tag:blogger.com,1999:blog-26894292003819358182024-02-18T18:02:10.799-08:00SystemAdviseLinux, Systems, LoadBalancer, F5, Cisco, Juniper,ASA, Firewalls, Switches, Routers, MainFrames, Unix, SolarisRahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comBlogger64125tag:blogger.com,1999:blog-2689429200381935818.post-23659669703540933832024-01-16T06:06:00.000-08:002024-01-16T06:06:29.415-08:00Polycom RealPresence Group with CUCM<p>To register Polycom RealPresence Group with CUCM, use the extension number as username to avoid the <b>399 Line Not configured error</b> and Polycom device failure to register.</p>Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-31512417548097289562022-03-05T12:34:00.000-08:002022-03-05T12:34:11.163-08:00 Organization information of list of IP address in text file - With Threading<p> import threading</p><p>from ipwhois import IPWhois</p><p>iplist1=open("iplist1.txt","r")</p><p>iplistlines1=iplist1.readlines()</p><p>iplist2=open("iplist2.txt","r")</p><p>iplistlines2=iplist2.readlines()</p><p>def list1():</p><p> for ip1 in iplistlines1:</p><p> ip1=ip1.strip()</p><p> try:</p><p> domaindetails=IPWhois(ip1)</p><p> fulldetails=domaindetails.lookup_whois()</p><p> org=fulldetails.get('asn_description')</p><p> org=str(org)</p><p> print(ip1+" "+org)</p><p> except:</p><p> print("Error Getting details of "+ip1)</p><p> </p><p>def list2():</p><p> for ip2 in iplistlines2:</p><p> ip2=ip2.strip()</p><p> try:</p><p> domaindetails=IPWhois(ip2)</p><p> fulldetails=domaindetails.lookup_whois()</p><p> org=fulldetails.get('asn_description')</p><p> org=str(org)</p><p> print(ip2+" "+org)</p><p> except:</p><p> print("Error Getting details of "+ip2)</p><p>t1 = threading.Thread(target=list1)</p><p>t2 = threading.Thread(target=list2)</p><p>t1.start()</p><p>t2.start()</p>Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-45091869643027705012022-03-04T05:53:00.005-08:002022-03-04T05:53:55.487-08:00Simple script to find Organization information of list of IP address in text file<p>"""Copy IP addresses to iplist.txt. Output will print IP addresses and ASN description which will be useful to find organization.</p><p>or we can use other key values as per our requirement"""</p><p><br /></p><p>from ipwhois import IPWhois</p><p>iplist=open("iplist.txt","r")</p><p>iplistlines=iplist.readlines()</p><p>for ip in iplistlines:</p><p> ip=ip.strip()</p><p> try:</p><p> domaindetails=IPWhois(ip)</p><p> fulldetails=domaindetails.lookup_whois()</p><p> org=fulldetails.get('asn_description')</p><p> org=str(org)</p><p> print(ip+" "+org)</p><p> except:</p><p> print("Error Getting details of "+ip)</p>Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-8914216468437676682020-08-23T03:35:00.000-07:002020-08-23T03:35:03.562-07:00Cisco Unity Active/Passive <p> </p><p style="font-family: Calibri; font-size: 11.0pt; margin: 0in;">Open GUI ( Primary
or Backup)</p>
<p style="font-family: Calibri; font-size: 11.0pt; margin: 0in;">Go to Cisco Unity
Connection Serviceability</p>
<p style="font-family: Calibri; font-size: 11.0pt; margin: 0in;">Log in with ucadmin</p>
<p style="font-family: Calibri; font-size: 11.0pt; margin: 0in;">Tools Cluster
Management</p>
<p style="font-family: Calibri; font-size: 11.0pt; margin: 0in;">Verify
Active/Passive status, There are options to change .</p>Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-8001580560612463842020-08-23T03:33:00.000-07:002020-08-23T03:33:02.599-07:00Record Unity greetings from IP Phones<p> </p><ol style="direction: ltr; font-family: Calibri; font-size: 11.0pt; font-style: normal; font-weight: normal; margin-bottom: 0in; margin-left: .375in; margin-top: 0in; unicode-bidi: embed;" type="1">
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;" value="1"><span style="font-family: Calibri; font-family: Calibri; font-size: 11.0pt; font-size: 11.0pt; font-style: normal; font-weight: normal;">Go to Call handler, Edit, Add
greeting owner to your ID</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;">Edit Call handler, edit,
caller input, 9 set to greeting administrator</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;">Dial VM Mail extemsopm to reach
the Cisco Unity Connection Greeting Administrator and Press 9</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;"><span style="mso-spacerun: yes;"> </span>Enter your ID # (your assigned ext)</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;">Enter your PIN # (your ext
PIN)</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;"><span style="mso-spacerun: yes;"> </span>Enter the extension of
the Call Handler followed by # (enter
your call handler ext usually the main office ext). You may
need to enter the full call handler number 19529883xxx. H</span></li>
<li style="margin-bottom: 0; margin-top: 0; vertical-align: middle;"><span style="font-family: Calibri; font-size: 11.0pt;"><span style="mso-spacerun: yes;"> </span>Listen to the prompts to change
a greeting. It will first repeat the current greeting, then give
you options to change. </span></li>
</ol>Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-9894171551936435112018-03-19T01:51:00.001-07:002018-03-19T01:51:23.725-07:00Cisco Anyconnect Group URL<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
Sample configuration</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<br /></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Employees type remote-access</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Employees general-attributes</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
default-group-policy Employees-GroupPolicy</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Employeesl webvpn-attributes</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
group-alias Employees enable</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">group-url </span>https://vpn.test.com/Employees<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;"> enable</span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;"><br /></span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Contractors type remote-access</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Contractors general-attributes</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
default-group-policy Contractors-GroupPolicy</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
tunnel-group Contractorswebvpn-attributes</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
group-alias Contractors enable</div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;"></span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">group-url </span>https://vpn.test.com/<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Contractors enable</span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;"><br /></span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Same can be configured from ASDM as well</span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Connection profile settings-->Advanced--> Group Alias/Group URL-->Add</span></div>
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
<span style="border: 0px; font-family: inherit; font-style: inherit; font-weight: inherit; margin: 0px; padding: 0px; vertical-align: baseline;"><br /></span></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-32450699978474421522017-09-22T00:38:00.001-07:002017-09-22T00:38:53.162-07:00Cisco VTI Configuration <div dir="ltr" style="text-align: left;" trbidi="on">
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">Virtual Tunnel Interface is a Cisco technology that basically allows you to have IPSEC tunnels. This is easier compared to site to site tunnel which needs lot of work, and troubleshooting also is very complex.</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><br /></span>
<span style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif;"><span style="background-color: white; font-size: 13.2px;">Below are the configuration steps for setting up VTI in Cisco</span></span><br />
<span style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif;"><span style="background-color: white; font-size: 13.2px;"><br /></span></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">crypto isakmp policy 100</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">encr 1des</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">authentication pre-share</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">group 1</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">crypto ipsec transform-set VTI-TS esp-3des esp-md5-hmac</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">crypto ipsec profile VTI</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">set transform-set VTI-TS</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">interface Tunnel0</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">ip address 192.168.1.1 255.255.255.252</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel source <Local ISP IP></span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel destination <Remote ISP></span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel mode ipsec ipv4</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel protection ipsec profile VTI</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">crypto isakmp key Psk@PSK address <Remote ISP></span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif;"><span style="background-color: white; font-size: 13.2px;"><i>Remote Router</i></span></span><br />
<span style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif;"><span style="background-color: white; font-size: 13.2px;"><i><br /></i></span></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">interface Tunnel0</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">ip address 192.168.1.2 255.255.255.252</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel source <Local ISP IP></span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel destination <Remote ISP></span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel mode ipsec ipv4</span><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;" /><span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">tunnel protection ipsec profile VTI</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">Rest of the configuration is same. You need to assign local ISP interface IP and Remote ISP interface IP accordingly.</span><br />
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;"><br /></span>
<span style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; font-style: italic;">Once this is done, you will be able to ping 192.168.1.1 and 192.168.1.2 eachother. Then add any dynamic routing protocol for easy routing.</span></div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-27576477361894597422017-09-22T00:30:00.001-07:002017-09-22T00:30:53.530-07:00Cisco ASA dual ISP for incoming traffic<div dir="ltr" style="text-align: left;" trbidi="on">
Requirement<br />
<br />
If we are using Public IP address provided by ISP1 and ISP2, and wants to make both public links active at a time.<br />
<br />
<br />
For this purpose , we can use Traffic zones so that we will be able create two default routes.<br />
<br />
Outbound Traffic- Load balanced across two ISPs, We should do tracking as well to identify failed routes<br />
<br />
Inbound Traffic - ASA will return the traffic through the same interface it is coming from.<br />
<br />
Additional requirement- Secondary or Additional IP address in Public (dmz/inside) server<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8u3n8paJCvcoy-tIXEFNlVb0oBrGIVxQmGw1sbttObv_IAGqDi8Wna3HZVuQlvrJduumnKOKtOd7KaE37r6itDHpQB6TgsbFwR7UrKSC7B643NTgMjwD5ks1Zm9RMq-HsXL1sPAqPnig/s1600/Dual+ISP.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="578" data-original-width="468" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8u3n8paJCvcoy-tIXEFNlVb0oBrGIVxQmGw1sbttObv_IAGqDi8Wna3HZVuQlvrJduumnKOKtOd7KaE37r6itDHpQB6TgsbFwR7UrKSC7B643NTgMjwD5ks1Zm9RMq-HsXL1sPAqPnig/s200/Dual+ISP.JPG" width="161" /></a></div>
Example.<br />
<br />
Topology<br />
R3 is the remote user<br />
R1 - ISP1 Router<br />
R2- ISP2 Router<br />
ASA- Customer side ASA<br />
