Apr 4

In the LAN to attack the virus killing it? To explain in detail the following two categories:

ARP attack to find the process address:

1, if the client PC can not communicate with the gateway, the first in the client ping the gateway address, and then in the dos window under the implementation of arp-a view of the mac address of the gateway, the gateway MAC address of record. Find the switch to the switch MAC address (for example, VLAN1 interface)

Executive show int vlan 1 VLAN1 interface to view the output information in the MAC, while the implementation of show standby vlan 1 View HSRP gateway MAC address. If the client shows the MAC (assumed to be 00-0d-0a-ac-bc-78) address and gateway address are different, the MAC may have been the gateway ARP virus attacks. To the implementation of the switch show MAC-address | in 000d.0aac.bc78 look at the input port associated with that MAC address, if the port is directly connected PC or SERVER ports, then the port that the client may be infected with ARP class virus. If the port is another switch, then switch on the implementation of land to that show MAC-address | in 000d.0aac.bc78 until the associated port is directly connected PC port location. Read the rest of this entry »

Posted in Security, Switch, Technology | No Comments »
Mar 27

1. Overview:

With the popularity of broadband Internet network while the development of information technology is changing the traditional mode of operation of enterprises. More and more companies are gradually relying on computer networks, applications to conduct business, but also use Internet to carry out more business activities.

A bit of regulation modules are not only a business office, but has headquarters, branches, offices, factories and other business points. As more and more applications and a variety of computer software systems to handle their business, how to network of branches in different locations interconnected, it becomes a modern enterprise must be addressed. Read the rest of this entry »

Posted in Network Management, Security, Technology | No Comments »
Mar 20

Triple play is the people living in the information age look forward to many years. Users can connect to achieve triple play last “mile” lines together three to one (”three” refers to, telephone, television, Internet), particularly in the growing popularity of 3G technology today, enables users triple play experience anytime, anywhere network integration and unity. More importantly, the triple play of people can live, work, entertainment merging, cell phone, TV, computer screen as you can switch at any time, so that the virtual online world in the real world with the user accompanied by……

However, triple play can bring people to enjoy the convenience of information Services at the same time, the background operating system, monitoring system, maintenance system is also facing unprecedented challenges, particularly in network and information security challenges, the most urgent. This is not difficult to understand. Just imagine: triple play, information and network channels are more diverse and heterogeneous, in which case the user a variety of important and sensitive information need to redouble their network security and information security. This is from the vendor from hackers and security of information, from science and technology and society from a variety of information security incidents are sufficient to show. Read the rest of this entry »

Posted in Security, Technology | No Comments »
Mar 15

Wireless LAN access technology has been competent, but the integration between wireless and wired part of how we want these issues resolved for us here a detailed description.

Wireless LAN architecture based on wireless access point (AP)-centric. A wireless access point to form a cell, the cell within the client needs to send or receive data through the wireless access point needs to be able to reach other parts of the network. But the traditional wireless access points, especially in devices such as wireless road, which has a deeply flawed. Between the various wireless access points that are independent of each other. Even if most of the wireless access point configuration and security policy is the same, but network administrators still have to allocate for each wireless access point configuration. Obviously, this invisible network administrator’s workload increased. Initial configuration and subsequent policy adjustment will be very troublesome. Read the rest of this entry »

Posted in Security, Technology, Wireless | No Comments »
Mar 14

In order to improve the efficiency of network management, local area network in a relatively large working environment, network administrators often set up local area network in the unit, install the DHCP server, and automatically by the server to provide internet access for ordinary workstations set up services; when the LAN an ordinary workstation connected to the units of the network, it will be automatically sent to the local area network access parameters of the request packet, DHCP server when the system receives from the client request information online, it will automatically provide the appropriate IP address, network mask code address, gateway address and DNS addresses and other parameters, so that client systems can access the network of the normal, it is clear DHCP server directly affect the stability of the entire local area network performance. However, if there is another local area network, while a DHCP server is not valid, the stability of the entire local area network operation will be destroyed; there will be general chaos internet workstation systems. In order for the LAN network operation has stabilized, we need to find ways to protect the legitimate DHCP server running security to avoid illegal DHCP server by the “shock”! Read the rest of this entry »

Posted in Protocol, Security, Technology | No Comments »
Mar 9

Gigabit Ethernet technology has entered the era. Ethernet is no longer just a LAN technology, will be from the desktop to the core, from enterprise to carrier, from the LAN to the Internet backbone of the dominance of the second layer of bearing technology.

For this reason, as the network core, Gigabit Ethernet switches are also facing unprecedented challenges. It’s used to take the router to handle the full Internet routing, ACL, sFlow, IPv6 routing, QoS, policy routing, multicast routing and so need to deal with the Ethernet switch. Business over the same time wire-speed processing can be Gigabit Ethernet switch core of the network selection key considerations.

Today, the core Ethernet switch has reached the large multi-terabit capacity. Used to take 4 to 6 units with a small capacity switch to achieve the capacity of the cluster, and today with a large capacity multi-terabit switch can be achieved and can achieve higher reliability, while simplifying network structure, eliminating the interconnection chain road bottlenecks, reduce maintenance costs. Read the rest of this entry »

Posted in Network Management, Routing, Security, Switch, Switching, Technology | No Comments »
Jun 23

The configuration and management of a Cisco PIX have logic similar to that of the IOS on the router and the same commands tend, with new releases to look alike.

Especially with the release 6.x, were introduced to the IOS commands common but has been maintained compatibility with older equivalent.

As in any multiuser OS, there are regular and privileged users (enabled). It becomes the root of a Pix with:
Pix> enable
Pix# The prompt changes from> to #
From here you enter configuration mode:
configure terminal
You save the configuration in memory resident (NVRAM, FLASH…) with:
write memory
It displays the current configuration:
write terminal or show running-config
You can view the log messages (to be activated configuration may remain in a local buffer (occupying memory), or logged on syslog remote server) with:
show logging Read the rest of this entry »

Posted in Cisco, Security | 13 Comments »
Jun 20

With the Address Resolution Protocol (ARP) can determine IP hosts MAC address to an IP address. This mapping is stored in the ARP cache. An attacker can try using falsified ARP frames to manipulate these Zuordnugn. He may be either a man-the-middle attack in conduct or communication in the network interfere. This type of attack, known as ARP spoofing and ARP poisoning. Read the rest of this entry »

Posted in Security, Switch | 23 Comments »
Jun 19

Security was one of the first features for securing network ports. Access to the network via this address controlled. The MAC can access port to specific MAC addresses or a number of addresses to be limited.

In violation of a defined traffic rules can be filtered (violation protect or restrict) or the interface will be disabled (shutdown violation). Read the rest of this entry »

Posted in Security, Switch | 2 Comments »
May 31

Introduction

With Authentication Proxy, users can log into the network or access the Internet via HTTP.
User profiles are automatically obtained from a server TACACS +, which we assume is already configured. (Cisco Secure Access Control Server)
It is assumed that the server TACACS + is the same LAN client and that a user is configured CSACS Default Group, with username and password.

Configure AAA

To configure AAA, the steps are:

a. On the router in global configuration mode:
Router # configure terminal Read the rest of this entry »

Posted in Security | 1 Comment »

« Previous Entries Next Entries »



Designed By :Xperwebbuilder.com  All Right Reserved