GroupStudy.com GroupStudy.com - A virtual community of network engineers
 Home  BookStore  StudyNotes  Links  Archives  StudyRooms  HelpWanted  Discounts  Login
VPDN posted 09/01/2008
[Chronological Index] [Thread Index] [Top] [Date Prev][Date Next] [Thread Prev][Thread Next]


Hello all,

I have a firewall connected from outside to a DSL modem and configured
properly for VPDN. I called the ISP to fix the outside address of the outside
interface and they did. But I cannot ping or telnet or ssh it, so have anyone
faced such a problem?

Many thanks
Alfadi Albaridi

_________________________________________________________________
Get ideas on sharing photos from people like you.  Find new ways to share.
http://www.windowslive.com/explore/photogallery/posts?ocid=TXT_TAGLM_WL_Photo
_Gallery_082008


From security-owner@xxxxxxxxxxxxxx Mon Sep  1 09:04:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m81D4wc9005676
	GroupStudy Mailer; Mon, 1 Sep 2008 09:04:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m81D4wnP005674
	for securityxhiddenx; Mon, 1 Sep 2008 09:04:58 -0400
Received: from ey-out-1920.google.com (ey-out-1920.google.com
  [74.125.78.147]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m81D4u1H005652 GroupStudy Mailer; Mon, 1 Sep 2008 09:04:57
  -0400
Received: by ey-out-1920.google.com with SMTP id 4so705760eyg.24 for
  <security@xxxxxxxxxxxxxx>; Mon, 01 Sep 2008 06:04:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:reply-to
  :to:subject:cc:in-reply-to:mime-version:content-type:references;
  bh=1B525GCQbDAMO4824epnSrsTigkdLvpLWY32CrH6zsY=;
  b=pxPvxu1j+iLoQgPhONJvF/Ne/0GqSbsT6pY7m72EpcegWYwcB3qDXg1sjFKFOuT5ot
  XvfcCaQwmGJRtCXhTb3nOnNCW23y2fpwqXNgxr/anklCni6brJcZnFlBYMNdjEQo2n5B
  rR7bwNRDCeQLFr3M9izo1Mu/J1yoTVw8+JWPE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:reply-to:to:subject:cc:in-reply-to
  :mime-version:content-type:references;
  b=kQoJ8gMvdMyIMcmO8PrXACPTIX8AecMJx+hFZ7GXw3aCcQj8pvn7Jg+hlna8m6oNwS
  Bgs53YMEEi/8WkTerrmg5QwM7bKsO4tArqQ/Z4pve6EX2FCAojs0W9QRS7pmJ1Zr7uEr
  L6Dc2Sx+Fg/3vx/KNf2EcxZVyhLm5odbfpqM0=
Received: by 10.210.71.12 with SMTP id
  t12mr6475469eba.146.1220274290684; Mon, 01 Sep 2008 06:04:50 -0700
  (PDT)
Received: by 10.210.130.8 with HTTP; Mon, 1 Sep 2008 06:04:50 -0700
  (PDT)
Message-ID: <2df409bb0809010604y33372d2elc394c63ea8531e2f@xxxxxxxxxxxxxx>
Date: Mon, 1 Sep 2008 18:04:50 +0500
From: "Aun Raza" <aun.raza@xxxxxxxxx>
To: "Alfadi Albaridi" <falbaridi@xxxxxxxxxxx>
Subject: Re: VPDN
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <BLU111-W19350BF6468A78A9BF8FCEB15C0@xxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <BLU111-W19350BF6468A78A9BF8FCEB15C0@xxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from aunraza@xxxxx\.com] (2008/09/01 09:04:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aun Raza" <aun.raza@xxxxxxxxx>

What kind of firewall is it? What have you already done to troubleshoot?

On Mon, Sep 1, 2008 at 4:55 PM, Alfadi Albaridi <falbaridi@xxxxxxxxxxx>wrote:

> Hello all,
>
> I have a firewall connected from outside to a DSL modem and configured
> properly for VPDN. I called the ISP to fix the outside address of the
> outside
> interface and they did. But I cannot ping or telnet or ssh it, so have
> anyone
> faced such a problem?
>
> Many thanks
> Alfadi Albaridi
>
> _________________________________________________________________
> Get ideas on sharing photos from people like you.  Find new ways to share.
>
> http://www.windowslive.com/explore/photogallery/posts?ocid=TXT_TAGLM_WL_Photo
> _Gallery_082008<http://www.windowslive.com/explore/photogallery/posts?ocid=TXT_TAGLM_WL_Photo_Gallery_082008>


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 08:08:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82C8CvE021035
	GroupStudy Mailer; Tue, 2 Sep 2008 08:08:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82C8CtS021033
	for securityxhiddenx; Tue, 2 Sep 2008 08:08:12 -0400
Received: from web51507.mail.re2.yahoo.com (web51507.mail.re2.yahoo.com
  [206.190.38.199]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m82C74c0020917 GroupStudy Mailer; Tue, 2 Sep 2008 08:07:04
  -0400
Received: (qmail 54425 invoked by uid 60001); 2 Sep 2008 12:06:58 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=gBuKtOmuxqi9LQePzDo1RpOWhA8W1xbOz/cjIGNVCMqUFJ5FW6TwL3O4sm7XxH6pr5oTahREEgkXwGqj0JK3FxsVVufhiBR17vt4f2w5OavXLtxUaC2IdwsVKi2dC91xSRkl6+IUYi97x19yR3GzjGi6DHcECun3YOz+FFloJ+c=;
X-YMail-OSG: jEsE9wcVM1msDGp7NQGFojKbV6hJw9BKqbVB6xH6QSTx9DCUXXmGt7p77LJL2pNlGphL8C.5KNDuDLjEDZjmz_H1_pOuY9mcABWplFn95t_I__tve2repy8UZTga9H6fmPo-
Received: from [72.73.193.36] by web51507.mail.re2.yahoo.com via HTTP;
  Tue, 02 Sep 2008 05:06:57 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Tue, 2 Sep 2008 05:06:57 -0700 (PDT)
From: Brian Wood <brianwood435@xxxxxxxxx>
Subject: Bootcamps
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/02 08:07:05)
X-ASK-Info: Confirmed by User (2008/09/02 08:08:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brian Wood <brianwood435@xxxxxxxxx>

I realize this may be a contengous question, but I'm looking for feedback from
individuals that have completed a Security Lab bootcamp.  I curious to see if
you think it was valuable and well run.
 
I'm aware of 3 different vendors available in the US.
 
IPExpert
CCBootcamp
IEmentor
 
If I missed one, let me know
 
If you have completed one of these bootcamps, please let me know if it helped
and based on what you learn would you made the investment again.
 
 
Thanks,
 
 
Brian
 


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 08:55:56 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82Ctubi026120
	GroupStudy Mailer; Tue, 2 Sep 2008 08:55:56 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82CtuPH026118
	for securityxhiddenx; Tue, 2 Sep 2008 08:55:56 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.186]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82CtsYj026095 GroupStudy Mailer; Tue, 2 Sep 2008 08:55:55
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1452248tib.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 05:55:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=we4wum7QIJvLzs7srdqtGaQvRjRy7UDaGPXPmHvz9Cw=;
  b=jFjHQ3n/ukc+JWvAHtZEIkqMYtgso3dtzshmI23Ap41QoWRjTvg9N/y4JoL+nNzvMp
  XmeIlQEbEsiq7GZTQ4Zf2qTy1jCJ0fQUhZyAfCrSF8K+zAbbB3bzWTs/uWpvyv4o7wfs
  zvISRYUSieeYO0gZJLHXH76ZPQzMyYSprjMQ8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=t1+ZlmMX2SFvPmTbuvxCy7FQDKmK1VlElA/ip0kXOOdi9B52h7Ek2BxGAzgY0EQ435
  fSd5SCmerHjK493MRiYtR3qe9nwwb2RpU3JUrpzjI/G6yvI6OxKDuz3BXXrs/5RYXH/M
  0VXGPT6kCpapsWjPR6tSlv9o4j5HnLZaBfBmY=
Received: by 10.110.28.15 with SMTP id b15mr9443198tib.26.1220360151530;
  Tue, 02 Sep 2008 05:55:51 -0700 (PDT)
Received: by 10.110.103.1 with HTTP; Tue, 2 Sep 2008 05:55:51 -0700
  (PDT)
Message-ID: <1a30c00809020555o68f04b39t845ed91cc3a781de@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 18:25:51 +0530
From: "ravi ranjan" <ravi29635@xxxxxxxxx>
To: "Brian Wood" <brianwood435@xxxxxxxxx>
Subject: Re: Bootcamps
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ravi29635@xxxxx\.com] (2008/09/02 08:55:56)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "ravi ranjan" <ravi29635@xxxxxxxxx>

In case you want to go for a bootcamp, it should be InternetworkExpert.

they are best in buisness




On Tue, Sep 2, 2008 at 5:36 PM, Brian Wood <brianwood435@xxxxxxxxx> wrote:

> I realize this may be a contengous question, but I'm looking for feedback
> from
> individuals that have completed a Security Lab bootcamp.  I curious to see
> if
> you think it was valuable and well run.
>
> I'm aware of 3 different vendors available in the US.
>
> IPExpert
> CCBootcamp
> IEmentor
>
> If I missed one, let me know
>
> If you have completed one of these bootcamps, please let me know if it
> helped
> and based on what you learn would you made the investment again.
>
>
> Thanks,
>
>
> Brian


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 09:12:21 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82DCLT9027964
	GroupStudy Mailer; Tue, 2 Sep 2008 09:12:21 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82DCKUi027959
	for securityxhiddenx; Tue, 2 Sep 2008 09:12:21 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.189]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82DCHJt027826 GroupStudy Mailer; Tue, 2 Sep 2008 09:12:18
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1456344tib.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 06:12:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=nAUSkH8nxegz5Zivkgy0Ilsd5PKRQeRC11KptEDD8KE=;
  b=Ur1blL6dcTn6Hkd5doy1hvQtq08DiIyIzSprtr3UrHjp8kqzDkF4IhzU37LWluTUt3
  IBqLZPFulL/xkLPsxckNk/iqghox1ZG5Di5ng5skHFEduO/gWBHNu5Kh9DfZrvnQeFsC
  H2Dn2Hjk7zFfOhyTzphYP7D3r8g3ElnMGVetE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=mY5c6nZHSZBuJOWCtYMrw7smo5nY+EiYui1U7q3hR1NkaO0Z4nTTB0IAeMV2BX5Wu3
  2fKBJ9WfqM6tfGt6HX+wTZB1q2jn2foTl+q9Nyz1GP3naT38MFklWyigmugf6fsYq7T9
  RxXhetheJ4MqqKucciEDlb5ZtNPeLG/9936z0=
Received: by 10.110.28.15 with SMTP id b15mr9466170tib.26.1220361134017;
  Tue, 02 Sep 2008 06:12:14 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Tue, 2 Sep 2008 06:12:13 -0700
  (PDT)
Message-ID: <f589772b0809020612h4117261as6083e62587586531@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 16:12:13 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx, groupstudy <ccielab@xxxxxxxxxxxxxx>
Subject: OT:Regarding Cisco Security Agent CSA (5.2 OR 6.0)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/02 09:12:20)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Can anybody please share his expereience with CSA version 5.2 or 6.0 in a
large environemt like 700+ Workstations and 25+ server.

Any feedback and suggestions are welcome : )

Thanks


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 09:26:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82DQF2k029115
	GroupStudy Mailer; Tue, 2 Sep 2008 09:26:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82DQF05029113
	for securityxhiddenx; Tue, 2 Sep 2008 09:26:15 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.187]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82DQDQV029092 GroupStudy Mailer; Tue, 2 Sep 2008 09:26:14
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1459456tib.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 06:26:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=HjHuSo5lXO2fK/d0KVIfl0OqoSrNgAENbbJ9dBDOTd8=;
  b=da1IyTSf4Dl8o9ONLhKy+KxjqwbBoPSFKMpNbuzhyqOPu6AMdlNETtFN20VMzUIWWl
  5iZED3dskSFNg2QS+kbcjZ5J7m6f9ZvMKelMAtSDQ/HszTmnwY20f7Fn+JJTxZkqzO+l
  CwTeA80A8gS+5F31sk55Wpr7hK+M45b6SSMko=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=Jv4o0Q5pqtSybC/KcRU3sa1SOu8HLAf2+SIKD87KbJSuWQHgDMpMeQT3ZNAxslmcbi
  cPHrkuktfqKdT9PEHCAZYubS1aJuJJ2j0k0BD5BjzZkr8mALzShTCTzYsaozfyrklVWs
  X+uc4loIix+NfxDLxFKxQZKKmYlgfQ7h2YqB8=
Received: by 10.110.95.15 with SMTP id s15mr9455456tib.45.1220361972193;
  Tue, 02 Sep 2008 06:26:12 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Tue, 2 Sep 2008 06:26:12 -0700
  (PDT)
Message-ID: <f589772b0809020626o2bef219v6718ff759579e9ca@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 16:26:12 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Brian Wood" <brianwood435@xxxxxxxxx>
Subject: Re: Bootcamps
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/02 09:26:15)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Although not answering your question but I really heard some very good
comments about Khawat Butt of Netmetric-Solutions.


2008/9/2 Brian Wood <brianwood435@xxxxxxxxx>

> I realize this may be a contengous question, but I'm looking for feedback
> from
> individuals that have completed a Security Lab bootcamp.  I curious to see
> if
> you think it was valuable and well run.
>
> I'm aware of 3 different vendors available in the US.
>
> IPExpert
> CCBootcamp
> IEmentor
>
> If I missed one, let me know
>
> If you have completed one of these bootcamps, please let me know if it
> helped
> and based on what you learn would you made the investment again.
>
>
> Thanks,
>
>
> Brian
>
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 10:48:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82EmD3T004357
	GroupStudy Mailer; Tue, 2 Sep 2008 10:48:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82EmDDi004355
	for securityxhiddenx; Tue, 2 Sep 2008 10:48:13 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.155]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82EmBaG004335 GroupStudy Mailer; Tue, 2 Sep 2008 10:48:11
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1561470fgb.38 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 07:48:09 -0700 (PDT)
Received: by 10.180.220.5 with SMTP id s5mr5883099bkg.5.1220366889363;
  Tue, 02 Sep 2008 07:48:09 -0700 (PDT)
Received: by 10.181.17.11 with HTTP; Tue, 2 Sep 2008 07:48:09 -0700
  (PDT)
Message-ID: <429141760809020748n5d0a425agccdb01aa62723c08@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 10:48:09 -0400
From: "Joe Danford" <joe@xxxxxxxxxx>
To: "ravi ranjan" <ravi29635@xxxxxxxxx>
Subject: Re: Bootcamps
Cc: "Brian Wood" <brianwood435@xxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <1a30c00809020555o68f04b39t845ed91cc3a781de@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <224896.54292.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <1a30c00809020555o68f04b39t845ed91cc3a781de@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from joe@xxxxxx\.com] (2008/09/02 10:48:13)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joe Danford" <joe@xxxxxxxxxx>

Im interested in this also. Instead of just saying someone is good does
anyone have any personal experiences to share and maybe how they believe it
prepared them for the lab?

On Tue, Sep 2, 2008 at 8:55 AM, ravi ranjan <ravi29635@xxxxxxxxx> wrote:

> In case you want to go for a bootcamp, it should be InternetworkExpert.
>
> they are best in buisness
>
>
>
>
> On Tue, Sep 2, 2008 at 5:36 PM, Brian Wood <brianwood435@xxxxxxxxx> wrote:
>
> > I realize this may be a contengous question, but I'm looking for feedback
> > from
> > individuals that have completed a Security Lab bootcamp.  I curious to
> see
> > if
> > you think it was valuable and well run.
> >
> > I'm aware of 3 different vendors available in the US.
> >
> > IPExpert
> > CCBootcamp
> > IEmentor
> >
> > If I missed one, let me know
> >
> > If you have completed one of these bootcamps, please let me know if it
> > helped
> > and based on what you learn would you made the investment again.
> >
> >
> > Thanks,
> >
> >
> > Brian


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 11:24:23 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82FONEE007590
	GroupStudy Mailer; Tue, 2 Sep 2008 11:24:23 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82FONRe007588
	for securityxhiddenx; Tue, 2 Sep 2008 11:24:23 -0400
Received: from web51805.mail.re2.yahoo.com (web51805.mail.re2.yahoo.com
  [206.190.38.236]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m82FOLFE007544 GroupStudy Mailer; Tue, 2 Sep 2008 11:24:21
  -0400
Received: (qmail 47767 invoked by uid 60001); 2 Sep 2008 15:24:15 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=jfNkio7I89G5qWr8+wxP8fAGMPEmdaPoz1V6cMjX6bcxm07mcUe/tEQJuIRAChVcouD2mHhnLb5pg0jTioMROTy8CSSBGUHI7aIoudrLSc15nQfqyEWrtoZB0YxgQKkATkwR5MnE81u0J6tGfJtEn61RaAl23gGd7gkJng4Joyo=;
X-YMail-OSG: qtz9ieYVM1m0a0uqriILz4ZQxp6CbDUuxLO_2vWIhgAVflUEjf7Iv.R8NxWJGaPsxQ--
Received: from [209.240.41.125] by web51805.mail.re2.yahoo.com via HTTP;
  Tue, 02 Sep 2008 08:24:14 PDT
X-Mailer: YahooMailRC/1096.28 YahooMailWebService/0.7.218.2
Date: Tue, 2 Sep 2008 08:24:14 -0700 (PDT)
From: austin okojie <aiokojie@xxxxxxxxx>
Subject: 802.1x authentication and IP-Phones
To: security@xxxxxxxxxxxxxx, groupstudy <ccielab@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <36784.47756.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from aiokojie@xxxxx\.com] (2008/09/02 11:24:22)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: austin okojie <aiokojie@xxxxxxxxx>

Hi All,
B 
We are planning an enterprise implementation of 802.1x
authentication on our IP-Telephony network. Basically we run Cisco IP phones
on our network with desktops connected to the phones. We are concerned about
implementing 802.1x authentication on these switchports as the PCs are not
directly connected, I have heards about a solution of using CDP to bypass the
problem or using SNMP for out-of-bound authentication of the phones. 
B 
I was
wondring if anyone good point me to configuration examples or any Cisco docs
that show how to implement this.
B 
Any help is much appreciated.

Send
instant messages to your online friends http://uk.messenger.yahoo.com


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 12:26:50 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82GQo5F015014
	GroupStudy Mailer; Tue, 2 Sep 2008 12:26:50 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82GQoOh015012
	for securityxhiddenx; Tue, 2 Sep 2008 12:26:50 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.241]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82GQmIs014974 GroupStudy Mailer; Tue, 2 Sep 2008 12:26:48
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2242647rvb.54 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 09:26:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=+x4+mJGFXOIn9nD9MQW1KtbiqEbRWdSCGYFQS9ETaeo=;
  b=mL4H0V887EMJmnkLAyxLRgnyBenHSZu7Ed3L15NsARrL8CwdTTSIRTpTc6CEHAkLMn
  Rr1DgGILIHrlcktIa6ilghsPYXFOxIcV7JA1Z9d3UuYakGsIgFigkHX+JybWTkvkupJZ
  /l7kL9M+e0D7Ba0ArddkfMOduWzRS7HghdGk0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=ZgNyG0EtvnBawVjRhpf1rSHACYKBNqCvA8PCb+eDtodxztwG7DfTzrazJzt1jpdduA
  rzZkewC/MHkHmE/jzfzx3Bd+WLU2Jt1Eo8COIn11+8HdKSsdhoNI4+R4H5XhTtCdNVPP
  XvNruFxtxbJ5hlUd9vVkQPEfLhf/V0DfkpS8s=
Received: by 10.140.201.1 with SMTP id y1mr4258307rvf.246.1220372806352;
  Tue, 02 Sep 2008 09:26:46 -0700 (PDT)
Received: by 10.141.32.9 with HTTP; Tue, 2 Sep 2008 09:26:46 -0700 (PDT)
Message-ID: <b3b04d380809020926r5cb0ad26v9d0ad0543a0caee9@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 17:26:46 +0100
From: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
To: "austin okojie" <aiokojie@xxxxxxxxx>
Subject: Re: 802.1x authentication and IP-Phones
Cc: security@xxxxxxxxxxxxxx, groupstudy <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <36784.47756.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <36784.47756.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sadiqtanko@xxxxx\.com] (2008/09/02 12:26:49)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>

Austin,

Cisco has a good and robust solution for 802.1x deployment in a Voice
capable network. Whether your phones support 802.1x or not, whether the PCs
behind the phones support 802.1x or not, this is not a problem at all.

You can deploy 802.1x on with network with IP phones with either MDA
(multi-domain authentication): where there will be 2 domains - data and
voice domains and each device (the phone on the voice domain and the PC on
the data domain) will authenticate or MAB (MAC authentication bypass) when
the phones or the PC doesn't support 802.1x but the MAC address of the each
device is authenticated with ACS and placed in the right domain (voice or
data).

On some of the platforms (switches), there is no support for MDA and thats
when you have CDP bypass where the phone learns its voice VLAN and bypasses
authentication altogether. The PC behind it authenticates 802.1x or MAC
(havent checked this).

You can also deploy this solution well with 3rd party IP phones that dont do
CDP (which is a major dependency for the dolution). But all is possible.

In a nut shell, thats where it all stands at the moment.

More here and on CCO:
http://www.cisco.com/en/US/prod/collateral/routers/ps5853/prod_white_paper0900aecd806c6d65.html


HTH
Sadiq


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 13:51:17 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82HpHbk024414
	GroupStudy Mailer; Tue, 2 Sep 2008 13:51:17 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82HpHKr024412
	for securityxhiddenx; Tue, 2 Sep 2008 13:51:17 -0400
Received: from web80009.mail.sp1.yahoo.com (web80009.mail.sp1.yahoo.com
  [69.147.92.112]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m82HpFjh024389 GroupStudy Mailer; Tue, 2 Sep 2008 13:51:16
  -0400
Received: (qmail 90824 invoked by uid 60001); 2 Sep 2008 17:51:08 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=Received:X-Mailer:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Message-ID;
  b=wFg0CAmr4evKBtt8vwMTPQtNdRj7qled6WhCQqSTqn27JCezhCThwc4XiGkqyPXGO4Q9b2/AvgS3eD6OL8pqZAx4Gx3K3XCEA9F8K5IiIzxl22BEeF+j9uDUwiwPpF/I7GUToFrAB1/SZ0mmXvd6yyh40zCy21WkmQvMOy0A56Q=;
Received: from [208.189.22.169] by web80009.mail.sp1.yahoo.com via HTTP;
  Tue, 02 Sep 2008 10:51:08 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Tue, 2 Sep 2008 10:51:08 -0700 (PDT)
From: John Huston <fentonguy2003@xxxxxxxxx>
Subject: Re: Bootcamps
To: security@xxxxxxxxxxxxxx
In-Reply-To: <429141760809020748n5d0a425agccdb01aa62723c08@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <581079.86783.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from fentonguy2003@xxxxx\.com] (2008/09/02 13:51:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: John Huston <fentonguy2003@xxxxxxxxx>

I had good luck at CCBootCamp.  Their information was well presented, to the
point and then you did a lot of work on you own. I am a visual learner so that
was best for me.
 
The instrutor was there to help if you did not get something up front was also
available by email after hours up until 10:00 PM. So it was a very worthwile
experience.  I also purchased their workbooks and did them before going.
 
I didn't have much luck with the material I purchased from IPExpert and have
not used IEmentor.

