Archive for 'Greatness habits revealed'
A Book About Voice over IP Security
Posted on 17. Sep, 2008 by rivansystems.
An IT person need to know about VoIP security…it seems many networks running VoIP are now considering their security options (years after initial deployment). When I first looked through this book, I was unimpressed. It seems like the book spends A LOT of time talking through foundations of H.323, MGCP, SIP, encryption, authentication, etc… (just [...]
Continue Reading
Cisco Emulation Abounds…Now…ASA!
Posted on 11. Sep, 2008 by rivansystems.
Geez - where was all this stuff when I was studying for my CCIE. It looks like there’s now a way to get a true, emulated ASA system running using the PIX emulator.
Here’s the URL with all the info (it’s a little process): http://www.bitbucketblog.com/?p=115
It’ll be nice when everything gets integrated into GNS3…we’re just missing the true (non-router integrated) layer 3 switch emulation. I’m sure someone’s already working on it.
Continue Reading
Cisco Background?
Posted on 09. Sep, 2008 by rivansystems.
I’ve never been hip on desktop wallpapers for my PCs…I usually just go with a straight “black” solid color background. This morning, I suddenly had the thought, “it sure would be cool to have a Cisco logo (the new one, of course) right in the middle of my desktop.” Some quick Google searches didn’t turn up anything…anyone know where to get a sweet Cisco wallpaper?
FOLLOW-UP #1: Here’s a decent one with the old logo. I’d really like to keep my black background though…Fluorescent green fries my eyes.
FOLLOW-UP #2: Here’s a wallpaper with the new logo on a white background (thanks Brandon!).
FOLLOW-UP #3: Here’s a wallpaper with the new logo on a black background (thanks Daniel!).
Continue Reading
Jeremy and VMWare ESX Server…Love at First Site!
Posted on 05. Sep, 2008 by rivansystems.
We take a break from our regularly scheduled Cisco programming to bring you this ‘killer free-product’ alert. I’ve now added VMWare ESX server (free) to my list of “programs that will change your life.” I believe we actually have Microsoft to thank for making this product free since they’re now trying to compete with VMWare by including Hypervising with MS Server 2008.
If you haven’t seen it, VMWare ESX allows you to do essentially the same thing VMWare Server does, but without running on a client operating system (well, technically there’s a 32MB VMWare operating system it runs now). I know, it doesn’t sound that cool, but I can’t begin to describe the performance increase for all my virutal machines. About 3 weeks ago, I converted my Dell Poweredge 2900 server to this product…Suddenly, I got a raise, my dog stopped barking, my neighbor brought me chocolate chip cookies, and I found an extra 5 bucks I had forgotten in my shorts pocket months ago (I love it when that happens).
Seriosuly…VMWare ESX server cannot be explained; you must experience it for yourself.
Continue Reading
IOS 12.4(6) Turns Your Router Into an ASA
Posted on 04. Sep, 2008 by rivansystems.
Okay…maybe it doesn’t do EVERYTHING the ASA does…but it’s definitely a step forward in the Firewall Feature Set of the IOS. Routers running this version of code now support zone-based policies, which really helps with multi-interface restrictions (rather than just one outside & one inside interface with individual access list applications). Likewise, it now supports application inspection to catch those scandalous peer-to-peer programs.
Check out the whole scoop here.
Much thanks to Joshua Walton for sending me an email on this and slightly brightening the most dismal CiscoWorks installation day I’ve ever had. Oh look - CD #12 is done…on to 13.
Continue Reading
CiscoWorks LMS…Shoot me now.
Posted on 04. Sep, 2008 by rivansystems.
I am currently sitting in a sub-zero IT room on my 6th hour and 12th CD of a CiscoWorks Lan Management Solution (LMS) 2.6 installation/upgrade. This is the most pathetic, waste-of-time product I’ve ever worked with…and I haven’t even finished the installation.
I will never agree to do a CiscoWorks LMS installation again.
Ever.
At least my fingers are numb so I can chew on them from boredom without feeling anything.
Continue Reading
CCIE Wireless?
Posted on 20. Aug, 2008 by rivansystems.
I just received a “general announcement” in my email about registering for the BETA CCIE Wireless written exam. Wow - yet another CCIE specialty arrives. If you’d like to see the CCIE Wireless Written Exam blueprint.
Continue Reading
GNS3 - The Full Story
Posted on 15. Aug, 2008 by rivansystems.
It looks like someone has decided to write some awesome documentation / tutorials for GNS3. Answers plenty of the questions I had when I first got into it (installation, optimization, etc…).
Continue Reading
Solarwinds Enters the NetFlow Fray…for Free?
Posted on 14. Aug, 2008 by rivansystems.
Netflow has always been a topic of interest to me. It allows Cisco devices to track exactly how your network bandwidth is used. For example, using NetFlow allows me to see the applications (ports) using my Internet connection, how much bandwidth they are consuming, the source and destination IP addresses that are consuming the most traffic, and so on. Handy information!
Anyhow, Solarwinds has just released a new (free) tool that allows you to chart and graph all this information. This is definitely a plug for their enterprise Orion software which lets you manage bunches of devices…but hey, a free tool is still a free tool :).
Continue Reading
Dynamic Failover with IP SLA
Posted on 04. Aug, 2008 by rivansystems.
I just stumbled across this killer post on Shawn’s Blog that describes how to set up IP SLA to allow a static route to failover if pings to a specified internet host should fail. This is really useful if you have two ISPs (and thus, two default routes) where the router cannot detect a link failure. This is really common if you have a cable/DSL modem or some type of wireless connectivity. Here’s the basic config, taken directly from Shawn’s Blog:
ip sla 1 < The number 1 here is arbitrary, used only to identify this sla. It is otherwise knows as the operation number>
icmp-echo 4.2.2.2 < 4.2.2.2 is a DNS server that responds to pings out on the internet>
timeout 500 < This is how long to wait for a response from the ping>
frequency 3 < This is the repeat rate for the SLA>
ip sla schedule 1 start-time now life forever < This command says "start SLA 1 now and keep it running forever>
track 1 rtr 1 reachability < This comand creates the track object "1" and monitors the SLA 1>
now for the routing, we need to change the default route and associate it with the tracker
no ip route 0.0.0.0 0.0.0.0 1.1.1.1
and then put it back with the tracking
ip route 0.0.0.0 0.0.0.0 1.1.1.1 track 1
Then we need to add our secondary route
ip route 0.0.0.0 0.0.0.0 1.1.1.2 10
Now when the ping to 4.2.2.2 fails the primary route is removed and the secondary route with the higher metric becomes the default. The route will be reinstated when the connectivity is restored.
With the 12.4 and higher releases the commands have changed slightly but the “?” is your friend. If I receive requests for the syntax I will post it as well, but it is pretty easy to convert.
Here is the reference to the Cisco IP SLA documentation
http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a0080441845.html