate the rule number 8, download the torrent file is prohibited but not all torrent traffic fell (continue some of my torrents in Utorrent to download). I thought that IPS policy that is attached to the rule of Inspection of the threat will block all traffic that matches the IPS policy because the traffic of the intrusion. When I check the events I see that result Inline for the torrent traffic "fell". Why am I able to download torrents in Utorrent?

    Hello team,

    IPS and policy file will take part in the inspection. In your case, we look at detailed AC and political intrusion policies configured. Could you please open a TAC request to look at even.

    Concerning

    Jetsy

  • Two modules ASA 6.0.0.1 blocking all traffic

    Hi all

    I have two sensors 5525-X blocks all traffic until what they have restarted. It happens once a day. Accordingly to the ASA don't miss them so that they do not trigger a failover event.

    Power of fire virtual versin 6.0.0.1 Management Center
    5525-X version 6.0.0.1 sensor

    In the paper, I found this:

    9 Mar 19:22:25 ActionQueueScrape.pl [27931 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 March 19:27:25 [27931 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 March 19:27:25 ActionQueueScrape.pl [27931 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 March 19:27:25 ActionQueueScrape.pl [27931 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 19:32:30 ActionQueueScrape.pl [27931 1 Swiss francs]: cannot read the answer:
    9 Mar 19:32:30 ActionQueueScrape.pl [27931 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 19:32:30 ActionQueueScrape.pl [27931 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 19:37:35 [27931 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 19:37:35 ActionQueueScrape.pl [27931 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 19:37:35 ActionQueueScrape.pl [27931 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 19:42:40 [27931 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 19:42:40 ActionQueueScrape.pl [27931 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 19:42:40 ActionQueueScrape.pl [27931 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 March 19:47:45 [27931 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 March 19:47:45 ActionQueueScrape.pl [27931 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 March 19:47:45 ActionQueueScrape.pl [27931 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 March 19:47:45 ActionQueueScrape.pl [27931 1 Swiss francs]: END of TASK. 40c87442-e62c-11e5-a856-90c5001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1520
    9 Mar 19:48:31 ActionQueueScrape.pl [29616 1 Swiss francs]: START of TASK. e6aed6e6-e62f-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    9 Mar 19:48:33 ActionQueueScrape.pl [29616 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 19:48:33 ActionQueueScrape.pl [29616 1 Swiss francs]: END of TASK. e6aed6e6-e62f-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    9 Mar 19:48:57 ActionQueueScrape.pl [29708 1 Swiss francs]: START of TASK. f5bf599e-e62f-11e5-b7db-17d7001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    9 Mar 19:48:57 ActionQueueScrape.pl [29708 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 19:53:57 [29708 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 19:53:57 ActionQueueScrape.pl [29708 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 19:53:57 ActionQueueScrape.pl [29708 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 19:59:02 [29708 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 19:59:02 ActionQueueScrape.pl [29708 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 19:59:02 ActionQueueScrape.pl [29708 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:04:07 [29708 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:04:07 ActionQueueScrape.pl [29708 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:04:07 ActionQueueScrape.pl [29708 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:09:12 [29708 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:09:12 ActionQueueScrape.pl [29708 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:09:12 ActionQueueScrape.pl [29708 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:14:17 [29708 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:14:17 ActionQueueScrape.pl [29708 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:14:17 ActionQueueScrape.pl [29708 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 20:14:17 ActionQueueScrape.pl [29708 1 Swiss francs]: END of TASK. f5bf599e-e62f-11e5-b7db-17d7001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1520
    9 Mar 20:14:34 ActionQueueScrape.pl [31432 1 Swiss francs]: START of TASK. 8a293d9a-E633-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    9 Mar 20:14:36 ActionQueueScrape.pl [31432 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 20:14:36 ActionQueueScrape.pl [31432 1 Swiss francs]: END of TASK. 8a293d9a-E633-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    9 Mar 20:15:15 ActionQueueScrape.pl [31540 1 Swiss francs]: START of TASK. a2812330-E633-11e5-955f-fcea001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    9 Mar 20:15:15 ActionQueueScrape.pl [31540 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 20:20:15 [31540 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:20:15 ActionQueueScrape.pl [31540 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:20:15 ActionQueueScrape.pl [31540 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:25:20 [31540 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:25:20 ActionQueueScrape.pl [31540 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:25:20 ActionQueueScrape.pl [31540 