Jan
6
2014
Dual Internet connections in active/standby mode without BGP
Dual-Internet-connection-in-active-standby-mode-without-BGP-1

Suppose that your company has two independent Internet connections: the first used as main link and the second used ONLY in case of main connection fault. What can we do to avoid a ‘manual’ switch of routing and NAT tables? In general, in this case, the best solution is to use the BGP protocol with bofh providers, but this solution can be very expensive, so are there other ways to implement this process? In my opinion, one of the best solutions is to use IPSLA, PBR and the EEM features togheter, but what are these features? See you below each […]

Dec
19
2013
Show interface in depth
Show-interface-in-depth

In my opinion, a good network engineer must know the “show interface” in depth; indeed, this command is useful to obtain various interface information like drop, duplex mismatch, error, tx/rx load, … Usually, the IOS switch/router have similar “show interface” output; the differences are dictated by devices, interface and IOS. Below a show interface of a TenGigabitEthernet interface. The show is issued on a Cisco WS-C6509-E in VSS Mode with IOS version 15.

Dec
6
2013
November 2013: three Cisco vulnerabilities
Cisco-vulnerabilities

The Cisco Product Security Incident Response Team (PSIRT) has published three important vulnerability advisories: Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability Cisco WAAS Mobile Remote Code Execution Vulnerability Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability

Dec
5
2013
Cisco ASA < 8.4.4.6 | 8.2.5.32 Ethernet Information Leak
cisco-exploit

This is the Cisco ASA ethernet information leak exploit that leverages the vulnerability noted in CVE-2003-0001. Versions prior to 8.4.4.6 and 8.2.5.32 are affected. Multiple platform ethernet Network Interface Card (NIC) device drivers incorrectly handle frame padding, allowing an attacker to view slices of previously transmitted packets or portions of kernel memory. This vulnerability is the result of incorrect implementations of RFC requirements and poor programming practices, the combination of which results in several variations of this information leakage vulnerability. The simplest attack using this vulnerability would be to send ICMP echo messages to a machine with a vulnerable ethernet […]

Nov
10
2013
October 2013: seven Cisco vulnerabilities
Cisco-vulnerabilities

The Cisco Product Security Incident Response Team (PSIRT) has published seven important vulnerability advisories: Multiple Vulnerabilities in Cisco IOS XE Software for 1000 Series Aggregation Services Routers Cisco IOS XR Software Route Processor Denial of Service Vulnerability Multiple Vulnerabilities in Cisco Identity Services Engine Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products Multiple Vulnerabilities in Cisco Firewall Services Module Software Multiple Vulnerabilities in Cisco ASA Software Cisco IOS XR Software Memory Exhaustion Vulnerability

Oct
12
2013
September 2013: eleven Cisco vulnerabilities
Cisco-vulnerabilities

The Cisco Product Security Incident Response Team (PSIRT) has published eleven important vulnerability advisories: Cisco IOS Software Queue Wedge Denial of Service Vulnerability Cisco IOS Software Internet Key Exchange Memory Leak Vulnerability Cisco IOS Software Zone-Based Firewall and Content Filtering Vulnerability Cisco IOS Software Resource Reservation Protocol Interface Queue Wedge Vulnerability Cisco IOS Software DHCP Denial of Service Vulnerability Cisco IOS Software Multicast Network Time Protocol Denial of Service Vulnerability Cisco IOS Software Network Address Translation Vulnerabilities Cisco IOS Software IPv6 Virtual Fragmentation Reassembly Denial of Service Vulnerability Cisco Prime Central for Hosted Collaboration Solution Assurance Unauthenticated Username and Password […]

Sep
26
2013
WhoisUP v0.2 released!
Whoisup

One year ago, I had published Whoisup v0.1, a script that monitors hosts via ICMP and shows the status in a web page. The script had obtained a good success, so I have decides to continue the WhoisUP project. The version 0.2 has several improvements: Fixed some bugs in the core.php script and in the CSS file Added the warning latency value Added the width index page Added the maintenance mode Added the compact view Added the the core.php check

Sep
20
2013
August 2013: six Cisco vulnerabilities
Cisco-vulnerabilities

The Cisco Product Security Incident Response Team (PSIRT) has published six important vulnerability advisories: Cisco Secure Access Control Server Remote Command Execution Vulnerability Multiple Vulnerabilities in Cisco Unified Communications Manager Cisco Prime Central for Hosted Collaboration Solution Assurance Denial of Service Vulnerabilities Cisco Unified Communications Manager IM and Presence Service Denial of Service Vulnerability Cisco TelePresence System Default Credentials Vulnerability OSPF LSA Manipulation Vulnerability in Multiple Cisco Products

Aug
22
2013
How to save configurations using SNMP
How-to-save-the-running-configuration-using-SNMP

Everyone knows there are software to get the configuration using SNMP; but how can you copy the configuration if you don’t have any tool? Let me explain what is SNMP before show you how to implement it. Simple Network Management Protocol (SNMP) is an “Internet-standard protocol for managing devices on IP networks”. Devices that typically support SNMP include routers, switches, servers, workstations, printers, modem racks, and more. It is used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention. SNMP uses an extensible design, where the available information is defined by management information bases (MIBs). MIBs describe the […]

Aug
12
2013
July 2013: five Cisco vulnerabilities
Cisco-vulnerabilities

The Cisco Product Security Incident Response Team (PSIRT) has published five important vulnerability advisories: Authenticated Command Injection Vulnerability in Multiple Cisco Content Network and Video Delivery Products Cisco WAAS Central Manager Remote Code Execution Vulnerability Multiple Vulnerabilities in the Cisco Video Surveillance Manager Multiple Vulnerabilities in Cisco Intrusion Prevention System Software Multiple Vulnerabilities in Cisco Unified Communications Manager Authenticated Command Injection Vulnerability in Multiple Cisco Content Network and Video Delivery Products Multiple Cisco content network and video delivery products contain a vulnerability when they are configured to run in central management mode. This vulnerability could allow an authenticated but unprivileged, […]

Pages:«1234567...26»