--- On Tue, 9/2/08, Joe Danford <joe@xxxxxxxxxx> wrote:

From: Joe Danford <joe@xxxxxxxxxx>
Subject: Re: Bootcamps
To: "ravi ranjan" <ravi29635@xxxxxxxxx>
Cc: "Brian Wood" <brianwood435@xxxxxxxxx>, security@xxxxxxxxxxxxxx
Date: Tuesday, September 2, 2008, 9:48 AM

Im interested in this also. Instead of just saying someone is good does
anyone have any personal experiences to share and maybe how they believe it
prepared them for the lab?

On Tue, Sep 2, 2008 at 8:55 AM, ravi ranjan <ravi29635@xxxxxxxxx> wrote:

> In case you want to go for a bootcamp, it should be InternetworkExpert.
>
> they are best in buisness
>
>
>
>
> On Tue, Sep 2, 2008 at 5:36 PM, Brian Wood <brianwood435@xxxxxxxxx>
wrote:
>
> > I realize this may be a contengous question, but I'm looking for
feedback
> > from
> > individuals that have completed a Security Lab bootcamp.  I curious
to
> see
> > if
> > you think it was valuable and well run.
> >
> > I'm aware of 3 different vendors available in the US.
> >
> > IPExpert
> > CCBootcamp
> > IEmentor
> >
> > If I missed one, let me know
> >
> > If you have completed one of these bootcamps, please let me know if
it
> > helped
> > and based on what you learn would you made the investment again.
> >
> >
> > Thanks,
> >
> >
> > Brian


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 14:28:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82ISBsP027189
	GroupStudy Mailer; Tue, 2 Sep 2008 14:28:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82ISB5Z027187
	for securityxhiddenx; Tue, 2 Sep 2008 14:28:11 -0400
Received: from web51804.mail.re2.yahoo.com (web51804.mail.re2.yahoo.com
  [206.190.38.235]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m82IS9we027128 GroupStudy Mailer; Tue, 2 Sep 2008 14:28:09
  -0400
Received: (qmail 60332 invoked by uid 60001); 2 Sep 2008 18:28:02 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=3SNxP/ZgN+YHsvrWjA0cCR0aDlU18t5FN9NiOrKRmhyKbkxpclFlQo92pD2fWC0kTpxPdXO3iLx9GYnLEeMfEX4WoRehwLgv2FoSkl3p29lv5+cqeRjf9siD9cXp07eElEShA3CKBaaMU0OKVJU4Qe+V1hpnWf6lIQ6LrOHAf7c=;
X-YMail-OSG: iEQWmsUVM1lAeo5S3qKrxJuoRKLy_zEmwAwyupqj_YQhtIxH4eCWRxOcAdee6QZq1oBV2gZi1zdXYsSqrI5zFUPWu3J.NV7NdOkMAKSuuWyEm739ph64KId5k7qQg94y6JhKDb_32G2LfAB93rKD4n8-
Received: from [209.240.41.125] by web51804.mail.re2.yahoo.com via HTTP;
  Tue, 02 Sep 2008 11:28:02 PDT
X-Mailer: YahooMailRC/1096.28 YahooMailWebService/0.7.218.2
Date: Tue, 2 Sep 2008 11:28:02 -0700 (PDT)
From: austin okojie <aiokojie@xxxxxxxxx>
Subject: Re: 802.1x authentication and IP-Phones
To: Ajith Nair <kuttappan@xxxxxxxxx>, Sadiq Yakasai
  <sadiqtanko@xxxxxxxxx>,
        security@xxxxxxxxxxxxxx, groupstudy
  <ccielab@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <142545.59773.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from aiokojie@xxxxx\.com] (2008/09/02 14:28:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: austin okojie <aiokojie@xxxxxxxxx>

Hi All,

Thanks for your contribution.

Something else I failed to mention is
we are looking to dynamically assign the port to an access VLAN once the User
authenticates based on configured radius attributes in CSACS, Data VLANS will
not be manually configured on the ports.

Any help would be useful.




-----
Original Message ----
From: Ajith Nair <kuttappan@xxxxxxxxx>
To: austin okojie
<aiokojie@xxxxxxxxx>
Sent: Tuesday, 2 September, 2008 14:03:07
Subject: Re:
802.1x authentication and IP-Phones

Easiest method is to use voice VLAN
feature and attach all phones
to a seperate VLAN fro voice. Once the phone is
attached to voice
VLAN i believe it will bypass 802.1x (not sure 100%). The PC
behind
the phone will
still be attached to the main VLAN subject to the 802.1x
authetnication.

Some of the switch platforms also have the ability to bypass
Cisco IP
phones from 802.1x.

many of the new cisco phone models have 802.1x
supplicant built in

-K

On Tue, Sep 2, 2008 at 8:24 AM, austin okojie
<aiokojie@xxxxxxxxx> wrote:
> Hi All,
> B
> We are planning an enterprise
implementation of 802.1x
> authentication on our IP-Telephony network.
Basically we run Cisco IP phones
> on our network with desktops connected to
the phones. We are concerned about
> implementing 802.1x authentication on
these switchports as the PCs are not
> directly connected, I have heards about
a solution of using CDP to bypass the
> problem or using SNMP for out-of-bound
authentication of the phones.
> B
> I was
> wondring if anyone good point me
to configuration examples or any Cisco docs
> that show how to implement this.
> B
> Any help is much appreciated.
>
> Send
> instant messages to your online
friends http://uk.messenger.yahoo.com


From security-owner@xxxxxxxxxxxxxx Tue Sep  2 18:20:31 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m82MKVKg016850
	GroupStudy Mailer; Tue, 2 Sep 2008 18:20:31 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m82MKV0P016848
	for securityxhiddenx; Tue, 2 Sep 2008 18:20:31 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.246]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m82MKTkj016810 GroupStudy Mailer; Tue, 2 Sep 2008 18:20:29
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2375325rvb.54 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 15:20:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=wd6BK+LxvXw/Ep5D3n5cnZ0wPbED/ytYLEwGg85EGcs=;
  b=HGVyDCLY/mtZpyQOEIz4Rw8MN+gnXKShsNJp1mMXLzUUCoI1KoyeIGdZzxD0/mGNpu
  UAmmWIWmQUPq5zH6Ln3HacNP9w1j0jsafKrFSnsohHyTMfpIsdCdcmBgvRPLAId9NaGR
  c7LliViIfh4KieAFmh43KepIm2T7CpiJ4zOOg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=tKzV8KYohmIjrGre3Jich+1FSmGikyUkDf0ZyLNp4vvKCHoIAfD8KDuq6n7fqxTS0K
  G+Sss8lmceFsgXRRHifu554hAiheMNRtx+QelmT9mifuDyIAXSXt1hqUv6gTyOH7TeQF
  u9UVV+SSZYEcxZJObtgFLU6DsXMU0aFAU4650=
Received: by 10.141.71.14 with SMTP id y14mr4501181rvk.24.1220394026247;
  Tue, 02 Sep 2008 15:20:26 -0700 (PDT)
Received: by 10.141.32.9 with HTTP; Tue, 2 Sep 2008 15:20:26 -0700 (PDT)
Message-ID: <b3b04d380809021520v2d5a377eyc0e1d34364eb5443@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 23:20:26 +0100
From: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
To: "austin okojie" <aiokojie@xxxxxxxxx>
Subject: Re: 802.1x authentication and IP-Phones
Cc: "Ajith Nair" <kuttappan@xxxxxxxxx>, security@xxxxxxxxxxxxxx,
        groupstudy <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <142545.59773.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <142545.59773.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sadiqtanko@xxxxx\.com] (2008/09/02 18:20:31)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>

That is also achievable with CSACS.


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 02:02:19 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8362JZJ013343
	GroupStudy Mailer; Wed, 3 Sep 2008 02:02:19 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8362JeR013341
	for securityxhiddenx; Wed, 3 Sep 2008 02:02:19 -0400
Received: from an-out-0708.google.com (an-out-0708.google.com
  [209.85.132.249]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8362Ida013321 GroupStudy Mailer; Wed, 3 Sep 2008 02:02:18
  -0400
Received: by an-out-0708.google.com with SMTP id c38so427988ana.3 for
  <security@xxxxxxxxxxxxxx>; Tue, 02 Sep 2008 23:02:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=jDSbkth8nbHyeiK5INGlD8DNSyaUnJwtvvLlI3sVVUo=;
  b=r4Qsp+M/MXGJIIfWzMrjY6kDKiHxOfBnf9tH1BXG42+BSpiigiyTC68UcfXFv78TUi
  OG3kO9/2wQ6WZecdDpcE2SdI24F82L5CtVM6DALOW1oYId7HNcZDMfGriQ+P7da3APfa
  5tBLIjxkbBNirryQ0zwP2iFy7HZRMoBGm6QpE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=p7Q5uryLjf1R8V/mn8pNfJH7WX/hh8I3ne8HcKbN1uwjwv5EvuGcsRrwFnlKwL62CN
  B5UpnGeJHyjdRE7mA+iJL9QxXvWVHKKmMNr3e5USQfsAa1dyBIw/Q+9daT0LTkxfQk+h
  huO1G+2lCClemru0/kHVSBzeksZZ+5oRX7vH4=
Received: by 10.100.214.15 with SMTP id
  m15mr8512353ang.51.1220421734379; Tue, 02 Sep 2008 23:02:14 -0700
  (PDT)
Received: by 10.100.94.12 with HTTP; Tue, 2 Sep 2008 23:02:14 -0700
  (PDT)
Message-ID: <238d626c0809022302y39488497w66843347ec5dfd0@xxxxxxxxxxxxxx>
Date: Tue, 2 Sep 2008 23:02:14 -0700
From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: IPS on vmware
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from razarizvi83@xxxxx\.com] (2008/09/03 02:02:19)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Raza Rizvi" <razarizvi83@xxxxxxxxx>

Dear all,
Iam trying to simulate IPS on vmware but after performing all configuring
steps . It shows
below mentioned message after login on sensor.

*Error: Cannot communicate with mainApp (getVersion).*
*Would you like to run cidDump?[no]:*

Can any body have an experience why this message occur and how to resolve
that issue ?


Regards
Ali


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 04:30:23 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m838UNp9022982
	GroupStudy Mailer; Wed, 3 Sep 2008 04:30:23 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m838UNBd022980
	for securityxhiddenx; Wed, 3 Sep 2008 04:30:23 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.190]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m838ULhi022960 GroupStudy Mailer; Wed, 3 Sep 2008 04:30:21
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1678482tib.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 01:30:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=iiUEtt9t9Ar6VOQS+OwXRolUIt/un5Pdls3oW9oxZ5g=;
  b=jRWzogzGyJbFRVHTdFaZsyAp6fjmjUs6PiHB/LrPSfRPiAE/Igf4cwkT5qEVsGJKrf
  ehvHyjY6WS41fpS3fuzLASHiErLkHN5Yp/OYkjm2+79bWG6/8V3AQwXqvuEubwpvh8iD
  Dh9hqAVTKGTPso0XT5/dQ3shBMo3QLaiUS6yc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=Bh5ULqgCw8fHcl/xzc87u2kK/EIjB9qNFdUJc7YyTwRZVyaAARxUUYY5rGxthQDkKR
  TKXtBxlkBdSFhnuSoMaA2JddKhvo2ng2vcGAixxaLUFs6C7eGyx/slsAwrA+iKFRV8yV
  CAbL9yo6OehD7EfKMVdgxV/V/8Z0ilUaNynCk=
Received: by 10.110.43.20 with SMTP id
  q20mr10937866tiq.14.1220430619775; Wed, 03 Sep 2008 01:30:19 -0700
  (PDT)
Received: by 10.110.103.1 with HTTP; Wed, 3 Sep 2008 01:30:19 -0700
  (PDT)
Message-ID: <1a30c00809030130w6db8c1aer573a2983154f0cd6@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 14:00:19 +0530
From: "ravi ranjan" <ravi29635@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Pix configuration
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ravi29635@xxxxx\.com] (2008/09/03 04:30:23)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "ravi ranjan" <ravi29635@xxxxxxxxx>

Hi Guys,

i have a Issue,
I have two different locations loc1 and loc2, each having one firewall.Both
the firewall are PIX 515E,, with 2 interfaces, inside and outside.
All telecommutors connect to the public IP of the outside interface, and
connect to inside network.

Now my requirement is that I want one firewall at another different location
loc3(same PIX 515E), I want that wherever my telecommutor wants to connect
he should connect to the public Ip of loc3 and that firewall should direct
it to either loc1 or loc 2.

when I say telecommutor accessing inside network, I off course mean VPN
connections.

regards
Ravi


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 04:37:28 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m838bSO1023265
	GroupStudy Mailer; Wed, 3 Sep 2008 04:37:28 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m838bSLV023263
	for securityxhiddenx; Wed, 3 Sep 2008 04:37:28 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.188]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m838bQZO023243 GroupStudy Mailer; Wed, 3 Sep 2008 04:37:26
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1680433tib.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 01:37:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=+Z58ao4zIUrFKvjs6DubcFlzn+7PlMfkGuVKGD6HmaU=;
  b=s4ynqg9+L/pp0rugrRahl57RdpPdwLB30tzeprqDkUFeS6uNRd41n0at2VjtqiGD2W
  qRzvZiGF6S9Mi8jT+dZwdQRRuzte3wXY4dt1iErI1MxHctGb+9Q1Y/LmQIojp+LqhH3T
  JS3+virySMrZPqvE4+8h/TLNcBpYPBLKkvpjc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=RpZXr9/U5FmFvh7BtQ9/Ri4t9sI5QkryN5kh73cWhQMbZwg2ywQ9tkipFCMdkQgRW5
  4oKzRjHCCDdxN/B8M34/4z13QJLF43EShCLpn/H/BsGl/2+isUXf3XFhJaU+Z6zq4Wg0
  kZ6wrkYLO8Ugy7o7a5CpNpK3rQ4vPfAjyZoLA=
Received: by 10.110.68.10 with SMTP id
  q10mr10913478tia.37.1220431045268; Wed, 03 Sep 2008 01:37:25 -0700
  (PDT)
Received: by 10.110.31.13 with HTTP; Wed, 3 Sep 2008 01:37:24 -0700
  (PDT)
Message-ID: <f589772b0809030137u526ba70bv7385a01cf83f3475@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 11:37:24 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
Subject: Re: IPS on vmware
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <238d626c0809022302y39488497w66843347ec5dfd0@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809022302y39488497w66843347ec5dfd0@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/03 04:37:27)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

hrm...

again verify the settings in the file interface.conf also check the PCI
settings.

if it is still not working change the vmware version may be it will help

2008/9/3 Raza Rizvi <razarizvi83@xxxxxxxxx>

> Dear all,
> Iam trying to simulate IPS on vmware but after performing all configuring
> steps . It shows
> below mentioned message after login on sensor.
>
> *Error: Cannot communicate with mainApp (getVersion).*
> *Would you like to run cidDump?[no]:*
>
> Can any body have an experience why this message occur and how to resolve
> that issue ?
>
>
> Regards
> Ali
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 06:26:40 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83AQewt032403
	GroupStudy Mailer; Wed, 3 Sep 2008 06:26:40 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83AQekB032401
	for securityxhiddenx; Wed, 3 Sep 2008 06:26:40 -0400
Received: from mail-gx0-f32.google.com (mail-gx0-f32.google.com
  [209.85.217.32]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83AQdvc032381 GroupStudy Mailer; Wed, 3 Sep 2008 06:26:39
  -0400
Received: by gxk13 with SMTP id 13so2389052gxk.6 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 03:26:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=woWLx/e46r+TjQkh7yl+nbvswpS/eQ60lDiuc7i4ZGM=;
  b=HPCm+Atxj6vtlICky+vbdGEP64+zoAqoT2VlzkopHN0wLjEUcnFDuHluKf0lJmZWuV
  L5+u4fp7JCfKZ0Mf8y4HOdc4cdYVyW1NNGLsNgHCRpRuBv1Xyyoa+pWjnS3ucA5R/dFh
  E+LG6jkN8dP25S9X8KWAW+YQ2wfbZtrXelvEE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=wbzshmRzUzd6piHAnPd1ic/yHAF4mz02VWCFbOpk4fJaaFpo+6ITh56H3Jhgem16HW
  nMLV5375Od/Y1VSgli/mkJv04kbUu3nse48IQyywGqw0ei1i6kDkBojOpPs0TeeAP38n
  ABH5g7h7weWX4IpiTMdDMp85nZ1qSWJRq2ZYU=
Received: by 10.151.112.17 with SMTP id
  p17mr12148894ybm.109.1220437593858; Wed, 03 Sep 2008 03:26:33 -0700
  (PDT)
Received: by 10.150.12.6 with HTTP; Wed, 3 Sep 2008 03:26:33 -0700 (PDT)
Message-ID: <876b984c0809030326i2f7cae34j93d260b4705d9a96@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 13:26:33 +0300
From: "Shahid Ansari" <shahid1357@xxxxxxxxx>
To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
Subject: Re: IPS on vmware
Cc: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809030137u526ba70bv7385a01cf83f3475@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809022302y39488497w66843347ec5dfd0@xxxxxxxxxxxxxx>
  <f589772b0809030137u526ba70bv7385a01cf83f3475@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from shahid1357@xxxxx\.com] (2008/09/03 06:26:40)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shahid Ansari" <shahid1357@xxxxxxxxx>

Hi Raza
Which VMWARE version are you using ?

Thanks
Shahid


On 9/3/08, Muhammad Nasim <muhammad.nasim@xxxxxxxxx> wrote:
>
> hrm...
>
> again verify the settings in the file interface.conf also check the PCI
> settings.
>
> if it is still not working change the vmware version may be it will help
>
> 2008/9/3 Raza Rizvi <razarizvi83@xxxxxxxxx>
>
> > Dear all,
> > Iam trying to simulate IPS on vmware but after performing all configuring
> > steps . It shows
> > below mentioned message after login on sensor.
> >
> > *Error: Cannot communicate with mainApp (getVersion).*
> > *Would you like to run cidDump?[no]:*
> >
> > Can any body have an experience why this message occur and how to resolve
> > that issue ?
> >
> >
> > Regards
> > Ali
> >
> >
>
>
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>


-- 
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 07:11:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83BB3Nx003412
	GroupStudy Mailer; Wed, 3 Sep 2008 07:11:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83BB3Mh003410
	for securityxhiddenx; Wed, 3 Sep 2008 07:11:03 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.171]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83BB2V2003390 GroupStudy Mailer; Wed, 3 Sep 2008 07:11:02
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so3750036wfc.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 04:11:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:reply-to:from:to
  :subject:date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=aa4FqhUH+GePDoLe9pCJRw7qdUwKsNmpVZvWCKzbJuc=;
  b=j3er5guE6k3YMIR1vTUU3lvDRJZd435I86pRXIJ6soyMgDYVsv5TwSi6PCnhI49MOd
  3dkVrUzS+a6zynB0C+pFrzOMwNtMxl9wd39Wyl+ooG8Hh+MimC8gyIiV2ze648+nxeqg
  blZAuQr1ZvXv62VUv2uZSXJNktsgNNTh1mBbg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:reply-to:from:to:subject:date:mime-version:content-type
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=C362x+CdbtdixymVfE9bRUAwS/37z6Vegdan70LQYK1+DFcmnsApQeW6s+zI4yXRsy
  A7b8xSQfX5HrLZVw4B8VUpJvzd37GXSOb9qgrAODV9UG+K07zQo7sgbOX9OMinh9zGYO
  n+NbsWx/+7DKhU8ftTOxkV6C68r9n9HAIu1EM=
Received: by 10.142.170.6 with SMTP id s6mr2994322wfe.153.1220440261873;
  Wed, 03 Sep 2008 04:11:01 -0700 (PDT)
Received: from Slinky ( [125.239.138.63]) by mx.google.com with ESMTPS
  id 24sm14305567wfc.6.2008.09.03.04.11.00 (version=SSLv3
  cipher=RC4-MD5); Wed, 03 Sep 2008 04:11:01 -0700 (PDT)
Message-ID: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
From: "Sean" <seansational@xxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: CA 
Date: Wed, 3 Sep 2008 23:10:58 +1200
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from seansational@xxxxx\.com] (2008/09/03 07:11:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sean" <seansational@xxxxxxxxx>

Hi All,

I have been trying to set up some ipsec vpn's with digital certificates. I
keep on getting the error below:

R1(config)#cry ca authenticate ccielab
% Error in receiving Certificate Authority certificate: status = FAIL, cert
length = 0

R1(config)#
Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
GET /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
HTTP/1.0

Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
 HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Wed, 03 Sep 2008 10:55:02 GMT
Content-Length: 4040
Content-Type: text/html

Content-Type indicates we did not receive a certificate.

Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed

I have tested and made sure I have connectivity between the router and the
CA.

The CA hangs off one of R1's ethernet interfaces.

I have pasted the config below.

crypto ca trustpoint ccielab
 enrollment mode ra
 enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
 crl optional

I have also configured the domain name and time on the device as well as
generating the local routers RSA keys. I have also looked at some URL's to
verify my config and all seems ok.

Please advise.

Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 07:54:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83BsQP5006567
	GroupStudy Mailer; Wed, 3 Sep 2008 07:54:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83BsQ3J006565
	for securityxhiddenx; Wed, 3 Sep 2008 07:54:26 -0400
Received: from ey-out-1920.google.com (ey-out-1920.google.com
  [74.125.78.150]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83BsPR6006545 GroupStudy Mailer; Wed, 3 Sep 2008 07:54:25
  -0400
Received: by ey-out-1920.google.com with SMTP id 4so1135171eyg.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 04:54:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:reply-to
  :to:subject:cc:in-reply-to:mime-version:content-type:references;
  bh=eaBg1fowy2dHr0VXl5ihGm4/W/SK/wcEoe4ORhw1Buk=;
  b=nfQVqH2iaVkw1aE1Nd/JGkXT26oXzoh15tGeqTCt4666uXxsh0CoOtbYx9VC82NlpP
  CgtuiMlAy01fwhskfz+MiL2pXg3yLtAflNoK/w3qcPx7ePGZ/OkhgIVnp/PSucQ9lZ2t
  6E1i0MBQ092Ih9JEWStIyF6FIjfmqhpgpiNdc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:reply-to:to:subject:cc:in-reply-to
  :mime-version:content-type:references;
  b=ms4ys3EcCh0SGYi5HSC4AqnksLH/NQAaHgz+poCt/cV0pMqGy0Wblq3j/yxGgH8YVF
  4qAbyf+igyhMIHv3bBEDMkxcprOP3a+Oqz66oAU8cDs9k7iWuY+Z6Igb0aBaNlCuMqen
  DqsKQFJaJFij0XjpegXBcb2LZiarqYGifROnE=
Received: by 10.210.91.17 with SMTP id
  o17mr9943472ebb.172.1220442863790; Wed, 03 Sep 2008 04:54:23 -0700
  (PDT)
Received: by 10.210.140.1 with HTTP; Wed, 3 Sep 2008 04:54:23 -0700
  (PDT)
Message-ID: <2df409bb0809030454u2385faf7i2a5542d9ab8938ad@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 15:54:23 +0400
From: "Aun Raza" <aun.raza@xxxxxxxxx>
To: Sean <seansational@xxxxxxxxx>
Subject: Re: CA
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from aunraza@xxxxx\.com] (2008/09/03 07:54:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aun Raza" <aun.raza@xxxxxxxxx>

What do you see on the CA Server? Does the request make it there?

