web: http://www.secdev.org/projects/scapy/
Licence: free?
In this article I will configure dynamic complex ACL (Lock and Key). This technique is described during CCNA4 Exploration.
About Lock and Key
Description from the cisco web
Once if we are allowed download zipped version of ccna curriculum (for example as an netacad instructor) we should be able run them locally without web server need. However there is a problem to display these curriculums by default as it contain embeded flash animation. This problem persists in different browsers (firefox, chrome, epiphany) for example.
Eset AV sometimes prevents to run and install some applications, for example microtorrent client or virtualbox extension pack. If the AV pausing does not help, there is an option to kill the AV process using a standard way (using the task manager). However, Eset AV has enabled by default a Self-defense feature preventing to do that.
Therefore to be able to kill the process this feature has to be disabled. To do that follow:
Recovering from a Lost or Forgotten Password
The default configuration for the switch allows an end user with physical access to the switch to recover from a lost password by interrupting the boot process during power-on and by entering a new password. These recovery procedures require that you have physical access to the switch.
Working with my HP Terminal server, which we are using as a remote console acccess solution allows us login into Cisco router console ports remotely, i'm loosing the Putty connection due to inactivity. However the PuTTY client can be configured to maintain a connection and not time it out. All what we need to do is setup built-in keepalive machanism:
There are three steps to enable traceroute:
- In policy map “global_policy” in class “inspection_default” you need to add “inspect icmp” and “inspect icmp error”
- In policy map “global_policy” in class “class_default” you need to add “set connection decrement-ttl”
- On your oudside interface, you need add access list, that permits ICMP with “time-exceeded” on ingress direction
There is code, that you can paste in your ASA firewall:
policy-map global_policy
class inspection_default
inspect icmp
inspect icmp error
exit
class class-default
set connection decrement-ttl
exit
exit
access-list OUTSIDE-IN extended permit icmp any any time-exceeded
Here I'm describing the problem where my Linux MInt 17.3 Rosa has a problem to access a share provided through FreeNAS CIFS (version 9.10 STABLE). Windows machines have been able to access, but from the linux I had received rrror msessages.
I'm trying to solve a problem of network backuping on our FreeNAS server. I've already tried CIFS (where were some issues - Linux Mint - problem to access a FreeNAS CIFS share) however I have there a performance issue, especially working with huge number of files produced by the backup proces (deja-dup backup over the net). As the second alternative I'm going to try iSCSI to map a network disk/file from a freenas server.
Here I will briefy describe how to mount a remote windows folder to a local mint linux machine. In general, on the web there are plenty of pages how to do that. However I will focus on situation where windows is using an active direstory or domain based authentication.