R4- Internal or DMZ public server with 2 ip address<br />
<br />
Configuration required in ASA<br />
<br />
1. Traffic zones<br />
<br />
config mode-<br />
zone ISP<br />
zone Internal<br />
<br />
Interface mode<br />
<br />
zone-member ISP // for both ISP interfaces<br />
<br />
2. Routes<br />
<br />
route outside1 0.0.0.0 0.0.0.0 192.168.3.2 1<br />
route outside2 0.0.0.0 0.0.0.0 192.168.4.2 1 <br />
<br />
You may need to create tracking for above routes.<br />
<br />
3. NAT<br />
<br />
nat (inside1,outside1) source static inside1_192.168.100.100 public1_1.1.1.1 ( NAT for primary IP)<br />
nat (inside1,outside2) source static inside2_192.168.100.101 public2_2.2.2.2 ( NAT for secondary/additonal IP through seondary ISP)<br />
nat (inside1,outside1) source dynamic inside1_192.168.100.100 interface<br />
nat (inside1,outside2) source dynamic inside1_192.168.100.100 interface<br />
<br />
<br />
pm me if you need any help<br />
<br />
Please note: Alternate option is use Policy based routes in ASA, so if ip address in secondary , then we can set next hop to secondary IP.<br />
<div>
<br /></div>
<br />
<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<br /></div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-27881592113363158882017-08-24T04:30:00.001-07:002017-08-24T04:30:07.000-07:00Anyconnect VPN client Start Before Login (SBL) <div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
<span style="font-size: 11.0pt;"><a href="https://clicktime.symantec.com/a/1/wn9E2_ATcmTFAChnksk9LiPh-t7yy5h_R3iPSahVZ0Q=?d=i3b0N6qJPvoRkLN8W-DS1rFGaiTnVyoUCh_TmJjNAwclLw9fCxzw0nSvlZGIHRnpPOCEC0TTJWGw_ge9iD3ZGIl2lLaffVUMVnvrMQnDOXInjnD5qSaI9W-9GQhOTDJHO_Q-hfPiGB0TtYywgzBdDnVYlKHUq10ue7PdMOQivTb1P9PnfEEbXDCF7IPFvqlEhhzA47Zc4lSHWjihXTGprqAp48Uanw1crTdCc9zrRfK1oZeUCGRUfP7J5mj1a8vipK1lhYMCCY8VQXo9gK_66jCsjsdD0AsGYUEi8qUIKGEF2oRMW5TEu3M8d4EEvAGdPjv-MA1vVd40IDo2uCLWY_1sxinUWLswNyI2Li7T2JAEvm99Sw%3D%3D&u=http%3A%2F%2Fwww.labminutes.com%2Fsec0131_ssl_vpn_anyconnect_secure_mobility_start_before_logon">http://www.labminutes.com/sec0131_ssl_vpn_anyconnect_secure_mobility_start_before_logon</a>
<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-size: 11.0pt;">If you need more information
about how this feature works, please find links:<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-size: 11.0pt;"><br /></span></div>
<br />
<div class="MsoNormal">
<span style="font-size: 11.0pt;"><a href="https://clicktime.symantec.com/a/1/U4cNvH3P-C8UhpoT00-dqgxFwxr0g5DjZ2efhgwlpvY=?d=i3b0N6qJPvoRkLN8W-DS1rFGaiTnVyoUCh_TmJjNAwclLw9fCxzw0nSvlZGIHRnpPOCEC0TTJWGw_ge9iD3ZGIl2lLaffVUMVnvrMQnDOXInjnD5qSaI9W-9GQhOTDJHO_Q-hfPiGB0TtYywgzBdDnVYlKHUq10ue7PdMOQivTb1P9PnfEEbXDCF7IPFvqlEhhzA47Zc4lSHWjihXTGprqAp48Uanw1crTdCc9zrRfK1oZeUCGRUfP7J5mj1a8vipK1lhYMCCY8VQXo9gK_66jCsjsdD0AsGYUEi8qUIKGEF2oRMW5TEu3M8d4EEvAGdPjv-MA1vVd40IDo2uCLWY_1sxinUWLswNyI2Li7T2JAEvm99Sw%3D%3D&u=https%3A%2F%2Fwww.cisco.com%2Fc%2Fen%2Fus%2Ftd%2Fdocs%2Fsecurity%2Fvpn_client%2Fanyconnect%2Fanyconnect45%2Fadministration%2Fguide%2Fb_AnyConnect_Administrator_Guide_4-5%2Fconfigure-vpn.html%23topic_730AB339EAD0419CA6F0F398ACB77E9E">https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect45/administration/guide/b_AnyConnect_Administrator_Guide_4-5/configure-vpn.html#topic_730AB339EAD0419CA6F0F398ACB77E9E</a>
<o:p></o:p></span></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-75127849326631857332017-08-03T00:26:00.000-07:002017-08-03T00:26:49.720-07:00Windows cannot find javaw.exe<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
When opening <strong style="margin: 0px; padding: 0px;">Cisco ASDM-IDM Launcher</strong> you get an error that says, “Windows cannot find ‘<span class="skimlinks-unlinked" style="margin: 0px; padding: 0px;">javaw.exe</span>’. </div>
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
<img alt="pic" class="alignnone size-full wp-image-1314" data-attachment-id="1314" data-comments-opened="1" data-image-description="" data-image-meta="{"aperture":"0","credit":"","camera":"","caption":"","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"","orientation":"0"}" data-image-title="pic" data-large-file="https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=595?w=576" data-medium-file="https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=595?w=300" data-orig-file="https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=595" data-orig-size="576,142" data-permalink="https://patrickhoban.wordpress.com/2015/01/09/1024/pic/" sizes="(max-width: 576px) 100vw, 576px" src="https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=595" srcset="https://patrickhoban.files.wordpress.com/2015/01/pic.png 576w, https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=150 150w, https://patrickhoban.files.wordpress.com/2015/01/pic.png?w=300 300w" style="border: 0px; margin: 0px; max-width: 600px; padding: 0px;" /></div>
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
<strong style="margin: 0px; padding: 0px;">Solution</strong></div>
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
Add the path to the java installation in the PATH environment variable. For me the path was <strong style="margin: 0px; padding: 0px;">C:\Program Files\Java\jre1.8.0_121\bin</strong> but obviously it can be different depending on the Java version & your environment.</div>
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
<br /></div>
<div style="background-color: white; color: #555555; font-family: Verdana, "BitStream vera Sans", Helvetica, sans-serif; font-size: 12px; margin-bottom: 10px; padding: 0px;">
Location of the path can be found under control panel-->Advanced user settings, enviornment variables--> PATH. add ;C:\Program Files\Java\jre1.8.0_121\bin if there is already anothe variable set.</div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-67614474675354981962017-07-31T05:01:00.001-07:002017-07-31T05:01:10.302-07:00Company Logo for Cisco Anyconnect<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<span style="background-color: white;">Rename Image in to company_logo.PNG while importing</span></div>
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<span style="background-color: white;">if you are going to use a version under AnyConnect 3.0 such as 2.5 the name of the image should be company_logo.bmp</span></div>
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<span style="background-color: white; font-size: 14.4px;">Then we upload it on the ASDM on the following path</span></div>
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<span style="background-color: white; font-size: 14.4px;">Configuration > Remote Access VPN > Network (Client) Access > AnyConnect Customization/Localization > Resources.</span></div>
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<span style="background-color: white; font-size: 14.4px;">Then you connect with the AnyConnect, disconnect, close it and reopen the AnyConnect.</span></div>
<div style="color: #333333; font-family: Arial, sans-serif; font-size: 14.4px; margin-bottom: 1.4em; outline: none;">
<br /></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-69086629386764719562017-07-31T04:46:00.001-07:002017-07-31T04:46:10.693-07:00Cisco ASA with Google Authenticator<div dir="ltr" style="text-align: left;" trbidi="on">
<h3 style="background-color: black; color: white; font-family: verdana;">
<div style="font-size: 13px; font-weight: normal;">
<b>Install FreeRADIUS and other Necessary Packages</b></div>
</h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
<br /></div>
<div>
<code style="color: #006000;">sudo bash</code></div>
<div>
<code style="color: #006000;">apt-get update</code></div>
<div>
<code style="color: #006000;">apt-get install build-essential libpam0g-dev freeradius git libqrencode3</code> </div>
</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Download-Google-Authenticator-Pam-Module-Source" style="color: #336699;"></a><b>Download Google Authenticator Pam Module Source</b></h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">cd ~</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">git clone https://code.google.com/p/google-authenticator/</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">cd google-authenticator/libpam/</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">make</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">make install</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Configure-Local-Unix-Groups" style="color: #336699;"></a>Configure Local Unix Groups</h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
We will need to add a group called 'radius-disabled' to drop users in, when you want to disable access (rather than removing them entirely)</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">addgroup radius-disabled</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Configure-FreeRADIUS" style="color: #336699;"></a><span style="font-size: small;">Configure FreeRADIUS</span></h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;">FreeRADIUS must run as root for this to work. Yeah, I know it's not good practice, but thats the way this works. In other words, you may want to limit the use of this box to FreeRADIUS authentication only. The reason for this is so that FreeRADIUS can access the .google_authenticator token in each home directory. Otherwise FreeRADIUS does not have access.</span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><br /></span></div>
<h4 style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<a href="https://www.blogger.com/null" name="TOC-First-edit-etc-freeradius-radusd.conf" style="color: #336699;"></a><span style="font-size: x-small;">First, edit /etc/freeradius/radusd.conf</span></h4>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;">You need to locate the following lines:</span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><br /></span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;"># user/group: The name (or #number) of the user/group to run radiusd as.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># If these are commented out, the server will run as the user/group</code></div>
<div>
<code style="color: #006000;"># that started it. In order to change to a different user/group, you</code></div>
<div>
<code style="color: #006000;"># MUST be root ( or have root privleges ) to start the server.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># We STRONGLY recommend that you run the server with as few permissions</code></div>
<div>
<code style="color: #006000;"># as possible. That is, if you're not using shadow passwords, the</code></div>
<div>
<code style="color: #006000;"># user and group items below should be set to radius'.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># NOTE that some kernels refuse to setgid(group) when the value of</code></div>
<div>
<code style="color: #006000;"># (unsigned)group is above 60000; don't use group nobody on these systems!</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># On systems with shadow passwords, you might have to set 'group = shadow'</code></div>
<div>
<code style="color: #006000;"># for the server to be able to read the shadow password file. If you can</code></div>
<div>
<code style="color: #006000;"># authenticate users while in debug mode, but not in daemon mode, it may be</code></div>
<div>
<code style="color: #006000;"># that the debugging mode server is running as a user that can read the</code></div>
<div>
<code style="color: #006000;"># shadow info, and the user listed below can not.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># The server will also try to use "initgroups" to read /etc/groups.</code></div>
<div>
<code style="color: #006000;"># It will join all groups where "user" is a member. This can allow</code></div>
<div>
<code style="color: #006000;"># for some finer-grained access controls.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;">user = freerad</code></div>
<div>
<code style="color: #006000;">group = freerad</code></div>
</div>
<div>
<br /></div>
<div>
and then change the user & group lines to look like the following</div>
<div>
<br /></div>