On Wed, Sep 3, 2008 at 3:10 PM, Sean <seansational@xxxxxxxxx> wrote:

> Hi All,
>
> I have been trying to set up some ipsec vpn's with digital certificates. I
> keep on getting the error below:
>
> R1(config)#cry ca authenticate ccielab
> % Error in receiving Certificate Authority certificate: status = FAIL, cert
> length = 0
>
> R1(config)#
> Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
> GET
> /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
> HTTP/1.0
>
> Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
> Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
> Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
> Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
>  HTTP/1.1 404 Object Not Found
> Server: Microsoft-IIS/5.0
> Date: Wed, 03 Sep 2008 10:55:02 GMT
> Content-Length: 4040
> Content-Type: text/html
>
> Content-Type indicates we did not receive a certificate.
>
> Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed
>
> I have tested and made sure I have connectivity between the router and the
> CA.
>
> The CA hangs off one of R1's ethernet interfaces.
>
> I have pasted the config below.
>
> crypto ca trustpoint ccielab
>  enrollment mode ra
>  enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
>  crl optional
>
> I have also configured the domain name and time on the device as well as
> generating the local routers RSA keys. I have also looked at some URL's to
> verify my config and all seems ok.
>
> Please advise.
>
> Sean
>
>


-- 
aun raza
pgp: 0x95A74924 (pgp.mit.edu)
web: aunraza.com


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 08:03:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83C3dPk007108
	GroupStudy Mailer; Wed, 3 Sep 2008 08:03:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83C3dfn007106
	for securityxhiddenx; Wed, 3 Sep 2008 08:03:39 -0400
Received: from mail.smtpfw.com (derivco.onsite.hosting.co.za
  [196.35.70.18]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83C2nnw007052 GroupStudy Mailer; Wed, 3 Sep 2008 08:02:49
  -0400
Received: from Mail Gateway id <B48be7fe00000>; Wed, 03 Sep 2008
  14:15:28 +0200
Received: from derexhub1.mgsops.net (10.1.3.26) by derexedge1.mgsops.net
  (10.1.250.49) with Microsoft SMTP Server (TLS) id 8.1.240.5; Wed, 3
  Sep 2008 14:02:42 +0200
Received: from MAILBOXSERVER.mgsops.net ([10.1.3.21]) by
  derexhub1.mgsops.net ([10.1.3.26]) with mapi; Wed, 3 Sep 2008 14:02:41
  +0200
From: Dawie Stoltz <Dawie.Stoltz@xxxxxxxxxxx>
To: "'Sean'" <seansational@xxxxxxxxx>,
        "security@xxxxxxxxxxxxxx"
  <security@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 14:02:40 +0200
Subject: RE: CA 
Thread-Topic: CA 
Thread-Index: AckNvGSNMi/zDgoYSUSVNssi90KKHQAAH4iA
Message-ID: <6228D9778DB4FC4AA41ED37D4CB701614393050421@xxxxxxxxxxxxxxxxxxxxxxxx>
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
In-Reply-To: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m83C2nnw007052
X-ASK-Info: Message Queued (2008/09/03 08:02:51)
X-ASK-Info: Confirmed by User (2008/09/03 08:03:39)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Dawie Stoltz <Dawie.Stoltz@xxxxxxxxxxx>

Hi Sean,

Check that the time on your routers and CA are all the same.

Regards
Dawie

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Sean
Sent: 03 September 2008 01:11 PM
To: security@xxxxxxxxxxxxxx
Subject: CA

Hi All,

I have been trying to set up some ipsec vpn's with digital certificates. I
keep on getting the error below:

R1(config)#cry ca authenticate ccielab
% Error in receiving Certificate Authority certificate: status = FAIL, cert
length = 0

R1(config)#
Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
GET /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
HTTP/1.0

Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
 HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Wed, 03 Sep 2008 10:55:02 GMT
Content-Length: 4040
Content-Type: text/html

Content-Type indicates we did not receive a certificate.

Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed

I have tested and made sure I have connectivity between the router and the
CA.

The CA hangs off one of R1's ethernet interfaces.

I have pasted the config below.

crypto ca trustpoint ccielab
 enrollment mode ra
 enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
 crl optional

I have also configured the domain name and time on the device as well as
generating the local routers RSA keys. I have also looked at some URL's to
verify my config and all seems ok.

Please advise.

Sean

#############################################################################################
The information transmitted is intended only for the person or entity to which it 
is addressed and may contain confidential and/or privileged material. 
Any review, retransmission, dissemination or other use of, or taking of any action
in reliance upon, this information by persons or entities other than the intended 
recipient is prohibited. If you received this in error, please contact the sender and
delete the material from any computer.

Furthermore, the information contained in this message, and any attachments thereto, is
for information purposes only and may contain the personal views and opinions of the 
author, which are not necessarily the views and opinions of the company.
#############################################################################################


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 11:19:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83FJhRg024934
	GroupStudy Mailer; Wed, 3 Sep 2008 11:19:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83FJhF1024932
	for securityxhiddenx; Wed, 3 Sep 2008 11:19:43 -0400
Received: from nf-out-0910.google.com (nf-out-0910.google.com
  [64.233.182.186]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83FJfis024911 GroupStudy Mailer; Wed, 3 Sep 2008 11:19:41
  -0400
Received: by nf-out-0910.google.com with SMTP id c10so506370nfd.44 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 08:19:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:reply-to
  :to:subject:in-reply-to:mime-version:content-type:references;
  bh=6JmOIyYjbEUnxNb9Zz1OEQfVHYtMVU5KEcRMH4+VICw=;
  b=vvwie7jKyBYEaDfQr/V3Qj3yH+BgqXYbU98R4JmC+6wMCQ8tTZSDfcIKESmGEhBFjw
  rQYxzlAm1uAfir61BRqy+k4qRbuaRNm6mO3xPS+RHhaaxcFOCLnp1vwqKi+wleqAE2OZ
  DyW+aBLtwT1wRZSkULt9b+/S3hmRoB9jSJRNY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:reply-to:to:subject:in-reply-to:mime-version
  :content-type:references;
  b=NEsw0rtTERLjFZlCngfbMdrB5hwffR/4Wk6m2aohgAMHliRTjYU+TrpO8ddpDWtQN8
  EPJ4nyJPuEYWkVtJH92iWelO4buTiJpQ8jN7UBZXIawWo6pJWPbSoVba64yzvu63JY7n
  eDZn3gSLO3wNfAV3Pmu0AoEr+hchPHc5zJgJc=
Received: by 10.210.45.17 with SMTP id
  s17mr10207595ebs.192.1220455179417; Wed, 03 Sep 2008 08:19:39 -0700
  (PDT)
Received: by 10.210.140.1 with HTTP; Wed, 3 Sep 2008 08:19:39 -0700
  (PDT)
Message-ID: <2df409bb0809030819v2f3648a3ida754eab2c3ae755@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 19:19:39 +0400
From: "Aun Raza" <aun.raza@xxxxxxxxx>
To: Sean <seansational@xxxxxxxxx>,
        "security@xxxxxxxxxxxxxx"
  <security@xxxxxxxxxxxxxx>
Subject: Re: CA
In-Reply-To: <6228D9778DB4FC4AA41ED37D4CB701614393050421@xxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
  <6228D9778DB4FC4AA41ED37D4CB701614393050421@xxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from aunraza@xxxxx\.com] (2008/09/03 11:19:42)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aun Raza" <aun.raza@xxxxxxxxx>

Another thing you would want to check is if you have the MSCEP module
installed on the CA server.

On Wed, Sep 3, 2008 at 4:02 PM, Dawie Stoltz <Dawie.Stoltz@xxxxxxxxxxx>wrote:

> Hi Sean,
>
> Check that the time on your routers and CA are all the same.
>
> Regards
> Dawie
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Sean
> Sent: 03 September 2008 01:11 PM
> To: security@xxxxxxxxxxxxxx
> Subject: CA
>
> Hi All,
>
> I have been trying to set up some ipsec vpn's with digital certificates. I
> keep on getting the error below:
>
> R1(config)#cry ca authenticate ccielab
> % Error in receiving Certificate Authority certificate: status = FAIL, cert
> length = 0
>
> R1(config)#
> Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
> GET
> /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
> HTTP/1.0
>
> Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
> Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
> Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
> Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
>  HTTP/1.1 404 Object Not Found
> Server: Microsoft-IIS/5.0
> Date: Wed, 03 Sep 2008 10:55:02 GMT
> Content-Length: 4040
> Content-Type: text/html
>
> Content-Type indicates we did not receive a certificate.
>
> Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed
>
> I have tested and made sure I have connectivity between the router and the
> CA.
>
> The CA hangs off one of R1's ethernet interfaces.
>
> I have pasted the config below.
>
> crypto ca trustpoint ccielab
>  enrollment mode ra
>  enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
>  crl optional
>
> I have also configured the domain name and time on the device as well as
> generating the local routers RSA keys. I have also looked at some URL's to
> verify my config and all seems ok.
>
> Please advise.
>
> Sean
>
>
> #############################################################################################
> The information transmitted is intended only for the person or entity to
> which it
> is addressed and may contain confidential and/or privileged material.
> Any review, retransmission, dissemination or other use of, or taking of any
> action
> in reliance upon, this information by persons or entities other than the
> intended
> recipient is prohibited. If you received this in error, please contact the
> sender and
> delete the material from any computer.
>
> Furthermore, the information contained in this message, and any attachments
> thereto, is
> for information purposes only and may contain the personal views and
> opinions of the
> author, which are not necessarily the views and opinions of the company.
>
> #############################################################################################
>
>


-- 
aun raza
pgp: 0x95A74924 (pgp.mit.edu)
web: aunraza.com


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 12:08:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83G8sfh030836
	GroupStudy Mailer; Wed, 3 Sep 2008 12:08:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83G8s8A030834
	for securityxhiddenx; Wed, 3 Sep 2008 12:08:54 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83G8r5N030811 GroupStudy Mailer; Wed, 3 Sep 2008 12:08:53
  -0400
Received: by gxk13 with SMTP id 13so7238037gxk.6 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 09:08:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=4SyIftZ7xw6AZUcLkiKHiOGxknb6lWPgqAWeUHIkBD4=;
  b=FR9RSx1bdgUo4vsY3N8JpmBS8rsZnGBIAoVfUwrYjhC2Lzq6KRwA+J725YNFHwCv/e
  lls8xrpYPSoTd0xcnvwMyCF61i67V0WkMCFsPXWvAd3vDSR4WsyHmZBq6VAZpeK0Rq8m
  2faJxEDISwgbp49Bt4iILXjdGk7lQJ2p+/gPA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=diEXX3cXrUPzYdIuGuCa7/geYlSrByTzXEbd43qkoNZXiHj2kCdztkzJug3xwkc31k
  t4/+VANFwqAvjFcHH8AzFskRldcETD8c5Zotbl5FsnNvPHydmM5VPc0GWFczTSpVggUs
  GdEeQhYyJ34M38n26mPGiGxb5bfCrhPKI0z8I=
Received: by 10.150.11.14 with SMTP id 14mr12668771ybk.38.1220458126918;
  Wed, 03 Sep 2008 09:08:46 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Wed, 3 Sep 2008 09:08:46 -0700
  (PDT)
Message-ID: <eff3217d0809030908i3c726657gdc468377349ff053@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 19:08:46 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: Sean <seansational@xxxxxxxxx>
Subject: Re: CA
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/03 12:08:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

When you open the URL on the browser installed on the CA machine do you see
anything?

http://10.11.11.25:80/certsrv/mscep/mscep.dll<http://10.11.11.25/certsrv/mscep/mscep.dll>

Regards

Farrukh

On Wed, Sep 3, 2008 at 2:10 PM, Sean <seansational@xxxxxxxxx> wrote:

> Hi All,
>
> I have been trying to set up some ipsec vpn's with digital certificates. I
> keep on getting the error below:
>
> R1(config)#cry ca authenticate ccielab
> % Error in receiving Certificate Authority certificate: status = FAIL, cert
> length = 0
>
> R1(config)#
> Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
> GET
> /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
> HTTP/1.0
>
> Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
> Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
> Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
> Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
>  HTTP/1.1 404 Object Not Found
> Server: Microsoft-IIS/5.0
> Date: Wed, 03 Sep 2008 10:55:02 GMT
> Content-Length: 4040
> Content-Type: text/html
>
> Content-Type indicates we did not receive a certificate.
>
> Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed
>
> I have tested and made sure I have connectivity between the router and the
> CA.
>
> The CA hangs off one of R1's ethernet interfaces.
>
> I have pasted the config below.
>
> crypto ca trustpoint ccielab
>  enrollment mode ra
>  enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
>  crl optional
>
> I have also configured the domain name and time on the device as well as
> generating the local routers RSA keys. I have also looked at some URL's to
> verify my config and all seems ok.
>
> Please advise.
>
> Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 13:40:20 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83HeKv7007604
	GroupStudy Mailer; Wed, 3 Sep 2008 13:40:20 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83HeKEr007602
	for securityxhiddenx; Wed, 3 Sep 2008 13:40:20 -0400
Received: from ppp83-237-166-133.pppoe.mtu-net.ru
  (ppp83-237-166-133.pppoe.mtu-net.ru [83.237.166.133]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83He87B007549
  GroupStudy Mailer; Wed, 3 Sep 2008 13:40:09 -0400
Message-ID: <000801c90dec$04cca1de$36e01abf@xxxxx>
From: "jackie buck" <gpass-ja@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: =?koi8-r?B?xM/NwdvOxcUg18nExc8=?=
Date: Wed, 03 Sep 2008 15:52:39 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="koi8-r"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-ASK-Info: Message Queued (2008/09/03 13:40:10)
X-ASK-Info: Confirmed by User (2008/09/03 13:40:20)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "jackie buck" <gpass-ja@xxxxxxxxxxxxxx>

gIGaBaJTY SUMaS[ED[EGo PORNo WIDEO! l@xxxxxx KLUBNI^KI ZAHoDITE!!!

ibojawaqek.blogspot.com


=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=
3 Sep 2008 17:40:01
OIGxBS
is##
=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=_=


From security-owner@xxxxxxxxxxxxxx Wed Sep  3 15:52:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83Jqjtb020025
	GroupStudy Mailer; Wed, 3 Sep 2008 15:52:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m83Jqjbe020023
	for securityxhiddenx; Wed, 3 Sep 2008 15:52:45 -0400
Received: from dcwngate.datacraft.co.nz (dcwngate.datacraft.co.nz
  [202.37.51.6]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m83JqdC7019995 GroupStudy Mailer; Wed, 3 Sep 2008 15:52:44 -0400
Received: from nz-akl-exmb01.Datacraft-Asia.Com (Not
  Verified[10.37.18.22]) by dcwngate.datacraft.co.nz with MailMarshal
  (v6,4,5,5695) id <B48beea6a0000>; Thu, 04 Sep 2008 07:50:02 +1200
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CA
Date: Thu, 4 Sep 2008 07:47:35 +1200
Message-ID: <CFEF8031E512604A97354ED2211D9F6FC22CA4@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <eff3217d0809030908i3c726657gdc468377349ff053@xxxxxxxxxxxxxx>
Thread-Topic: CA
Thread-Index: AckN5dT2jGOBpQNbRnSp48WH+4NgpwAF8iNQ
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
  <eff3217d0809030908i3c726657gdc468377349ff053@xxxxxxxxxxxxxx>
From: "Sean Millar@xxxxxxx Services@xxxxxxxx"
  <Sean.Millar@xxxxxxxxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m83JqdC7019995
X-ASK-Info: Whitelist match [from sean\.millar@xxxxxxxxx\.co\.nz] (2008/09/03 15:52:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sean Millar@xxxxxxx Services@xxxxxxxx" <Sean.Millar@xxxxxxxxxxxxxxx>

Hi Farrukh

Thanks for the feedback. I had the same problem the last time when I
tried to run the CA on a W2k box and ended up installing Win2003 and got
it working that way.

Sean

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Farrukh Haroon
Sent: Thursday, September 04, 2008 4:09 AM
To: Sean
Cc: security@xxxxxxxxxxxxxx
Subject: Re: CA

When you open the URL on the browser installed on the CA machine do you
see
anything?

http://10.11.11.25:80/certsrv/mscep/mscep.dll<http://10.11.11.25/certsrv
/mscep/mscep.dll>

Regards

Farrukh

On Wed, Sep 3, 2008 at 2:10 PM, Sean <seansational@xxxxxxxxx> wrote:

> Hi All,
>
> I have been trying to set up some ipsec vpn's with digital
certificates. I
> keep on getting the error below:
>
> R1(config)#cry ca authenticate ccielab
> % Error in receiving Certificate Authority certificate: status = FAIL,
cert
> length = 0
>
> R1(config)#
> Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
> GET
>
/certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=cciel
ab
> HTTP/1.0
>
> Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP
address
> Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address
10.11.11.25
> Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
> Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
>  HTTP/1.1 404 Object Not Found
> Server: Microsoft-IIS/5.0
> Date: Wed, 03 Sep 2008 10:55:02 GMT
> Content-Length: 4040
> Content-Type: text/html
>
> Content-Type indicates we did not receive a certificate.
>
> Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed
>
> I have tested and made sure I have connectivity between the router and
the
> CA.
>
> The CA hangs off one of R1's ethernet interfaces.
>
> I have pasted the config below.
>
> crypto ca trustpoint ccielab
>  enrollment mode ra
>  enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
>  crl optional
>
> I have also configured the domain name and time on the device as well
as
> generating the local routers RSA keys. I have also looked at some
URL's to
> verify my config and all seems ok.
>
> Please advise.
>
> Sean

#####################################################################################
This e-mail message has been scanned for Viruses and Content before sending.

The contents of this email are subject to the following disclaimer:
http://www.datacraft-asia.com/disclaimer
#####################################################################################


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 03:54:34 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m847sYQh006671
	GroupStudy Mailer; Thu, 4 Sep 2008 03:54:34 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m847sY2M006669
	for securityxhiddenx; Thu, 4 Sep 2008 03:54:34 -0400
Received: from mgw.fpt.com.vn (mgw.fpt.com.vn [210.245.10.68]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m847sTG1006634
  GroupStudy Mailer; Thu, 4 Sep 2008 03:54:31 -0400
Received: (qmail 7481 invoked from network); 4 Sep 2008 07:53:46 -0000
Received: from unknown (HELO fe21-srv.HO.FPT.VN) (10.4.11.51) by
  mgw.fpt.com.vn with SMTP; 4 Sep 2008 07:53:46 -0000
Received: from fe21-srv.HO.FPT.VN ([192.168.96.12]
  helo=fe21-srv.HO.FPT.VN) by FPT.SpamMaster; 4 Sep 2008 14:52:20 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Thu, 4 Sep 2008 14:27:02 +0700
Received: from groupstudy.com ([208.73.222.90]) by fe21-srv.HO.FPT.VN
  over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Thu, 4
  Sep 2008 00:04:17 +0700
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m83G8sfh030836
  GroupStudy Mailer; Wed, 3 Sep 2008 12:08:54 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m83G8s8A030834 for
  securityxhiddenx; Wed, 3 Sep 2008 12:08:54 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m83G8r5N030811 GroupStudy Mailer; Wed, 3 Sep 2008 12:08:53
  -0400
Received: by gxk13 with SMTP id 13so7238037gxk.6 for
  <security@xxxxxxxxxxxxxx>; Wed, 03 Sep 2008 09:08:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=4SyIftZ7xw6AZUcLkiKHiOGxknb6lWPgqAWeUHIkBD4=;
  b=FR9RSx1bdgUo4vsY3N8JpmBS8rsZnGBIAoVfUwrYjhC2Lzq6KRwA+J725YNFHwCv/e
  lls8xrpYPSoTd0xcnvwMyCF61i67V0WkMCFsPXWvAd3vDSR4WsyHmZBq6VAZpeK0Rq8m
  2faJxEDISwgbp49Bt4iILXjdGk7lQJ2p+/gPA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=diEXX3cXrUPzYdIuGuCa7/geYlSrByTzXEbd43qkoNZXiHj2kCdztkzJug3xwkc31k
  t4/+VANFwqAvjFcHH8AzFskRldcETD8c5Zotbl5FsnNvPHydmM5VPc0GWFczTSpVggUs
  GdEeQhYyJ34M38n26mPGiGxb5bfCrhPKI0z8I=
Received: by 10.150.11.14 with SMTP id 14mr12668771ybk.38.1220458126918;
  Wed, 03 Sep 2008 09:08:46 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Wed, 3 Sep 2008 09:08:46 -0700
  (PDT)
Message-ID: <eff3217d0809030908i3c726657gdc468377349ff053@xxxxxxxxxxxxxx>
Date: Wed, 3 Sep 2008 19:08:46 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: Sean <seansational@xxxxxxxxx>
Subject: Re: CA
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c90db5$bf73f8a0$09011fac@xxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/03
  12:08:54)
X-OriginalArrivalTime: 03 Sep 2008 17:04:18.0070 (UTC)
  FILETIME=[19F28360:01C90DE7]
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/04 03:54:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

When you open the URL on the browser installed on the CA machine do you see
anything?

http://10.11.11.25:80/certsrv/mscep/mscep.dll<http://10.11.11.25/certsrv/mscep/mscep.dll>

Regards

Farrukh

On Wed, Sep 3, 2008 at 2:10 PM, Sean <seansational@xxxxxxxxx> wrote:

> Hi All,
>
> I have been trying to set up some ipsec vpn's with digital certificates. I
> keep on getting the error below:
>
> R1(config)#cry ca authenticate ccielab
> % Error in receiving Certificate Authority certificate: status = FAIL, cert
> length = 0
>
> R1(config)#
> Sep  4 06:52:50.047: CRYPTO_PKI: Sending CA Certificate Request:
> GET
> /certsrv/mscep/mscep.dll/pkiclient.exe?operation=GetCACert&message=ccielab
> HTTP/1.0
>
> Sep  4 06:52:50.051: CRYPTO_PKI: can not resolve server name/IP address
> Sep  4 06:52:50.051: CRYPTO_PKI: Using unresolved IP Address 10.11.11.25
> Sep  4 06:52:50.087: CRYPTO_PKI: http connection opened
> Sep  4 06:52:50.623: CRYPTO_PKI: HTTP response header:
>  HTTP/1.1 404 Object Not Found
> Server: Microsoft-IIS/5.0
> Date: Wed, 03 Sep 2008 10:55:02 GMT
> Content-Length: 4040
> Content-Type: text/html
>
> Content-Type indicates we did not receive a certificate.
>
> Sep  4 06:52:50.623: CRYPTO_PKI: transaction GetCACert completed
>
> I have tested and made sure I have connectivity between the router and the
> CA.
>
> The CA hangs off one of R1's ethernet interfaces.
>
> I have pasted the config below.
>
> crypto ca trustpoint ccielab
>  enrollment mode ra
>  enrollment url http://10.11.11.25:80/certsrv/mscep/mscep.dll
>  crl optional
>
> I have also configured the domain name and time on the device as well as
> generating the local routers RSA keys. I have also looked at some URL's to
> verify my config and all seems ok.
>
> Please advise.
>
> Sean


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 08:01:53 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84C1rQu027602
	GroupStudy Mailer; Thu, 4 Sep 2008 08:01:53 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84C1rxk027600
	for securityxhiddenx; Thu, 4 Sep 2008 08:01:53 -0400
Received: from ppp-124-121-61-217.revip2.asianet.co.th
  (ppp-124-121-61-217.revip2.asianet.co.th [124.121.61.217]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84C1pPe027580
  GroupStudy Mailer; Thu, 4 Sep 2008 08:01:52 -0400
Date: Thu, 04 Sep 2008 10:14:36 +0000
From: "aloin dhan-na" <postmaster@xxxxxxxxxxxxxxxx>
X-Mailer: The Bat! (v3.99.27) UNREG
Message-ID: <00070226.20080904120158@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: debt consolidation loans
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit
X-ASK-Info: Message from Mailer-Daemon (2008/09/04 08:01:53)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "aloin dhan-na" <postmaster@xxxxxxxxxxxxxxxx>

DO NOT consolidate your debt   ELIMINATE IT!!!
Legally ELIMINATE your credit card and other unsecured debt
* WITHOUT ever making another payment to your creditors
* WITHOUT it affecting your credit long-term
* WITHOUT confrontation

http://www.umbosberet.com

This IS NOT:
* Bankruptcy
* Consolidation
* Or refinancing of any kind

Visit here to learn how. http://www.umbosberet.com 

* Must have a minimum of $10K in combined household unsecured debt to apply.
* Must be a US resident.


