After the first week of the INE bootcamp I spent the weekend relaxing a bit and reviewing the topics on the doc-cd.

The second week confirmed the high level of this training, long hours and Brian Dennis showing us a lot of scenarios and how to spot a problem before it happens instead of just troubleshooting it later. …

I spent this week in London attending the first part INE CCIE R&S 10days  bootcamp with Brian Dennis. I stay in London for the weekend to review some topics and be ready for the second part next week.

The bootcamp runs from 9AM to 8PM and it's all hands on, no videos, no slides, no workbook to follow line-by-line, …

Today is system administrator appreciation day. Don't forget to show your appreciation to youy SysAdmin (on Network Admin).

LINK

This time is for real.

<img
  loading="lazy"
  decoding="async"
  alt=""
  
    class="image_figure image_external image_processed"
    width="144"
    height="143" …</picture></figure></a></p>

A nice and free manual to manage Debian Linux:

A reference book presenting the Debian distribution, from initial installation to configuration of services.

LINK

Today a customer called to change the IP address of a L2L VPN peer on his Cisco ASA 8.3(2)4.

The task can be divided in 3 steps:

1. Get the VPN password. It should be written somewhere in the network documentation, as stated by rule 7, but you know, password sometimes just get lost.

2. Find and update crypto map

   asa# sh …

As a network engineer I deal with digital certificates quite often for EAP-TLS authentication,  VPN, and device certificates like on WLC controllers.

Customers that don't need a public certificate just want a valid certificate loaded on the device to make it work. I used to create certificates with OpenSSL, that is …

Sometimes customers ask me how they can get provider independent IP addresses. Since IPv4 are finished, I looked for IPv6 only.

To apply for Provider Independent addresses there are some Contractual Requirements that must be met. It's cleat that IP are assigned to the organization and can't be assigned to third …

tcping.exe is a small console application that operates similarly to 'ping', however it works over a tcp port. License: GPL - Platforms: Win XP, Vista 7

When I have to test if a TCP connection works, like when configuring a NAT or ACL rule, usually I telnet the specific port. TCPing allows to keep the ping active on …

Tomahawk is a command line tool for testing network-based intrusion prevention systems (NIPS).

The concept is simple, you can download virus,attacks,exploit pcaps from many sources and save them on the Tomahawk machine. To test an IPS you need tree network interfaces: one for management, one to send traffic and one to …

Tool of the day:

Batch Compiler is a small and very easy top use application designed to help you script batch programs and compile them in to exe file with integrated help utility and a user friendly interface.

Passed  Brocade 150-220 exam, another badge added to my c.v.

Having a CCNP background and some CCIE theory knowledge I found this exam quite easy.On the exam blueprint just some QoS implementations, VRRP-E and Metro Ring Protocol are different than Cisco exams. STP and IGP/BGP are almost the same, and no EIGRP of …

Sometimes it can be useful to copy files to and from a Cisco ASA Firewall via SCP.

To enable SCP just type:

ssh scopy enable

Forgot the PSK of a VPN on a Cisco ASA? With this command you can see all the passwords in cleartext:

more system:running-configuration