ASA Firewall and SQL issues

Posted on 2011-10-29
Last Modified: 2012-05-12
hi ASA Expert$$$$$$$$$$$$$$$$

how Cisco ASA can help to avoid the SQL Injection related issues.

is there any specific ACL.

please light it
Question by:osloboy
    LVL 7

    Accepted Solution

    SQL Injection is avoided by paramterizing your queries and avoiding dynamic SQL server.  ASA firewalls will help with overall network security, but not injection attacks, short of just blocking potential attacks on the server.  SQL Server default TCP port is 1433, if you don't need it open to the outside world, block it in your firewall.  I suspect you might mean something other than injection attacks though, is that correct?
    LVL 17

    Assisted Solution

    There may be some attack vectors you could cover with the IDS card,  though do not expect an automated system to fix careless programming on the side of the website developers ...

    Author Comment

    MrAli: SQL injections, XSS, XSF etc. e.g "SQL Query in HTTP Request"

    point is, as Proactive Measure what an Network Admin can do on ASA to be ready and avoid the SQL Injections.

    even if you have good IPS, some time IPS can be Fooled


    Author Closing Comment

    no comments

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Suggested Solutions

    When the confidentiality and security of your data is a must, trust the highly encrypted cloud fax portfolio used by 12 million businesses worldwide, including nearly half of the Fortune 500.
    Healthcare organizations in the United States must adhere to the guidance of both the HIPAA (Health Insurance Portability and Accountability Act) and HITECH (Health Information Technology for Economic and Clinical Health Act) for securing and protec…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now