Tag Archives: ccna security

Using NVI to Allow Internal Hosts to Connect to Public Addresses of Hosted Servers

IP NAT is a very common configuration. One of the challenges that sometimes surfaces is the need for internal hosts to connect to the public address of a locally hosted server. Anyone who has tried to configure something like the following has … Continue reading

Posted in CCNA, Certification, General, Network, Security, Technology | Tagged , , , | 8 Comments

Getting the Sourcefire Firepower VM working Inline

The Sourcefire NGIPS/NGFW solution is a way to quickly get some interesting information about traffic on a network. One of the things I like about the solution is that actionable information is almost immediately available after deployment. There are five deployment … Continue reading

Posted in Network, Security, Technology | Tagged , , | 2 Comments

Using Cisco’s DevNet “All-in-One VM” as a Free Router Lab

I know many have been [not so patiently] waiting for the arrival of a Cisco virtual lab. Although I haven’t heard any official release date for VIRL or CML, there is a small scale virtual router lab available today. This lab is … Continue reading

Posted in Blogroll, CCNA, Certification, General, Network, Rant, Technology | Tagged , , , , , | Comments Off on Using Cisco’s DevNet “All-in-One VM” as a Free Router Lab

My #FAIL at #CLUS and Cisco Testing RANT

I’m about to publicly humiliate myself by sharing today’s private humiliation. To make a long story short, I took 640-554 (CCNA Security) and got the “We Regret to Inform you, blah, blah, blah…” Actually after I’d seen the first 10 questions … Continue reading

Posted in CCNA Security, Certification, Cisco Live, Events, Security, Technology | Tagged , , , , | 4 Comments

Don’t Forget about the ASA’s “show conn” Command

I often find myself troubleshooting connections through an ASA. As a firewall, the ASA is often blamed for network connectivity issues. Therefore, we often just want to determine if the issue is upstream or downstream from the firewall. One of … Continue reading

Posted in CCNA Security, Certification, Security, Technology | Tagged , , , | 5 Comments

Heartbleed Will Cause Issues With Obscure OpenSSL Use Cases

In real world deployments, the Heartbleed Bug is a bit different than a lot of other vulnerabilities we have seen. This issue exists in recent versions of OpenSSL and allows an attacker to harvest raw information from the memory of affected devices. … Continue reading

Posted in Security, Technology | Tagged , | 1 Comment

Using Notepad++ to Mirror Cisco ACLs

Having an occasional need to create mirrored access-list entries, I was seriously considering writing a PERL script to automate this process. Before I really got started on it, I stumbled on a pretty cool feature in Notepad++. This feature basically … Continue reading

Posted in CCIE Security, CCNA Security, Certification, Network, Security, Technology | Tagged , , | 6 Comments

Logging Cisco Router Administration

Sometimes we notice configuration changes in our network gear. Often we may ask ourselves who made the change and when it occurred. Maybe the reason for answering these questions is to understand why the change was necessary. Alternatively, there may … Continue reading

Posted in CCIE Security, CCNA Security, Certification, Security, Technology | Tagged , | Comments Off on Logging Cisco Router Administration

Cisco ASA 8.4 VPN — Dealing with Internet Hairpin Traffic

Over the past few months, I have received a few requests regarding hairpin scenarios and the ASA. Earlier, I provided a scenario that deals with hairpinning (also known as U-Turn) traffic between two VPN spokes in a typical ASA environment. In another … Continue reading

Posted in CCIE Security, CCNA Security, Certification, Security, Technology | Tagged , , , , , | 2 Comments

CCENT Now Fulfills More Associate Prerequisites

Today, Cisco announced some changes regarding their CCNA certification program. One of the changes resulted in some shuffling of items back and forth between ICND1 and ICND2. Other blueprint related changes resulted in the omission of previously test topics like … Continue reading

Posted in Career, CCNA, Certification, General, Rant, Technology | Tagged , , , | Comments Off on CCENT Now Fulfills More Associate Prerequisites

Hairpinning VPN and Internet With NAT In ASA 8.2

Over the past few months, I have received a few requests regarding hairpin scenarios and the ASA. Some time back, I provided a scenario that deals with hairpinning (also known as U-Turn) traffic between two VPN spokes in a typical … Continue reading

Posted in CCIE Security, CCNA Security, Certification, Security, Technology | Tagged , , , , , | 5 Comments

Understanding PVLAN Trunk Types

As I mentioned in previous article, the PVLAN trunk feature is not widely available. However they are mentioned in the SWITCH materials. Therefore, I wanted to briefly mention how these may be used. In many cases, I find a picture … Continue reading

Posted in Certification, General, Network, Technology | Tagged , | 1 Comment