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 08:53:02 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84Cr2rf032685
	GroupStudy Mailer; Thu, 4 Sep 2008 08:53:02 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84Cr2Jx032683
	for securityxhiddenx; Thu, 4 Sep 2008 08:53:02 -0400
Received: from idc-usa.com (mail.idc-usa.com [64.141.164.12]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m84Cr0rL032645; Thu, 4 Sep 2008 08:53:01 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: I'm finally a CCIE!
Date: Thu, 4 Sep 2008 08:53:50 -0400
Message-ID: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
Thread-Topic: I'm finally a CCIE!
Thread-Index: AckOjUbYWbOUdIfvS/ePpjawhJXszw==
From: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>, <cisco@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from arohyans@xxxxxxx\.com] (2008/09/04 08:53:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>

Hey all,

I wouldn't dare break tradition, so I thought I'd share with the group
that I passed my CCIE lab exam yesterday in RTP for Security.  I just
wanted to say thanks to everyone on these lists for helping a newb out
with all my questions and for giving me encouragement to take it again
after failing a few times.  You all are an invaluable resource when it
comes to studying.

Hopefully I can give back to the group now instead of being a lurker :-)

...time to go reclaim the last 1.5 years of my life!

God Bless!

Aaron Rohyans - CCIE Security #21945
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 10:19:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84EJCBW009277
	GroupStudy Mailer; Thu, 4 Sep 2008 10:19:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84EJCqX009275
	for securityxhiddenx; Thu, 4 Sep 2008 10:19:12 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.187]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84EJ9pm009237 GroupStudy Mailer; Thu, 4 Sep 2008 10:19:10
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so2062215tib.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 07:19:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=vuW1TWpyciREfIvdLKtEMKK8N2bU0i2X+2+VaML55Ag=;
  b=gDvn3uupLnf8FK/jTRe4p8RMTOKQAB+x9oMUAA2ry4+Nz0BPhpJq/Io5gWPJ5y2Rxr
  qYMszGLrxPR1+Fr3TVz1fuHMUT/+1BCTvV5Kh64ECW8e+pheK8FXUEnY6eJnmhWyZP8L
  /RV85LwCVrXCJIJlewwG6tc+uUxfgRPK78FJg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=VhITgrdjbTBXg/HU6tN3B+Bu7gAIyLxVq5jHSkkykgrH0FMvH2Y6BECFuWmgNDHuqJ
  oxOJ0IOogN7gtF3BlTpp9//mCvUhGE30Jm2Zm4vA9td5NHitcNvqnS1+OFE58AYHtRUD
  C0wyATuZ63lBO//Ity+jwej8QXr+cGRUozYXE=
Received: by 10.110.92.8 with SMTP id p8mr13153114tib.9.1220537947838;
  Thu, 04 Sep 2008 07:19:07 -0700 (PDT)
Received: by 10.110.92.17 with HTTP; Thu, 4 Sep 2008 07:19:07 -0700
  (PDT)
Message-ID: <1a30c00809040719g44aba74r38bd62f797f621d2@xxxxxxxxxxxxxx>
Date: Thu, 4 Sep 2008 19:49:07 +0530
From: "ravi ranjan" <ravi29635@xxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
Subject: Re: I'm finally a CCIE!
Cc: security@xxxxxxxxxxxxxx, cisco@xxxxxxxxxxxxxx
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ravi29635@xxxxx\.com] (2008/09/04 10:19:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "ravi ranjan" <ravi29635@xxxxxxxxx>

Hi Aaron,
congrats for you enewly aquired legacy.......

GOD BLESS YOU

Regards
Ravi

On Thu, Sep 4, 2008 at 6:23 PM, Aaron T. Rohyans <arohyans@xxxxxxxxxxx>wrote:

> Hey all,
>
> I wouldn't dare break tradition, so I thought I'd share with the group
> that I passed my CCIE lab exam yesterday in RTP for Security.  I just
> wanted to say thanks to everyone on these lists for helping a newb out
> with all my questions and for giving me encouragement to take it again
> after failing a few times.  You all are an invaluable resource when it
> comes to studying.
>
> Hopefully I can give back to the group now instead of being a lurker :-)
>
> ...time to go reclaim the last 1.5 years of my life!
>
> God Bless!
>
> Aaron Rohyans - CCIE Security #21945
> IT Coordinator, IDC-USA
> arohyans@xxxxxxxxxxx
> 317.244.8307 (V)
> 317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 11:39:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84FdjwI018019
	GroupStudy Mailer; Thu, 4 Sep 2008 11:39:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84FdjYo018017
	for securityxhiddenx; Thu, 4 Sep 2008 11:39:45 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84FdhRn017955 GroupStudy Mailer; Thu, 4 Sep 2008 11:39:43
  -0400
Received: by gxk13 with SMTP id 13so7866148gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 08:39:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=bU9DUlXDZDSMiQcVPpVnH+a92uMi/G8xXTtloISV2Ms=;
  b=X5SWCCbrYJroRf581ABd0EyHov9GwQ+n/7la6dCOYkh3VqyRbsQaZE6M5RmSgW2+qi
  6Z1WZbJGij6P9dB3+uSs4SOmyGvrSLsoAqfc5/OdisCNEKsCc2uuIB19VK3kXkX0Lw6L
  weeicwci2YEbfcBoUgxXGouZAs6p3Nfl7ckfU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=Fs9NfgWbg5GrHdI72EA4hlByD9eopElzSH9qq8Ra5g1fAV+nKu9P5gl6xxgzuZry5f
  IexVQDLmcCwlLadFOspl8jZEJHWOwBhgUyV7evjKNFTvM/4T0kH08c/us4l/kJeh3jkp
  QF0L/HKh+QhaegemBoYk8LKfBe6P2rvLeSwCo=
Received: by 10.150.144.9 with SMTP id r9mr4758693ybd.155.1220542776948;
  Thu, 04 Sep 2008 08:39:36 -0700 (PDT)
Received: by 10.150.57.8 with HTTP; Thu, 4 Sep 2008 08:39:36 -0700 (PDT)
Message-ID: <5bb9bd720809040839v7db42f1am268a77db53bd58d6@xxxxxxxxxxxxxx>
Date: Thu, 4 Sep 2008 08:39:36 -0700
From: "oluwaseyi ojo" <sameoj@xxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
Subject: Re: I'm finally a CCIE!
Cc: security@xxxxxxxxxxxxxx, cisco@xxxxxxxxxxxxxx
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sameoj@xxxxx\.com] (2008/09/04 11:39:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "oluwaseyi ojo" <sameoj@xxxxxxxxx>

Congrats Man, got job!!!!!!!!!!!!!!!!!!!

On 9/4/08, Aaron T. Rohyans <arohyans@xxxxxxxxxxx> wrote:
>
> Hey all,
>
> I wouldn't dare break tradition, so I thought I'd share with the group
> that I passed my CCIE lab exam yesterday in RTP for Security.  I just
> wanted to say thanks to everyone on these lists for helping a newb out
> with all my questions and for giving me encouragement to take it again
> after failing a few times.  You all are an invaluable resource when it
> comes to studying.
>
> Hopefully I can give back to the group now instead of being a lurker :-)
>
> ...time to go reclaim the last 1.5 years of my life!
>
> God Bless!
>
> Aaron Rohyans - CCIE Security #21945
> IT Coordinator, IDC-USA
> arohyans@xxxxxxxxxxx
> 317.244.8307 (V)
> 317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 12:06:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84G6CdP020772
	GroupStudy Mailer; Thu, 4 Sep 2008 12:06:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84G6CrD020770
	for securityxhiddenx; Thu, 4 Sep 2008 12:06:12 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.157]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84G6B6u020732 GroupStudy Mailer; Thu, 4 Sep 2008 12:06:11
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so7111yxi.84 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 09:06:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=qpkINH84vFbWk/xgEYIFk1yYbY1t5nIGVACKRRWYxtM=;
  b=stY7aaqcFkBTAVodQ8HcucMyv3dkhlChzw1EEnT71REzM/aLPiF2Zal6fZlHgGaDwW
  YELvphsbgiS1nJ4INoccMjdqEaL1WSZl/1HeI6GBz8IBC2lFYJ4WD/GZ3fMfDWkNJugV
  6n3RfNG+wqN0aQhqLnFV2w2ongOk7lKtRNEfg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=RqiyRS8Mnl00rszg0HJMqRUQ/zeHQzXTUpJLRWYofBHEvWDj3Pv5mUeCr6oSNzt/h6
  qsPJJDngmcnPtarxkyjmILh/GWBxt98MsgEN7hSHH6MJ2R18FJ2YhdEXGvCJAfXoKTDp
  rB+h89nHKuck7MzmHd0MDcpT8fjsvy7iCKFD0=
Received: by 10.114.108.15 with SMTP id
  g15mr8962289wac.181.1220544368978; Thu, 04 Sep 2008 09:06:08 -0700
  (PDT)
Received: from ?192.168.10.100? ( [75.172.29.128]) by mx.google.com with
  ESMTPS id z20sm23437287pod.11.2008.09.04.09.06.07 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 04 Sep 2008 09:06:08 -0700 (PDT)
Cc: Cisco certification <security@xxxxxxxxxxxxxx>, cisco@xxxxxxxxxxxxxx
Message-Id: <4250656B-D750-4479-82F6-3C6C10452EF6@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
In-Reply-To: <5bb9bd720809040839v7db42f1am268a77db53bd58d6@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Re: I'm finally a CCIE!
Date: Thu, 4 Sep 2008 09:06:07 -0700
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
  <5bb9bd720809040839v7db42f1am268a77db53bd58d6@xxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/04 12:06:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

Congrats.  I gave you kudos on my blog!


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 4, 2008, at 8:39 AM, oluwaseyi ojo wrote:

> Congrats Man, got job!!!!!!!!!!!!!!!!!!!
>
> On 9/4/08, Aaron T. Rohyans <arohyans@xxxxxxxxxxx> wrote:
>>
>> Hey all,
>>
>> I wouldn't dare break tradition, so I thought I'd share with the  
>> group
>> that I passed my CCIE lab exam yesterday in RTP for Security.  I just
>> wanted to say thanks to everyone on these lists for helping a newb  
>> out
>> with all my questions and for giving me encouragement to take it  
>> again
>> after failing a few times.  You all are an invaluable resource when  
>> it
>> comes to studying.
>>
>> Hopefully I can give back to the group now instead of being a  
>> lurker :-)
>>
>> ...time to go reclaim the last 1.5 years of my life!
>>
>> God Bless!
>>
>> Aaron Rohyans - CCIE Security #21945
>> IT Coordinator, IDC-USA
>> arohyans@xxxxxxxxxxx
>> 317.244.8307 (V)
>> 317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 12:40:33 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84GeXXh023041
	GroupStudy Mailer; Thu, 4 Sep 2008 12:40:33 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84GeXME023039
	for securityxhiddenx; Thu, 4 Sep 2008 12:40:33 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.158]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84GeW2Y023018 GroupStudy Mailer; Thu, 4 Sep 2008 12:40:32
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so16556yxi.84 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 09:40:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:message-id:from:to
  :content-type:content-transfer-encoding:mime-version:subject:date:cc
  :x-mailer:sender; bh=lcN19EuPQffKagHx6QzKh9UrggoqlXwkt76L0k2EdxA=;
  b=BP76HThbBEyZzyXsjMQv//DQTlU8PBTIu3LLEUYKfjFf4l3xSb5SKd7DSPRWAh60B7
  38sDlAoC3RKsuveaOpiVOu6b+xMn/q2dGMsqS2Mlxs7XE/m4xO5iIZp82Un7rcpRrsrM
  /7HRQowMV42vZvvqwptRyTxyBo5GmPMMFJvmU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:content-type:content-transfer-encoding
  :mime-version:subject:date:cc:x-mailer:sender;
  b=F5w9F2dh5JZ4T3HLLa1DIoytYh93QxSFZp+lu93npZQalkAcey87ET7FgP3D9eeGYF
  qUVqqNayHTxXnMVwxcH6Jj0fcoAXn4B+JtmsSA+kUJZF8o4DYWBogDcWoo3m0SF1JqTH
  jmgI07WtOY4CcgSUKo7LQm0MKTpyYewHryuBY=
Received: by 10.114.27.14 with SMTP id
  a14mr2134398waa.209.1220546430405; Thu, 04 Sep 2008 09:40:30 -0700
  (PDT)
Received: from ?192.168.10.100? ( [75.172.29.128]) by mx.google.com with
  ESMTPS id a8sm23409464poa.12.2008.09.04.09.40.28 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 04 Sep 2008 09:40:29 -0700 (PDT)
Message-Id: <B0C8ECDA-B3FE-4814-A6F3-1662A4C29965@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: ccie_security@xxxxxxxxxxxxxxxxxxx
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Problems with IEV
Date: Thu, 4 Sep 2008 09:40:22 -0700
Cc: Cisco certification <security@xxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/04 12:40:33)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

I am having a problem with IEV talking to my sensor.  I posted a pic  
of the error on my blog here:

http://ccieprep.me/2008/09/04/iev-issues/

Any ideas what I'm doing wrong?

THanks

Brandon


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 13:47:16 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84HlGj2030180
	GroupStudy Mailer; Thu, 4 Sep 2008 13:47:16 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84HlGKK030178
	for securityxhiddenx; Thu, 4 Sep 2008 13:47:16 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.155]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84HlEA5030138 GroupStudy Mailer; Thu, 4 Sep 2008 13:47:14
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so34992yxi.84 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 10:47:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:mime-version:content-type;
  bh=CrmZHH0czPd/YABljwBnKO2VhNPZZoA/h+fVNdTeV7s=;
  b=M/5c3jopYDYY53Y/V97baBqMIrxRcVuNCvb5ikrhl0H82BMYZ2xizRVeRT7pqaUks4
  YbULSnAIq/G6ZPIlxcBasfoHsLYUuIMD/FGGDYbGPtc18e8JV0sLWksio5sn7rV6XcdG
  iaxRi4QL2+7PTcwUKGxlz8wdV4QHhOeOw5AsQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:mime-version:content-type;
  b=wETAlyCI3QGFCztpC5YiJmzWFjo46AX7WK5mvj20XigdiEIX9/Z7o0XuqRQ1r0D1vl
  wjLbvwkEdJssUk4gPVNniRH+KIMaHsmt+sNHKq9rz1sabEtpfgddg+vez4YET5K2SLlk
  AhuRd1zkzxtcmindd7008XX0rv1mFxKAE4KK4=
Received: by 10.142.158.17 with SMTP id
  g17mr3655510wfe.212.1220550432235; Thu, 04 Sep 2008 10:47:12 -0700
  (PDT)
Received: by 10.142.232.3 with HTTP; Thu, 4 Sep 2008 10:47:12 -0700
  (PDT)
Message-ID: <19cdad00809041047sa7ed88re5a723a96e6818b@xxxxxxxxxxxxxx>
Date: Thu, 4 Sep 2008 13:47:12 -0400
From: "Luan Nguyen" <luan.m.nguyen@xxxxxxxxx>
To: "Cisco certification" <ccielab@xxxxxxxxxxxxxx>
Subject: Upgrade the ACS Appliance
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from luan\.m\.nguyen@xxxxx\.com] (2008/09/04 13:47:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Luan Nguyen" <luan.m.nguyen@xxxxxxxxx>

Hello,

Anyone update the ACS appliance due to the PSIRT response yet?  Any
problems/gotchas that you need to look out for?  I need to go to 4.1.4.13.11

thanks.

-lmn


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 14:00:16 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84I0GTT032459
	GroupStudy Mailer; Thu, 4 Sep 2008 14:00:16 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84I0GD7032457
	for securityxhiddenx; Thu, 4 Sep 2008 14:00:16 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84I0FHG032436 GroupStudy Mailer; Thu, 4 Sep 2008 14:00:15
  -0400
Received: by gxk13 with SMTP id 13so8043886gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 11:00:08 -0700 (PDT)
Received: by 10.150.133.18 with SMTP id
  g18mr14843140ybd.137.1220551208670; Thu, 04 Sep 2008 11:00:08 -0700
  (PDT)
Received: from MEDIACNTR ( [24.169.236.232]) by mx.google.com with
  ESMTPS id k30sm16095870qba.4.2008.09.04.11.00.07 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 04 Sep 2008 11:00:08 -0700 (PDT)
From: "Tyson Scott" <tscott@xxxxxxxxxxxx>
To: "'Brandon Carroll'" <brandon.carroll@xxxxxxxxxxx>,
        <ccie_security@xxxxxxxxxxxxxxxxxxx>
Cc: "'Cisco certification'" <security@xxxxxxxxxxxxxx>
References: <B0C8ECDA-B3FE-4814-A6F3-1662A4C29965@xxxxxxxxxxx>
Subject: RE: Problems with IEV
Date: Thu, 4 Sep 2008 14:00:15 -0400
Message-ID: <12EA9D738220456B80E8B1D1A3CEAEC3@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <B0C8ECDA-B3FE-4814-A6F3-1662A4C29965@xxxxxxxxxxx>
Thread-Index: AckOtzUiuki9NxkETc6qLC6Q9riPIAAAK1pA
X-ASK-Info: Whitelist match [from tscott@xxxxxxxx\.com] (2008/09/04 14:00:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Tyson Scott" <tscott@xxxxxxxxxxxx>

Brandon,
The service is not running on the server.  Go into service manager in
windows services.msc. look for cisco IEV process and start the process.

Regards,
 
Tyson Scott - CCIE #13513 R&S and Security
Technical Instructor - IPexpert, Inc.

Telephone: +1.810.326.1444 
Cell: +1.248.504.7309
Fax: +1.810.454.0130
Mailto:  tscott@xxxxxxxxxxxx
 
Join our free online support and peer group communities:
http://www.IPexpert.com/communities
 
IPexpert - The Global Leader in Self-Study, Classroom-Based, Video On Demand
and Audio Certification Training Tools for the Cisco CCIE R&S Lab, CCIE
Security Lab, CCIE Service Provider Lab , CCIE Voice Lab and CCIE Storage
Lab Certifications.

 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 04, 2008 12:40 PM
To: ccie_security@xxxxxxxxxxxxxxxxxxx
Cc: Cisco certification
Subject: Problems with IEV

I am having a problem with IEV talking to my sensor.  I posted a pic  
of the error on my blog here:

http://ccieprep.me/2008/09/04/iev-issues/

Any ideas what I'm doing wrong?

THanks

Brandon


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 14:10:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84IAdGY000779
	GroupStudy Mailer; Thu, 4 Sep 2008 14:10:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84IAd2E000777
	for securityxhiddenx; Thu, 4 Sep 2008 14:10:39 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.179]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m84IAcfk000757 GroupStudy Mailer; Thu, 4 Sep 2008 14:10:38
  -0400
Received: by wa-out-1112.google.com with SMTP id v33so35355wah.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 04 Sep 2008 11:10:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=V8AGAfT7TLi1+Fb8sP8N3gDfe1CmZ9wOcM/6g/hDB/c=;
  b=BEcExM9sCsF3oeVZz9YfMf2yNCL/HkizvkgvmAF6UO22plOYsHrbahFnA9Sk02tP8R
  2SrOlDD8041kDhvT1AvnitBlja/DO15tMf30JfEu6NNzP/RMv2WyY2zrubD5+BlFqxqi
  fo9T0wyBPnA02jZIr8avfNJiMwC5BuUcnFQOY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=hmkkLInu54OZ3RGqfAUkgw9xnHK/WIXTaz9JD0eCBH86/b36vmxSOcYbY2OeP4d172
  VOT2gvNdcG7i02jnTQLblZ/7nL3eK9752hAx+y9VFNpdecrjhE3QLfX2dl9p2gTSauHA
  oKhEv5ftqOdzLP9An7FAAsemccKPqsQIj4sB4=
Received: by 10.115.111.1 with SMTP id o1mr9226523wam.114.1220551835831;
  Thu, 04 Sep 2008 11:10:35 -0700 (PDT)
Received: from ?192.168.10.100? ( [75.172.29.128]) by mx.google.com with
  ESMTPS id a8sm23597497poa.12.2008.09.04.11.10.34 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 04 Sep 2008 11:10:35 -0700 (PDT)
Cc: <ccie_security@xxxxxxxxxxxxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
Message-Id: <7FC37D41-B6E5-4EDD-8F3D-ACC212675240@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Tyson Scott <tscott@xxxxxxxxxxxx>
In-Reply-To: <12EA9D738220456B80E8B1D1A3CEAEC3@xxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Re: Problems with IEV
Date: Thu, 4 Sep 2008 11:10:29 -0700
References: <B0C8ECDA-B3FE-4814-A6F3-1662A4C29965@xxxxxxxxxxx>
  <12EA9D738220456B80E8B1D1A3CEAEC3@xxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/04 14:10:39)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

That did it.  THought I checked that.  THanks!


