Author: CyberSecFaith

Differences between Cisco Site to Site VPN Technologies

Just found a really  good comparison chart that shows that differences between Cisco's Site to Site VPN technologies and when one can use them. Here is the source but just incase Cisco changes the archives (as usual) I will upload it to my Blog for future references: http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6635/ps7180/prod_brochure0900aecd80582078.pdf

How to configure a Cisco Router to connect to Cisco VPN Client in a NAT Environment

aaa new-model aaa authentication login VPN-VPN local aaa authentication login sslvpn local aaa authorization network GROUP-VPN local username adminitrator secret 0 C!sC0123 ! crypto isakmp policy 1 encr 3des authentication pre-share group 2 lifetime 28800 ! crypto isakmp policy 2 encr 3des hash md5 authentication pre-share group 2 ! crypto isakmp client configuration group CCLIENT-VPN … Continue reading How to configure a Cisco Router to connect to Cisco VPN Client in a NAT Environment

HOW TO CONFIGURE STATIC IP ADDRESS VIA DHCP (EXAMPLE – CISCO AP)

ip dhcp excluded-address 10.1.60.0 10.1.60.238 ip dhcp excluded-address 10.1.60.244 10.1.60.254 ! ip dhcp pool AP network 10.1.60.0 255.255.255.0 default-router 10.1.60.253 option 43 ascii XXXX.XXXX.XXXX.XXX dns-server XXX.XXX.XX.XXX XXX.XXX.XX.XXX domain-name XXX lease 30 ! ip dhcp pool STATIC_MAPPING_FOR_1141N-05 host 10.1.60.239 /24 hardware-address XXXX.XXXX.XXXX (MAC) ! ip dhcp pool STATIC_MAPPING_FOR_1141N-04 host 10.1.60.240 /24 hardware-address XXXX.XXXX.XXXX ! ip dhcp … Continue reading HOW TO CONFIGURE STATIC IP ADDRESS VIA DHCP (EXAMPLE – CISCO AP)

How to Block or Limit the use of Bittorrent and P2P using NBAR on Cisco Router

class-map match-any DenyP2PTraffic description Deny Peer To Peer Traffic and Torrent match protocol bittorrent match protocol edonkey match protocol fasttrack match protocol gnutella match protocol kazaa2 match protocol winmx match protocol directconnect match protocol irc policy-map DenyP2PTraffic class DenyP2PTraffic drop OR == To Limit == class DenyP2PTraffic police cir 8000 conform-action drop exceed-action drop interface … Continue reading How to Block or Limit the use of Bittorrent and P2P using NBAR on Cisco Router

CCNA Voice Summary – Part 12

Administrative User Interfaces for Unified Communicatin Products - CUCM, Unity Connection, CUPS, CUCX. Unified OS Administration - for software management upgrades, tftp management; time, security - IPSEC tunnels, certificate management; interface specifics etc. All SIP phones get their times from the NTP and the SCCP from CUCM. Unified Servicability - check which network services are … Continue reading CCNA Voice Summary – Part 12

CCNA Voice Summary – Part 10

 Cisco unified Presence server CUPS It is a presence add-on to CUCM. It provides status information and enterprise instant messaging. Integration with CUPC -Cisco Unified Personal Communicator, IP Phone Massager IPPM (IM on a phone), Instant Messaging IM, 3rd party presence integration through SOAP and AXL. Uses standard SIP to collect data. It integrates into … Continue reading CCNA Voice Summary – Part 10

CCNA Voice Summary – Part 8

 CUCM (Cisco Unified Communication Manager / Call Manager) Fully featured Voice and Video. Supports up to 30000 IP phones per cluster in reality around 20000. A cluster is a shared database. Multi-server redundancy. Multi-site support. Very expensive compared to the rest. It runs on a hardened red hat Enterprise Linux platform as an appliance with … Continue reading CCNA Voice Summary – Part 8