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    March 9 20:30:25 [31540 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    March 9 20:30:25 ActionQueueScrape.pl [31540 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    March 9 20:30:25 ActionQueueScrape.pl [31540 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:35:31 [31540 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:35:31 ActionQueueScrape.pl [31540 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:35:31 ActionQueueScrape.pl [31540 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:40:36 [31540 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 20:40:36 ActionQueueScrape.pl [31540 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:40:36 ActionQueueScrape.pl [31540 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 20:40:36 ActionQueueScrape.pl [31540 1 Swiss francs]: END of TASK. a2812330-E633-11e5-955f-fcea001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    9 Mar 20:40:36 ActionQueueScrape.pl [739 1 Swiss francs]: START of TASK. 2da341fc-E637-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    9 Mar 20:40:39 ActionQueueScrape.pl [739 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 20:40:39 ActionQueueScrape.pl [739 1 Swiss francs]: END of TASK. 2da341fc-E637-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    9 Mar 20:41:19 ActionQueueScrape.pl [848 1 Swiss francs]: START of TASK. 46b61cc8-E637-11e5-99b6-75fc001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    9 Mar 20:41:19 ActionQueueScrape.pl [848 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    March 9 20:46:19 ActionQueueScrape.pl [848 1 Swiss francs]: cannot read the answer:
    March 9 20:46:19 ActionQueueScrape.pl [848 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    March 9 20:46:19 ActionQueueScrape.pl [848 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:51:24 ActionQueueScrape.pl [848 1 Swiss francs]: cannot read the answer:
    9 Mar 20:51:24 ActionQueueScrape.pl [848 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:51:24 ActionQueueScrape.pl [848 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 20:56:29 ActionQueueScrape.pl [848 1 Swiss francs]: cannot read the answer:
    9 Mar 20:56:29 ActionQueueScrape.pl [848 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 20:56:29 ActionQueueScrape.pl [848 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:01:35 ActionQueueScrape.pl [848 1 Swiss francs]: cannot read the answer:
    Mar 9 21:01:35 ActionQueueScrape.pl [848 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:01:35 ActionQueueScrape.pl [848 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:06:40 ActionQueueScrape.pl [848 1 Swiss francs]: cannot read the answer:
    Mar 9 21:06:40 ActionQueueScrape.pl [848 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:06:40 ActionQueueScrape.pl [848 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 21:06:40 ActionQueueScrape.pl [848 1 Swiss francs]: END of TASK. 46b61cc8-E637-11e5-99b6-75fc001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    On 9 March 21:07:25 [2669 1 Swiss francs] ActionQueueScrape.pl: TASK BEGINNING | ec20b238-e63a-11e5-9d0d-af0d011d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    On 9 March 21:07:25 ActionQueueScrape.pl [2669 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    On 9 March 21:07:39 ActionQueueScrape.pl [2699 1 Swiss francs]: START of TASK. f4f1391e-e63a-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    On 9 March 21:07:42 ActionQueueScrape.pl [2699 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    On 9 March 21:07:42 ActionQueueScrape.pl [2699 1 Swiss francs]: END of TASK. f4f1391e-e63a-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    Mar 9 21:12:25 [2669 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 21:12:25 ActionQueueScrape.pl [2669 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:12:25 ActionQueueScrape.pl [2669 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    On 9 March 21:17:30 [2669 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    On 9 March 21:17:30 ActionQueueScrape.pl [2669 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    On 9 March 21:17:30 ActionQueueScrape.pl [2669 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:22:36 ActionQueueScrape.pl [2669 1 Swiss francs]: cannot read the answer:
    Mar 9 21:22:36 ActionQueueScrape.pl [2669 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:22:36 ActionQueueScrape.pl [2669 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:27:41 1 ActionQueueScrape.pl Swiss francs [2669]: cannot read the answer:
    Mar 9 21:27:41 1 ActionQueueScrape.pl Swiss francs [2669]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:27:41 ActionQueueScrape.pl [2669 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    March 9 21:32:46 1 ActionQueueScrape.pl Swiss francs [2669]: cannot read the answer:
    March 9 21:32:46 1 ActionQueueScrape.pl Swiss francs [2669]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    March 9 21:32:46 ActionQueueScrape.pl [2669 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    March 9 21:32:46 ActionQueueScrape.pl [2669 1 Swiss francs]: END of TASK. ec20b238-e63a-11e5-9d0d-af0d011d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    9 Mar 21:33:28 ActionQueueScrape.pl [4536 1 Swiss francs]: START of TASK. 9001d064-e63e-11e5-B733-7ba0001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 9 21:33:29 ActionQueueScrape.pl [4536 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 21:33:42 ActionQueueScrape.pl [4574 1 Swiss francs]: START of TASK. 9869eda4-e63e-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 9 21:33:44 ActionQueueScrape.pl [4574 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 21:33:44 