<div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;">user = root</code></div>
<div>
<code style="color: #006000;">group = root</code></div>
</div>
<div>
<br /></div>
<div>
Once you have done this, save and close the file.</div>
<div>
<br /></div>
<h4>
<a href="https://www.blogger.com/null" name="TOC-Next-edit-etc-freeradius-users" style="color: #336699;"></a>Next edit, /etc/freeradius/users</h4>
<div>
<div>
<br /></div>
<div>
You need to locate the following lines:</div>
<div>
<br /></div>
<div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># Deny access for a group of users.</code></div>
<div>
<code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"># Note that there is NO 'Fall-Through' attribute, so the user will not</code></div>
<div>
<code style="color: #006000;"># be given any additional resources.</code></div>
<div>
<code style="color: #006000;">#</code></div>
</div>
<div>
<br /></div>
</div>
<div>
We will start by creating a group that you can add users to and disable their access.</div>
<div>
<br /></div>
<div>
Directly after these lines add the following code:</div>
</span><br /><div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;">DEFAULT Group == "radius-disabled", Auth-Type := Reject</code></div>
<div>
<code style="color: #006000;"> Reply-Message = "Your account has been disabled."</code></div>
</div>
<br />Now, we will add the default rule to use the PAM libraries to authenticate users</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
Directly after the previous lines of code, add the following:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<code style="color: #006000;">DEFAULT Auth-Type := PAM</code></div>
</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /><h4>
<a href="https://www.blogger.com/null" name="TOC-Now-edit-etc-freeradius-sites-enabled-default" style="color: #336699;"></a><span style="font-size: x-small;">Now edit, /etc/freeradius/sites-enabled/default</span></h4>
</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><br /></span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;">Locate the following lines of code:</span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><br /></span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<span style="font-size: x-small;"><div>
<div>
</div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<div>
<code style="color: #006000;">authenticate {</code></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # PAP authentication, when a back-end database listed</code></div>
<div>
<code style="color: #006000;"> # in the 'authorize' section supplies a password. The</code></div>
<div>
<code style="color: #006000;"> # password can be clear-text, or encrypted.</code></div>
<div>
<code style="color: #006000;"> Auth-Type PAP {</code></div>
<div>
<code style="color: #006000;"> pap</code></div>
<div>
<code style="color: #006000;"> }</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # Most people want CHAP authentication</code></div>
<div>
<code style="color: #006000;"> # A back-end database listed in the 'authorize' section</code></div>
<div>
<code style="color: #006000;"> # MUST supply a CLEAR TEXT password. Encrypted passwords</code></div>
<div>
<code style="color: #006000;"> # won't work.</code></div>
<div>
<code style="color: #006000;"> Auth-Type CHAP {</code></div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">chap</code></div>
<div>
<code style="color: #006000;"> }</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # MSCHAP authentication.</code></div>
<div>
<code style="color: #006000;"> Auth-Type MS-CHAP {</code></div>
<div>
<code style="color: #006000;"> mschap</code></div>
<div>
<code style="color: #006000;"> }</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # If you have a Cisco SIP server authenticating against</code></div>
<div>
<code style="color: #006000;"> # FreeRADIUS, uncomment the following line, and the 'digest'</code></div>
<div>
<code style="color: #006000;"> # line in the 'authorize' section.</code></div>
<div>
<code style="color: #006000;"> digest</code></div>
</div>
<div>
<br /></div>
<div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">#</code></div>
<div>
<code style="color: #006000;"> # Pluggable Authentication Modules.</code></div>
<div>
<code style="color: #006000;"># pam</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # See 'man getpwent' for information on how the 'unix'</code></div>
<div>
<code style="color: #006000;"> # module checks the users password. Note that packets</code></div>
<div>
<code style="color: #006000;"> # containing CHAP-Password attributes CANNOT be authenticated</code></div>
<div>
<code style="color: #006000;"> # against /etc/passwd! See the FAQ for details.</code></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # For normal "crypt" authentication, the "pap" module should</code></div>
<div>
<code style="color: #006000;"> # be used instead of the "unix" module. The "unix" module should</code></div>
<div>
<code style="color: #006000;"> # be used for authentication ONLY for compatibility with legacy</code></div>
<div>
<code style="color: #006000;"> # FreeRADIUS configurations.</code></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> unix</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> # Uncomment it if you want to use ldap for authentication</code></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # Note that this means "check plain-text password against</code></div>
<div>
<code style="color: #006000;"> # the ldap database", which means that EAP won't work,</code></div>
<div>
<code style="color: #006000;"> # as it does not supply a plain-text password.</code></div>
</div>
<div>
<div>
<code style="color: #006000;"># Auth-Type LDAP {</code></div>
<div>
<code style="color: #006000;"># ldap</code></div>
<div>
<code style="color: #006000;"># }</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # Allow EAP authentication.</code></div>
<div>
<code style="color: #006000;"> eap</code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"> # The older configurations sent a number of attributes in</code></div>
<div>
<code style="color: #006000;"> # Access-Challenge packets, which wasn't strictly correct.</code></div>
<div>
<code style="color: #006000;"> # If you want to filter out these attributes, uncomment</code></div>
<div>
<code style="color: #006000;"> # the following lines.</code></div>
<div>
<code style="color: #006000;"> #</code></div>
<div>
<code style="color: #006000;"># Auth-Type eap {</code></div>
<div>
<code style="color: #006000;"># eap {</code></div>
<div>
<code style="color: #006000;"># handled = 1</code></div>
<div>
<code style="color: #006000;"># }</code></div>
<div>
<code style="color: #006000;"># if (handled && (Response-Packet-Type == Access-Challenge)) {</code></div>
<div>
<code style="color: #006000;"># attr_filter.access_challenge.post-auth</code></div>
<div>
<code style="color: #006000;"># handled # override the "updated" code from attr_filter</code></div>
<div>
<code style="color: #006000;"># }</code></div>
<div>
<code style="color: #006000;"># }</code></div>
<div>
<code style="color: #006000;">}</code></div>
</div>
<div>
</div>
</div>
</span></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
Uncomment the line with "pam" so it should look like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); color: white; font-family: verdana; font-size: 13.3333px; line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<div>
<code style="color: #006000;"> # Pluggable Authentication Modules.</code></div>
<div>
<code style="color: #006000;"> pam</code></div>
</div>
<div>
</div>
</div>
<br style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;" />
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Configure-PAM" style="color: #336699;"></a>Configure PAM</h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
PAM must be configured to use the local Unix password in combination with the Google Authenticator password.</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h4 style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<a href="https://www.blogger.com/null" name="TOC-Edit-etc-pam.d-radiusd" style="color: #336699;"></a>Edit /etc/pam.d/radiusd</h4>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
Currently the file should look like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;"># </code></div>
<div>
<code style="color: #006000;"># /etc/pam.d/radiusd - PAM configuration for FreeRADIUS </code></div>
<div>
<code style="color: #006000;"># </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"># We fall back to the system default in /etc/pam.d/common-* </code></div>
<div>
<code style="color: #006000;"># </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;">@include common-auth</code></div>
<div>
<code style="color: #006000;">@include common-account</code></div>
<div>
<code style="color: #006000;">@include common-password</code></div>
<div>
<code style="color: #006000;">@include common-session</code></div>
</div>
<div>
<br /></div>
</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
We need to comment out all the lines that start with @ and then add the following code:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); color: white; font-family: verdana; font-size: 13.3333px; line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<div>
<code style="color: #006000;">auth requisite pam_google_authenticator.so forward_pass</code></div>
<div>
<code style="color: #006000;">auth required pam_unix.so use_first_pass</code></div>
</div>
<div>
</div>
</div>
<br style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;" />
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
So in the end, the file should look like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;"># </code></div>
<div>
<code style="color: #006000;"># /etc/pam.d/radiusd - PAM configuration for FreeRADIUS </code></div>
<div>
<code style="color: #006000;"># </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;"># We fall back to the system default in /etc/pam.d/common-* </code></div>
<div>
<code style="color: #006000;"># </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;">#@include common-auth </code></div>
<div>
<code style="color: #006000;">#@include common-account </code></div>
<div>
<code style="color: #006000;">#@include common-password </code></div>
<div>
<code style="color: #006000;">#@include common-session </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;">auth requisite pam_google_authenticator.so forward_pass</code></div>
<div>
<code style="color: #006000;">auth required pam_unix.so use_first_pass</code></div>
</div>
<div>
<br /></div>
</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Setup-a-local-test-user" style="color: #336699;"></a>Setup a local test user</h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">adduser test</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
choose a easy password to remember, for this example I used "test123"</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">cd /home/test/</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">su test</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">google-authenticator</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
If everything worked right you should see something that looks like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); color: white; font-family: verdana; font-size: 13.3333px; line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<div>
<code style="color: #006000;">test@FreeDualFactor:~$ google-authenticator </code></div>
<div>
<br /></div>
<div>
<code style="color: #006000;">Do you want authentication tokens to be time-based (y/n) y</code></div>
<div>
<code style="color: #006000;">https://www.google.com/chart?chs=200x200&chld=M|0&cht=qr&chl=otpauth://totp/test@FreeDualFactor%3Fsecret%3DXQH7L6A7W6OK3JYS</code></div>
<div>
<code style="color: #006000;"> </code></div>
<div>
<code style="color: #006000;"> <div>
