Recent content by Patrickp1973

Why would you utilize pptp when its been proven to be a cryptographically flawed protocol. The 3 Pix's are all more than capable of using IPSec tunnels . http://www.cisco.com/warp/public/110/38.html for example

By virtue of the ASA security model of the PIX all traffic outbound is allowed since it goes from a higher security interface to a lower security. Inbound everything is blocked unless explicitly allowed. When you say Cisco VPN is this allowing internal users to access cisco vpns or inbound...

As stated with 6.3 the only solution through the PIX itself is use of split tunnelling. However if you require this you could utilize an internal squid proxy or similar and automatically push the browser setting to enable that proxy when they login . This would grant them the access to the...

It means your router has picked up a packet that appears to be addressed to itself / from itself .. Obviously a spoofed packet.. No real concern as its being dropped.

The connection doesnt utilize port 20 until you actually try to retrieve or send data from the server such as a directory listing etc.

You could set up an ssh tunnel and pass the lpd traffic across that tunnel rather easily , its a low cost easily implemented solution that would meet the encryption requirement

Quick and dirty way.. if the virus was still spreading would be to write a filter using something like tcpdump to capture the mail off the wire. Also looking back at email logs you could possible co-relate the time the message was recieved to a host which sent it in the LAN.

Chris your point is not relating to the course content actually you are focusing more on the business background.. Sr Level Management is usually focused more on the business know how than the technical know how.. this is how they are usually recruited.. Looking at someone with a MBA or Msc...

How did you configure the firewall to accept the connections? Browsers utilize PASV mode for thier connections however this should still create a connection to port 21 , it just then randomly opens a higher port .. Do you also have port 20 open as well ?

Well in the case of DSL you don't require a "router" persay in front you can simply have a DSL modem which is connected directly to the device and then you configure your credentials for the dsl on the device.. The T1 you will have to have a router since you can not plug a T1 connection...

Found resolution to it .. Used FXO to FXS on each side. Had a bad FXS card in the one router which was plaguing me with some issues..

Just a guess but it could be to do with where you have the tunnel terminated on FastEthernet0 since your default is on Serial0. So basically any traffic being originated is going out the serial and not passing through the ethernet therefore not setting the tunnel up. Try setting the crypto...

I have 2 2600 series routers a 2691 and a 2621XM both with complete with T1 DSUs and 2 port FXO and 2 port FXS ports in each. I have a working T1 data ppp connection between the routers and what I want to do is simply provide dial tone for transfers from one port to the other end to eliminate...

Basically here is the situation. Currently we have a number of Netware 4.11 servers . I have managed to free up a piece of hardware that is capable of running Netware 4.11 hardware support wise. What is my best bet for a disaster recovery scenerio for dealing with these machines to provide the...

I found the resolution last night.. I am not exactly sure what steps actually resolved it but i did the following 1 - Removed all printers from /etc/printcap 2 - Removed Remote Printing via mkdev rlp 3 - Installed Remote Printing via mkdev rlp 4 - Added each remote printer back with the rlpconf...