ActionQueueScrape.pl [4574 1 Swiss francs]: END of TASK. 9869eda4-e63e-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    March 9 21:38:29 [4536 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    March 9 21:38:29 ActionQueueScrape.pl [4536 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    March 9 21:38:29 ActionQueueScrape.pl [4536 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:43:34 [4536 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 21:43:34 ActionQueueScrape.pl [4536 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:43:34 ActionQueueScrape.pl [4536 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:48:39 [4536 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 21:48:39 ActionQueueScrape.pl [4536 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:48:39 ActionQueueScrape.pl [4536 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:53:44 [4536 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 21:53:44 ActionQueueScrape.pl [4536 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:53:44 ActionQueueScrape.pl [4536 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 21:58:49 [4536 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 21:58:49 [4536 1 Swiss francs] ActionQueueScrape.pl: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 21:58:49 ActionQueueScrape.pl [4536 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 21:58:49 ActionQueueScrape.pl [4536 1 Swiss francs]: END of TASK. 9001d064-e63e-11e5-B733-7ba0001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    9 Mar 21:59:08 ActionQueueScrape.pl [6274 1 Swiss francs]: START of TASK. 257ed9b8-e642-11e5-9558-62b3001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 9 21:59:08 ActionQueueScrape.pl [6274 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 21:59:45 ActionQueueScrape.pl [6334 1 Swiss francs]: START of TASK. 3be283d0-e642-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 9 21:59:47 ActionQueueScrape.pl [6334 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 21:59:47 ActionQueueScrape.pl [6334 1 Swiss francs]: END of TASK. 3be283d0-e642-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    9 Mar 22:04:08 ActionQueueScrape.pl [6274 1 Swiss francs]: cannot read the answer:
    9 Mar 22:04:08 ActionQueueScrape.pl [6274 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:04:08 ActionQueueScrape.pl [6274 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:09:13 ActionQueueScrape.pl [6274 1 Swiss francs]: cannot read the answer:
    9 Mar 22:09:13 ActionQueueScrape.pl [6274 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:09:13 ActionQueueScrape.pl [6274 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:14:18 [6274 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:14:18 ActionQueueScrape.pl [6274 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:14:18 ActionQueueScrape.pl [6274 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:19:23 ActionQueueScrape.pl [6274 1 Swiss francs]: cannot read the answer:
    9 Mar 22:19:23 ActionQueueScrape.pl [6274 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:19:23 ActionQueueScrape.pl [6274 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:24:28 [6274 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:24:28 ActionQueueScrape.pl [6274 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:24:28 ActionQueueScrape.pl [6274 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 22:24:28 ActionQueueScrape.pl [6274 1 Swiss francs]: END of TASK. 257ed9b8-e642-11e5-9558-62b3001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1520
    9 Mar 22:24:47 [8015-1 Swiss francs] ActionQueueScrape.pl: TASK BEGINNING | bb89591c-E645-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    9 Mar 22:24:50 ActionQueueScrape.pl [8015-1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 22:24:50 ActionQueueScrape.pl [8015-1 Swiss francs]: END of TASK. bb89591c-E645-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    9 Mar 22:25:16 ActionQueueScrape.pl [8115 1 Swiss francs]: START of TASK. cc845a32-E645-11e5-A118-bfc4001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 9 22:25:17 ActionQueueScrape.pl [8115 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 22:30:17 ActionQueueScrape.pl [8115 1 Swiss francs]: cannot read the answer:
    9 Mar 22:30:17 ActionQueueScrape.pl [8115 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:30:17 ActionQueueScrape.pl [8115 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:35:22 [8115 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:35:22 ActionQueueScrape.pl [8115 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:35:22 ActionQueueScrape.pl [8115 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:40:27 [8115 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:40:27 ActionQueueScrape.pl [8115 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:40:27 ActionQueueScrape.pl [8115 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:45:32 [8115 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:45:32 ActionQueueScrape.pl [8115 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:45:32 ActionQueueScrape.pl [8115 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    9 Mar 22:50:37 [8115 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    9 Mar 22:50:37 ActionQueueScrape.pl [8115 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:50:37 ActionQueueScrape.pl [8115 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    9 Mar 22:50:37 ActionQueueScrape.pl [8115 1 Swiss francs]: END of TASK. cc845a32-E645-11e5-A118-bfc4001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    9 Mar 22:50:50 ActionQueueScrape.pl [9765 1 Swiss francs]: START of TASK. 5f045b48-e649-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    9 Mar 22:50:52 ActionQueueScrape.pl [9765 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    9 Mar 22:50:52 ActionQueueScrape.pl [9765 1 Swiss francs]: END of TASK. 5f045b48-e649-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    9 Mar 22:51:25 ActionQueueScrape.pl [9873 1 Swiss francs]: START of TASK. 73a08dce-e649-11e5-89FA-34d6001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    9 Mar 22:51:25 ActionQueueScrape.pl [9873 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    9 Mar 22:56:26 1 ActionQueueScrape.pl Swiss francs [9873]: cannot read the answer:
    9 Mar 22:56:26 ActionQueueScrape.pl [9873 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    9 Mar 22:56:26 ActionQueueScrape.pl [9873 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:01:31 [9873 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:01:31 [9873 1 Swiss francs] ActionQueueScrape.pl: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:01:31 [9873 1 Swiss francs] ActionQueueScrape.pl: signalling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:06:36 ActionQueueScrape.pl [9873 1 Swiss francs]: cannot read the answer:
    Mar 9 23:06:36 ActionQueueScrape.pl [9873 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:06:36 ActionQueueScrape.pl [9873 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:11:41 1 ActionQueueScrape.pl Swiss francs [9873]: cannot read the answer:
    Mar 9 23:11:41 ActionQueueScrape.pl [9873 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:11:41 ActionQueueScrape.pl [9873 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:16:46 1 ActionQueueScrape.pl Swiss francs [9873]: cannot read the answer:
    Mar 9 23:16:46 1 ActionQueueScrape.pl Swiss francs [9873]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:16:46 1 ActionQueueScrape.pl Swiss francs [9873]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    Mar 9 23:16:46 1 ActionQueueScrape.pl Swiss francs [9873]: END of TASK. 73a08dce-e649-11e5-89FA-34d6001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    Mar 9 23:16:53 ActionQueueScrape.pl [11581 1 Swiss francs]: START of TASK. 028181bc-e64d-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 9 23:16:55 ActionQueueScrape.pl [11581 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    Mar 9 23:16:55 ActionQueueScrape.pl [11581 1 Swiss francs]: END of TASK. 028181bc-e64d-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 2
    Mar 9 23:17:30 ActionQueueScrape.pl [11690 1 Swiss francs]: START of TASK. 1843a868-e64d-11e5-ba33-88e7001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 9 23:17:30 ActionQueueScrape.pl [11690 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    Mar 9 23:22:30 ActionQueueScrape.pl [11690 1 Swiss francs]: cannot read the answer:
    Mar 9 23:22:30 ActionQueueScrape.pl [11690 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:22:30 ActionQueueScrape.pl [11690 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:27:35 [11690 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:27:35 ActionQueueScrape.pl [11690 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:27:35 ActionQueueScrape.pl [11690 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:32:41 1 ActionQueueScrape.pl Swiss francs [11690]: cannot read the answer:
    Mar 9 23:32:41 1 ActionQueueScrape.pl Swiss francs [11690]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:32:41 ActionQueueScrape.pl [11690 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:37:46 1 ActionQueueScrape.pl Swiss francs [11690]: cannot read the answer:
    Mar 9 23:37:46 1 ActionQueueScrape.pl Swiss francs [11690]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:37:46 ActionQueueScrape.pl [11690 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:42:51 [11690 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:42:51 [11690 1 Swiss francs] ActionQueueScrape.pl: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:42:51 ActionQueueScrape.pl [11690 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    Mar 9 23:42:51 ActionQueueScrape.pl [11690 1 Swiss francs]: END of TASK. 1843a868-e64d-11e5-ba33-88e7001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    Mar 9 23:42:56 ActionQueueScrape.pl [13328 1 Swiss francs]: START of TASK. a5fe2798-E650-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 9 23:42:57 ActionQueueScrape.pl [13328 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    Mar 9 23:42:57 ActionQueueScrape.pl [13328 1 Swiss francs]: END of TASK. a5fe2798-E650-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 1
    Mar 9 23:43:28 ActionQueueScrape.pl [13428 1 Swiss francs]: START of TASK. b8bf6e64-E650-11e5-ABC3-1af9001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 9 23:43:28 ActionQueueScrape.pl [13428 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    Mar 9 23:48:28 [13428 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:48:28 ActionQueueScrape.pl [13428 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:48:28 ActionQueueScrape.pl [13428 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:53:33 [13428 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:53:33 ActionQueueScrape.pl [13428 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:53:33 ActionQueueScrape.pl [13428 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 9 23:58:38 [13428 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 9 23:58:38 ActionQueueScrape.pl [13428 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 9 23:58:38 ActionQueueScrape.pl [13428 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:03:43 ActionQueueScrape.pl [13428 1 Swiss francs]: cannot read the answer:
    Mar 10 00:03:43 ActionQueueScrape.pl [13428 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:03:43 ActionQueueScrape.pl [13428 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:08:48 1 ActionQueueScrape.pl Swiss francs [13428]: cannot read the answer:
    Mar 10 00:08:48 1 ActionQueueScrape.pl Swiss francs [13428]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:08:48 ActionQueueScrape.pl [13428 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    Mar 10 00:08:48 ActionQueueScrape.pl [13428 1 Swiss francs]: END of TASK. b8bf6e64-E650-11e5-ABC3-1af9001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1520
    Mar 10 00:08:58 ActionQueueScrape.pl [15167 1 Swiss francs]: START of TASK. 49796e48-e654-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 10 00:09:01 ActionQueueScrape.pl [15167 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    Mar 10 00:09:01 ActionQueueScrape.pl [15167 1 Swiss francs]: END of TASK. 49796e48-e654-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    Mar 10 00:09:06 ActionQueueScrape.pl [15229 1 Swiss francs]: START of TASK. 4d786788-e654-11e5-974f-710a011d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 10 00:09:06 ActionQueueScrape.pl [15229 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    Mar 10 00:14:06 1 ActionQueueScrape.pl Swiss francs [15229]: cannot read the answer:
    Mar 10 00:14:06 ActionQueueScrape.pl [15229 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:14:06 ActionQueueScrape.pl [15229 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:19:11 ActionQueueScrape.pl [15229 1 Swiss francs]: cannot read the answer:
    Mar 10 00:19:11 ActionQueueScrape.pl [15229 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:19:11 ActionQueueScrape.pl [15229 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:24:16 [15229 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 10 00:24:16 ActionQueueScrape.pl [15229 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:24:16 ActionQueueScrape.pl [15229 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:29:21 1 ActionQueueScrape.pl Swiss francs [15229]: cannot read the answer:
    Mar 10 00:29:21 1 ActionQueueScrape.pl Swiss francs [15229]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:29:21 ActionQueueScrape.pl [15229 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:34:26 [15229 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 10 00:34:26 ActionQueueScrape.pl [15229 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:34:26 ActionQueueScrape.pl [15229 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    Mar 10 00:34:26 ActionQueueScrape.pl [15229 1 Swiss francs]: END of TASK. 4d786788-e654-11e5-974f-710a011d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1520
    Mar 10 00:34:44 ActionQueueScrape.pl [16915 1 Swiss francs]: START of TASK. e29624c4-e657-11e5-90b2-cb9c001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 0
    Mar 10 00:34:45 ActionQueueScrape.pl [16915 1 Swiss francs]: new IPReputation or files copied from nursery, necessary for the /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSync.pm 1760 line signal process.
    Mar 10 00:35:01 ActionQueueScrape.pl [16959 1 Swiss francs]: START of TASK. ecf68012-e657-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 10 00:35:04 ActionQueueScrape.pl [16959 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    Mar 10 00:35:04 ActionQueueScrape.pl [16959 1 Swiss francs]: END of TASK. ecf68012-e657-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    Mar 10 00:39:45 [16915 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 10 00:39:45 ActionQueueScrape.pl [16915 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:39:45 ActionQueueScrape.pl [16915 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:44:50 [16915 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 10 00:44:50 ActionQueueScrape.pl [16915 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:44:50 ActionQueueScrape.pl [16915 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:49:55 [16915 1 Swiss francs] ActionQueueScrape.pl: failed to read the answer:
    Mar 10 00:49:55 ActionQueueScrape.pl [16915 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:49:55 ActionQueueScrape.pl [16915 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 00:55:00 1 ActionQueueScrape.pl Swiss francs [16915]: cannot read the answer:
    Mar 10 00:55:00 ActionQueueScrape.pl [16915 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 00:55:00 ActionQueueScrape.pl [16915 1 Swiss francs]: signaling snort to reload the data of IPReputation failed, retrying... on line /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm 1662.
    Mar 10 01:00:05 ActionQueueScrape.pl [16915 1 Swiss francs]: cannot read the answer:
    Mar 10 01:00:05 ActionQueueScrape.pl [16915 1 Swiss francs]: (IPRepReload) command to 10229112-d54f-11e5-8c17-73403b7b4bc7 instance 1 failed at line /usr/local/sf/lib/perl/5.10.1/SF/Snort/Control.pm 49.
    Mar 10 01:00:05 ActionQueueScrape.pl [16915 1 Swiss francs]: snort for reloading of data signaling IPReputation failed after two attempts to /usr/local/sf/lib/perl/5.10.1/SF/IPReputation/IPRepSupport.pm line 1685.
    Mar 10 01:00:05 ActionQueueScrape.pl [16915 1 Swiss francs]: END of TASK. e29624c4-e657-11e5-90b2-cb9c001d157c | Synchronization of security intelligence from FirepowerManagementCenter. Initialization. 1521
    Mar 10 01:01:04 ActionQueueScrape.pl [18650 1 Swiss francs]: START of TASK. 9070d23a-e65b-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 0
    Mar 10 01:01:07 ActionQueueScrape.pl [18650 1 Swiss francs]: update successfully pushed to UM 172.20.1.81 /usr/local/sf/lib/perl/5.10.1/SF/Synchronize/VerticalSync.pm line 396.
    Mar 10 01:01:07 ActionQueueScrape.pl [18650 1 Swiss francs]: END of TASK. 9070d23a-e65b-11e5-BE19-9427c10784de | Synchronize with UM. Sending update | 3
    ..............