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 4, 2008, at 11:00 AM, Tyson Scott wrote:

> Brandon,
> The service is not running on the server.  Go into service manager in
> windows services.msc. look for cisco IEV process and start the  
> process.
>
> Regards,
>
> Tyson Scott - CCIE #13513 R&S and Security
> Technical Instructor - IPexpert, Inc.
>
> Telephone: +1.810.326.1444
> Cell: +1.248.504.7309
> Fax: +1.810.454.0130
> Mailto:  tscott@xxxxxxxxxxxx
>
> Join our free online support and peer group communities:
> http://www.IPexpert.com/communities
>
> IPexpert - The Global Leader in Self-Study, Classroom-Based, Video  
> On Demand
> and Audio Certification Training Tools for the Cisco CCIE R&S Lab,  
> CCIE
> Security Lab, CCIE Service Provider Lab , CCIE Voice Lab and CCIE  
> Storage
> Lab Certifications.
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> Brandon Carroll
> Sent: Thursday, September 04, 2008 12:40 PM
> To: ccie_security@xxxxxxxxxxxxxxxxxxx
> Cc: Cisco certification
> Subject: Problems with IEV
>
> I am having a problem with IEV talking to my sensor.  I posted a pic
> of the error on my blog here:
>
> http://ccieprep.me/2008/09/04/iev-issues/
>
> Any ideas what I'm doing wrong?
>
> THanks
>
> Brandon


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 14:46:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84IkBvO003844
	GroupStudy Mailer; Thu, 4 Sep 2008 14:46:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84IkBfD003842
	for securityxhiddenx; Thu, 4 Sep 2008 14:46:11 -0400
Received: from web32606.mail.mud.yahoo.com (web32606.mail.mud.yahoo.com
  [68.142.207.233]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m84IkA3h003818 GroupStudy Mailer; Thu, 4 Sep 2008 14:46:10
  -0400
Received: (qmail 14462 invoked by uid 60001); 4 Sep 2008 18:46:03 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type:Message-ID;
  b=qtzY7x9r5fHLnJpqoTiEDm650B09OeNBuqJz8e3h2KO7/nrSAeuydP6YTNEk9z60n1OoQDcUeN2od/DSdyG+Xcm7PIR4ZOyTsLDm6z8dl8/UvuxtysOJ+hSZGCnk0mg9PLwjiwRHLCZEjicq2YKu6PKcutBea+RQnAYTOZeTViE=;
X-YMail-OSG: .MxkmaoVM1nEBCujBQZAG8VXtRg2STFRQ701nJJU.MeOUj9FzJzBEPncRU.7bsLu3YBjhOVZSupxpRDTm6VAhmxHyfZXpUAnTnI6NJYmDd8YrTM6tvlXob025U7N2D5PcMHY3cdgrvLgBKczXwLQJZag
Received: from [189.0.10.56] by web32606.mail.mud.yahoo.com via HTTP;
  Thu, 04 Sep 2008 11:46:03 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Thu, 4 Sep 2008 11:46:03 -0700 (PDT)
From: Roberto Correa <roberto_correa0@xxxxxxxxx>
Subject: Re: ipsec-pass-thru
To: security@xxxxxxxxxxxxxx
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D038129@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <358580.14041.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from roberto_correa0@xxxxx\.com] (2008/09/04 14:46:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Roberto Correa <roberto_correa0@xxxxxxxxx>

Hi Shane, It works fine on my labs.
Don't forget to explicitly allow ISAKMP [udp:500] on your inbound ACL. the ipsec-pass-through will inspect the isakmp negotiation and allow the ESP/AH as needed.

Regards,
Roberto Correa

--- On Wed, 8/27/08, Shane Miles <smiles@xxxxxxxxxx> wrote:
From: Shane Miles <smiles@xxxxxxxxxx>
Subject: ipsec-pass-thru
To: security@xxxxxxxxxxxxxx
Date: Wednesday, August 27, 2008, 3:18 PM

Has anyone actualy gotten ipsec-pass-thru to work? I've done it so many ways
with no luck. class-maps, no class-map, global_policy, interface policy. Tt
never works. Even copied and pasted from CCO does not work. The SAs come up
but all ESP is dropped. If I permit all ESP on the ACL pings start responding
but I want the "inspect ipsec-pass-thru" to take care of it.
--
shane


From security-owner@xxxxxxxxxxxxxx Thu Sep  4 14:51:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m84Ipjgr005390
	GroupStudy Mailer; Thu, 4 Sep 2008 14:51:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m84Ipjrw005388
	for securityxhiddenx; Thu, 4 Sep 2008 14:51:45 -0400
Received: from web32605.mail.mud.yahoo.com (web32605.mail.mud.yahoo.com
  [68.142.207.232]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m84IpjpY005345 GroupStudy Mailer; Thu, 4 Sep 2008 14:51:45
  -0400
Received: (qmail 99067 invoked by uid 60001); 4 Sep 2008 18:51:37 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type:Message-ID;
  b=SFolDgQppAuyg9/mGaOHHfAhnemrCKJd5sZRpUW+K+XqEk+wCXoqwexbfxQ9dLuyUNfz2WGeold0ImAPouISd4ewlTqrnkaSQmMoBT16OlFhAXqibhkMvx70l2u3XKidCkNkuqiAV4VdZvt+oOBrjQ+JYge0/5Pl1ujT5AY1nSo=;
X-YMail-OSG: TOHgazwVM1n9X9kCaMrfLmqIs02H6ujKrpZ55V4CwyWwYUFE9gcvi7LVmM2am4d45PIlknYFG.s8n.HW9t8SHbW9qcpO8YqzTkJPHEe01T1oV17Hohl2lNTjbtGBYWFBscE4s4Lx6j10mCZB9ochbafd
Received: from [189.0.10.56] by web32605.mail.mud.yahoo.com via HTTP;
  Thu, 04 Sep 2008 11:51:37 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Thu, 4 Sep 2008 11:51:37 -0700 (PDT)
From: Roberto Correa <roberto_correa0@xxxxxxxxx>
Subject: Re: I'm finally a CCIE!
To: security@xxxxxxxxxxxxxx
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <891122.76255.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from roberto_correa0@xxxxx\.com] (2008/09/04 14:51:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Roberto Correa <roberto_correa0@xxxxxxxxx>

Congratulations Aaron!


--- On Thu, 9/4/08, Aaron T. Rohyans <arohyans@xxxxxxxxxxx> wrote:
From: Aaron T. Rohyans <arohyans@xxxxxxxxxxx>
Subject: I'm finally a CCIE!
To: security@xxxxxxxxxxxxxx, cisco@xxxxxxxxxxxxxx
Date: Thursday, September 4, 2008, 9:53 AM

Hey all,

I wouldn't dare break tradition, so I thought I'd share with the group
that I passed my CCIE lab exam yesterday in RTP for Security.  I just
wanted to say thanks to everyone on these lists for helping a newb out
with all my questions and for giving me encouragement to take it again
after failing a few times.  You all are an invaluable resource when it
comes to studying.

Hopefully I can give back to the group now instead of being a lurker :-)

...time to go reclaim the last 1.5 years of my life!

God Bless!

Aaron Rohyans - CCIE Security #21945
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 05:26:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m859QOw5012039
	GroupStudy Mailer; Fri, 5 Sep 2008 05:26:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m859QO8k012037
	for securityxhiddenx; Fri, 5 Sep 2008 05:26:24 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.168]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m859QMbx012017 GroupStudy Mailer; Fri, 5 Sep 2008 05:26:23
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so372184wfc.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 05 Sep 2008 02:26:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:reply-to:from:to
  :subject:date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=L0Z2xmRBEGFLpxadB+rZIrAEEDKn8Q6CIXwNT2Mw+jw=;
  b=UlbTfhPEdleQYGBsaygtkVy6L/BnHLmSLMzV5rbIM8QS87+NxDOcjgH3i1cssF9Dyl
  Bc6CGE61wyfPKzLfFiHHfwS2Ee6EAfd85TIX2CQUV3zrWoGqzA1K01S0z7So4DLYnsgy
  L1N1or0Xnh2IbaMI5HThVLaCkdrMwq/no/098=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:reply-to:from:to:subject:date:mime-version:content-type
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=EslmQL1NkpcB16zmskBxU8nD1kCbFjH3oiRuF4z2Lo5PFk5QdU8dBeXrhZ0EYZKDX3
  Qi27W+NX90mAEgBcb0DilLGpnfQd2i45ZdBZs/HFu79A/OtU5oXVhyrTGF+/DRkU84te
  lcgOPQjqZhxyttyd0AMqMr6jxqDfoLUEx3RwY=
Received: by 10.142.12.14 with SMTP id 14mr3968102wfl.308.1220606782080;
  Fri, 05 Sep 2008 02:26:22 -0700 (PDT)
Received: from Slinky ( [125.239.127.35]) by mx.google.com with ESMTPS
  id 24sm18738106wfc.6.2008.09.05.02.26.20 (version=SSLv3
  cipher=RC4-MD5); Fri, 05 Sep 2008 02:26:21 -0700 (PDT)
Message-ID: <000801c90f39$7560a3f0$09011fac@xxxxxx>
From: "Sean" <seansational@xxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: EZVPN
Date: Fri, 5 Sep 2008 21:26:19 +1200
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from seansational@xxxxx\.com] (2008/09/05 05:26:23)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sean" <seansational@xxxxxxxxx>

Hi All,

I am reading through some docs I have found on ezvpn but have not found one
comprehensive doc that covers all aspects. Most of the docs relate to a
hardware device itself. Is there a link on the doc (cd/dvd) that is a good
reference point and covers all possible scenarios that can be expected and
that one can refer to?

Sean


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 06:45:37 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85Ajbxj018112
	GroupStudy Mailer; Fri, 5 Sep 2008 06:45:37 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85AjbFm018110
	for securityxhiddenx; Fri, 5 Sep 2008 06:45:37 -0400
Received: from fa175.58.fix-addr.vsi.ru (fa175.58.fix-addr.vsi.ru
  [80.82.58.175]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m85AjamF018090 GroupStudy Mailer; Fri, 5 Sep 2008 06:45:37
  -0400
Date: Sat, 31 Jan 2009 09:06:09 +0000
From: "ibrahim dug-kyoo" <postmaster@xxxxxxxxxxx>
X-Mailer: The Bat! (v3.99.27) UNREG
Message-ID: <01270864.20090131105331@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: bank loans
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit
X-ASK-Info: Message from Mailer-Daemon (2008/09/05 06:45:37)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "ibrahim dug-kyoo" <postmaster@xxxxxxxxxxx>

DO NOT consolidate your debt   ELIMINATE IT!!!
Legally ELIMINATE your credit card and other unsecured debt
* WITHOUT ever making another payment to your creditors
* WITHOUT it affecting your credit long-term
* WITHOUT confrontation

http://www.umbosberet.com

This IS NOT:
* Bankruptcy
* Consolidation
* Or refinancing of any kind

Visit here to learn how. http://www.umbosberet.com 

* Must have a minimum of $10K in combined household unsecured debt to apply.
* Must be a US resident.


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 09:19:49 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85DJnK2000610
	GroupStudy Mailer; Fri, 5 Sep 2008 09:19:49 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85DJnfh000608
	for securityxhiddenx; Fri, 5 Sep 2008 09:19:49 -0400
Received: from igw3.br.ibm.com (igw3.br.ibm.com [32.104.18.26]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m85DJjgs000557; Fri, 5 Sep 2008 09:19:45 -0400
Received: from mailhub3.br.ibm.com (unknown [9.18.232.110]) by
  igw3.br.ibm.com (Postfix) with ESMTP id 495FA3901EC; Fri,  5 Sep 2008
  09:58:43 -0300 (BRST)
Received: from d24av01.br.ibm.com (d24av01.br.ibm.com [9.18.232.46]) by
  mailhub3.br.ibm.com (8.13.8/8.13.8/NCO v8.7) with ESMTP id
  m85DI1NU1458356; Fri, 5 Sep 2008 10:18:06 -0300
Received: from d24av01.br.ibm.com (loopback [127.0.0.1]) by
  d24av01.br.ibm.com (8.12.11.20060308/8.13.3) with ESMTP id
  m85DHs6x006947; Fri, 5 Sep 2008 10:17:54 -0300
Received: from d24bml03.br.ibm.com (d24bml03.br.ibm.com [9.18.232.78])
  by d24av01.br.ibm.com (8.12.11.20060308/8.12.11) with ESMTP id
  m85DHsBv006942; Fri, 5 Sep 2008 10:17:54 -0300
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
Cc: cisco@xxxxxxxxxxxxxx, nobody@xxxxxxxxxxxxxx, security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Subject: Re: I'm finally a CCIE!
X-Mailer: Lotus Notes Release 8.0 August 02, 2007
From: pedrorta@xxxxxxxxxx
Message-ID: <OFAF43FBC7.F413D7A1-ON832574BB.0048ABBE-832574BB.00491238@xxxxxxxxxx>
Date: Fri, 5 Sep 2008 10:17:57 -0300
X-MIMETrack: Serialize by Router on D24BML03/24/M/IBM(Release
  7.0.2FP2HF366 | October 15, 2007) at 05/09/2008 10:17:58, Serialize
  complete at 05/09/2008 10:17:58
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from pedrorta@xx\.ibm\.com] (2008/09/05 09:19:49)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: pedrorta@xxxxxxxxxx

Congrat's Aaron!!! Now it's time to a vacation :D

best regards,
____________________________________________________________
Pedro Ortale Neto
IT Specialist / Cisco Certified Security Professional
AT&T Global Network Services
e-mail address: ortale@xxxxxxx
Phone:  +55-19-2132-2969
Mobile: +55-11-8652-6310



From:
"Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
To:
<security@xxxxxxxxxxxxxx>, <cisco@xxxxxxxxxxxxxx>
Date:
04/09/2008 10:22
Subject:
I'm finally a CCIE!



Hey all,

I wouldn't dare break tradition, so I thought I'd share with the group
that I passed my CCIE lab exam yesterday in RTP for Security.  I just
wanted to say thanks to everyone on these lists for helping a newb out
with all my questions and for giving me encouragement to take it again
after failing a few times.  You all are an invaluable resource when it
comes to studying.

Hopefully I can give back to the group now instead of being a lurker :-)

...time to go reclaim the last 1.5 years of my life!

God Bless!

Aaron Rohyans - CCIE Security #21945
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 09:41:09 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85Df9jD002812
	GroupStudy Mailer; Fri, 5 Sep 2008 09:41:09 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85Df9YG002810
	for securityxhiddenx; Fri, 5 Sep 2008 09:41:09 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.184]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m85Df82m002772 GroupStudy Mailer; Fri, 5 Sep 2008 09:41:08
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so295456tib.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 05 Sep 2008 06:41:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=Z74yECvQIGytvomaqtM+BYxVcBd4yHxQE1cLPYzM7Js=;
  b=BPHOViQB3jFjw7UKZbSjjXkKxAgq429HXUZGePHAEc5VyZY0C9FUH0Vn6IB4y7MARd
  IO0EvxPfAkqDnswhrpei3GbdieJAyBAapc3TQpuEdVP63A0Rxx7MfVBQ4zI/u7fxIUtg
  7ryqOtdm83twa0rkHhlkGeYz3ELzql6UXkBbI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=AtnjdyItwCv9I6zH6iyAzJoPJttZjHdadxhRxc5+e/LWMOJb6smm4utqTK7v+7XGzk
  3qS3jBBgrbLo7HwYC1gl8Fe4sZF5fZBYepFPNpzroSrtfqKtXZZo672NUaVt3cuRh+sz
  pf3eX/xkcauIRQq1JoxGQSbPSSvWgtWJBaS/M=
Received: by 10.110.63.6 with SMTP id l6mr14983621tia.4.1220622066308;
  Fri, 05 Sep 2008 06:41:06 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Fri, 5 Sep 2008 06:41:06 -0700
  (PDT)
Message-ID: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 16:41:06 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
Subject: OT:PIX version 8 on Pemu (on Windows)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/05 09:41:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Dear All,

Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
platform.

Thank in advance
-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 09:51:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85DpwOC005286
	GroupStudy Mailer; Fri, 5 Sep 2008 09:51:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85Dpwxh005284
	for securityxhiddenx; Fri, 5 Sep 2008 09:51:58 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.186]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m85DpuWs005242 GroupStudy Mailer; Fri, 5 Sep 2008 09:51:57
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so297688tib.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 05 Sep 2008 06:51:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=RONCUXdApfD9aTpLiNaiyMT6r5UfYn+IM0ji2j3kUz0=;
  b=hdOOYoWc1xauWIQJxnYJ6NvsI6n7Hp4saHFPiFIUUQk/XkAxEfL8syYBD/0ZcqRc8U
  xIy0nNz24M1bGq+VYyFSCnj10NXuLjotx5E97Av+UQx4Dg7wbGixKYkVOrzqwPQrBKQy
  vCceT2t6zPmWXSRYK4DqdCkoohkeqfaUR4IrA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=wUl+llKmcOoaPkl7nuRE+yBrFTf7QnffVteIXnDC+ouYqYatuFnsoGggO0/HQL6ssi
  y0iERsnQaTvoVPKwku9G2ZVYc3VJXkntAl5kUG3UjElAduoB8NtSePs5mpr+TKz0Xm3V
  u+ZWcAhGf3t9sG4ocQDbRiEy93eeLorT0lEqU=
Received: by 10.110.49.2 with SMTP id w2mr11987561tiw.28.1220622714619;
  Fri, 05 Sep 2008 06:51:54 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Fri, 5 Sep 2008 06:51:54 -0700
  (PDT)
Message-ID: <f589772b0809050651k3da6ac9fq83b2f3f8d275cfb4@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 16:51:54 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "George De Pacina" <George.Depacina@xxxxxxxxxxxxxxxxx>
Subject: Re: OT:PIX version 8 on Pemu (on Windows)
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/05 09:51:58)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Can u please what is the procedure to run it
is it work ONLY when we upgrade from version 7.x to 8.x ?




2008/9/5 George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>

> Yes, it works for me.
>
> - George
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Muhammad Nasim
> Sent: Friday, September 05, 2008 4:41 PM
> To: Cisco certification; Cisco certification
> Subject: OT:PIX version 8 on Pemu (on Windows)
>
> Dear All,
>
> Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
> platform.
>
> Thank in advance
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 09:49:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85Dni7g004292
	GroupStudy Mailer; Fri, 5 Sep 2008 09:49:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85DniF0004290
	for securityxhiddenx; Fri, 5 Sep 2008 09:49:44 -0400
Received: from mail.btalsaudia.com.sa ([212.93.207.90]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m85DneJO004236; Fri, 5 Sep 2008 09:49:41 -0400
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: ApoEAOzVwEjAyGQD/2dsb2JhbAC3NoFl
X-IronPort-AV: E=Sophos;i="4.32,320,1217797200";  d="scan'208";a="48476"
Received: from unknown (HELO mail.btalsaudia.com.sa) ([192.200.100.3])
  by mail.btalsaudia.com.sa with ESMTP; 05 Sep 2008 16:49:08 +0300
Received: from exchange-server.btalsaudia.com.sa ([192.200.100.3]) by
  exchange-server.btalsaudia.com.sa ([192.200.100.3]) with mapi; Fri, 5
  Sep 2008 16:54:49 +0300
From: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>
To: Muhammad Nasim <muhammad.nasim@xxxxxxxxx>,
        Cisco certification
  <security@xxxxxxxxxxxxxx>,
        "Cisco  certification"
  <ccielab@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 16:54:47 +0300
Subject: RE: OT:PIX version 8 on Pemu (on Windows)
Thread-Topic: OT:PIX version 8 on Pemu (on Windows)
Thread-Index: AckPXooBIjrU4wSVT4COPL0LL5putQAAFVKA
Message-ID: <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m85DneJO004236
X-ASK-Info: Our key was found in the mail (2008/09/05 09:49:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>

Yes, it works for me.

- George


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Muhammad Nasim
Sent: Friday, September 05, 2008 4:41 PM
To: Cisco certification; Cisco certification
Subject: OT:PIX version 8 on Pemu (on Windows)

Dear All,

Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
platform.

Thank in advance
--
Muhammad Nasim
Network Engineer
Saudi Arabia


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at:
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 10:01:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85E1hb8006904
	GroupStudy Mailer; Fri, 5 Sep 2008 10:01:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85E1gkK006902
	for securityxhiddenx; Fri, 5 Sep 2008 10:01:43 -0400
Received: from mail.btalsaudia.com.sa ([212.93.207.90]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m85E1eWu006863; Fri, 5 Sep 2008 10:01:40 -0400
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: ApwEAEvYwEjAyGQD/2dsb2JhbACCY449phCBZQ
X-IronPort-AV: E=Sophos;i="4.32,320,1217797200"; 
  d="scan'208,217";a="48487"
Received: from unknown (HELO mail.btalsaudia.com.sa) ([192.200.100.3])
  by mail.btalsaudia.com.sa with ESMTP; 05 Sep 2008 17:01:08 +0300
Received: from exchange-server.btalsaudia.com.sa ([192.200.100.3]) by
  exchange-server.btalsaudia.com.sa ([192.200.100.3]) with mapi; Fri, 5
  Sep 2008 17:06:49 +0300
From: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>
To: Muhammad Nasim <muhammad.nasim@xxxxxxxxx>
CC: Cisco certification <security@xxxxxxxxxxxxxx>,
        Cisco certification
  <ccielab@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 17:06:47 +0300
Subject: RE: OT:PIX version 8 on Pemu (on Windows)
Thread-Topic: OT:PIX version 8 on Pemu (on Windows)
Thread-Index: AckPX08nClYHO5TAThW6xI/zV6kd/wAAIGTQ
Message-ID: <66058FEAF6704A4E868D4029EFC990DC4846AB03A2@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <f589772b0809050651k3da6ac9fq83b2f3f8d275cfb4@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809050651k3da6ac9fq83b2f3f8d275cfb4@xxxxxxxxxxxxxx>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from george\.depacina@xxxxxxxxxx\.com\.sa] (2008/09/05 10:01:42)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>

BTW I'm using GNS3.

Just define where the pix image is located Edit>Preference>PEMU>PIX Image.


-          George

From: Muhammad Nasim [mailto:muhammad.nasim@xxxxxxxxx]
Sent: Friday, September 05, 2008 4:52 PM
To: George De Pacina
Cc: Cisco certification; Cisco certification
Subject: Re: OT:PIX version 8 on Pemu (on Windows)

Can u please what is the procedure to run it

is it work ONLY when we upgrade from version 7.x to 8.x ?




2008/9/5 George De Pacina
<George.Depacina@xxxxxxxxxxxxxxxxx<mailto:George.Depacina@xxxxxxxxxxxxxxxxx>>
Yes, it works for me.

- George


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx<mailto:nobody@xxxxxxxxxxxxxx>
[mailto:nobody@xxxxxxxxxxxxxx<mailto:nobody@xxxxxxxxxxxxxx>] On Behalf Of
Muhammad Nasim
Sent: Friday, September 05, 2008 4:41 PM
To: Cisco certification; Cisco certification
Subject: OT:PIX version 8 on Pemu (on Windows)

Dear All,

Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
platform.