<a href="http://www.supertechguy.com/help/security/freeradius-google-auth/QRGoogleAuth.tiff?attredirects=0" imageanchor="1" style="background: none; border-bottom: none; color: rgb(238, 238, 238) !important;"><img border="0" src="http://www.supertechguy.com/_/rsrc/1467126182822/help/security/freeradius-google-auth/QRGoogleAuth.tiff" style="border: 0px; padding: 0px;" /></a></div>
</code></div>
<div>
<span style="color: #38761d;">Your new secret key is: XQH7L6A7W6OK3JYS</span></div>
<div>
<code style="color: #006000;">Your verification code is 158428</code></div>
<div>
<code style="color: #006000;">Your emergency scratch codes are:</code></div>
<div>
<code style="color: #006000;"> 60469537</code></div>
<div>
<code style="color: #006000;"> 95985887</code></div>
<div>
<code style="color: #006000;"> 80580778</code></div>
<div>
<code style="color: #006000;"> 52386153</code></div>
<div>
<code style="color: #006000;"> 52951956</code></div>
<div>
<br /></div>
<div>
<div>
<span style="color: #006000; font-family: monospace;">Do you want me to update your "/home/test/.google_authenticator" file (y/n) y</span></div>
<div>
<span style="color: #006000; font-family: monospace;"><br /></span></div>
<div>
<span style="color: #006000; font-family: monospace;">Do you want to disallow multiple uses of the same authentication</span></div>
<div>
<span style="color: #006000; font-family: monospace;">token? This restricts you to one login about every 30s, but it increases</span></div>
<div>
<span style="color: #006000; font-family: monospace;">your chances to notice or even prevent man-in-the-middle attacks (y/n) y</span></div>
<div>
<span style="color: #006000; font-family: monospace;"><br /></span></div>
<div>
<span style="color: #006000; font-family: monospace;">By default, tokens are good for 30 seconds and in order to compensate for</span></div>
<div>
<span style="color: #006000; font-family: monospace;">possible time-skew between the client and the server, we allow an extra</span></div>
<div>
<span style="color: #006000; font-family: monospace;">token before and after the current time. If you experience problems with poor</span></div>
<div>
<span style="color: #006000; font-family: monospace;">time synchronization, you can increase the window from its default</span></div>
<div>
<span style="color: #006000; font-family: monospace;">size of 1:30min to about 4min. Do you want to do so (y/n) n</span></div>
<div>
<span style="color: #006000; font-family: monospace;"><br /></span></div>
<div>
<span style="color: #006000; font-family: monospace;">If the computer that you are logging into isn't hardened against brute-force</span></div>
<div>
<span style="color: #006000; font-family: monospace;">login attempts, you can enable rate-limiting for the authentication module.</span></div>
<div>
<span style="color: #006000; font-family: monospace;">By default, this limits attackers to no more than 3 login attempts every 30s.</span></div>
<div>
<span style="color: #006000; font-family: monospace;">Do you want to enable rate-limiting (y/n) y</span></div>
</div>
</div>
<div>
<br /></div>
<div>
<br /></div>
<div>
</div>
</div>
<br style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;" />
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
You can configure yours how you see fit.</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
Scan once you get your custom QR Code, scan it in to your Google Authenticator App.</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
The App should generate a rotating code that you can use for your dual factor authentication.</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<h3 style="background-color: black; color: white; font-family: verdana;">
<a href="https://www.blogger.com/null" name="TOC-Test-your-Configuration" style="color: #336699;"></a>Test your Configuration</h3>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">service freeradius restart</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
You will want to use a command called "radtest" to test your configuration.</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">radtest <username> <unix_password><google_auth> localhost 18120 testing123</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
testing123 is a default secret for the localhost client, used for testing purposes. You can find this in /etc/freeradius/clients.conf</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
so since my password is "test123" and the current google authenticator key is "696720" my test looks like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<code style="color: #006000;">radtest test test123696720 localhost 18120 testing123</code></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
If it works right, you should get something like this:</div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<br /></div>
<div style="background-color: black; color: white; font-family: verdana; font-size: 13.3333px;">
<div>
</div>
<div class="sites-codeblock sites-codesnippet-block" style="background-color: #efefef; border: 1px solid rgb(211, 211, 211); line-height: 1; padding: 0.5em 0px 0.5em 1em;">
<div>
<code style="color: #006000;">root@FreeDualFactor:~# radtest test test123696720 localhost 18120 testing123</code></div>
<div>
<code style="color: #006000;">Sending Access-Request of id 154 to 127.0.0.1 port 1812</code></div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">User-Name = "test"</code></div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">User-Password = "test123696720"</code></div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">NAS-IP-Address = 127.0.1.1</code></div>
<div>
<span style="white-space: pre;"> </span><code style="color: #006000;">NAS-Port = 18120</code></div>
<div>
<code style="color: #006000;">rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=154, length=20</code></div>
<div>
<code style="color: #006000;"><br /></code></div>
</div>
</div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-81089811146420586442016-12-19T05:48:00.001-08:002016-12-19T05:48:36.735-08:00Cisco ASA - ERROR: Capture doesn't support access-list containing mixed policies<div dir="ltr" style="text-align: left;" trbidi="on">
<h2 style="background-color: white; color: #454545; font-family: Ubuntu; font-size: 27px; font-weight: normal; letter-spacing: 1.5px; line-height: 34px; margin: 25px 0px 15px; text-rendering: optimizeLegibility; text-transform: uppercase;">
<span style="color: black;">ISSUE</span></h2>
<div style="background-color: white; color: #555555; font-family: Ubuntu; font-size: 16px; margin-bottom: 15px; margin-top: 15px;">
When trying to run a capture you experience the following error,</div>
<pre class="prettyprint" prettyprinted" style="background: none 0px 0px repeat scroll rgb(245, 245, 245) !important; border-radius: 0px; border: medium none !important; color: rgb(98, 98, 98) !important; font-family: Consolas, monospace, serif; font-size: 14px !important; line-height: 16.1px; margin-bottom: 15px; margin-top: 15px; overflow: auto; padding: 23px !important; tab-size: 4; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;"><span class="pln" style="color: black;">asa</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">skyn3t</span><span class="pun" style="color: #666600;">(</span><span class="pln" style="color: black;">config</span><span class="pun" style="color: #666600;">)#</span><span class="pln" style="color: black;"> access</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">list cap</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">acl permit ip any any</span>
<span class="pln" style="color: black;">asa</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">skyn3t</span><span class="pun" style="color: #666600;">(</span><span class="pln" style="color: black;">config</span><span class="pun" style="color: #666600;">)#</span><span class="pln" style="color: black;"> capture inside </span><span class="kwd" style="color: #000088;">interface</span><span class="pln" style="color: black;"> inside access</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">list cap</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">acl</span>
<span class="pln" style="color: black;">ERROR</span><span class="pun" style="color: #666600;">:</span><span class="pln" style="color: black;"> </span><span class="typ" style="color: #660066;">Capture</span><span class="pln" style="color: black;"> doesn</span><span class="str" style="color: #008800;">'t support access-list <cap> containing mixed policies</span></pre>
<h2 style="background-color: white; color: #454545; font-family: Ubuntu; font-size: 27px; font-weight: normal; letter-spacing: 1.5px; line-height: 34px; margin: 25px 0px 15px; text-rendering: optimizeLegibility; text-transform: uppercase;">
<span style="color: black;">SOLUTION</span></h2>
<div style="background-color: white; color: #555555; font-family: Ubuntu; font-size: 16px; margin-bottom: 15px; margin-top: 15px;">
Within ASA 9.0 the 'any' keyword now represents all IPv4 and IPv6 traffic. And the new keywords 'any4' and 'any6' have been introduced to represent either IPv4 or IPv6 traffic.</div>
<div style="background-color: white; color: #555555; font-family: Ubuntu; font-size: 16px; margin-bottom: 15px; margin-top: 15px;">
To resolve the issue perviously seen use the 'any4' or any6' keywords within your ACL,</div>
<pre class="prettyprint" prettyprinted" style="background: none 0px 0px repeat scroll rgb(245, 245, 245) !important; border-radius: 0px; border: medium none !important; color: rgb(98, 98, 98) !important; font-family: Consolas, monospace, serif; font-size: 14px !important; line-height: 16.1px; margin-bottom: 15px; margin-top: 15px; overflow: auto; padding: 23px !important; tab-size: 4; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;"><span class="pln" style="color: black;">asa</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">skyn3t</span><span class="pun" style="color: #666600;">(</span><span class="pln" style="color: black;">config</span><span class="pun" style="color: #666600;">)#</span><span class="pln" style="color: black;"> access</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">list cap</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">acl permit ip any4 any4</span>
<span class="pln" style="color: black;">asa</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">skyn3t</span><span class="pun" style="color: #666600;">(</span><span class="pln" style="color: black;">config</span><span class="pun" style="color: #666600;">)#</span><span class="pln" style="color: black;"> capture inside </span><span class="kwd" style="color: #000088;">interface</span><span class="pln" style="color: black;"> inside access</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">list cap</span><span class="pun" style="color: #666600;">-</span><span class="pln" style="color: black;">acl</span></pre>
<div style="background-color: white; color: #555555; font-family: Ubuntu; font-size: 16px; margin-bottom: 15px; margin-top: 15px;">
<br /></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-72084333854400607622016-11-18T07:22:00.002-08:002016-11-18T07:22:07.945-08:00F5 Cookie Decode<div dir="ltr" style="text-align: left;" trbidi="on">
<ol style="background-color: white; border: 0px; color: #666666; font-family: Arial, Helvetica, sans-serif; font-size: 14.4px; font-stretch: inherit; font-variant-numeric: inherit; line-height: inherit; list-style: none; margin: 0px; padding: 0px; position: relative; vertical-align: baseline;">
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Take the first segment of the cookie value (839518730) and convert it to its 4-byte hexadecimal equivalent (320A0A0A)</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Reverse the byte order (0A0A0A32)</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Convert each byte back to its decimal value</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">0A = 10, 0A = 10, 0A = 10, 32 = 50</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">The resulting address is 10.10.10.50</li>
</ol>
<div style="background-color: white; border: 0px; font-family: Arial, Helvetica, sans-serif; font-size: 14.4px; font-stretch: inherit; font-variant-numeric: inherit; line-height: inherit; margin-bottom: 15px; margin-top: 15px; padding: 0px; vertical-align: baseline;">