    If I was the one to help me I would like to in the sense of the Cisco TAC. Do you have one tips other than that? :)

    6.0.0.1 bleeding edge new.  Can return you to 5.4.0.6?

    If Yes, you will need to open a case with Cisco TAC and advance in the process of bug, which could take many months.

  • power of fire blocking all traffic

    Hello guys

    Well, I bought cisco asa 5506-x with power module of fire and the license for url filtering, control and AMP... and I'm really lost, I mean im new to these devices
    so I googled how to set up such a device, it works now, but when I redirect traffic to firepower, it blocks all traffic types
    so please guys help me with this thing :/

    Hi Alain.

    I first recommend that you reach a re-seller/Integrator Cisco to get that deployed properly. Make sure you only request a transfer of knowledge too! :)

    Otherwise, you can view the configuration guides:

    http://www.Cisco.com/c/en/us/support/security/ASA-firepower-services/products-installation-and-configuration-guides-list.html

    You can also configure ASA to redirect traffic to the Sourcefire IDS sensor only in mode. This way don't actually block you all traffic:

    sfr fail-open monitor-only
    http://www.Cisco.com/c/en/us/support/docs/security/ASA-firepower-services/118644-configure-firepower-00.html thank you for the useful job evaluation!

  • Blocking ICQ traffic on router 2620

    I needed to block all ICQ traffic coming out of my network. Did a search on the Internet and found that ICQ uses two port numbers as possible for the 4000 and 5190. I set up both of these ports and it seemed to do the trick BUT... I discovered that ICQ can also use HTTP, HTTPS, SOCKS4 and SOCKS5 as transport protocol and now I would like to know how to block these "extra" ICQ traffic I thought about:

    1 block TCP traffic on port 80/8080 with the string "http://login.icq.com".

    2. block ALL outgoing to www.icq.com, login.icq.com IP traffic (they can be resolved through DNS)

    Can someone tell me how I can do the task above? expecially option 1. Thanks in advance for your help. Are there other options I can use outside of the above?

    Your 2620 will be limited to help to stop this traffic. You could write a custom module of NBAR search in HTTP headers, but that's assuming that they actually login.icq.com in the http headers. They could not. You will need to check and see.

    Really ask you for content filtering. SurfControl is affordable and does it well and don't sit inline to the firewall/router.

    An IDS sensor can do that for you too. You have an engine inspection rish that can find almost anything in a RST packet, shun/block, etc.

    Blocking IPs is a pain in the neck and ICQ change / add over time.

    A simple and efficient method that works 99% is simply creating a fake icq.com on your internal DNS domain. Since your server DNS think its authority, it will not ask the real servers. Therefore, the ICQ clients won't be able to connect unless they point outwards DNS. If you allow only your internal DNS, the right to use Server outgoing UDP/53, requires customers to understand it's a DNS issue, get the name and the IP need and put them in the local hosts file. Of course, users should not have admin access to edit the hosts file. Of course, they also should not have admin access to install the ICQ software either... It's a tough battle. ;)

  • To block P2P traffic on the PIX firewall

    What will be the mechanism, and how we can block the traffic of P2P applications like eDonkey, KaZaa and Imesh etc on the PIX firewall.

    Hello

    You can find the info here:

    http://www.Cisco.com/en/us/Tech/tk583/TK372/technologies_tech_note09186a00801e419a.shtml

    I hope this helps.

    Jay

  • How to block all traffic except vpn traffic and traffic bureau HQ

    Hello

    Someone please advise me how to block all traffic except inbound traffic through the VPN and traffic from the IP of the HQ Office.

    My router is 881/K9 Cisco router. Currently, I have blocked all IP addresses with the exception of the IP Office HQ using access-list on the brance office website.

    I put the IP list allowed according to IP location of the VPN user. But now the VPN user become more and more and thus be difficult to block the IPs based on their current location. Sometimes not possible to know their WAN ip address.

    Thanks in advance.

    Have you considered allowing the IPSEC IP Protocol, TCP port, intellectual property all UDP ports and then by blocking all other traffic?

  • Is there a way in which I can see if Apple firewall blocks the traffic to a certain IP address?

    Connection to my e-mail domain seems to be blocked by a body between my home network (via Apple AirPort) and my mail server to an external service provider. I can connect to this fine through my mobile operator, but not from my home network. This leads me to believe it may have something to do with the Apple firewall, blocking traffic to. Where can I see if this is the case? Other possibilities or what to check?

    I agree that it seems that the Apple router blocking communication (Support Apple says that is not possible, is said by the way)... but please read this thread for another angle that you would not have thought:

    Unable to connect to a single site with Airport Extreme

  • Block incoming traffic not requested by VPN L2L on ASA5505

    I have an L2L work between two locations. Location A and B.

    Location A: 172.16.16.0/24

    B location: 192.168.0.0/24

    I would like to block any incoming pitch A b location which is not initiated from A location. The block must be done on the ASA5505 location a. location B uses a router ISR G2.

    that is A location can start an SSH session to a server at the point B

    Location B cannot start an SSH session to a server in A location

    I tried to use a VPN on the ASA5505 filter but is not dynamic, I can not pass any traffic during its use.

    Config on my ASA:

    vpn-circulation 172.16.16.0 ip access list allow 255.255.255.0 192.168.0.0 255.255.255.0

    access vpn-local block list extended deny ip 192.168.0.0 255.255.255.0 172.16.16.0 255.255.255.0

    access vpn-local block list extended ip allowed any one

    crypto vpn 100 match address vpn-traffic map

    card crypto 100 counterpart set location-public-IP vpn

    card crypto vpn 100 transform-set esp-aes256-sha

    vpn outside crypto map interface

    Group internal vpn-local-political block policy

    bloc-vpn-a-locales-strategie-strategie of group attributes

    VPN-filter block vpn-local value

    Protocol-tunnel-VPN IPSec

    type of tunnel-group location-public-IP-ipsec-l2l

    attributes global-tunnel-group location-public-IP

    strategy-group-by default-vpn-to-local-blocking strategy

    tunnel-group location-public-IP-ipsec-attributes

    pre-shared key *.

