[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x

Hardware Firewalls

23K

Solutions

20K

Contributors

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Share tech news, updates, or what's on your mind.

Sign up to Post

What kind of hardware firewalls can be placed behind an AT&T BGW210-700 DSL modem?
0
CompTIA Security+
LVL 12
CompTIA Security+

Learn the essential functions of CompTIA Security+, which establishes the core knowledge required of any cybersecurity role and leads professionals into intermediate-level cybersecurity jobs.

I'm looking for simulator software that will help teach me how to configure and support Palo Alto hardware firewalls and routers.
0
Post by:abcd ab0111s
How to access my Dell sonic wall from my phone?
Hardware Firewalls
0
0
Hello Experts,

I have asa  5525 with Firepower module and I want to shut it down gracefully and bring it up after few hours. What are the files do I need to backup - running-config and what else should I backup.

Do you know what is the best practice to do this?

Thank you,
0
Hi,

how to understand this error and resolve it correctly. tks

Screenshot_1.jpg
0
Hello,
how I can know the imo and botim server block so I can blocked under my firewall ?
thanks.
0
node_check object fail! for opmode transparent
Attribute 'opmode' value 'transparent' checking fail -651
Command fail. Return code -651

While changing NAT mode to transparent mode on fortigate 200E version 6. Help
0
Hello,

I have ASA 525 with DHCP enabled in inside interface. Is it possible to reserve IP for MAC address?

Thx
0
Dear Wizards, can you please suggest the Firewall and Wireless AP models (both commercial and opensource) which can satisfy:

- Login/logout page when access the Internet. EX: when access Facebook, you have to insert employee ID/password,....

- Log access history

- Stable, DDoS prevention,...
0
I have a customer that needed ports 990 and 22 open in a Cisco ASA5505 to a computer on their network. I have input the info in Access Rules and NAT but still cannot get in. Here is the config for the ASA
Config.txt
0
OWASP: Avoiding Hacker Tricks
LVL 12
OWASP: Avoiding Hacker Tricks

Learn to build secure applications from the mindset of the hacker and avoid being exploited.

We are setting up our new fortigate 60e and ran into a problem accessing our local printers while in Remote Desktop via the vpn. The Interfaces are setup us as split tunneling. Could we of setup the DHCP server (Fortigate 60e) incorrectly?

Our printer's IP is 192.168.1.144. The 60E is set with the inside gateway 192.168.1.99 netmask 255.255.255.0 with a ip range 192.168.1.110 to 192.168.1.210

Thank you
0
I am using Skykick to migrate a customers on-premise email server into Exchange Online. I have got stuck at the first hurdle where the Skykick wizard connects to the on-premise server.

Skykick support have told me to allow the Skykick servers hosted in Azure through the On-premise Sonicwall device so they can access the server.

Not a majot problem I thogh until I saw the list of IPs I need to add. Too much to add manually.

Im not a sonicwall expert but is there a way to add these ip ranges quickly?
0
I have a client with a Sonicwall TZ300 that wants to use Cox Edgemarc VOIP phone system. The Edgemarc needs Ports 5060 and 5061 open for SIP registration. I am looking for either step by step instructions or someone experienced in configuring Sonicwall.
0
Hello,

We have two Cisco ASA 5505 units in an active/standby configuration. Our network is primarily made up of servers that are serving web sites and other products and services, as well as remote access, rather than desktops and other end user PC's.

We have a couple of blocks of routable public IP addresses from our Internet provider that we use for assignment to various servers within the network. The ASA has a relatively complex set of ACL and NAT/PAT rules to support all of this and get traffic to its proper destination.

Our ASA is logging the following messages thousands and thousands of times per day:

<162>Sep 29 2018 16:58:02: %ASA-2-106016: Deny IP spoof from (x.x.x.x) to y.y.y.y on interface outside

The first IP address listed (x.x.x.x) is the public IP address of the outside interface of the ASA unit itself. The second IP address (y.y.y.y) is another public IP address that is in the block of addresses assigned to us by our ISP and that we are using for one server or another. The second IP address varies among our different public IP addresses each time the message is logged; the first address is always the public address of our ASA unit.

Why would we be logging thousands of messages such as this showing our own ASA's IP address as the source? Does this indicate actual traffic that is attempting to spoof IP addresses and cause problems, or is this more indicative of a misconfiguration somewhere on our network?

Any assistance would be most …
0
Unable to resolve a name of a host at a public domain name that is whitelisted on a SonicWall firewall model NSA4600
domain whitelisted as lifesizeshare.net
the host name is xxxxxx.lifesizeshare.net
Do I need an asterisk in front of the domain that is whitelisted?