The following method was used to decode the port number:</div>
<ol style="background-color: white; border: 0px; color: #666666; font-family: Arial, Helvetica, sans-serif; font-size: 14.4px; font-stretch: inherit; font-variant-numeric: inherit; line-height: inherit; list-style: none; margin: 0px; padding: 0px; position: relative; vertical-align: baseline;">
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Take the second segment of the cookie value (47873) and convert it to the equivalent 2-byte hexadecimal value (BB01)</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Reverse the byte order (01BB)</li>
<li style="border: 0px; font-family: inherit; font-size: inherit; font-stretch: inherit; font-style: inherit; font-variant: inherit; font-weight: inherit; line-height: inherit; margin: 0px; padding: 0px; vertical-align: baseline;">Convert the value back to its decimal value (443)</li>
</ol>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-3182334186682841612016-11-16T03:56:00.002-08:002016-11-16T03:56:51.018-08:00Palo Alto Vs Cisco Remote Access VPN<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal" style="line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in;">
<br /></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: "Century Gothic"; font-size: 9pt;"><br /></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;"><b>Palo Alto VPN Highlights</b></span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Disable Direct Access to Local Networks</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Static IP Address Allocation</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Apply a Gateway Configuration to Users, Groups, and/or Operating Systems</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Welcome Page Management</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">RDP Connection to a Remote Client</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Simplified GlobalProtect License Structure</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">SSL/TLS Service Profiles for GlobalProtect Portals and Gateways</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">GlobalProtect IPsec Crypto Profiles for GlobalProtect Client Configurations</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">There is no confusion between an access to the SSL VPN and an access to the management GUI sincethey reside on different interfaces and IP addresses.</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Browser-based GUI: No Java, no client. Just a simple browser. It is also manageable through SSL VPN portals.</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Every software that is downloaded on the primary firewall can automatically be synced to the secondary device. </span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Securely connect off-premise users to a next-generation firewall</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Protect all users, everywhere by Inspecting traffic, Enforcing security policies, Protecting users, apps, devices and data from threats, Secure BYOD with integration with 3rd Party MDM/EMM</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Supported mobile Application available for all popular Mobile Operating systems</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;"><br /></span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: "Century Gothic"; font-size: 12px; text-indent: -0.38in;"><b>Cisco VPN Highlights, and Drawbacks compared to Palo Alto</b></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Application ACL Support</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Automatic Applet Download</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Front-Door VRF Support</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">GUI Enhancements</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Netegrity Cookie-Based Single SignOn Support</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">NTLM Authentication</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">RADIUS Accounting</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">TCP Port Forwarding and Thin Client</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">URL Obfuscation</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">User-Level Bookmarking</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">VPN Session Monitoring: For a quick glance, the VPN session monitor is great to see all phase 1 and phase 2 security associations including the TX/RX packet counts.</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">AnyConnect remote access VPN client images. If these are not uploaded manually on the second device, the other HA unit will not terminate VPN tunnels in case of a HA active-unit swap.</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">No Application awareness/Visibility</span></span></div>
<div style="direction: ltr; margin-bottom: 0pt; margin-left: 0.38in; margin-top: 10pt; text-indent: -0.38in; unicode-bidi: embed; word-break: normal;">
<span style="font-family: Century Gothic;"><span style="font-size: 12px;">Supported mobile Application available for all popular Mobile Operating systems</span></span></div>
<div style="font-family: "Century Gothic"; font-size: 9pt;">
<br /></div>
</div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-83933290184291031072016-11-16T03:49:00.000-08:002016-11-16T03:49:06.385-08:00F5 BIG-IP Cookie Remote Information Disclosure<div dir="ltr" style="text-align: left;" trbidi="on">
F5 BIG-IP Cookie Remote Information Disclosure vulnerability can be closed by encrypting the cookies<br />
<br />
<ol style="background-color: white; font-family: Arial, Helvetica, Verdana; font-size: 13.3333px; margin: 1em 0px 0px; padding: 0px;">
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Log in to the Configuration utility.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Navigate to <b>Local Traffic</b> > <b>Profiles</b>.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">From the <b>Services</b> menu, select <b>HTTP</b>.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Click <b>Create</b>.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Enter a name for the HTTP profile.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">In the <b>Encrypt Cookies</b> box, enter one or more cookie names.<div class="note" style="color: mediumblue; font-style: italic; line-height: 1.4em; margin-bottom: 1em; margin-top: 1em;">
<b>Note</b>: If you want to specify more than one cookie for the BIG-IP LTM system to encrypt, separate the cookie names with a space.</div>
<div class="note" style="color: mediumblue; font-style: italic; line-height: 1.4em; margin-bottom: 1em; margin-top: 1em;">
<b>Note</b>: In BIG-IP 10.x, cookie names must not contain the period ( <b>. </b>) character due to a known issue. For more information, refer to <a href="https://support.f5.com/kb/en-us/solutions/public/12000/400/sol12472.html" style="color: #005eb2; text-decoration: none;">SOL12472: The Configuration utility returns an error message when the HTTP profile is configured with a period character in the 'Encrypt Cookies' field</a>.<br /><br /><strong>Note</strong>: For BIG-IP persistent cookies, the default cookie name is <strong>BIGipServer<pool-name></strong>.<br /><br />For example:<br /><br /><span class="example2" style="font-family: "Courier New"; font-size: 9pt;">BIGipServerhttp-pool</span></div>
</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">In the <b>Cookie Encryption Passphrase</b> box, enter a passphrase for the cookie.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">In the <b>Confirm Cookie Encryption Passphrase</b> box, re-type the passphrase.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Click <b>Update</b>.</li>
<li style="font-size: 13.3333px; list-style: decimal; margin: 0px 0px 0px 18px; padding: 0px 0px 0.75em;">Associate the HTTP profile with the virtual server.</li>
</ol>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-22444577787777455092016-10-06T08:15:00.003-07:002016-10-06T08:15:29.220-07:00Cisco Nexus 5000 Serieis.Upgrade Steps<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background: white; line-height: 18.35pt; margin-bottom: .0001pt; margin: 0in;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Step
1<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Download the NX-OS Kick Start
and NX-OS System Software files to your TFTP server.<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<br /></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Step 2<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Make sure that Nexus 5000
Switch has the enough space to install the new image files by using NX-OS
command “ dir bootflash”. If there is enough space you are free to install the
new NX-OS image files.<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<br /></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Step 3<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">If there is no enough memory
delete old image files using NX-OS command<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Delete boothflash: (kickstart
image name)<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Delete bootflash:
(system image name)<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #993300; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">SF01-MB-1256-010#
delete bootflash:n5000-uk9-kickstart.5.0.3.n1.1a.bin</span><span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;"><o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #993300; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">SF01-MB-1256-010# delete
bootflash: n5000-uk9.5.0.3.n1.1a.bin</span><span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;"><o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<br /></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Step 4<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Copy the new kickstart and
system images to the switch bootflash by using a transfer protocol such
as ftp, tftp, scp, or sftp. The examples in this procedure
use tftp. Use the following NX-OS command to copy the kick start and image
file<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Make sure that the TFTP
server is started<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #993300; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">SF01-MB-1256-010# copy tftp
bootflash:</span><span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;"><o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<br /></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Step 5<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Enter the install
all NX-OS command to install the new images, specifying the new image
names that you downloaded in the Step 1 as shown below<o:p></o:p></span></div>
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<br /></div>
<br />
<div style="background: white; line-height: 18.35pt; margin: 0in 0in 0.0001pt;">
<span style="color: #666666; font-family: "Helvetica",sans-serif; font-size: 11.5pt;">Once all the files are
installed the switch will restart and reload with the new Image files.<o:p></o:p></span></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-90150855248578804392016-10-06T08:11:00.000-07:002016-10-06T08:11:18.983-07:00Packet Capture inside Cisco Catalyst 3560 and 3750 ( Embedded Packet Capture)<div dir="ltr" style="text-align: left;" trbidi="on">