Thank in advance
--
Muhammad Nasim
Network Engineer
Saudi Arabia

Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at:
http://www.groupstudy.com/list/CCIELab.html









--
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 10:59:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85ExlM8014143
	GroupStudy Mailer; Fri, 5 Sep 2008 10:59:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85ExlqZ014141
	for securityxhiddenx; Fri, 5 Sep 2008 10:59:47 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.191]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m85ExjYn014102 GroupStudy Mailer; Fri, 5 Sep 2008 10:59:46
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so310954tib.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 05 Sep 2008 07:59:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=FAA/+Z5d9HcNhAS9mKNQoSWPrbcltD2CmpdjWEHMboQ=;
  b=NmTe9OpfOW1iyFaxHVIDyq0utQbqe1no48FaNVqnpswyY5nbAvbQKJWwR40dh4utwk
  23AlHNNoBPZs80ydzUlD2ZHcEZrK+7wo3utM7U5wr+Ul+vibECdOJSaf3IsKG460wGKO
  QO32J/GGndLLpWC2tUCaVgqVMaMtUVa3NJtqI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=pJEoc05i9e8pbYjlIEbMK9ugmWn54Sa9hjnMFvD+db7G4SpJ3cUbDeXf62+nG6Lcy+
  hrziDuPHZQMgDjiAivBnodDZh/2l3/LXP01/DuAa/bK2lkl2TgIrTq8zeSxwr2UismZs
  ua5LyACqUOGsp04ySyQ/OnuaUG6i8UH0FZyM4=
Received: by 10.110.46.3 with SMTP id t3mr15079653tit.33.1220626782647;
  Fri, 05 Sep 2008 07:59:42 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Fri, 5 Sep 2008 07:59:42 -0700
  (PDT)
Message-ID: <f589772b0809050759x21ce6a89yafb6343a3518cbfa@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 17:59:42 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "George De Pacina" <George.Depacina@xxxxxxxxxxxxxxxxx>
Subject: Re: OT:PIX version 8 on Pemu (on Windows)
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <66058FEAF6704A4E868D4029EFC990DC4846AB03A2@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <f589772b0809050651k3da6ac9fq83b2f3f8d275cfb4@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A2@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/05 10:59:47)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

hrm..
I will check with GNS3 can u tell me which version u r using 8.0.3 or 8.0.2
or something else

Thanks

2008/9/5 George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>

>  BTW I'm using GNS3.
>
>
>
> Just define where the pix image is located Edit>Preference>PEMU>PIX Image.
>
>
>
> -          George
>
>
>
> *From:* Muhammad Nasim [mailto:muhammad.nasim@xxxxxxxxx]
> *Sent:* Friday, September 05, 2008 4:52 PM
> *To:* George De Pacina
> *Cc:* Cisco certification; Cisco certification
> *Subject:* Re: OT:PIX version 8 on Pemu (on Windows)
>
>
>
> Can u please what is the procedure to run it
>
>
>
> is it work ONLY when we upgrade from version 7.x to 8.x ?
>
>
>
>
>
>
>
>
>
> 2008/9/5 George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>
>
> Yes, it works for me.
>
> - George
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Muhammad Nasim
> Sent: Friday, September 05, 2008 4:41 PM
> To: Cisco certification; Cisco certification
> Subject: OT:PIX version 8 on Pemu (on Windows)
>
> Dear All,
>
> Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
> platform.
>
> Thank in advance
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>   Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
>
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>



-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 11:27:32 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85FRWlh016337
	GroupStudy Mailer; Fri, 5 Sep 2008 11:27:32 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85FRWYI016335
	for securityxhiddenx; Fri, 5 Sep 2008 11:27:32 -0400
Received: from mail.btalsaudia.com.sa ([212.93.207.90]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m85FRT9S016297; Fri, 5 Sep 2008 11:27:30 -0400
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: ApwEAO7rwEjAyGQD/2dsb2JhbACCY449pXCBZQ
X-IronPort-AV: E=Sophos;i="4.32,320,1217797200"; 
  d="scan'208,217";a="48522"
Received: from unknown (HELO mail.btalsaudia.com.sa) ([192.200.100.3])
  by mail.btalsaudia.com.sa with ESMTP; 05 Sep 2008 18:26:57 +0300
Received: from exchange-server.btalsaudia.com.sa ([192.200.100.3]) by
  exchange-server.btalsaudia.com.sa ([192.200.100.3]) with mapi; Fri, 5
  Sep 2008 18:32:38 +0300
From: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>
To: Muhammad Nasim <muhammad.nasim@xxxxxxxxx>
CC: Cisco certification <security@xxxxxxxxxxxxxx>,
        Cisco certification
  <ccielab@xxxxxxxxxxxxxx>
Date: Fri, 5 Sep 2008 18:32:36 +0300
Subject: RE: OT:PIX version 8 on Pemu (on Windows)
Thread-Topic: OT:PIX version 8 on Pemu (on Windows)
Thread-Index: AckPaMhXqDBxHdD/TqWuxr4u7tpv1wAA7QKg
Message-ID: <66058FEAF6704A4E868D4029EFC990DC4846AB03A5@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <f589772b0809050641q1cbd6321k99da9856a9d7a716@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A1@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <f589772b0809050651k3da6ac9fq83b2f3f8d275cfb4@xxxxxxxxxxxxxx>
  <66058FEAF6704A4E868D4029EFC990DC4846AB03A2@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <f589772b0809050759x21ce6a89yafb6343a3518cbfa@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809050759x21ce6a89yafb6343a3518cbfa@xxxxxxxxxxxxxx>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from george\.depacina@xxxxxxxxxx\.com\.sa] (2008/09/05 11:27:32)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: George De Pacina <George.Depacina@xxxxxxxxxxxxxxxxx>

I'm using image 8.0.2.

George

From: Muhammad Nasim [mailto:muhammad.nasim@xxxxxxxxx]
Sent: Friday, September 05, 2008 6:00 PM
To: George De Pacina
Cc: Cisco certification; Cisco certification
Subject: Re: OT:PIX version 8 on Pemu (on Windows)

hrm..

I will check with GNS3 can u tell me which version u r using 8.0.3 or 8.0.2 or
something else

Thanks

2008/9/5 George De Pacina
<George.Depacina@xxxxxxxxxxxxxxxxx<mailto:George.Depacina@xxxxxxxxxxxxxxxxx>>

BTW I'm using GNS3.



Just define where the pix image is located Edit>Preference>PEMU>PIX Image.



-          George



From: Muhammad Nasim
[mailto:muhammad.nasim@xxxxxxxxx<mailto:muhammad.nasim@xxxxxxxxx>]
Sent: Friday, September 05, 2008 4:52 PM
To: George De Pacina
Cc: Cisco certification; Cisco certification
Subject: Re: OT:PIX version 8 on Pemu (on Windows)



Can u please what is the procedure to run it



is it work ONLY when we upgrade from version 7.x to 8.x ?









2008/9/5 George De Pacina
<George.Depacina@xxxxxxxxxxxxxxxxx<mailto:George.Depacina@xxxxxxxxxxxxxxxxx>>

Yes, it works for me.

- George


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx<mailto:nobody@xxxxxxxxxxxxxx>
[mailto:nobody@xxxxxxxxxxxxxx<mailto:nobody@xxxxxxxxxxxxxx>] On Behalf Of
Muhammad Nasim
Sent: Friday, September 05, 2008 4:41 PM
To: Cisco certification; Cisco certification
Subject: OT:PIX version 8 on Pemu (on Windows)

Dear All,

Can anyone please confirm me that version 8.x is working on PEMU on WINDOWS
platform.

Thank in advance
--
Muhammad Nasim
Network Engineer
Saudi Arabia

Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at:
http://www.groupstudy.com/list/CCIELab.html








--
Muhammad Nasim
Network Engineer
Saudi Arabia



--
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 15:17:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85JHsH6007908
	GroupStudy Mailer; Fri, 5 Sep 2008 15:17:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85JHsJg007902
	for securityxhiddenx; Fri, 5 Sep 2008 15:17:54 -0400
Received: from exchange.arcananet.com (exchange.arcananet.com
  [64.71.130.10]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m85JHivL007813; Fri, 5 Sep 2008 15:17:46 -0400
Content-class: urn:content-classes:message
X-Mailer: Microsoft CDO for Exchange 2000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: [MailServer Resend] Re: 802.1x authentication and IP-Phones
Date: Fri, 5 Sep 2008 12:14:00 -0700
Message-ID: <3719D6F81721F948A0B3BCE3DD10DA4E0189B2E8@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: [MailServer Resend] Re: 802.1x authentication and
  IP-Phones
Thread-Index: AckPi42hAcs4Sxt5Q0yQ8Ab+YlcOjg==
From: "SystemMailbox{247295C2-899B-4ADB-BA3A-9CD42895AE74}"
  <SystemMailbox{247295C2-899B-4ADB-BA3A-9CD42895AE74}@arcananet.com>
To: <aiokojie@xxxxxxxxx>
Cc: <kuttappan@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>, <ccielab@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/mixed by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was multipart/alternative
X-ASK-Info: Our key was found in the mail (2008/09/05 15:17:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "SystemMailbox{247295C2-899B-4ADB-BA3A-9CD42895AE74}" <SystemMailbox{247295C2-899B-4ADB-BA3A-9CD42895AE74}@arcananet.com>

----- Original Message Header -----
Subject: Re: 802.1x authentication and IP-Phones
From: sadiqtanko@xxxxxxxxx;
To: aiokojie@xxxxxxxxx;
Cc: kuttappan@xxxxxxxxx; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx;
-----------------------------------
X-MimeOLE: Produced By Microsoft Exchange V6.5
Return-Path: <ccielab-owner@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 02 Sep 2008 22:18:43.0593 (UTC)
  FILETIME=[DC431F90:01C90D49]
Errors-To: ccielab-owner@xxxxxxxxxxxxxx
X-no-archive: yes
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
List-Post: <mailto:ccielab@xxxxxxxxxxxxxx>
X-Loop: ccielab@xxxxxxxxxxxxxx
List-Owner: <mailto:ccielab-request@xxxxxxxxxxxxxx>
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; 
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version 
  :content-type:references; 
  b=tKzV8KYohmIjrGre3Jich+1FSmGikyUkDf0ZyLNp4vvKCHoIAfD8KDuq6n7fqxTS0K 
  G+Sss8lmceFsgXRRHifu554hAiheMNRtx+QelmT9mifuDyIAXSXt1hqUv6gTyOH7TeQF 
  u9UVV+SSZYEcxZJObtgFLU6DsXMU0aFAU4650=
List-Archive: <http://lists.groupstudy.com/mailserver/arc/ccielab>
List-Id: <ccielab.groupstudy.com>
X-Sequence: 12708
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sadiqtanko@xxxxx\.com] (2008/09/02
  18:20:31)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; 
  s=gamma; 
  h=domainkey-signature:received:received:message-id:date:from:to 
  :subject:cc:in-reply-to:mime-version:content-type:references; 
  bh=wd6BK+LxvXw/Ep5D3n5cnZ0wPbED/ytYLEwGg85EGcs=; 
  b=HGVyDCLY/mtZpyQOEIz4Rw8MN+gnXKShsNJp1mMXLzUUCoI1KoyeIGdZzxD0/mGNpu 
  UAmmWIWmQUPq5zH6Ln3HacNP9w1j0jsafKrFSnsohHyTMfpIsdCdcmBgvRPLAId9NaGR 
  c7LliViIfh4KieAFmh43KepIm2T7CpiJ4zOOg=
Content-class: urn:content-classes:message
Subject: Re: 802.1x authentication and IP-Phones
Date: Tue, 2 Sep 2008 15:20:26 -0700
Message-ID: <b3b04d380809021520v2d5a377eyc0e1d34364eb5443@xxxxxxxxxxxxxx>
In-Reply-To: <142545.59773.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <142545.59773.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-Help: <mailto:sympa@xxxxxxxxxxxxxx?subject=help>
List-Subscribe: <mailto:sympa@xxxxxxxxxxxxxx?subject=subscribe%20ccielab>
List-Unsubscribe: <mailto:sympa@xxxxxxxxxxxxxx?subject=unsubscribe%20ccielab>
From: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
Sender: <nobody@xxxxxxxxxxxxxx>
To: "austin okojie" <aiokojie@xxxxxxxxx>
Cc: "Ajith Nair" <kuttappan@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
  "groupstudy" <ccielab@xxxxxxxxxxxxxx>
Reply-To: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain

That is also achievable with CSACS.


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Fri Sep  5 17:43:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85LhjvX023803
	GroupStudy Mailer; Fri, 5 Sep 2008 17:43:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m85LhjSi023801
	for securityxhiddenx; Fri, 5 Sep 2008 17:43:45 -0400
Received: from smtp2b.orange.fr (smtp2b.orange.fr [80.12.242.144]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m85Lhis7023778
  GroupStudy Mailer; Fri, 5 Sep 2008 17:43:44 -0400
Received: by mwinf2b05.orange.fr (SMTP Server) id 124621C96006; Thu,  4
  Sep 2008 22:20:38 +0200 (CEST)
Date: Thu,  4 Sep 2008 22:20:38 +0200 (CEST)
X-ME-UUID: 20080904181150182.2CA127000085@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080904202038.124621C96006@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/05 17:43:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf2b05.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<wwere@xxxxxxxxxxx>: host mx2.hotmail.com[65.54.244.40] said: 550 Requested
    action not taken: mailbox unavailable (in reply to RCPT TO command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: A21371CB992F
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Thu,  4 Sep 2008 20:11:50 +0200 (CEST)

Final-Recipient: rfc822; wwere@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx2.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp2b.orange.fr (mwinf2b24 [10.232.22.124]) by
  mwinf2b05.orange.fr (SMTP Server) with ESMTP id A21371CB992F; Thu,  4
  Sep 2008 20:11:50 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2b24.orange.fr (SMTP Server) with ESMTP id 8D26C700008E; Thu,  4
  Sep 2008 20:11:50 +0200 (CEST)
Received: from srv-gaves (LRouen-151-73-59-245.w80-13.abo.wanadoo.fr
  [80.13.37.245]) by mwinf2b24.orange.fr (SMTP Server) with SMTP id
  2CA127000085; Thu,  4 Sep 2008 20:11:50 +0200 (CEST)
X-ME-UUID: 20080904181150182.2CA127000085@xxxxxxxxxxxxxxxxxxx
Message-ID: <000b01c90f1c$afe5b530$ff78f88f@xxxxxx>
From: "=?windows-1251?B?TmF0dXNpayBDLg==?=" <security@xxxxxxxxxxxxxx>
To: <wwere@xxxxxxxxxxx>, <wwerneburg@xxxxxxx>, <wwerneburg@xxxxxxxxxxx>
Subject: =?windows-1251?B?WW91IHdpbGwgbmV2ZXIga25vdyB1bnRpbCB5b3UgdHJ5IQ==?=
Date: Thu, 4 Sep 2008 20:08:06 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

Good day, my friend!

Do you like friends, food, conversation? Are you comfortable in your life?
Adventurous and open minded, intelligent with a quacked sense of humour,
generous and honest, I am looking for the same! I am looking for love for life!
Write me! I am here: finebeautifulwomen.net/6188

Have a nice day
Nat C.


From security-owner@xxxxxxxxxxxxxx Sat Sep  6 02:34:50 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m866Yogd025882
	GroupStudy Mailer; Sat, 6 Sep 2008 02:34:50 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m866YoGN025880
	for securityxhiddenx; Sat, 6 Sep 2008 02:34:50 -0400
Received: from gd-dm63-0223.lcv.ne.jp (gd-dm63-0223.lcv.ne.jp
  [202.170.212.223]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m866Ym29025855 GroupStudy Mailer; Sat, 6 Sep 2008 02:34:49
  -0400
Message-ID: <000701c90fea$029fd3e5$abf39e9e@xxxxxx>
From: "bordie olivier" <postmaster@xxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Redheads : redhead in nylons (16 pics)
Date: Sat, 06 Sep 2008 04:47:20 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/06 02:34:50)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "bordie olivier" <postmaster@xxxxxxxxx>

zu SPIEGEL WISSENUngeachtet des internationalen Proteststurms bekr?ftigte
Medwedew am Dienstagnachmittag seine Entscheidung. "Wir haben vor nichts
Angst, auch nicht vor der Aussicht auf einen Kalten Krieg", sagte er in einem
auf Englisch ?bersetzten Interview des Fernsehsenders Russia Today. "Nat?rlich
wollen wir das nicht. Alles h?ngt von der Haltung der Weltgemeinschaft und
unserer Partner im Westen ab."   Visit us to watch this video and many other
for freeHeftige Kritik auch aus Gro?britannien: Au?enminister David Miliband
nannte die Entscheidung "nicht zu rechtfertigen und inakzeptabel". Medwedew
heize die Krise in Georgien weiter an. "Wir unterst?tzen Georgiens
Unabh?ngigkeit und innerstaatliche Integrit?t, die nicht per Dekret aus Moskau
ver?ndert werden kann." Russland m?sse sofort seine Truppen abziehen, sagte
Miliband und k?ndigte an, am Mittwoch in die Ukraine reisen, um "eine
gr??tm?gliche Koalition gegen den russischen Angriff" zu versammeln.urde im
Westen heftig kritisiert. Unmittelbar nach der Erkl?rung lehnte die Nato den
Vorsto? des russischen Pr?sidenten ab: Generalsekret?r Jaap de Hoop Scheffer
sagte in Br?ssel, das Verhalten Russlands in den vergangenen Wochen stelle
Moskaus Bekenntnis zu Frieden und Sicherheit im Kaukasus in Frage.
Dmitrij Medwedew Russland S?dossetien Abchasien Condoleezza Rice EU-
Ratspr?sidentschaft OSZE


From security-owner@xxxxxxxxxxxxxx Sat Sep  6 05:32:28 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m869WS0d010933
	GroupStudy Mailer; Sat, 6 Sep 2008 05:32:28 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m869WS67010931
	for securityxhiddenx; Sat, 6 Sep 2008 05:32:28 -0400
Received: from system98.WestGermanBMW.Com (system98.WestGermanBMW.Com
  [65.201.41.98] (may be forged)) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m869WRjA010566 GroupStudy
  Mailer; Sat, 6 Sep 2008 05:32:27 -0400
Message-ID: <000901c91004$0467a3bf$96de64be@xxxxx>
From: "dory marius" <postmaster@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Blonde : blonde lola fingering masturbating (18 pics)
Date: Sat, 06 Sep 2008 07:55:06 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/06 05:32:28)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "dory marius" <postmaster@xxxxxxxxxxxxxx>

US-Au?enministerin Condoleezza Rice bezeichnete den Vorsto? Russlands als
"extrem bedauerlich". Es habe Gespr?che gegeben, wie man auf internationaler
Ebene den Kaukasus-Konflikt l?sen k?nne. Russland sei dem Ausgang dieser
Diskussionen nun zuvorgekommen. Beide abtr?nnigen Regionen seien Teile
Georgiens und w?rden dies auch bleiben. Die USA w?rden mit ihrem Veto im
Weltsicherheitsrat jeglichen russischen Versuch blockieren, an deren Status
etwas zu ?ndern.Die EU mahnte eine "friedliche L?sung der Konflikte in
Georgien" an. Die Anerkennung durch Russland stehe "im Widerspruch zu den
Prinzipien der Unabh?ngigkeit, Souver?nit?t und territorialen Integrit?t
Georgiens", erkl?rte die EU-Ratspr?sidentschaft in Paris. Sie verwies dabei
auf die Charta der Vereinten Nationen und die Resolutionen des
Uno-Sicherheitsrates. Die Konsequenzen der russischen Entscheidung w?rden
gepr?ft, hie? es.  Play the movie hereDmitrij Medwedew Russland S?dossetien
Abchasien Condoleezza Rice EU- Ratspr?sidentschaft OSZELondon fordert
"Koalition gegen den russischen Angriff"
urde im Westen heftig kritisiert. Unmittelbar nach der Erkl?rung lehnte die
Nato den Vorsto? des russischen Pr?sidenten ab: Generalsekret?r Jaap de Hoop
Scheffer sagte in Br?ssel, das Verhalten Russlands in den vergangenen Wochen
stelle Moskaus Bekenntnis zu Frieden und Sicherheit im Kaukasus in Frage.


From security-owner@xxxxxxxxxxxxxx Sat Sep  6 05:50:48 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m869omDv014998
	GroupStudy Mailer; Sat, 6 Sep 2008 05:50:48 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m869om8l014996
	for securityxhiddenx; Sat, 6 Sep 2008 05:50:48 -0400
Received: from yw-out-1718.google.com (yw-out-1718.google.com
  [74.125.46.152]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m869olAH014974 GroupStudy Mailer; Sat, 6 Sep 2008 05:50:47
  -0400
Received: by yw-out-1718.google.com with SMTP id 6so76628ywa.84 for
  <security@xxxxxxxxxxxxxx>; Sat, 06 Sep 2008 02:50:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=y+o5kPZI8J+QlqovO/LfIEOL5r88ReV1kgZ8zHhV22E=;
  b=HklWuZ/UxCcxMB61HbL4ad8vndblX1XEviYwctW8+cEnKq3cpIDwOXIGYFBW3Y1GVJ
  bSOuasbqAI7hKZmTlNMvJXxhxsPyAi005FahnkF5AxYn+/veXQ3OqgaY9XtRmSyHEVg8
  qs0ijqDQ0Kpzll+gpOi91OYYZQ5lUykvtjcKw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=JI336Kb0sCgTEpGb2Vp2qAtFnNcBZX74jlEvY7LMfuUO6SttfhOjMvDTNMKlc8Ug9m
  zUqQi6JHVJ7TEbv/fY/vRbwPCFU0loamjzxuttGVoSZpSFvj40cyGdYy0fFkF5bjCKG+
  0HL7vy8SNj+v2U8Ge2vhS8wSPE+j5UY0Gl6CI=
Received: by 10.151.112.14 with SMTP id
  p14mr17904096ybm.173.1220694647301; Sat, 06 Sep 2008 02:50:47 -0700
  (PDT)
Received: by 10.151.109.18 with HTTP; Sat, 6 Sep 2008 02:50:47 -0700
  (PDT)
Message-ID: <eff3217d0809060250s408e6dcai30438513d407a384@xxxxxxxxxxxxxx>
Date: Sat, 6 Sep 2008 12:50:47 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: Sean <seansational@xxxxxxxxx>
Subject: Re: EZVPN
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <000801c90f39$7560a3f0$09011fac@xxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <000801c90f39$7560a3f0$09011fac@xxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/06 05:50:48)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t8/feature/guide/ftunity.html

Regards

Farrukh

On Fri, Sep 5, 2008 at 12:26 PM, Sean <seansational@xxxxxxxxx> wrote:

> Hi All,
>
> I am reading through some docs I have found on ezvpn but have not found one
> comprehensive doc that covers all aspects. Most of the docs relate to a
> hardware device itself. Is there a link on the doc (cd/dvd) that is a good
> reference point and covers all possible scenarios that can be expected and
> that one can refer to?
>
> Sean


From security-owner@xxxxxxxxxxxxxx Sat Sep  6 05:49:20 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m869nKUF013964
	GroupStudy Mailer; Sat, 6 Sep 2008 05:49:20 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m869nKur013948
	for securityxhiddenx; Sat, 6 Sep 2008 05:49:20 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.156]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m869nKWB013925 GroupStudy Mailer; Sat, 6 Sep 2008 05:49:20
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so459864yxi.84 for
  <security@xxxxxxxxxxxxxx>; Sat, 06 Sep 2008 02:49:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=g3t0bWz96MR7cekDzG0cFwtmsmPZ678vg/ukXQlI3vg=;
  b=eeOXDpBNyG2JvD3G7ZInlfDPGLA9eG/YehXYcI4frFXGUAuGJHa2rC+G5jFrPVpEDG
  wkfcl2qHFubwvWTavpodiMT4L+FPsb1sstcmrnlYDQd7biz4e5K3rD4c2S1Qj/yHCZKH
  u2eWNyxrQM7zya7c+2OEX4XD//68SqcE0jibs=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=TiY3mfnSh80/g+M18OR5SARtAEBy17AIW/1sxUxHCBzLpeYgqhUTiAdwvci1oT8zkf
  ZMZsvS+8bUsrYlWGcNasaRkha26sFv64ASo/xiFAZuJKlyMdtQgpaffy5X9pFrv3A1Yd
  D8mruf2JYklEo7zbuo7WP8HkXlXlftDWNzswg=
Received: by 10.151.106.4 with SMTP id
  i4mr17923169ybm.119.1220694559397; Sat, 06 Sep 2008 02:49:19 -0700
  (PDT)
Received: by 10.151.109.18 with HTTP; Sat, 6 Sep 2008 02:49:19 -0700
  (PDT)
Message-ID: <eff3217d0809060249g619cdcf2g233bbfe64c0f9cc9@xxxxxxxxxxxxxx>
Date: Sat, 6 Sep 2008 12:49:19 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
Subject: Re: I'm finally a CCIE!
Cc: security@xxxxxxxxxxxxxx, cisco@xxxxxxxxxxxxxx
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/06 05:49:20)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Congratualtions Aaron, you have finally concurred with Cisco on the
solutions :)

Regards

Farrukh

On Thu, Sep 4, 2008 at 3:53 PM, Aaron T. Rohyans <arohyans@xxxxxxxxxxx>wrote:

> Hey all,
>
> I wouldn't dare break tradition, so I thought I'd share with the group
> that I passed my CCIE lab exam yesterday in RTP for Security.  I just
> wanted to say thanks to everyone on these lists for helping a newb out
> with all my questions and for giving me encouragement to take it again
> after failing a few times.  You all are an invaluable resource when it
> comes to studying.
>
> Hopefully I can give back to the group now instead of being a lurker :-)
>
> ...time to go reclaim the last 1.5 years of my life!
>
> God Bless!
>
> Aaron Rohyans - CCIE Security #21945
> IT Coordinator, IDC-USA
> arohyans@xxxxxxxxxxx
> 317.244.8307 (V)
> 317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Sun Sep  7 05:06:35 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8796Z1R021137
	GroupStudy Mailer; Sun, 7 Sep 2008 05:06:35 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8796Zwo021135
	for securityxhiddenx; Sun, 7 Sep 2008 05:06:35 -0400
Received: from smtp2a.orange.fr (smtp2a.orange.fr [80.12.242.138]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8796YFj021115
  GroupStudy Mailer; Sun, 7 Sep 2008 05:06:35 -0400
Received: by mwinf2a05.orange.fr (SMTP Server) id 383551C13D5D; Sun,  7
  Sep 2008 10:10:53 +0200 (CEST)
Date: Sun,  7 Sep 2008 10:10:53 +0200 (CEST)
X-ME-UUID: 20080907061715596.91AD57000042@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080907081053.383551C13D5D@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/07 05:06:35)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf2a05.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<tjjudd@xxxxxxxxxxxxx>: host mx4.earthlink.net[209.86.93.229] said: 550
    tjjudd@xxxxxxxxxxxxxxxxxxxx account is unavailable (in reply to RCPT TO
    command)

<tjkachel@xxxxxxxxxxxxx>: host mx4.earthlink.net[209.86.93.229] said: 550
    tjkachel@xxxxxxxxxxxxxxxxxxxx account is unavailable (in reply to RCPT TO
    command)

<tjkangas@xxxxxxxxxxxxx>: host mx4.earthlink.net[209.86.93.229] said: 550
    tjkangas@xxxxxxxxxxxxxxxxxxxx unknown (in reply to RCPT TO command)

<tjkeough@xxxxxxxxxxxxx>: host mx4.earthlink.net[209.86.93.229] said: 550
    tjkeough@xxxxxxxxxxxxxxxxxxxx unknown (in reply to RCPT TO command)

<tjkirkland@xxxxxxxxxxxxx>: host mx4.earthlink.net[209.86.93.229] said: 550
    tjkirkland@xxxxxxxxxxxxxxxxxxxx unknown (in reply to RCPT TO command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 0CF851C03D4B
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sun,  7 Sep 2008 09:22:39 +0200 (CEST)

Final-Recipient: rfc822; tjjudd@xxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx4.earthlink.net
Diagnostic-Code: smtp; 550 tjjudd@xxxxxxxxxxxxxxxxxxxx account is unavailable

Final-Recipient: rfc822; tjkachel@xxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx4.earthlink.net
Diagnostic-Code: smtp; 550 tjkachel@xxxxxxxxxxxxxxxxxxxx account is unavailable

Final-Recipient: rfc822; tjkangas@xxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx4.earthlink.net
Diagnostic-Code: smtp; 550 tjkangas@xxxxxxxxxxxxxxxxxxxx unknown

Final-Recipient: rfc822; tjkeough@xxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx4.earthlink.net
Diagnostic-Code: smtp; 550 tjkeough@xxxxxxxxxxxxxxxxxxxx unknown

Final-Recipient: rfc822; tjkirkland@xxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx4.earthlink.net
Diagnostic-Code: smtp; 550 tjkirkland@xxxxxxxxxxxxxxxxxxxx unknown
Received: from smtp2a.orange.fr (mwinf2a13 [10.232.16.41]) by
  mwinf2a05.orange.fr (SMTP Server) with ESMTP id 0CF851C03D4B; Sun,  7
  Sep 2008 09:22:39 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2a13.orange.fr (SMTP Server) with ESMTP id 4685A70000F7; Sun,  7
  Sep 2008 08:17:16 +0200 (CEST)
Received: from Serveur
  (LAubervilliers-153-52-24-67.w217-128.abo.wanadoo.fr [217.128.119.67])
  by mwinf2a13.orange.fr (SMTP Server) with SMTP id 91AD57000042; Sun, 
  7 Sep 2008 08:17:15 +0200 (CEST)
X-ME-UUID: 20080907061715596.91AD57000042@xxxxxxxxxxxxxxxxxxx
Message-ID: <001e01c91114$b96e2e79$fd190589@xxxxxx>
From: "=?windows-1251?B?T2x5IEcu?=" <security@xxxxxxxxxxxxxx>
To: <tjjudd@xxxxxxxxxxxxx>, <tjkachel@xxxxxxxxxxxxx>,
  <tjkangas@xxxxxxxxxxxxx>, <tjkeough@xxxxxxxxxxxxx>,
  <tjkirkland@xxxxxxxxxxxxx>, <tjkubes@xxxxxxxxxxxxx>,
  <tjkuhr@xxxxxxxxxxxxx>
Subject: =?windows-1251?B?VWtyYWluaWFuIExhZHkgU2Vla3MgU291bCBNYXRl?=
Date: Sun, 7 Sep 2008 08:17:15 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4522.1200
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200

Hello, my gentleman!

Are you looking for your match or may be you are the person I am looking 
for? Sense of humor about yourself and the world around you - these are 
your key qualities. You do not sweat the small things because there is 
really no point. You have a strong family connection and a loyalty to 
your friends that cannot be broken. You know what you want and are not 
afraid to say it. If you think you fit this description, drop me a line. 
I would live to talk to you. I am here: www.lovefemale.net/myhoney/

Have a good mood
Oli


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 03:38:57 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m887cvoU025249
	GroupStudy Mailer; Mon, 8 Sep 2008 03:38:57 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m887cvAi025247
	for securityxhiddenx; Mon, 8 Sep 2008 03:38:57 -0400
Received: from an-out-0708.google.com (an-out-0708.google.com
  [209.85.132.244]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m887cuwm025208 GroupStudy Mailer; Mon, 8 Sep 2008 03:38:56
  -0400
Received: by an-out-0708.google.com with SMTP id c38so229214ana.3 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 00:38:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=yTslHriL+NYLdACttX2+Kh1vXMfSKzSa9Sd/VKmCMY0=;
  b=vZyUIRB8q/7xYqL1pXEEDjsJyt+bXADYv7FOwROV6RV5Y4rygzYg40/bOos3IOy/a7
  GdC1kMAB0sFyOM9YYkLEn7sTaHiptDzlpgZDHJsg5+bMal7ROINHIW5sbN6dH5LZXRz4
  +2HpxMKgvTYXvmse1WYCOx59YBE4zr674HhEs=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=a4qBOPbwty0pFtVuDcECFiEaQYJdJ+Nw9g25w85kN78E/tVjkMKWtyiFHxub6uHzVc
  wBrRm/Ofl3Hrj6kha19K+7jhF+tY2qVpZ8hoT1t4f1Orj/2mqX3UdXre46UJ83QRcuUp
  7G3d4yEx8n4ZqFrnHBcJLmfQf1g9nS2VlXcuM=
Received: by 10.100.112.6 with SMTP id k6mr15040339anc.71.1220859531426;
  Mon, 08 Sep 2008 00:38:51 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Mon, 8 Sep 2008 00:38:50 -0700
  (PDT)
Message-ID: <150f570d0809080038v24a82e8dy799f7e14858c7783@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 10:38:50 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: pedrorta@xxxxxxxxxx
Subject: Re: I'm finally a CCIE!
Cc: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>, cisco@xxxxxxxxxxxxxx,
        nobody@xxxxxxxxxxxxxx, security@xxxxxxxxxxxxxx
In-Reply-To: <OFAF43FBC7.F413D7A1-ON832574BB.0048ABBE-832574BB.00491238@xxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <0ECBE0A108FE3F4ABBFED5892EEE36528EF316@xxxxxxxxxxxxxxxxxx>
  <OFAF43FBC7.F413D7A1-ON832574BB.0048ABBE-832574BB.00491238@xxxxxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/08 03:38:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Congratulations Aaron on achieving your number

cheers
George

On Fri, Sep 5, 2008 at 4:17 PM,  <pedrorta@xxxxxxxxxx> wrote:
> Congrat's Aaron!!! Now it's time to a vacation :D
>
> best regards,
> ____________________________________________________________
> Pedro Ortale Neto
> IT Specialist / Cisco Certified Security Professional
> AT&T Global Network Services
> e-mail address: ortale@xxxxxxx
> Phone:  +55-19-2132-2969
> Mobile: +55-11-8652-6310
>
>
>
> From:
> "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
> To:
> <security@xxxxxxxxxxxxxx>, <cisco@xxxxxxxxxxxxxx>
> Date:
> 04/09/2008 10:22
> Subject:
> I'm finally a CCIE!
>
>
>
> Hey all,
>
> I wouldn't dare break tradition, so I thought I'd share with the group
> that I passed my CCIE lab exam yesterday in RTP for Security.  I just
> wanted to say thanks to everyone on these lists for helping a newb out
> with all my questions and for giving me encouragement to take it again
> after failing a few times.  You all are an invaluable resource when it
> comes to studying.
>
> Hopefully I can give back to the group now instead of being a lurker :-)
>
> ...time to go reclaim the last 1.5 years of my life!
>
> God Bless!
>
> Aaron Rohyans - CCIE Security #21945
> IT Coordinator, IDC-USA
> arohyans@xxxxxxxxxxx
> 317.244.8307 (V)
> 317.244.4600 (F)


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 04:28:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m888SQJt031141
	GroupStudy Mailer; Mon, 8 Sep 2008 04:28:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m888SQKj031139
	for securityxhiddenx; Mon, 8 Sep 2008 04:28:26 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.158]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m888S0Dx031086 GroupStudy Mailer; Mon, 8 Sep 2008 04:28:00
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1377878fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 01:28:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=fThPT9kwPj1LTpJg5bzAbtZ3bf2zTb0uxwLOZBkDwj4=;
  b=EAsnxGRrvSTSxsZm4o0ma6VFoo1XF4EwYG8boDwOPUaYSnO0HLqEHzhkZv3uZ+rWIx
  NtB4y2Cv9i85rdeYhtkCURxNmwZTxgnVu/dIAMUznb2NnvjH1Fah8p6r7AZXd1aq4SBu
  jOcfW9iJn479/cIs2q+GQ/VkGRYFp+JR1iLKI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=O6N6Hln35x6Iey1qrgZudZXdSJhY8BsThwscgB9I+CwBqsfH0DNNLGFEH8mp7WTJxn
  qmlLx6YyOAa40cVb1CmF09x6/9sk7+ugggCKnAcXqwqhd7kpvRX+O6uvpfi9WnEdYtrT
  itVqAo8w7h84hRiyG8cj70XOWwpeFgZmYhDuk=
Received: by 10.86.68.1 with SMTP id q1mr11101986fga.2.1220862479127;
  Mon, 08 Sep 2008 01:27:59 -0700 (PDT)
Received: by 10.86.89.4 with HTTP; Mon, 8 Sep 2008 01:27:58 -0700 (PDT)
Message-ID: <c368f990809080127s578b3813ka9bc1869604f5ff9@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 13:57:58 +0530
From: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx
Subject: Crypto isakmp profiles
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/08 04:28:02)
X-ASK-Info: Confirmed by User (2008/09/08 04:28:25)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>

Hi,

I want to know when to use crypto isakmp profiles in VPN's. What are the
possible scenarios to use this feature?

Also, when to use crypto keyring command in VPN's?

-- 
Regards,

Vinni


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 06:09:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88A9pRN007633
	GroupStudy Mailer; Mon, 8 Sep 2008 06:09:51 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88A9pfP007631
	for securityxhiddenx; Mon, 8 Sep 2008 06:09:51 -0400
Received: from hs-out-0708.google.com (hs-out-0708.google.com
  [64.233.178.240]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88A93hv007576 GroupStudy Mailer; Mon, 8 Sep 2008 06:09:03
  -0400
Received: by hs-out-0708.google.com with SMTP id 55so192122hsc.14 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 03:09:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=hvY6Nda3qC2MhOf6j3x6PYP93g009HIhab+6D2zd37Q=;
  b=hQrIyZctcPAJCdMAR5uKc3zlspsDkkVTDi6lsS3FVArLG/6k/Vnt0Mb5IY6Lhvg9S7
  6x3PqTjolwDFY1946nOoHL5T/3/0svG8fMzMcqvGvOAzzt/0/p83agYwqPUBgHsAruxk
  dESwSxbz56E/E56hF109R1iLXDLKKoDsYwitg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=x7KClpcAFo0a3pQVP7LCuxiz/I9HffFh21V/i3I0v/a+BbP0mg5BG9WbvYneR6jiaw
  fE/YfJs+AzmACn8WFCmCS8KW28VAVvxJ7+B0+o++GvDLnHUTW5S0C/CwvGX7nrjJvh8Y
  D2aTrgrwPYZTpG7Qaugkp1fYIULMRTQcv7gB0=
Received: by 10.143.155.7 with SMTP id h7mr5175619wfo.16.1220868541953;
  Mon, 08 Sep 2008 03:09:01 -0700 (PDT)
Received: by 10.142.139.20 with HTTP; Mon, 8 Sep 2008 03:09:01 -0700
  (PDT)
Message-ID: <ab1dcfa0809080309y456fd748me5b94752cd5c07c7@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 15:39:01 +0530
From: "Akbar Ali" <ccieaim@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx
Subject: I Waste my time to find bugs
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/08 06:09:04)
X-ASK-Info: Confirmed by User (2008/09/08 06:09:51)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Akbar Ali" <ccieaim@xxxxxxxxx>

Hi ,

groups I am trying my lab , but sometime I waste my precious time due to
bugs in the IOS or softwares , IS there any study mailing  list or link that
will be helpfull for me to get the bugs .......

your one reply will help me a lot.


Regards

Akbar


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 07:31:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88BVdvW013404
	GroupStudy Mailer; Mon, 8 Sep 2008 07:31:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88BVcth013402
	for securityxhiddenx; Mon, 8 Sep 2008 07:31:38 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88BVbeW013359 GroupStudy Mailer; Mon, 8 Sep 2008 07:31:37
  -0400
Received: by gxk13 with SMTP id 13so9133315gxk.6 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 04:31:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=zopXDK7s3hlc3sYFfk25TEef1sHgnDf3SlBfKw+RMUc=;
  b=msTXqSpMmEV7Q/Obnh8LKBA+fQxMt1XGscDib1tyhp0xldLEfxReika9diXrpcH50a
  W9MpjAal2bZinOkvGTDJItPrBSNlDGnhv1MhS2Q6EeJW7iHvTf/ZEg3quHh9Lo82+aBG
  UKujK0LbUganOfXZbHXfk/c9ioIgjJLfc6XvI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=x5LzgP7bWf3sp55jReycF3hJ72xRShQudGsmlIQYpwOME7Xs7BS+fJJSNm9cSDu2LJ
  5zKbhrpOjX74JXfAdO067oQUfvG/ZsMqXNgu/rWEDFujcwhtZsrrNOowfjDk7KjBemT5
  iy6idmHoqIDvCvoZGFDYmWERw/iZNc2ldJUYE=
Received: by 10.151.114.9 with SMTP id
  r9mr21195919ybm.108.1220873491903; Mon, 08 Sep 2008 04:31:31 -0700
  (PDT)
Received: by 10.151.109.18 with HTTP; Mon, 8 Sep 2008 04:31:31 -0700
  (PDT)
Message-ID: <eff3217d0809080431l51b50608h4e640b3f5ea34551@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 14:31:31 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Akbar Ali" <ccieaim@xxxxxxxxx>
Subject: Re: I Waste my time to find bugs
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <ab1dcfa0809080309y456fd748me5b94752cd5c07c7@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <ab1dcfa0809080309y456fd748me5b94752cd5c07c7@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/08 07:31:38)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

The bugs are a 'blessing' (in disguise). They will improve your verification
and troubleshooting skills.

Regards

Farrukh

On Mon, Sep 8, 2008 at 1:09 PM, Akbar Ali <ccieaim@xxxxxxxxx> wrote:

> Hi ,
>
> groups I am trying my lab , but sometime I waste my precious time due to
> bugs in the IOS or softwares , IS there any study mailing  list or link
> that
> will be helpfull for me to get the bugs .......
>
> your one reply will help me a lot.
>
>
> Regards
>
> Akbar


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 08:12:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88CCk21017644
	GroupStudy Mailer; Mon, 8 Sep 2008 08:12:46 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88CCki1017642
	for securityxhiddenx; Mon, 8 Sep 2008 08:12:46 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.158]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88CCjXH017622 GroupStudy Mailer; Mon, 8 Sep 2008 08:12:45
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1422953fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 05:12:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=J8Ubzgm5mZcjPAhFj5jul3+IrxRSvstXy0YLAtubCn0=;
  b=TGUSW25y934ODXju0VheGUamA8kGwO7JRpb2lqg5E6l5pUwXrGk43Bg4TSngyVJHm8
  FTmufbMzcgL7lVYEqXP6WIVxvO8MsaJmIPoxoNpI07abNIi9eVGqmo/f2pOYWt3B0VVP
  G+IuwvDUSozczmhTTVcryvBjVNtPewNZBsrEE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=fypJMpiWb1DIR9CyGbVRf+fduNPmGDGAFu8dNrdGAAojSA5LNwCmhC205tYn7B8XJ+
  +5puSMqle8h0F6fKFLX45u5bMpoNB9mzfhoKYQIjvwBEd+v0iOhYL8j5XwCSmYK+QKsw
  SIKwc0aZBI6P/RqoTVeihcOsgVNq7NLwG5HSk=
Received: by 10.86.27.9 with SMTP id a9mr11239327fga.57.1220875964316;
  Mon, 08 Sep 2008 05:12:44 -0700 (PDT)
Received: by 10.86.89.4 with HTTP; Mon, 8 Sep 2008 05:12:44 -0700 (PDT)
Message-ID: <c368f990809080512pfc7dbd1p538122261f9b232b@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 17:42:44 +0530
From: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Crypto isakmp profiles
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from vinod\.rathi@xxxxx\.com] (2008/09/08 08:12:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>

Hi,

I want to know under what possible scenarios to use "crypto isakmp profiles"
and "crypto keyring".

- Vinni


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 09:18:31 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88DIU8f025305
	GroupStudy Mailer; Mon, 8 Sep 2008 09:18:30 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88DIUtY025303
	for securityxhiddenx; Mon, 8 Sep 2008 09:18:30 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.187]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88DITKG025282 GroupStudy Mailer; Mon, 8 Sep 2008 09:18:29
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so994199tib.24 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 06:18:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=kUqi2iYRyYWE5kH2pfRD1H4zIrsrk0R5k4Kueu86sBc=;
  b=eIVIIkV7Plr7VHwR71FygtyIOHOlAiwZZ8SSw77Tw7Azy6UkSKK1t60hfOGyqUQXWY
  qCnZyXkJgVHaXVflX2PA7Qo4JZ44rhDHn0hsRKLut/i/2Oltx5+KywQPt+ABUKycc6rV
  JkkKlnoddCYWuyxeCBZTohWhIuYQmBHtKGU/Y=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=GLahqz/Vm2VheSTwXiohin6xEdeFgwz1BE35DKHdBeTYjF6dhWSktAf0Ii/Drqzh7w
  41s3/YLHd1Zq0prxfqug956Gd7OgmzMLEhu1jOJUmfjZSlO83JY4HExB6t2C814rDm9C
  vPBnTjqjbofu3V0oyIoH/H3X5DmLrBDLAiVPc=
Received: by 10.110.11.1 with SMTP id 1mr2817669tik.53.1220879907356;
  Mon, 08 Sep 2008 06:18:27 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Mon, 8 Sep 2008 06:18:27 -0700
  (PDT)
Message-ID: <f589772b0809080618vf5146bdwf3fac14d0ef0f950@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 16:18:27 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>
Subject: Re: Crypto isakmp profiles
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <c368f990809080512pfc7dbd1p538122261f9b232b@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <c368f990809080512pfc7dbd1p538122261f9b232b@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/08 09:18:30)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Instead of using the crypto key you can use crypto isakmple profiles where
you will call crpto keyring and then call crypto isakmp profiles in IPSEC
Profiles.

