I have seen that a lot of people is using search engines to look after terms like “NAT: failed to allocate address for…” or “NAT: address not stolen for…” asking for help in regard to a non-functional NAT. Of course I skipped the cases when the solution was obvious and clear like wrong NAT configuration, [...]
Every now and then, all network engineers have to deal with some kind of network attack. Usually, the attack does not target the network devices, but the machines that provide services (e.g. www, database hosting…), because it’s more easy to find on the Internet a script that is probing port 80 for example, which by [...]
Reflexive access-list are one of the method that help us achive firewall functionality with a router hardware. The other methods that serve to the same purpose are Context-Based Access Control (CBAC) and TCP Intercept. For an introduction to CBAC with example please check my older post
I believe that all of you are familiar with privilege levels (0-15) on Cisco IOS. The most useful for network engineers is level 15 and the highest one as it will allow you full access to all IOS features, but in most networks only a few persons have this privilege level. In my opinion is [...]
Sometime ago I had to do a stress test for a Cisco FWSM (Firewall Service Module) to see how the resources are consumed and if some potential traffic can temporarly affect the behavior of this device. For those of you who have don’t know what is a Cisco FWSM, here comes the definition: “Cisco Firewall [...]
Sometimes, because of cost saving usually, the network engineers are forced to use a Cisco router as a firewall (instead of Cisco PIX or ASA). One of the big difference between router and firewall devices is that the ports have different characteristics. If on routers, ports are permitting by default traffic of any packets in [...]
It has been a while since I didn’t post anything here, but it was holidays and I used that time to relax and rest after a year of work. Following this idea I wish you all “Happy New Year” and all the best in 2009.
Today I planned to write about something easy to implement [...]
Spoofing is a kind of network attack to compromise your network security with the intention of traffic capture which will enable an attacker to get access to confidential data. Usually a spoof attach is associated with IP spoofing, which means that the source IP of the packet which arrive to your device has been changed [...]
Let's say that you have a Cisco router that you use as console server to connect to your devices in the [more]
IP Prefix-List tricky question
A few days ago I did encounter a task in one of these preparation workbooks for CCIE R&S Lab which was very [more]
Packet header graphic representation
I was surfing the Internet in search of some good drawing representing packet header and I come across five [more]
Selective BGP Dampening and parameters tuning
Some time ago, I wrote about BGP Dampening and how this feature can improve the stability of the network. A [more]
I think all network engineers touched, if not used / patched, as least one time a fiber optic patch cord. [more]
Professionals Blogs
- routing-bits.com
Close preview
Loading... - cisco-tips.com
Close preview
Loading... - etherealmind.com
Close preview
Loading... - packet-forwarding.net
Close preview
Loading... - blindhog.net
Close preview
Loading... - gns3-labs.com
Close preview
Loading... - packetlife.net
Close preview
Loading... - CCIECisco
Close preview
Loading... - bradhedlund.com
Close preview
Loading... - brainbump.net
Close preview
Loading... - mellowd.co.uk
Close preview
Loading... - globalconfig.net
Close preview
Loading... - amyengineer.wordpress.com
Close preview
Loading... - Cisco Network Engineer Blog
Close preview
Loading... - rogerperkin.co.uk
Close preview
Loading... - danielhertzberg.wordpress.com
Close preview
Loading... - noshut.blogspot.com
Close preview
Loading...
- routing-bits.com