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<span style="background-color: white;"><br /></span><span style="background-color: white; font-size: 12px; text-align: left;">1. Access List Creation</span><span style="background-color: white;">switch3560(config)#ip access-list extended cap1testacl</span><span style="background-color: white;">switch3560(config-ext-nacl)#permit icmp any any</span><span style="background-color: white;">switch3560(config-ext-nacl)#^Z</span><span style="background-color: white;">switch3560#sho ip access-lists </span><span style="background-color: white; font-size: 12px;">cap1testacl</span><span style="background-color: white;">Extended IP access list </span><span style="background-color: white; font-size: 12px;">cap1testacl</span><span style="background-color: white;"> 10 permit icmp any any</span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<span style="background-color: white; text-align: left;">2. Monitor Capture Buffer Creation</span><span style="background-color: white;">switch3560#monitor capture ?</span><span style="background-color: white;"> buffer Control Capture Buffers</span><span style="background-color: white;"> point Control Capture Points</span><span style="background-color: white;">switch3560#monitor capture buffer ?</span><span style="background-color: white;"> WORD Name of the Capture Buffer</span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer ?</span><span style="background-color: white;"> circular Circular Buffer</span><span style="background-color: white;"> clear Clear contents of capture buffer</span><span style="background-color: white;"> export Export in Pcap format</span><span style="background-color: white;"> filter Configure filters</span><span style="background-color: white;"> limit Limit the packets dumped to the buffer</span><span style="background-color: white;"> linear Linear Buffer(Default)</span><span style="background-color: white;"> max-size Maximum size of element in the buffer (in bytes)</span><span style="background-color: white;"> size Packet Dump buffer size (in Kbytes)</span><span style="background-color: white;"> <cr></span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer size 2048 ?</span><span style="background-color: white;"> circular Circular Buffer</span><span style="background-color: white;"> linear Linear Buffer(Default)</span><span style="background-color: white;"> max-size Maximum size of element in the buffer (in bytes)</span><span style="background-color: white;"> <cr></span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer size 2048 max-size ?</span><span style="background-color: white;"> <68-9500> Element size in bytes : 9500 bytes or less (default is 68 bytes)</span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer size 2048 max-size 1500 ?</span><span style="background-color: white;"> circular Circular Buffer</span><span style="background-color: white;"> linear Linear Buffer(Default)</span><span style="background-color: white;"> <cr></span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer size 2048 max-size 1500 circular ?</span><span style="background-color: white;"> <cr></span><span style="background-color: white;">switch3560#monitor capture buffer cap1testbuffer size 2048 max-size 1500 circular</span><span style="font-size: 12px;"> access-list Set access list</span><span style="font-size: 12px;">switch3560#monitor capture buffer cap1testbuffer filter access-list ?</span><span style="font-size: 12px;"> <1-199> IP access list</span><span style="font-size: 12px;"> <1300-2699> IP expanded access list</span><span style="font-size: 12px;"> WORD Access-list name</span><span style="font-size: 12px;">switch3560#monitor capture buffer cap1testbuffer filter access-list </span><span style="background-color: white; font-size: 12px;">cap1testacl</span><span style="font-size: 12px;"> ?</span><span style="font-size: 12px;"> <cr></span><span style="font-size: 12px;">switch3560#monitor capture buffer cap1testbuffer filter access-list </span><span style="background-color: white; font-size: 12px;">cap1testacl</span><span style="font-size: 12px;">Filter Association succeeded</span>switch3560#sho monitor capture buffer ?<br /> WORD Name of the Capture Buffer<br /> all All capture buffers<br /> merged Merged View of Capture Buffers<br />switch3560#sho monitor capture buffer cap1testbuffer parameters<br />Capture buffer cap1testbuffer (circular buffer)<br />Buffer Size : 2097152 bytes, Max Element Size : 1500 bytes, Packets : 0<br />Allow-nth-pak : 0, Duration : 0 (seconds), Max packets : 0, pps : 0<br />Associated Capture Points:<br />Configuration:<br />monitor capture buffer cap1testbuffer size 2048 max-size 1500 circular<br />monitor capture buffer cap1testbuffer filter access-list <span style="background-color: white; font-size: 12px; text-align: left;">cap1testacl</span>switch3560#monitor capture ?<br /> buffer Control Capture Buffers<br /> point Control Capture Points<br />switch3560#monitor capture po<br />switch3560#monitor capture point ?<br /> associate Associate capture point with capture buffer<br /> disassociate Dis-associate capture point from capture buffer<br /> ip IPv4<br /> ipv6 IPv6<br /> start Enable Capture Point<br /> stop Disable Capture Point<br />switch3560#monitor capture point ip ?<br /> cef IPv4 CEF<br /> process-switched Process switched packets<br />switch3560#monitor capture point ip pr<br />switch3560#monitor capture point ip process-switched ?<br /> WORD Name of the Capture Point<br />switch3560#monitor capture point ip process-switched cap1testpoint ?<br /> both Inbound and outbound and packets<br /> from-us Packets originating locally<br /> in Inbound packets<br /> out Outbound packets<br />switch3560#monitor capture point ip process-switched cap1testpoint bo<br />switch3560#monitor capture point ip process-switched <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> both ?</span> <cr><br />switch3560#monitor capture point ip process-switched <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> both</span>switch3560#</h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<br /><span style="background-color: white;">3. Attach Buffer to Filter</span><span style="font-size: 12px;">switch3560#monitor capture buffer cap1testbuffer filter ?</span><span style="font-size: 12px;">switch3560#monitor capture buffer cap1testbuffer filter </span><span style="font-size: 12px;">cap1testacl</span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<span style="font-size: 12px;"><br /></span><span style="font-size: 12px;">4. Verify Buffer Configuration</span>switch3560#sho monitor capture buffer ?<br /> WORD Name of the Capture Buffer<br /> all All capture buffers<br /> merged Merged View of Capture Buffers<br />switch3560#sho monitor capture buffer <span style="color: black; font-size: 12px; text-align: left;">cap1testbuffer</span> parameters<br />Capture buffer <span style="color: black; font-size: 12px; text-align: left;">cap1testbuffer</span> (circular buffer)<br />Buffer Size : 2097152 bytes, Max Element Size : 1500 bytes, Packets : 0<br />Allow-nth-pak : 0, Duration : 0 (seconds), Max packets : 0, pps : 0<br />Associated Capture Points:<br />Configuration:<br />monitor capture buffer <span style="color: black; font-size: 12px; text-align: left;">cap1testbuffer</span> size 2048 max-size 1500 circular<br />monitor capture buffer <span style="color: black; font-size: 12px; text-align: left;">cap1testbuffer</span> filter access-list <span style="font-size: 12px; text-align: left;">cap1testacel</span><span style="background-color: transparent; font-size: 12px;"><br /></span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<span style="background-color: transparent; font-size: 12px;">5.Associate Capture Point to Capture Buffer</span>switch3560#monitor capture point associate ?<br /> WORD Name of the Capture Point<br />switch3560#monitor capture point associate <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> ?</span> WORD Name of the Capture Buffer<br />switch3560#monitor capture point associate <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> </span><span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> ?</span> <cr><br />switch3560#monitor capture point associate <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> cap1testbuffer</span><div style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<br /></div>
5.verify Capture Point<br />switch3560#sho monitor capture point <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> ?</span> | Output modifiers<br /> <cr><br />switch3560#sho monitor capture point <span style="font-size: 12px;">cap1testpoint</span>Status Information for Capture Point <span style="font-size: 12px;">cap1testpoint</span>IPv4 Process<br />Switch Path: IPv4 Process , Capture Buffer: <span style="font-size: 12px;">cap1testbuffer</span>Status : Inactive<br />Configuration:<br />monitor capture point ip process-switched <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> both</span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<br /><span style="font-size: 12px;">6.Start Capture Point</span>switch3560#monitor capture point start ?<br /> WORD Name of the Capture Point<br /> all All Capture Points<br />switch3560#monitor capture point start <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> ?</span> <cr><br />switch3560#monitor capture point start <span style="font-size: 12px;">cap1testpoint</span>switch3560#sho moni cap poi <span style="font-size: 12px;">cap1testpoint</span>Status Information for Capture Point <span style="font-size: 12px;">cap1testpoint</span>IPv4 Process<br />Switch Path: IPv4 Process , Capture Buffer: <span style="font-size: 12px;">cap1testpoint</span>Status : Active<br />Configuration:<br />monitor capture point ip process-switched <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> both</span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<br />7. Stop after required time<br />switch3560#monitor capture point stop <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;">8.View Statitics</span>switch3560# show monitor capture buffer <span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> parameters</span>Capture buffer <span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> (circular buffer)</span>Buffer Size : 2097152 bytes, Max Element Size : 1500 bytes, Packets : 14<br />Allow-nth-pak : 0, Duration : 0 (seconds), Max packets : 0, pps : 0<br />Associated Capture Points:<br />Name : <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;">, Status : Inactive</span>Configuration:<br />monitor capture buffer <span style="font-size: 12px;">cap1testbuffer </span><span style="font-size: 12px;">size 2048 max-size 1500 circular</span>monitor capture point associate <span style="font-size: 12px;">cap1testpoint</span><span style="font-size: 12px;"> </span><span style="font-size: 12px;">cap1testbuffer</span>monitor capture buffer <span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> filter access-list </span><span style="font-size: 12px;">cap1testacl</span></h2>
<h2 style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<span style="font-size: 12px;"><br /></span><span style="font-size: 12px;">9.Export to TFTP</span>switch3560# monitor capture buffer <span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> export ?</span> flash: Location to dump buffer<br /> ftp: Location to dump buffer<br /> http: Location to dump buffer<br /> https: Location to dump buffer<br /> rcp: Location to dump buffer<br /> scp: Location to dump buffer<br /> tftp: Location to dump buffer<br />switch3560# monitor capture buffer <span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;"> export tftp://192.168.100.1/</span><span style="font-size: 12px;">cap1testbuffer</span><span style="font-size: 12px;">.pcap</span>!!<span style="background-color: white;"><br /></span><span style="background-color: white; text-align: left;"><br /></span></h2>
<br />
<br />
<div style="background-color: whitesmoke; border-radius: 4px; border: 1px solid rgba(0, 0, 0, 0.14902); font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; line-height: 18px; margin-bottom: 9px; padding: 8.5px; text-align: left; white-space: pre-wrap; word-break: break-all; word-wrap: break-word;">
<br /></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-61594588709193565372016-09-23T08:01:00.002-07:002016-09-23T08:01:31.531-07:00false "changes in XXX routers" reports Rancid<div dir="ltr" style="text-align: left;" trbidi="on">
<pre>when control_rancid runs, it actually uses temporary files which are
renamed to routers.{up,down}. so, the directory must also be writable.</pre>
<pre>
</pre>
<pre><b>Fix</b></pre>
<pre><i>
</i><i># cd ~rancid
</i><i># chown -R rancid .