Same nslookup done on the WAN segment of the firewall works properly
Firewall.jpg
0
I have a Cisco ASA and need to setup some static routes so that both internal hosts and external hosts on the WAN (all ASA's) can reach this network.

ASA-1
Internal Network (Data) VLAN1- 192.168.12.0/24
Second Network VLAN100 - 192.168.120.0/24  (1 x host - 192.168.120.1)

ASA-2
Internal Network (Data) - 192.168.6.0/24  

I would like users on 192.168.12.0/24 to access 192.168.120.1 and would like users on 192.168.6.0/24 to also access 192.168.120.1

Any help appreciated.
0
Hi Experts,
I''ve a question, I need to filter traffic based on https. How can https traffic be filtered in Huawei USG6370?
0
Cisco ASA 5510 and Cisco 2921
Currently we have a Cisco 2921 ISR that we connect directly to the internet we have a 16 block of IPs routed to internal servers and use anyconnect to VPN into the office and have a office to office vpn with a remote office. We use ACL's to manage all the traffic. This is then connected to a 6509 and we have 4 vLans.
The throughput on the 2921 seems really slow for our remote users.

Im looking into a ASA 5510 to replace the 2921. Is this a good Idea or do I run them in line? Im looking for better performance on the VPN side. The 2921 is slow.
Or do I look at something else all together?
0
Vendor website sent an email regarding upcoming data center changes.  The email says " IT department will need to open port 443 to enable https to our new sites"

We use a fortigate 60d.  HTTPs seems to be already enabled for all sites, although I don't see any policy for this.    At this point I am not going to add this for our vendors new site.  

In any case, for my understanding Is there a place in the firewall where https is enabled for all by default?
0
Introduction to R
LVL 12
Introduction to R

R is considered the predominant language for data scientist and statisticians. Learn how to use R for your own data science projects.

Hi,

I have an issue with a Cisco Anyconnect VPN setup.

ASA 9.8(1) and Anyconnect 3.1.14018

I am using Anyconnect V3 because I have that software and v4 requires a license. I hope this combination is compatible.

I ran the Anyconnect VPN wizard on the ASA and I installed a DigiCert certificate. All went without errors. The end result is I can connect but I can't access anything on the inside LAN.

Any ideas what could be wrong?

I've not done more than 20 minutes googling so far, been so busy, I am going to revisit this issue tomorrow morning.

Thanks in advance.

Alasdair Barclay
0
After following steps to reset the Enable password on an ASA 5505, the firewall is now stuck in "ciscoasa" mode and won't allow changes to be written.

I did switch back to conf reg 0x00000041 and this shows in ROMMON when I boot in ROMMON mode. However I must have made some error during the process.

The Enable password is now blank after every reload and the configuration is wiped after every reload.

Is there any way I can recover this firewall and make it usable again?
0
Where can I find the "Product Part Number" for an EOL'ed Cisco ASA 5520?  We would like to purchase a replacement, and according to Cisco's site, there are different recommended models of Cisco ASA 5525 that may be suitable replacements but I would like to get the recommended replacement for what we have in use now.

I had attempted to look at the various stickers on the device itself, and went through the old Java based IDSM and running config, I am unable to locate the exact product part number.

Also, will the saved configuration file from the Cisco ASA 5520 be compatible with a Cisco ASA 5525?

Please let me know if you require the firmware version to answer any of the above questions
0
Can't ftp & sftp to external ftp server, want to check which parts block the port connection. How can I simply check it? How can I check it at router, internal firewall, internal proxy?
0
I need to create a hairpin (or U-turn) on an ASA running code 9.9.2.

Situation:

I have a public web server on an internal network which needs to be reachable from the inside by its public address.  IP addresses are made up here, but it describes the situation:

Internal DMZ:  192.168.0.0/24
Internal user network:  192.168.1.0/24; 192.168.2.0/24; 192.168.3.0/24
External network:  1.2.3.0/24
PAT pool: 1.2.3.200 - 1.2.3.254

Web server internal IP:  192.168.0.10
1:1 NAT:  1.2.3.4
ACL:  Allow ports 80 and 443 to 1.2.3.4

My internal users need to be able to reach the web server on 1.2.3.4, not on 192.168.0.10.

How do I configure NAT to allow connects from the inside user network (192.168.[1-3].0/24) to 1.2.3.4?
0
I looking for any free firewall software appliance. (Like the old version of sophos. The new version of Sophos provide only 30 days software appliance)
I don't know if there is any firewall which provide a software appliance free and without time restriction.
0

Hardware Firewalls

23K

Solutions

20K

Contributors

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.