So let’s take a moment and assume your life is too easy, and you want to punish yourself. But how?! Here’s a way, let’s use the ASA for sites-2-site VPN. Even better, the spoke sites have be able to have dynamic IPs, and also need connectivity to other spokes. Also,…
-
-
How to Not Suck at Web Filtering: Cisco’s Web Security Appliance Part (2)
Write up coming soon..
-
How to Not Suck at Web Filtering: Cisco’s Web Security Appliance Part (1)
So I’ll start off by saying, configuring the WSA isn’t too terribly hard. What seems to be tricky, is getting all the components working together in a way that provides a seamless experience for users, while providing accurate reporting and filtering. In this two parter, I’m going to attempt to…
-
Using VXLAN to extend my home lab
So first off, I recently had a change of heart. While I still love Service Provider, I’m continually being pulled in for Security work. So, I’ve decided to stop resisting and follow the current. That said, CCIE Security (both v4 and v5) have some heavy demands. While my home server…
-
How to Deploy Nexus 1000v for KVM
-
Routing authentication – Thinking outside the box.
So it’s been awhile since my last post, and while I could just blame work, really I hit a bit of a dry spell. Then I saw a topic show up on CLN that sparked my imagination. The topic was simple enough, which authentication method is better (specifically for EIGRP)…
-
Quagga/Zebra – IOS like shell built in Linux
So today I’ll be installing quagga in centos, and turning that centos vm into an IOS-like router. After that, the goal is to test said faux Cisco router in GNS3 with some 7200 images. It’s actually a pretty cool little concept, even if the source code looks like it hasn’t…
-
VXLAN Revisited – CSR1KV Lab
So a while back I did a video on labing out VXLAN within GNS3, using my good friend the CSR1000v. I got a fair number of views on the video (for me), but one person in the comments pointed out… I’d never actually done a write up on this topic.…
-
Jon’s Recipe for Encrypted Internet w/ ASA
Have you ever wanted to encrypt your entire home’s internet connection? Of course you have, don’t lie to yourself… you’ve at least thought about it. Now if you’re a PFSense user, you might go with purchasing service through Private Internet Access, and configuring your pfsense firewall to be an openvpn…