    I also have an AnyConnect VPN for the ASA5505 configuration and it runs 8.2 (5). Any tips?

    Hello

    Unless you already have a lot of VPN connections to use theres also another option other than VPN filter ACL.

    You can globally change the "sysopt permit vpn connection" setting (the default is that this option is enabled)

    If you change this setting to "no sysopt permit vpn connection" every connection from remote site will require an ACL rule on the ACL interface that end the VPN. And it's usually the 'outer' interface

    I find its rules in a way easy and clear of the ACL rules for construction VPN connections also although the 'outside' ACL would now include VPN traffic and Internet. It still beats the use of VPN filter ACL if you ask me.

    The downside activating this later is the fact that if you have no restrections between VPN and LAN connections, you would now determine which must be open before you can change the global settings so that connections don't stop working.

    Here is the section of the overview of ASA 8.2 for the order parameter controls / I do not speak of

    http://www.Cisco.com/en/us/docs/security/ASA/asa82/command/reference/S8.html#wp1517364

    If you want to go with VPN filter ACL then follow the earlier instructions of messages while strengthening the ACL rules.

    -Jouni

  • ACL, blocking outbound traffic

    I play with an ACL and I don't understand why it does not work.

    Note access-list 105 blocking traffic going 2 internet

    access-list 105 allow ip 10.1.0.0 0.0.0.255 any what newspaper

    access-list 105 allow ip 172.16.0.0 0.0.0.255 any what newspaper

    access-list 105 tcp refuse any any eq newspaper 3389

    The 1st two lines that our internal netowrk and VPN users réécrirait in internet. The 3rd line blocks then use Remote desktop out to the internet. I know there is an implicit refusal at the end of the ACL, but because I said that the 2 allowed statements I thought would pass it two internal networks. THEY ARE EFFECTIVELY BLOCKED.

    Now when I do this:

    Note access-list 105 blocking traffic going 2 internet

    access-list 105 allow ip 10.1.0.0 0.0.0.255 any what newspaper

    access-list 105 allow ip 172.16.0.0 0.0.0.255 any what newspaper

    access-list 105 tcp refuse any any eq newspaper 3389

    access-list 105 permit ip any any newspaper

    Everthing works great. Why? Also when I do a sh-access list I never see all counters on the 1st 2 lines in the ACL. Did I miss something on the way to work ACL?

    Del

    Thanks for posting the information. It is very useful. It clearly shows that the problem is the length of the mask in the access list.

    Jackko and I asked if 10.1.0.x network that allows the access list was the person must be allowed. Log entries clearly show that the source address is 10.1.35.x/24 and not 10.1.0.x.

    I see two possible solutions:

    -You can change the access list so that the list of access mask is 0.0.255.255 instead of 0.0.0.255. This will allow no matter what 10.1

    -You can add additional entries to the list with 0.0.0.255 masks for specific subnets you want to allow.

    You will need to decide which solution is best for the particular environment you are in.

    HTH

    Rick

  • Definition of VLAN ACL blocks all traffic inside of the vlan

    Hello

    I test a 7024 PowerConnect switch, do some VLAN and want to test the traffic between 2 PC connection to the vlan by default. So I put a PC on Port 1 and the other on Port 2.

    I am applying only a permit ICMP any any rule on this vlan. This implies a refusal rule everything.

    But now I can't ssh from one PC to another?

    the ACL is an ibound IP AC, but I thought that this does not affect traffic in the vlan? Or am I wrong thinking?

    We tested this installation type and got the same results as you. It seems to be normal behavior. If I get more specific information to this I will be sure to answer back with her.

  • ACLs on Cisco router - block outside traffic, allow all inside

    Hello

    I am creating the ACL on the router Cisco that will allow all traffic within internet and don't allow specific traffic on the internet inside.

    This is what I have configured and puted on the interface of the router connected to the ISP:

    10 permits all icmp (411 matches)
    20 permit tcp "my public IP address" no matter what eq 3389 (46400 matches)
    30 permit tcp "my public IP address" no matter what eq 22 (9185 matches)
    40 "my public IP address" ip allow match any (3207)
    50 permit tcp any any eq smtp (11 matches)
    60 permit tcp any any eq www (56 matches)
    70 permit tcp any any eq 443 (29 items)
    80 permit tcp any any eq field (5 matches)
    allowed 81 UDP everything no matter what field of eq (7 matches)
    allowed 82 UDP any eq (10564 matches) field
    83 permit tcp any what eq field everything (10 matches)
    90 permit udp any any eq ntp (13317 matches)
    95 permit tcp 192.168.0.0 0.0.0.255 any
    Dialer interface 1
    IP Access-group 101 IN

    So I can connect to my public IP to the LAN of the customer via RDP and SSH (which is OK), but users of the client cannot access Internet (which is not OK.)!