</i></pre>
<div>
<i><br /></i></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-30113373280711126172016-09-22T07:27:00.000-07:002016-09-22T07:27:11.056-07:00Install and Configure RSYSLOG<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
<b><span style="font-size: 14.0pt; line-height: 107%;">Install RSYSLOG<o:p></o:p></span></b></div>
<div class="MsoNormal">
<b><span style="font-size: 14.0pt; line-height: 107%;"><br /></span></b></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 542.25pt;" valign="bottom" width="723">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">[root</span><span style="border: 1pt none windowtext; font-family: "Courier New"; font-size: 9pt; padding: 0in;">@</span><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">server ~]# yum -y install rsyslog<o:p></o:p></span></div>
</div>
</td>
</tr>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 542.25pt;" valign="bottom" width="723">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<br /></div>
</div>
</td></tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<b><span style="color: #333333; font-size: 14.0pt; mso-bidi-font-family: Arial; mso-fareast-font-family: "Times New Roman";">Configure RSYSLOG<o:p></o:p></span></b></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<span style="color: #333333; font-family: "Arial",sans-serif; font-size: 11.5pt; mso-fareast-font-family: "Times New Roman";">Edit /etc/rsyslog.conf<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 545.25pt;" valign="bottom" width="727">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">[root</span><span style="border: 1pt none windowtext; font-family: "Courier New"; font-size: 9pt; padding: 0in;">@</span><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">server ~]# vi /etc/rsyslog.conf<o:p></o:p></span></div>
</div>
</td>
</tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<span style="color: #333333; font-family: "Arial",sans-serif; font-size: 11.5pt; mso-fareast-font-family: "Times New Roman";">Uncomment below lines<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 545.25pt;" valign="bottom" width="727">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"># Provides UDP syslog reception<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">#$ModLoad imudp<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">#$UDPServerRun 514<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"># Provides TCP syslog reception<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">#$ModLoad imtcp<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">#$InputTCPServerRun 514<o:p></o:p></span></div>
</div>
</td>
</tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 545.25pt;" valign="bottom" width="727">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"># Provides UDP syslog reception<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">$ModLoad imudp<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">$UDPServerRun 514<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"># Provides TCP syslog reception<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">$ModLoad imtcp<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">$InputTCPServerRun 514<o:p></o:p></span></div>
</div>
</td>
</tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<span style="color: #333333; font-family: "Arial",sans-serif; font-size: 11.5pt; mso-fareast-font-family: "Times New Roman";">Restart the syslog service<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<span style="color: #333333; font-family: "Arial",sans-serif; font-size: 11.5pt; mso-fareast-font-family: "Times New Roman";"><br /></span></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 545.25pt;" valign="bottom" width="727">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">[root</span><span style="border: 1pt none windowtext; font-family: "Courier New"; font-size: 9pt; padding: 0in;">@</span><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">server ~]# systemctl restart rsyslog.service<o:p></o:p></span></div>
</div>
</td>
</tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<span style="color: #333333; font-family: "Arial",sans-serif; font-size: 11.5pt; mso-fareast-font-family: "Times New Roman";">Verify the syslog server listening<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; vertical-align: baseline;">
<br /></div>
<table border="0" cellpadding="0" class="MsoNormalTable" style="background: white; mso-background-themecolor: background1; mso-cellspacing: 1.5pt; mso-yfti-tbllook: 1184; width: 727px;">
<tbody>
<tr>
<td style="padding: 0in 0in 0in 0in; width: 545.25pt;" valign="bottom" width="727">
<div style="background: #444341; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; mso-element: para-border-div; padding: 0in 0in 0in 0in;">
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">[root</span><span style="border: 1pt none windowtext; font-family: "Courier New"; font-size: 9pt; padding: 0in;">@</span><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">server ~]# netstat -antup </span><span style="border: 1pt none windowtext; font-family: "Courier New"; font-size: 9pt; padding: 0in;">|</span><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"> grep 514<o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">tcp
0 0
0.0.0.0:514
0.0.0.0:*
LISTEN
759/rsyslogd <o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">tcp6
0 0 :</span><b><span style="border: none windowtext 1.0pt; color: #b100b1; font-family: "Courier New"; font-size: 9.0pt; mso-border-alt: none windowtext 0in; mso-fareast-font-family: "Times New Roman"; padding: 0in;">::514 </span></b><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"> :</span><b><span style="border: none windowtext 1.0pt; color: #b100b1; font-family: "Courier New"; font-size: 9.0pt; mso-border-alt: none windowtext 0in; mso-fareast-font-family: "Times New Roman"; padding: 0in;">::* </span></b><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"> LISTEN
759/rsyslogd <o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">udp
0 0
0.0.0.0:514
0.0.0.0:*
759/rsyslogd <o:p></o:p></span></div>
<div class="MsoNormal" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: none; line-height: normal; margin-bottom: 0.0001pt; padding: 0in; vertical-align: baseline;">
<span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">udp6
0 0 :</span><b><span style="border: none windowtext 1.0pt; color: #b100b1; font-family: "Courier New"; font-size: 9.0pt; mso-border-alt: none windowtext 0in; mso-fareast-font-family: "Times New Roman"; padding: 0in;">::514 </span></b><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";"> :</span><b><span style="border: none windowtext 1.0pt; color: #b100b1; font-family: "Courier New"; font-size: 9.0pt; mso-border-alt: none windowtext 0in; mso-fareast-font-family: "Times New Roman"; padding: 0in;">::* </span></b><span style="color: white; font-family: "Courier New"; font-size: 10.0pt; mso-fareast-font-family: "Times New Roman";">
759/rsyslogd <o:p></o:p></span></div>
</div>
</td>
</tr>
</tbody></table>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-outline-level: 3; vertical-align: baseline;">
<br /></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-outline-level: 3; vertical-align: baseline;">
<b><span style="border: none windowtext 1.0pt; color: maroon; font-size: 14.0pt; mso-bidi-font-family: Arial; mso-border-alt: none windowtext 0in; mso-fareast-font-family: "Times New Roman"; padding: 0in;">Client setup:<o:p></o:p></span></b></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-outline-level: 3; vertical-align: baseline;">
<br /></div>
<ol start="1" style="margin-top: 0in;" type="1">
<li class="MsoNormal" style="line-height: 115%; margin-bottom: .0001pt; margin-bottom: 0in; mso-list: l0 level1 lfo1;">Log
into syslog server <o:p></o:p></li>
<li class="MsoNormal" style="line-height: 115%; margin-bottom: .0001pt; margin-bottom: 0in; mso-list: l0 level1 lfo1;">Use
an editor to get into the rsyslog config file : vi /etc/rsyslog.conf
(use <i>i </i>to edit) toward the end of the file add the required
devices:<o:p></o:p></li>
</ol>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in;">
<b><span style="color: #002060;">:fromhost-ip,isequal,"192.168.0.1"
/var/log/devicehostname.log<o:p></o:p></span></b></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in;">
<b><span style="color: #002060;">& ~<o:p></o:p></span></b></div>
<br />
<ol start="3" style="margin-top: 0in;" type="1">
<li class="MsoNormal" style="line-height: 115%; margin-bottom: .0001pt; margin-bottom: 0in; mso-list: l0 level1 lfo1;">Exit
from the file (press <i>Esc</i> and say <i>:wq to save/:q! to quit without
saving</i>)<o:p></o:p></li>
<li class="MsoNormal" style="line-height: 115%; margin-bottom: .0001pt; margin-bottom: 0in; mso-list: l0 level1 lfo1;">Now
restart the rsyslog Daemon : service rsyslog restart<o:p></o:p></li>
</ol>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-16831104254081308172016-09-16T12:20:00.002-07:002016-09-16T12:20:28.136-07:00Site-to-Site VPN in multiple context mode<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
Site-to-Site VPN in multiple context mode (ASA 9.x)<o:p></o:p><br />
<br /></div>
<div class="MsoNormal">
Before configuring a Site-to-Site VPN in a multiple context
mode ASA, you must assign VPN resources to the context. By default, no VPN
site-to-site tunnels are allowed and you must manually configure a resource
class to allow any VPN sessions, otherwise you will see the message
"Tunnel Rejected: The maximum tunnel count allowed has been reached"
in IKE debug outputs.<o:p></o:p></div>
<div class="MsoNormal">
<br />
Example:<o:p></o:p></div>
<div class="MsoNormal">
ASA 5550 with base license supports 5000 VPN sessions.<o:p></o:p></div>
<div class="MsoNormal">
You have two contexts and want to share VPN resources
assigning 2000 sessions to each context:<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa/admin(config)#
changeto system<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config)#
class vpn-2000<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-class)#
limit-resource vpn other 2000<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-class)#
limit-resource vpn burst other 1000<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-class)#
exit<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config)#
context context-a<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-ctx)#
member vpn-2000<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-ctx)#exit<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config)#
context context-b<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-ctx)#
member vpn-2000<o:p></o:p></div>
<div class="MsoNormal" style="margin-bottom: .0001pt; margin-bottom: 0in;">
asa(config-ctx)#exit<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
vpn burst other is the number of VPN sessions allowed beyond
the amount assigned to a context with vpn other. Unlike vpn other, which
