I don’t know if this really pertains to the ISCW test per se, but this is something I learned in my class last week. I’m sure I should have learned this years ago, but, alas, I didn’t. Access lists get messy. You build one, apply it to an interface, and think all is well. Then, […]
Aaron's Worthless Words
It's possible that someone somewhere needs to know this.
I’m at training for the ISCW test this week, and this topic came up yesterday. Since it came up last week at the office, I figure it was a sign from $deity that it was time for a blog entry. An admin in another business unit was trying to set up command access for some […]
It looks like one of those Russian b*%*#rds got me some time last week. I don’t know how long the site was down for sure, but I would guess that he first got access on Thursday, 22 October. Since we’re talking about WordPress here, I just restored back to 15 October to be safe, and […]
My biggest complain about modern firewalls is their lack of the ability to create rules based on URLs or HTTP streams; you have to open access between IP addresses. Yes, I know there are other means to do that, but I want my ASA/PIX/FWSM to do it without making me do so much work. Anyway, […]
I can’t believe I haven’t talked about object-groups yet. I had a whole other blog entry written up, and, when I went to link things over, I realized I couldn’t find an intro to it. Here it goes. Welcome to the modern world. A world of wonder. A world of quickly-advancing technology. A world where […]
Wow. A new entry. Everyone sit down before you pass out. I’ve got a real-world example for you today. We have an ASA 5540 installed at a business unit with interfaces in multiple networks, including one containing the production servers and another containing the accounting servers. The production network sits on a 7600 that’s not […]
I apologize to my adoring fans (both of you) for the lack of posting. I’m in the middle of moving, buying a new house, selling my current house, getting a mortgage, etc. I’ve up until 11:30 nearly every night filling out forms and going through red tape. Don’t get me started on getting money from […]
I can’t believe I stuck with something for 2 years. I usually get a month in before I get bored and give up. Anyway, 2 years ago this month, I wrote a terribly-written article on The Principle of Least Privilege. Since then, though, my writing has improved (at least, I think it has), the topics […]
EtherChannel lets you aggregate links into one logical connection, but the distribution of traffic is not uniform. It does not use per-packet load-balancing or the like to determine what interface in the bundle to use. Instead, it uses a XOR function on packet information to generate a hash that is used to determine what interface […]
I promise I’m still here. It’s just vacation time, and I’ve been slacking. On top of that, I’m doing some work-travelling this week, and that really puts a damper on your schedule. I’ll try my darndest to get some new stuff up this week. I know there are people rolling around on the floor in […]