I have NG FP3 running on a windows 2000 box with 3 interfaces. Recently i tried to add a rule to the current rulebase and then proceeded to install the policy. The verify went through fine, but when it trys to install the policy it fails with the following error:
Advanced security failed...
I think you will find that your problem is not bandwidth related. I would say that the cisco 1600 is pretty entry level. I would check cpu and memory stats on the router and see if it is over worked. We have many clients running a 512k/512k link with 20 plus citrix clients & have no problems...
Well, its an explicity deny all at the end of each access-list, so you will need add the follwoing rule to allow all other traffic through "permit ip any any"
Well you can't disable broadcast's through these ports unless you block the ports. Just remember netbios traffic flows through port 137 & 138. The new worm virus uses these ports to spread and is known to have caused a menace even with cisco devices. I recommended using the following syntax to...
VLANs provide security & increase the number of broadcast domains. Unless you have configured inter-vlan communication through the router than security is not a real issue. (Remember that students will sit in a different broadcast domain to admins).
At the end of every access-list is an explicit deny all. You have to make sure that once you have created the appropiate access-list you follow on with the command "access-list 101 permit any any". Otherwise all other services will be denied.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.