I agree with sc0tty8, Untangle is a good option, but to get the most out of it's features (e.g. HTTPS filtering) you will have to pay a subscription.
You can check out this tutorial to build a content filter that includes HTTPS filtering using pfSense, Squid, and qlproxy.
You'd have to have some kind of gateway. Your phone does SCCP, so you'll need something to convert your provider's H323, SIP, etc. (CallManager)
I'd say use an old CCM version in a virtual machine, or buy a cheap Cisco router with an FXS port on eBay, and then use CCM Express.
You'll need...
As far as accessing inside resources:
Since the ASA is doing NAT for inside addresses, maybe you can try adding another NAT rule to keep the original addresses for inside to outside? My guess is that return packets from your inside networks are getting their source addresses rewritten by your...
My guesses would be bad RS232 IC or other component (resistors) inline with the console bus on the motherboard. That or maybe the configuration register is set to a higher baud rate? But I'm pretty sure you would still see garbled characters.
To discard the running configuration and load a saved one without requiring a restart:
asa(config)# clear configure all
asa(config)# copy startup-config running-config
Looking at Wireshark I see NetBIOS queries for random names. I'm wondering if it's Chrome that is doing these random lookups? When typing a URL in Chrome I see queries for a partial portion of the URL I'm typing. For example, coming to www.hardocp.com I see a NetBIOS query for WWW.HARD to the...
just some guesses....
some service or app on the computer causing cpu spike?
something to cause router cpu to spike?
that is wierd to spike with THAT high RTT
1. Yes, only if you want to keep remote manageability of the devices. TACACS+ is a AAA (Authentication, Authorization, and Accounting) protocol and provides for very granular policy-based authentication. My recommendation would be to disable Telnet and HTTP access to the devices. Keep primary...
That's interesting. Definitely some congestion somewhere.
But what's more interesting is you aren't getting specific route for something on your LAN.
Really the only thing you can do, is give their NOC the traceroute details, and tell them one or more of their circuits is congested.