Configure Zone-Based Policy Firewall

November 14, 2010

0

Configuring zone-based policy firewall on a cisco IOS router is not as easy. To be able to understand the topology of the configuration I used some colors. The key hierarchy is the following: class-map policy-map zone-pair zone security for interface I used in this small example the following topology: Configuration topology: Router parameters: SW: Cisco […]

Posted in: Application Filtering, Cisco, IOS, Security

Cisco ASA admin access

November 13, 2010

0

The first step of installing a firewall is to setup the management access of it. Weak protocols like telnet should not be used. if something need to communicate with the firewall, that should be secured. Just another example the logging methods. The syslog itself is again a clear text communication method and should be avoided. […]

Posted in: Admin access, ASA, Cisco, Security

Configure ssh access to IOS router

November 13, 2010

0

The routers are managed generally with telnet. Telnet is from security view not the best access method, as it is clear text and fast all end-hosts has a telnet client. In such case secure access should be used with ssh or ssl. A Cisco IOS router can be accessed with ssh as well, the following […]

Posted in: Admin access, Cisco, IOS, Security

Checkpoint IP Appliance install only with CLI

November 13, 2010

0

I always look for the fastest way – CLI – if I have to configure something. That’s why I decided to try an Nokia Firewall install without any Browser and Java, those things makes the day really slooow. On IPSO it is possible to configure fast everything on CLI, on SecurePlatform it was earlier not […]

Posted in: Checkpoint, Installation, IPSO, Security

Cisco ASA prompt for failover

November 12, 2010

2

Speed up your failover troubleshooting and activate the prompt command on your ASA. With the prompt command can you specify the followings: context   Display the context in the session prompt (multimode only) domain    Display the domain in the session prompt hostname  Display the hostname in the session prompt priority  Display the priority in the session […]

Posted in: ASA, Cisco, Failover, Security

Checkpoint IPSO Password reset

November 12, 2010

0

We got a new Nokia Firewall I tried to login and the default username ‘admin’ with the default password ‘Password’ did not work. What comes in this case: Password Recovery. Checkpoint has already imported the Solution from Nokia Support, this is: sk41239 – How do I change the admin password when it is lost or […]

Posted in: Checkpoint, IPSO

Configure syslog facility

November 6, 2010

1

If you setup your own syslog server than you can choose to which facility should the router or firewall send the logs. Lets see how it looks like. Step 1. Edit the syslog server configuration file. Let say we use Local6 as our Facility level for the router. # vi /etc/syslog.conf local6.info /netscape/pixfirewall/pixlogs Step 2. […]

Posted in: Cisco, Logging, Security
Create a free website or blog at WordPress.com.