guarantees the sessions to the context, vpn burst other can be oversubscribed;
the burst pool is available to all contexts on a first-come, first-served
basis.<o:p></o:p></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-91028490519443028182016-09-15T03:43:00.001-07:002016-09-15T03:43:31.634-07:00Cisco Catalyst 3750 and 3560 QOS<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<iframe width="320" height="266" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/6UJZBeK_JCs/0.jpg" src="https://www.youtube.com/embed/6UJZBeK_JCs?feature=player_embedded" frameborder="0" allowfullscreen></iframe></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-79693655715591335752016-09-03T01:32:00.001-07:002016-09-03T01:32:15.126-07:00Publisher vs Subscriber<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; border: 0px; color: #333333; font-family: Arial; font-size: 14px; line-height: 20px; padding: 0px; vertical-align: baseline;">
These terms are used when discussing Call manager. Call manager handles call processing in Cisco's implementation of IP Telephony. So it is this particular area of VoIP that we would hear the terms publisher and subscriber. The terms are actually from the Microsoft SQL database that earlier version of call manager utilized. The publisher is the authoritative database for configuration. So when changes are made in configuration, they are made on the publisher and replicated to the subscribers. There is only one publisher and can be multiple subscribers. If the publisher is unavailable, the phones can re-home themselves to a subscriber in order to continue to be functional. This is an illustration as to how they function, but not necessarily best practice.In best practices, the phones should be actually use subscribers as their primary.It's more like the publisher contains the master database in which changes to configuration is made and replicated to the subscribers. For scalability, it is normal to point phones to subscribers, since there is only one publisher and can be many subscribers.</div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-24017405650698460932016-09-02T04:20:00.003-07:002016-09-02T04:20:29.677-07:00FTD (Firepower Threat Defence) Unified image on ASA<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<iframe width="320" height="266" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/scdrEtpVWAg/0.jpg" src="https://www.youtube.com/embed/scdrEtpVWAg?feature=player_embedded" frameborder="0" allowfullscreen></iframe></div>
<br /></div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.comtag:blogger.com,1999:blog-2689429200381935818.post-56020065361439861432016-08-31T04:10:00.000-07:002016-09-02T00:46:14.759-07:00 ASA Clustering Architecture<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: 15.0pt; mso-outline-level: 2; vertical-align: baseline;">
<span style="font-family: "georgia" , serif; font-size: 18pt;"> ASA Clustering
Architecture<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">One cluster member is elected Master and the other devices are
Slaves. The first unit to join the cluster or based on a priority value will
become the Master unit. The Master device handles all configuration, management
and owns the VIP for the cluster. A new master is elected only if the current
Master is down.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">The devices use a Cluster Control Link (CCL) for
intra-communication (cluster backplane). Each device must have at least one
hardware interface dedicated to this and the recommended design is to have an
Etherchannel. The CCL is used for the Master election, configuration
replication, health monitoring and state replication. Each cluster link needs
its own IP address on the same subnet.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">Their are two (2) supported data interface modes.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: 15.0pt; mso-outline-level: 3; vertical-align: baseline;">
<span style="font-family: "georgia" , serif; font-size: 13.5pt;"> Spanned Etherchannel –
Layer 2<o:p></o:p></span></div>
<div class="MsoListParagraphCxSpFirst" style="line-height: 18.0pt; margin-bottom: .0001pt; margin-bottom: 0in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -.25in; vertical-align: baseline;">
</div>
<ul style="text-align: left;">
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">Group one or more interfaces per unit into an EtherChannel that
spans all units in the cluster.</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">The EtherChannel aggregates the traffic across all the available
active interfaces in the channel.</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">This is the recommended design</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">All units use the same VIP and MAC</span></li>
<li><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;"> Supports MCEC (VSS, vPC etc.)</span></li>
</ul>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwC_TRx2sve1w2ePV-lZ8OEgIhf-_6SDAV3NE1-dVpJ56G_Qm5D_n6CxFAZipUe3nC5s8Oc0_2S33aMvbZtRMt_Wj7Ng4jO211EKhTCgNqT1TKkEXK-VGyZcHBQhFz2MbkaaLxIOaf1Vg/s1600/1.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="123" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwC_TRx2sve1w2ePV-lZ8OEgIhf-_6SDAV3NE1-dVpJ56G_Qm5D_n6CxFAZipUe3nC5s8Oc0_2S33aMvbZtRMt_Wj7Ng4jO211EKhTCgNqT1TKkEXK-VGyZcHBQhFz2MbkaaLxIOaf1Vg/s320/1.jpg" width="320" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: "symbol"; font-size: 13.5pt; line-height: 18pt; text-align: left; text-indent: -0.25in;"><span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"><br /></span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: "symbol"; font-size: 13.5pt; line-height: 18pt; text-align: left; text-indent: -0.25in;"><span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"><br /></span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: "symbol"; font-size: 13.5pt; line-height: 18pt; text-align: left; text-indent: -0.25in;"><span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"><br /></span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: "symbol"; font-size: 13.5pt; line-height: 18pt; text-align: left; text-indent: -0.25in;"><span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"> </span></span><span style="font-family: "georgia" , serif; font-size: 13.5pt; line-height: 18pt; text-align: left; text-indent: -0.25in;">Individual Mode – Layer 3</span></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="MsoListParagraphCxSpFirst" style="line-height: 18.0pt; margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .75in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -.25in; vertical-align: baseline;">
</div>
<ul style="text-align: left;">
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">Each device has a seperate IP address on each data interface</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">Uses dynamic routing to load-balance traffic (Think ECMP)</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">Etherchannels are local to each member</span></li>
<li><span style="color: #333333; font-family: "symbol"; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;">
</span></span><span style="color: #333333; font-family: "georgia" , serif; font-size: 12pt; line-height: 18pt; text-indent: -0.25in;">Interface IPs are assigned from pools configured on the Master
unit</span></li>
</ul>
<!--[if !supportLists]--><br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div>
</div>
<div>
<div class="MsoListParagraphCxSpMiddle" style="margin: 0in 0in 0.0001pt 0.75in; text-indent: -0.25in; vertical-align: baseline;">
<span style="line-height: 24px;"><br /></span><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh-Udl772xaIQsBoq5DASWhANZKY7kazsWkFDcaAT94QvuWgGDQPdpTSD0p6h5Hu3dw3K6pH5ceFjt28KkkqeONBwAesLPAbHD5_H09lsXod-U-2uLq7v3t86gvLWl2k_GbNvKrCeM4n50/s1600/2.jpg" imageanchor="1" style="line-height: 18pt; margin-left: 1em; margin-right: 1em; text-align: center; text-indent: -0.25in;"><img border="0" height="116" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh-Udl772xaIQsBoq5DASWhANZKY7kazsWkFDcaAT94QvuWgGDQPdpTSD0p6h5Hu3dw3K6pH5ceFjt28KkkqeONBwAesLPAbHD5_H09lsXod-U-2uLq7v3t86gvLWl2k_GbNvKrCeM4n50/s320/2.jpg" width="320" /></a></div>
<div style="line-height: 18pt;">
<span style="color: #333333; font-family: "georgia" , serif;"><br /></span></div>
<!--[if !supportLists]--><br /></div>
<div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">In individual mode, each device maintains its own routing
adjacency. The disadvantage of this is slower convergence and higher processor
utilization due to each unit maintaining it’s own routing table. In spanned
Etherchannel mode, the Master ASA runs dynamic routing. Routing and ARP tables
are synchronized to the slave devices.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: 15.0pt; mso-outline-level: 2; vertical-align: baseline;">
<span style="font-family: "georgia" , serif; font-size: 18pt;">How the ASA manages
connections<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">When a connection is forwarded to a member of the cluster via
load balancing, that unit owns both directions of the connection. If any of
that connections packets arrive at a different unit, they are forwarded to the
owner device over the cluster control link. Because of this it is recommended
to have symmetric load-balancing. Symmetric load-balancing is required for both
directions of a flow to arrive at the same unit, and for flows to be
distributed evenly between ASAs.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; margin-bottom: .25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;">For each connection there is also a device that acts as the
director. The director handles look-up requests from forwarders and also
maintains the connection state to serve as a backup if the owner fails. When
the owner receives a new connection, it chooses a director based on a hash
algorithm and sends a message to the director to register the new connection.<o:p></o:p></span></div>
</div>
<div>
<span style="color: #333333; font-family: "georgia" , serif;"><br /></span></div>
<!--[if !supportLists]--><br />
<div class="MsoNormal" style="line-height: 18.0pt; margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .25in; margin-right: 0in; margin-top: 0in; mso-list: l0 level1 lfo1; tab-stops: list .5in; text-indent: -.25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;"><br /></span></div>
<div class="MsoNormal" style="line-height: 18.0pt; margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .25in; margin-right: 0in; margin-top: 0in; mso-list: l0 level1 lfo1; tab-stops: list .5in; text-indent: -.25in; vertical-align: baseline;">
<span style="color: #333333; font-family: "georgia" , serif; font-size: 12.0pt;"><br /></span></div>
</div>
Rahul Rajkumarhttp://www.blogger.com/profile/13866086887025103133noreply@blogger.com