    Users are all in the same Vlan. Between the interface Vlan and outside interface (dialer 1) Pat.

    There is no other ALC on the router except for PAT.

    What I'm missing here?

    Thank you.

    Is this why 192.168.0.0/24 is present in the list of ACL 101? What is the remote subnet that you connect to port 3389?

    If your local subnet interior is a soldier of the C class, it must be your global external address you want to add to the ACL 101.

    Better yet, run an IPSec tunnel between the sites.

  • Navigation for the AVG firewall Windows XP - network sharing and occasionally be blocked due to uknown UDP outgoing local traffic remotely different ports... Repeatedly enters FilterDevice in the firewall log

    Various involved Ports:
    Local: 257 remotely: 513
    Local: 513 remotely: 6146
    I also saw port 259 and a few others...
    The firewall settings work for various other users, but seem to don't like is not something in my configuration.

    As a member of a domain running Windows XP Pro SP3
    When it blocks the traffic, they are always directed to a remote IP address of a domain within my local network controller. I uninstalled a lot of applications, and made sure I have no services for unix/linux installed.  For a bit, I thought he may have something for security certificates because my computer and user accounts are configured with our local CA... I doubt, however, that is related...

    I also know that my domain name is not the configuration as tight as we would like to see because we had to reduce some of the security settings for old Windows 98 and AS / 400 systems.  So I remember an old key "reg" which might not help:
    Location: HKLM\System\CurrentControlSet\Services\lanmanworkstation
    \Parameters
    Key: enablesecuritysignature
    Initial value: 0
    New value: 1
    This changed seemed to help but then after another it reboot started appearing again...

    Amaranth Hello,

    Thank you for visiting the website of Microsoft Windows Vista Community. The question you have posted is related to the area and would be better suited to the TechNet Forums community. Please visit the link below to find a community that will provide the support you want.

    http://social.technet.Microsoft.com/forums/en-us/categories/

    Keith
    Microsoft Answers Support Engineer
    Visit our Microsoft answers feedback Forum and let us know what you think

  • Send all VPN traffic and the other end it blocks Internet

    Hello

    I wonder if I can get a RV042 VPN Tunnel to a RV082 and in the RV082 block all traffic on the internet that comes form the computers that are behind the RV042.

    Something like this:

    Remote PC-> RV042-> VPN-> RV082-> firewall RV082 (block internet traffic, allow intranet traffic)

    Thank you very much

    Oliver

    The scenario you describe should be doable with a pair of RV042 and RV082, where all traffic is transmitted by RV042 to RV082. What you need is to configure an access on RV082 rule to deny the RV042 subnet HTTP traffic to ALL (internet).

  • How can I block a VPN from site to Site traffic

    I configured a VPN from Site to Site, the wizard on a

    ASA 5510 and it works.

    However, I want to restrict http traffic only.

    I tried to change the ACL entry that allows ip traffic to allow only http traffic, but that seems to block all traffic and translates into a journal entry:

    Inbound TCP connection doesn't deny x to Y/80 SYN flags on the incoming interface.

    I managed to block pings by entering an ACL rule to specifically deny icmp, but I would like to deny all except http.

    Any advice on how to achieve this appreciated.

    William.

    Hello

    Guess that's what you're looking for. See the Bidirectional VPN filter configuration section.

    http://www.Cisco.com/en/us/products/HW/vpndevc/ps2030/products_configuration_example09186a00808c9a87.shtml

Maybe you are looking for

  • I can't access Gmail because it shiftes on Calendar Page when I load Gmail

    When I load my Gmail in Firefox 3.6.6 it changes automatically to the Calendar Page. I can't access my Gmail. This has happened Each time Firefox opened == I opened my Gmail account

  • Two years trying to get Toshiba laptop wireless connection works

    I tried for two years to try and get the connection Wireless on my Toshiba laptop to work without much success. For a short period I managed to connect the laptop to a desktop computer's ad-hoc wireless and share the internet connection in this way b

  • My iPhone 4 has a virus, how can I get rid of him?

    Hi all I have a three year, iPhone 4, which now has a virus. I tried to restore my iPhone 3 times, but it will not fix it. It started when I opened an application from Smule called Smule Sing. The virus came immediately, I tried to remove the app and

  • Creating files dull with Matlab use in LabVIEW

    I am creating a dull in LabVIEW file using the use Matlab. It seems to create a group called "Vector" without knowing precisely in, and he also concatenates the group names and the channel. I made an example to demonstrate this behavior. I am trying

  • Catalog file Vista 64 missing file 'GlobalCatalog.wbcat'

    I need to fix my Mediaid.bin file.  I know how t o to fix but miss me 'GlobalCatalog.wbcat' in the file catalog I need catalog with this file inside the folder.  Also at least BackuoSet "YYYYMMDD" "xxxxxx" folder can be recreated I need too! I tried