Looking for old JAVA version for Cisco SDM | ASDM | CCP etc…
January 26th, 2011
No comments
Here is the Oracle JAVA archive site.
http://www.oracle.com/technetwork/java/archive-139210.html
Archive
Author Archive
New Posts coming soon
January 21st, 2011
No comments
I have been taking a break from Studying for a while and “plan” to get back to the books soon, here is what I will be focusing on this year;
Finishing of the CCNA Security
- IPv6
- CCNP BGP labs
- CCNP OSPF labs
Also I would like to start doing my labs with IPv6, I will hopefully be able to accomplish this.
I have also just changed the blog theme, see the bottom of the page for theme name and the author details.
Decode of a Zone Based Firewall created by SDM
November 3rd, 2010
No comments
Here is my decode of the config applied to Cisco 3745 router using the SDM wizard for a Zone Based Firewall
Info on about ZBF can be found at the following links:
Overview on the config for ZBF
More Indepth look from Cisco (12.4T)
Video about ZBF from ipexpert.com
We have two security zones defined, “in-zone” & “out-zone”
code 1 ! zone security in-zone zone security out-zone ! ! interface FastEthernet0/1 description $FW_INSIDE$ ip address 192.168.3.1 255.255.255.0 zone-member security in-zone speed 100 full-duplex ! interface Serial0/1 description $FW_OUTSIDE$ ip address 10.2.2.1 255.255.255.252 zone-member security out-zone clock rate 2000000 !
LAB – Port Security
September 16th, 2010
No comments
I have been playing with “Port Security” because I wanted to answer some of these questions.
- What happens if I run macof without PortSecurity enabled?
- What happens if I run macof with PortSecurity in its different forms?
- What will happen if I change my MAC address?
Topology, Equipment & Software Using a laptop plugged into FastEthernet0/2 on a 2950 switch, on the laptop I will be using a piece if software called “macof” to generate masses of source MAC addresses.
Fig1 – Laptop plugged into Cisco 2950 switch, the laptop is also connected to the console port.
Read more…
youtube isn’t all failblog vids
September 8th, 2010
No comments
I found these by accident and then went to the website listed in the info on youtube, a good series of videos.
http://nptel.iitm.ac.in/video.php?courseId=1061 = Ten Videos focusing on Internet Technologys
http://nptel.iitm.ac.in/video.php?courseId=1081 = Ten Videos focusing on Data Communication
http://nptel.iitm.ac.in/video.php?courseId=1050 = Ten Videos focusing on Computer Organization
Categories: Revision and Learning Strategy
Packet Analysis – PC1 to PC2
September 6th, 2010
No comments
This is a very simple packet analysis to show what happens when we connect (ssh in this case) from PC1 to the IP address of PC2.
[edit] I might come back to this and edit it when I have more time. I hope to show more about what ssh is doing with key-exchanging and a more detail explination on information within the whole trace. This was more of an exercise on posting the information.
Revision and Learning Strategy – “Spaced Learning”
August 26th, 2010
No comments
Whilst nosing around other people blogs for tips on studying for Cisco Certifications I came across this article from Greg Ferro @Etherealmind.com and within a passage about “Spaced Learning”. Following the link to spacedlearning.org.uk I read the info and watched a short video. The basic premise of this Technique is that when learning something repetition is key and space/time in-between these repeated learning session is used for something other than learning preferable something physical. I don’t think I have done this learning method justice so for more complete info please go to http://www.spacedlearning.org.uk.
CCNP-ISCW GRE over IPSec with OSPF
August 5th, 2010
No comments
ISWC IPSec LAB with OSPF through GRE tunnel
This is a follow on lab from the basic site to site lab I created a few days ago it has the addition of GRE so I can have dynamic routing protocols accross the VPN.
CCNP-ISCW Basic IPSec
August 5th, 2010
No comments
ISCW IPSec LAB
Lab Description:
The purpose of this lab is to created a IPSec site to site VPN between two routers “IPSec_remote” and “R4”. The routers IPS1 & R2 are simulating IPS routers and are routing the traffic between “IPSec_remote” & “R4”. Below is the interface addressing for the two routers:
CCNP-ISCW MPLS Review
August 5th, 2010
No comments
MPLS terms:
Cisco Express Forwarding (CEF)
Prerequist for MPLS, builds a forwarding table for hardware switching instead of process switching (routing), runs in the control plane.
Forwarding information base (FIB)
The FIB is built by CEF baised on the entrys in the routing table, resides in the dataplane.
Label Distrabution Protocol (LDP)
Protocol (rfc3036) that forwards labels to neighbours an generates and label information base (LIB), runs int the control plane.
Label Forward Information Base (LFIB)
The LFIB is the next hop table formed from the LIB, it runs in the data plane.
Label Switch Router (LSR)
Router witch is performing MPLS label switching
Edge Label Switch Router (edgeLSR)
Router performing MPLS label switching, label imposing and label removal.
Label Switch Path (LSP)
Path which the label packet with take through the MPLS network.
Provider Router (P)
Router that is only doing label switching in MPLS
Provider Edge (PE)
Router that has interfaces in the MPLS network and IP network
Customer Edge (CE)
Router that resides at the customer site connects to the PE routers using IP
Lab setup:
This is a messy setup but it was one that I slapped on the play with MPLS, I also wanted to play with MP-BGP and VPNs hence the extra un-named routers that I will used later at some point.
I have configured this using mainly GNS3 which I broke out onto real equipment using USB NICs, PE-3 is a real 2621 router as is the Internet as I broke out and used PAT to get out onto the internet.
- Configure P routers with OSPF interfaces all in area0
- Configure P2 & P4 interface with OSPF area 1
- Configure PE router with OSPF interfaces in area 1
- Configure CE routers with static routes pointing at next hop interfaces.