Supergrrover thanks for the help.
Is 30 minutes the timeout on the tunnel?
Since this is new to me I just want to make sure I am on the right track.
From the remote site with the aforementioned VPN setup, can I have the remote site machines obtain dhcp leases from the local network? Or is...
Thank you for the info.
I like the idea of the syslog to keep it alive.
The alternative you suggested:
Remote ASA Make A static tunnel back to "Corporate"
Corporate ASA Dynamic VPN so the remote IP would not matter.
Does this alternative allow bidirectional communications?
Since you have...
Hello,
I am trying to find information on how to create a bi directional ipsec tunnel to a remote office. The remote office does not have a static IP address, the corporate however does.
I am not sure if this is even possible. The only thought I had on achieving this would be some sort of...
Thanks for the reply.
Since I had posted your solution was the only solution I could think of.
I assume if I had used an access list:
access-list dmz_access_in permit ip any Outside_Int
it would only allow traffic to the interface IP.
I appreciate you quick accurate response,
Thanks
G...
Hello all,
I am looking for a way to have a DMZ allow traffic to all without giving it access to the internal network.
Currently I have a mail server in the DMZ, with the rule:
Mail Server --> ANY
This allows the mail server to connect into my internal network also.
What I am looking for...
This will help, I started here and used information to create policies of my own.
http://www.sans.org/resources/policies/
Simon I agree as a System Admin. you should be following management direction. However this is a small company and I bet mspain does everything from wiring to...
I use a sendmail relay to relay the incoming mail from the dmz to an internal exchange server. I turned on (forgot the exact name off the top of my head) dns resolution of the sender. If the inbound mail is sent from an IP without a domain name it immediately rejects it.
This has caused some...
Wendell Odom put together a nice blog series on CCNA and CCNP equipment. Check it out.
http://www.networkworld.com/newsletters/lans/2008/060208lan1.html
Well worth a look they cover it all. (at least for a ccnp lab never read the ccna one.)
Gb0mb
........99.9% User Error........
Ubuntu --...
If your switches support SNMP I would consider setting up MRTG. This would give you bandwidth statistics on every port for each switch.
I make a main page that shows the uplink graph for each switch. With a quick look at that page i can call up the graphs for all ports on a switch and then...
Your PC is in the same subnet as the interfaces on the router correct?
You might want to look for a lab book to work with. The books for the test cover the topics but you can also find a book full of labs that walk you through every step of the process.
I used a net-sim that had a ton of labs...
Found this page while doing a quick look for what you need.
http://www.networksecurityjournal.com/features/open-source-security-tools-applications-resources-041007/
Started looking through it, tons of potentially useful tools, just havent found one that meets your needs. I only briefly looked...
I looked at truecrypt and it didnt have the central management I was looking for.
I am currently looking at SafeNet. It has some features which I was looking for.
It gives the ability of single sign on into windows from the boot sector logon.
If you maintain a administrative copy of...
I thought I had mentioned Deep Freeze but I guess I didn't. It is great when dealing with students. As stated above not an answer for having AV.
Gb0mb
........99.9% User Error........
Ubuntu -- African for I can't install Gentoo
no not a ham call. Just a nickname I have had forever.
Take a look at anti-vir.
http://www.free-av.com/
I use it for personal use and never have tried it beyond that.
It consistently beats Symantec products for scanning. It seems Symantec drops virus definitions (signatures) after a...
http://www.clamav.net/
Look at clam-av. I am 99% sure you can download the updates and bring them into your lab.
Gb0mb
........99.9% User Error........
Ubuntu -- African for I can't install Gentoo
The 255.255.255.0 mask allows for 254 addressable IPS. will that be enough address space to cover all the nodes of each network and any possible future growth? Better to plan for the future than right now.
If you going with windows 2k server to save money, have you thought about a possible...
I am doing it from the inside with the appropriate rules blocking any connection to the router from the outside.
I do make a https connection, but it seems that a telnet connection occurs.
I need to sniff some traffic to verify exactly what is not encrypted.
Thanks for the help.
Gb0mb...
99% of the time would be XP. I think this is a viable solution. It seems to be a little more configuration than I anticipated but it does fit the bill of what I am looking for.
Thanks for the help.
Gb0mb
........99.9% User Error........
Ubuntu -- African for I can't install Gentoo
I am setting up a 2611XM router, 12.4 Adv/Ent Ios.
I configured the router according to the included guide for setting up SDM.
In the guide you need to enable the telnet and ssh protocols for local login.
So if I am understanding this right SDM is transmitting your local account Priv. level...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.