Cisco do have example on it

if u will not be able to find let me know

HTH


2008/9/8 Vinod Rathi <vinod.rathi@xxxxxxxxx>

> Hi,
>
> I want to know under what possible scenarios to use "crypto isakmp
> profiles"
> and "crypto keyring".
>
> - Vinni
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 09:50:35 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88DoZIa028755
	GroupStudy Mailer; Mon, 8 Sep 2008 09:50:35 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88DoZ8i028753
	for securityxhiddenx; Mon, 8 Sep 2008 09:50:35 -0400
Received: from an-out-0708.google.com (an-out-0708.google.com
  [209.85.132.242]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88DoYLe028732 GroupStudy Mailer; Mon, 8 Sep 2008 09:50:34
  -0400
Received: by an-out-0708.google.com with SMTP id c38so256459ana.3 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 06:50:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=EmBL7AfEmgfeHFpCA9EBQxObFWI+eZeATHR0guRhg+s=;
  b=NFL6c2/MZgj23hqPnpUC9Yc0yXNB0zZUaodxX0NhT85QOl+8x2XJ/hsiHdmDo8KTgG
  rKv3s5ukWOu91Nvspo4dctNIsiVyTzDfz8fur9it+Ng+1/zTKT4+ANP9Z3ec4tbLOs/+
  F1VbIxyAJpvumP0LDTMtHyO2gtIxt76i67TRw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=LcQ4hqNTfm3QzztyddRGhgkKPqyUkymMssbBpxoLss0j5EH0jifoTU4vDFro0b8cKo
  xQjH2unrFnqapZfUZnWEIEupe25NZ/6GsERWiGiBZHudBwMMnUOqmYO74DciNsB8qN4A
  aSkUW+9fgjdORsMjlrlTDi1eKIBpSme29PZ0U=
Received: by 10.100.41.9 with SMTP id o9mr15497957ano.84.1220881832908;
  Mon, 08 Sep 2008 06:50:32 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Mon, 8 Sep 2008 06:50:32 -0700
  (PDT)
Message-ID: <150f570d0809080650t2840c26aoe323a65687d275c5@xxxxxxxxxxxxxx>
Date: Mon, 8 Sep 2008 16:50:32 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: "Vinod Rathi" <vinod.rathi@xxxxxxxxx>
Subject: Re: Crypto isakmp profiles
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <c368f990809080512pfc7dbd1p538122261f9b232b@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <c368f990809080512pfc7dbd1p538122261f9b232b@xxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/08 09:50:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Hi,

Typically you use isakmp profiles when u have a mix of static IPSEC
peers, dynamic peers for EzVPN and perhaps DMVPN. the profiles enable
you to define isakmp specific parameters for the various peers u are
terminating. For more info have a look here

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6635/prod_white_paper0900aecd8034bd59.html

Thanks
George


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 11:55:02 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88Ft2oW008449
	GroupStudy Mailer; Mon, 8 Sep 2008 11:55:02 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88Ft2YP008447
	for securityxhiddenx; Mon, 8 Sep 2008 11:55:02 -0400
Received: from mail.the-moores.org (74-143-12-205.static.insightbb.com
  [74.143.12.205]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88Ft1aJ008421 GroupStudy Mailer; Mon, 8 Sep 2008 11:55:01
  -0400
Content-class: urn:content-classes:message
Subject: OT: free agency
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Mon, 8 Sep 2008 11:54:55 -0400
Message-ID: <CA63121B87B0FD40A4679064BCEC2302FCED@xxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: OT: free agency
Thread-Index: AckRxtsThRxEXvd4SDeFuA3k5x5y5gAAz4fA
From: "Rodgers Moore" <rodgers@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m88Ft1aJ008421
X-ASK-Info: Whitelist match [from rodgers@xxxxxxxxxx\.org] (2008/09/08 11:55:02)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Rodgers Moore" <rodgers@xxxxxxxxxxxxxx>

Sorry to post off topic...however, the jobs list looks abandoned. :)

Anyone ever "rent" out their CCIE# to a reseller?  I've heard of it, but
never seen it.  Does it really happen?  (Yes, I find myself in a
position where this may be possible)

Rodgers Moore, CCIE# 8153


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 14:49:42 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88Ingnl025770
	GroupStudy Mailer; Mon, 8 Sep 2008 14:49:42 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88Ingq5025768
	for securityxhiddenx; Mon, 8 Sep 2008 14:49:42 -0400
Received: from smtp104-mob.biz.mail.mud.yahoo.com
  (smtp104-mob.biz.mail.mud.yahoo.com [68.142.198.104]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m88InfZ8025744
  GroupStudy Mailer; Mon, 8 Sep 2008 14:49:41 -0400
Received: (qmail 88965 invoked from network); 8 Sep 2008 18:49:34 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=Received:X-YMail-OSG:X-Yahoo-Newman-Property:X-rim-org-msg-ref-id:Return-Receipt-To:Message-ID:Reply-To:X-Priority:Sensitivity:Importance:To:Subject:From:Date:Content-Type:MIME-Version;
  b=dpnpByvMNUk2bfMQb98d33eHH5IrdBM75tRO+mKs57vR4rGgnYik+Pje55x4rUJfCOJ5qr31xl5kkI1a8LRWVMtsPrs+n3kWvYqF0C/acvD/e53XQI6yTCVq+mpu9w6663nSTbJuXbn5n/PkSaylYAQNcSWNGL564mi4hj1UboE=
   ;
Received: from unknown (HELO bda402.bisx.prod.on.blackberry)
  (mi_locke@xxxxxxxxxxxxx with xymcookie) by
  smtp104-mob.biz.mail.mud.yahoo.com with SMTP; 8 Sep 2008 18:49:34
  -0000
X-YMail-OSG: QBOhPaQVM1liwQJmczWR0lEoVsCZrdeZHHsxuhv9HjuDqKCTk5GJycJ976mI85oZPrJS5fWqpPdmritZ76z_9eQv676U9Brm0a1y0i5UsX9fqOGJkTYBzHGflngRpyj8Lw--
X-Yahoo-Newman-Property: ymail-3
X-rim-org-msg-ref-id: 111679135
Message-ID: <111679135-1220899772-cardhu_decombobulator_blackberry.rim.net-2071022502-@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sensitivity: Normal
To: security@xxxxxxxxxxxxxx
Subject: Radius NAR
From: mi_locke@xxxxxxxxx
Date: Mon, 8 Sep 2008 18:49:44 +0000
Content-Type: text/plain
MIME-Version: 1.0
X-ASK-Info: Whitelist match [from mi_locke@xxxxx\.com] (2008/09/08 14:49:42)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: mi_locke@xxxxxxxxx

Hey all,
After authenticating to ACS using tacacs my NAR work as expected but I need downloadable ACLs. If I use radius the DL acls work but not the NAR. I don't think I am sending the proper radius attributes but can't find any good docs or examples. Any insight is much appreciated. 

ml
Sent from my Verizon Wireless BlackBerry


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 18:08:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88M8DYO010986
	GroupStudy Mailer; Mon, 8 Sep 2008 18:08:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88M8DXr010984
	for securityxhiddenx; Mon, 8 Sep 2008 18:08:13 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.185]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m88M8Bgp010963 GroupStudy Mailer; Mon, 8 Sep 2008 18:08:11
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so283658rnd.15 for
  <security@xxxxxxxxxxxxxx>; Mon, 08 Sep 2008 15:08:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:message-id:from:to
  :content-type:content-transfer-encoding:mime-version:subject:date:cc
  :x-mailer:sender; bh=BU1dfjEKeVcCfZhYnyMMLhEenp1qa6JOtBVrWq2Ei4o=;
  b=C/CP3QczzaH3CrRKdBIrfVq16oIxW9/SfuBFay/DPrOwm9tSCwECo9en/QlGTM8L8U
  qaiFXjfHXiuNx2mY+YSK3FSONxhN+9XFges033+0+Bsz/iqaRu2Az8RwDKvPjSsin2r/
  tZHFTqX9kPCTnD/VMCUI1sdZZJmHMt5V5Q9ic=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:content-type:content-transfer-encoding
  :mime-version:subject:date:cc:x-mailer:sender;
  b=j+sJxWo1Z3f4YxXBHaFSJnIzprM+awI5T2ytac3e9FOLMBJ2V2uEjg3XYZklc+U8qy
  qow4rSovz/5JL7aCewaPqh8uuqWZwvk1O0wK6mUWlOPNLNN74SnyOqU76TvMB5MPULOB
  E/dJK5h3FnX3FPWS7O3tCEhlwI7UT7oIxRRm4=
Received: by 10.114.169.20 with SMTP id
  r20mr12998716wae.198.1220911688547; Mon, 08 Sep 2008 15:08:08 -0700
  (PDT)
Received: from ?192.168.1.206? ( [64.105.86.250]) by mx.google.com with
  ESMTPS id m34sm5490106waf.20.2008.09.08.15.08.06 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Mon, 08 Sep 2008 15:08:07 -0700 (PDT)
Message-Id: <C86BDD36-E490-42AF-9C81-CBFD72FB02EF@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Cisco certification <security@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Reflector Ports
Date: Mon, 8 Sep 2008 15:08:05 -0700
Cc: ccie_security@xxxxxxxxxxxxxxxxxxx
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/08 18:08:13)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

I noticed on the IPexpert Proctor guide solution for Sections 15 lab  
that they use the reflector port option.  I dont have that option.  is  
this just a version thing?
Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 19:56:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88NustZ020362
	GroupStudy Mailer; Mon, 8 Sep 2008 19:56:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m88NusgJ020360
	for securityxhiddenx; Mon, 8 Sep 2008 19:56:54 -0400
Received: from mailmx.sarcom.com (mailmx.sarcom.com [208.65.133.23]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m88NurwW020339
  GroupStudy Mailer; Mon, 8 Sep 2008 19:56:53 -0400
Received: from unknown (HELO VEXCH01.sarcom.sarcom.net)
  ([10.206.68.127]) by mailmx.sarcom.com with ESMTP; 08 Sep 2008
  19:56:45 -0400
Content-class: urn:content-classes:message
Subject: RE: Reflector Ports
Date: Mon, 8 Sep 2008 19:51:45 -0400
Message-ID: <AA08291C0AB3EA47984C37B34B74513D15E5E3EB@xxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <C86BDD36-E490-42AF-9C81-CBFD72FB02EF@xxxxxxxxxxx>
Thread-Topic: Reflector Ports
Thread-Index: AckSB7k1SCpm6nWNQwKMeihxhvZTzAABcv9g
References: <C86BDD36-E490-42AF-9C81-CBFD72FB02EF@xxxxxxxxxxx>
From: "Hough, Earl" <Earl.Hough@xxxxxxxxxx>
To: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>,
        "Cisco
  certification" <security@xxxxxxxxxxxxxx>
Cc: <ccie_security@xxxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
X-ASK-Info: Whitelist match [from earl\.hough@xxxxxx\.com] (2008/09/08 19:56:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Hough, Earl" <Earl.Hough@xxxxxxxxxx>

If you do a search on www.cisco.com for "reflector ports" you'll various
platforms require that configuration in order to do a port SPAN.  Not
all platforms require it.  This is a topic which has been discussed
quite frequently over the past couple of years on GroupStudy.  If you
look in the archives you'll find the threads.

Earl Hough
CCIE #16508 (R&S/Security)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Monday, September 08, 2008 6:08 PM
To: Cisco certification
Cc: ccie_security@xxxxxxxxxxxxxxxxxxx
Subject: Reflector Ports

I noticed on the IPexpert Proctor guide solution for Sections 15 lab  
that they use the reflector port option.  I dont have that option.  is  
this just a version thing?
Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me


_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

The information contained in this transmission is confidential. It is
intended solely for the use of the individual(s) or organization(s) to
whom it is addressed. Any disclosure, copying or further distribution is
not permitted unless such privilege is explicitly granted in writing by
SARCOM, Inc. Furthermore, SARCOM, Inc. is not responsible for the
proper and complete transmission of the substance of this
communication, nor for any delay in its receipt. 


From security-owner@xxxxxxxxxxxxxx Mon Sep  8 20:38:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m890chq6022645
	GroupStudy Mailer; Mon, 8 Sep 2008 20:38:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m890ch9h022643
	for securityxhiddenx; Mon, 8 Sep 2008 20:38:43 -0400
Received: from mail.emanon.com (mail.emanon.com [208.77.184.35]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m890cgLg022623
  GroupStudy Mailer; Mon, 8 Sep 2008 20:38:42 -0400
Received: from 74-143-192-23.static.insightbb.com
  (74-143-192-23.static.insightbb.com [74.143.192.23]) by
  mail.emanon.com (GMS 14.00.3509/NT1887.00.09f8c76b) with ESMTP id
  hvudiaaa for security@xxxxxxxxxxxxxx; Mon, 8 Sep 2008 20:40:09 -0400
From: "Scott Morris" <swm@xxxxxxxxxx>
To: "'Brandon Carroll'" <brandon.carroll@xxxxxxxxxxx>,
        "'Cisco
  certification'" <security@xxxxxxxxxxxxxx>
Cc: <ccie_security@xxxxxxxxxxxxxxxxxxx>
References: <C86BDD36-E490-42AF-9C81-CBFD72FB02EF@xxxxxxxxxxx>
Subject: RE: Reflector Ports
Date: Mon, 8 Sep 2008 20:38:38 -0400
Organization: Emanon.com, Inc.
Message-ID: <00b701c91214$668aad20$800610ac@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <C86BDD36-E490-42AF-9C81-CBFD72FB02EF@xxxxxxxxxxx>
Thread-Index: AckSBoUqdF04VvhZQS+BCRe4l2SdzQADbmiw
X-Originating-IP: [74.143.192.23]
X-DNSBL: 0
X-AntiSpam: Checked for restricted content by Gordano's AntiSpam
  Software
X-ASK-Info: Whitelist match [from swm@xxxxxx\.com] (2008/09/08 20:38:43)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Scott Morris" <swm@xxxxxxxxxx>

It's a switch thing.

3550's have it (and require it) due to ASIC allocation per port.

3560's and 3750's do NOT have it due to ASIC allocation per chassis,
on-demand.

HTH,


Scott Morris, CCIE4 #4713, JNCIE-M #153, JNCIS-ER, CISSP, et al.
CCSI/JNCI-M/JNCI-ER
Senior CCIE Instructor

smorris@xxxxxxxxxxxxxxxxxxxxxx

 

Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Outside US: 775-826-4344
Online Community: GS doesn't like the other communities.  But users do!
CCIE Blog: blogging can explain LOTS of things!

Knowledge is power. 
Power corrupts. 
Study hard and be Eeeeviiiil......
 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Monday, September 08, 2008 6:08 PM
To: Cisco certification
Cc: ccie_security@xxxxxxxxxxxxxxxxxxx
Subject: Reflector Ports

I noticed on the IPexpert Proctor guide solution for Sections 15 lab that
they use the reflector port option.  I dont have that option.  is this just
a version thing?
Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 07:47:30 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89BlUgE011783
	GroupStudy Mailer; Tue, 9 Sep 2008 07:47:30 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89BlUZe011781
	for securityxhiddenx; Tue, 9 Sep 2008 07:47:30 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.186]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89BlTGM011735 GroupStudy Mailer; Tue, 9 Sep 2008 07:47:29
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1291129tib.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 04:47:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=jgh9LVIUKURx5t+P2gF6TJPixhtc3tUnETSBS2nDXlI=;
  b=xbEFt9z/S84UPiwxSbSD69ZznNniirz1ajQ9W+8rx6koXCr78SkKC3cqITBrJj1ey9
  4qV4pqpZUIpnAJVNnsIz1c+QiFJ4QnmAk8bsQ8Cb9XKZ8Bz3yw0OJltT4uOyK0iczuVP
  i4xUGfMcSBNUnDJ3Yb5yHv2W8KoPlo6w4bNX0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=LcyGmFFh1pqINBNAI7A/9SUDm6FPeNDNn51WPBzuqfEaOJ9ku5DHqWAkTpCTuFYHak
  ynBFkAU+odcyG3LFcuAqKBlqlRyH96Q46zINRjgKXriNMndaK9H2mwa7xErDFJHi0Eq/
  DdmDXy/ZN+/NU3gcKfFqUEFXp6bAPSOuBB/X4=
Received: by 10.110.26.20 with SMTP id 20mr21854306tiz.23.1220960847416;
  Tue, 09 Sep 2008 04:47:27 -0700 (PDT)
Received: by 10.110.31.13 with HTTP; Tue, 9 Sep 2008 04:47:27 -0700
  (PDT)
Message-ID: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
Date: Tue, 9 Sep 2008 14:47:27 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
Subject: Block or Limit Skype using IPS
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/09 07:47:30)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Dear All,

I want to know can we block or limit SKYPE using Cisco IPS (6.x) or Mcafee
IPS (4.1).?

Any inputs/info will be helful

Thanks


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 08:39:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89Cd1SO017692
	GroupStudy Mailer; Tue, 9 Sep 2008 08:39:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89Cd1Ls017690
	for securityxhiddenx; Tue, 9 Sep 2008 08:39:01 -0400
Received: from blu0-omc1-s3.blu0.hotmail.com
  (blu0-omc1-s3.blu0.hotmail.com [65.55.116.14]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m89Cd0wH017661 GroupStudy
  Mailer; Tue, 9 Sep 2008 08:39:00 -0400
Received: from BLU111-W1 ([65.55.116.8]) by
  blu0-omc1-s3.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Tue, 9 Sep 2008 05:38:54 -0700
Message-ID: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [87.101.245.41]
From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: CSS11506 Problem
Date: Tue, 9 Sep 2008 12:38:53 +0000
MIME-Version: 1.0
X-OriginalArrivalTime: 09 Sep 2008 12:38:54.0947 (UTC)
  FILETIME=[05814330:01C91279]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from falbaridi@xxxxxxx\.com] (2008/09/09 08:39:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>

Hi all,

Can anyone help me in a problem in the load balancer CSS11506? I am connecting
two servers in the same circuit VLAN1, and I gave the circuit VLAN1 an IP
address. Both servers can ping each other, but when I telnet from one to
another using port 25 (SMTP) it fails. When i connected the same servers to a
flat L2 switch telnet with port 25 was successful. Till now I didn't do any
load balancing or content switching configuration. Is there any thing blocks
port 25 by default? Please if anyone can help me.

Many thanks,

Alfadi Albaridi

_________________________________________________________________
Stay up to date on your PC, the Web, and your mobile phone with Windows Live.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 09:07:27 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89D7RlH020916
	GroupStudy Mailer; Tue, 9 Sep 2008 09:07:27 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89D7RNG020914
	for securityxhiddenx; Tue, 9 Sep 2008 09:07:27 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.190]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89D7QiC020893 GroupStudy Mailer; Tue, 9 Sep 2008 09:07:26
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so531485rnd.15 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 06:07:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=gUELXdXDFWQg01zOh8iLFWUPORB2rAwX4LSV6r87fuU=;
  b=jXUaBPXDEW1NTAqki73BhzCHZrff3LPxJPuR0S6Css9fXbuaEw6kbRK377dpRJB/tI
  jVxlOSDDxpA1I3J0yxLOa9F2wHmxgePl1j5ZwkamXiF+xqjtniiEB1UC/mYJEyvsLrku
  t4I5Pz9TfrWQzQY7mtDXI19qFkIPMANHhDXzo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=UJmCx5oacTO6kghtgeGxPiuKFCUkSR1APN8XPhJ28AH3ySNOG5o5P/QNDt/YeFbwwf
  b0WVK7u2AEPIXXhk7KcnOI+xvxDeVngeaa+gbPTR/3MT++KLamHawmANF2AtyRkZG2h+
  Yp9V60ArraxpVSzMnNFeWZXDLAlHFvm1sW4yQ=
Received: by 10.100.247.14 with SMTP id u14mr807489anh.73.1220965645257;
  Tue, 09 Sep 2008 06:07:25 -0700 (PDT)
Received: by 10.100.45.3 with HTTP; Tue, 9 Sep 2008 06:07:25 -0700 (PDT)
Message-ID: <e22bfc9b0809090607q2ac4dc2bubd7de3943e96cf74@xxxxxxxxxxxxxx>
Date: Tue, 9 Sep 2008 09:07:25 -0400
From: "Jason W. Miller" <jaymiller5@xxxxxxxxx>
To: "Alfadi Albaridi" <falbaridi@xxxxxxxxxxx>
Subject: Re: CSS11506 Problem
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from jaymiller5@xxxxx\.com] (2008/09/09 09:07:27)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Jason W. Miller" <jaymiller5@xxxxxxxxx>

Do a "show rule-summary" and post it here.



On Tue, Sep 9, 2008 at 8:38 AM, Alfadi Albaridi <falbaridi@xxxxxxxxxxx>wrote:

> Hi all,
>
> Can anyone help me in a problem in the load balancer CSS11506? I am
> connecting
> two servers in the same circuit VLAN1, and I gave the circuit VLAN1 an IP
> address. Both servers can ping each other, but when I telnet from one to
> another using port 25 (SMTP) it fails. When i connected the same servers to
> a
> flat L2 switch telnet with port 25 was successful. Till now I didn't do any
> load balancing or content switching configuration. Is there any thing
> blocks
> port 25 by default? Please if anyone can help me.
>
> Many thanks,
>
> Alfadi Albaridi
>
> _________________________________________________________________
> Stay up to date on your PC, the Web, and your mobile phone with Windows
> Live.
> http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/
>
>


-- 
Jason W. Miller
A. P. Herbert  - "A high-brow is someone who looks at a sausage and thinks
of Picasso."


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 09:24:07 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89DO73d022891
	GroupStudy Mailer; Tue, 9 Sep 2008 09:24:07 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89DO7ll022889
	for securityxhiddenx; Tue, 9 Sep 2008 09:24:07 -0400
Received: from affirmedsystems.com (affirmedsystems.com
  [216.169.146.182]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m89DO5vF022850 GroupStudy Mailer; Tue, 9 Sep 2008 09:24:06
  -0400
Received: (qmail 8942 invoked from network); 9 Sep 2008 13:23:59 -0000
Received: from [12.196.12.203] (LOCAL [216.169.146.182]) (HELO
  dfaremote) (joe@xxxxxxxxxxxxxxx:com) by juvestra with SMTP; 9 Sep 2008
  13:23:59 -0000 (1220966639.519269)
From: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>
To: "'Muhammad Nasim'" <muhammad.nasim@xxxxxxxxx>,
        "'Cisco
  certification'" <security@xxxxxxxxxxxxxx>,
        "'Cisco  certification'"
  <ccielab@xxxxxxxxxxxxxx>
References: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
Subject: RE: Block or Limit Skype using IPS
Date: Tue, 9 Sep 2008 09:23:47 -0400
Message-ID: <CA7849344F6342ACBBD2820165F2AB8F@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
Thread-Index: AckScenOfFgA4p9DTqONw4xupZvj2AADSvSw
X-ASK-Info: Whitelist match [from joe@xxxxxxxxxxxxxxx\.com] (2008/09/09 09:24:07)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>

No. Skype is too smart.

You need something like the LATEST BLUECOAT or VERSO box to do this...

Perhaps some of your colleagues know how they block it UAE. I hear ALL voip
is successfully blocked there?

A better option is a MS Active Directory group policy limiting what apps can
run on the desktop, etc. 

-Joe

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Muhammad Nasim
Sent: Tuesday, September 09, 2008 7:47 AM
To: Cisco certification; Cisco certification
Subject: Block or Limit Skype using IPS

Dear All,

I want to know can we block or limit SKYPE using Cisco IPS (6.x) or Mcafee
IPS (4.1).?

Any inputs/info will be helful

Thanks


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 09:52:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89Dqh6c027014
	GroupStudy Mailer; Tue, 9 Sep 2008 09:52:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89Dqhnb027012
	for securityxhiddenx; Tue, 9 Sep 2008 09:52:43 -0400
Received: from nf-out-0910.google.com (nf-out-0910.google.com
  [64.233.182.184]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89DqcwS026966 GroupStudy Mailer; Tue, 9 Sep 2008 09:52:38
  -0400
Received: by nf-out-0910.google.com with SMTP id c10so668832nfd.44 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 06:52:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:references
  :subject:date:mime-version:content-type:content-transfer-encoding
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  bh=YotxhJF/7hdVbtniyCRk4jNDoqBxUPpqd5OLd0YaMuY=;
  b=AhoYEjHLGaGFFxrEcIsFWFRx3pv/AzwW5jh1rKZKews9jthTNAx6KTLarHgYXWbGy6
  I289qefFmQQcz07eL47duyF04u2p6v565M98RS17GlFlP/vG2GheIqi3FpvLPkYVMjqV
  nHPGsblD6s6xyuKB1Q9lcaH+NsrFpNYwhkFRw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:references:subject:date:mime-version
  :content-type:content-transfer-encoding:x-priority:x-msmail-priority
  :x-mailer:x-mimeole;
  b=NUwDWkWYwd/T5DECZeodcXO/pcTyjRDcN8cDdnsyCH8kadCxOn3ViD/xgsVgIUot4A
  EsE7xMUMTJTOT5AfiphFWkMTc4YeRxgrg7dM4l13aGrmuE3zyysiC4RFN34b0RXYJWHd
  MnWgP1QIjDkHagvWFOA1133NHV61spwNEZ1nA=
Received: by 10.210.115.15 with SMTP id
  n15mr1114497ebc.28.1220968356758; Tue, 09 Sep 2008 06:52:36 -0700
  (PDT)
Received: from pc1 ( [84.23.111.166]) by mx.google.com with ESMTPS id
  3sm6853261eyi.5.2008.09.09.06.52.32 (version=SSLv3 cipher=RC4-MD5);
  Tue, 09 Sep 2008 06:52:35 -0700 (PDT)
Message-ID: <000e01c91283$4be5fff0$0100a8c0@xxx>
From: "Basel Al Sharif" <basel.sharif@xxxxxxxxx>
To: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>,
        "'Muhammad Nasim'"
  <muhammad.nasim@xxxxxxxxx>,
        "'Cisco  certification'"
  <security@xxxxxxxxxxxxxx>,
        "'Cisco  certification'"
  <ccielab@xxxxxxxxxxxxxx>
References: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
  <CA7849344F6342ACBBD2820165F2AB8F@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Block or Limit Skype using IPS
Date: Tue, 9 Sep 2008 16:52:21 +0300
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-ASK-Info: Our key was found in the mail (2008/09/09 09:52:43)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Basel Al Sharif" <basel.sharif@xxxxxxxxx>

the best solution to limit or block such applications is Cisco Service 
Control Engine.

it is very good box for DPI. in UAE they are using this to limit P2P and 
VOIP.

http://www.cisco.com/en/US/prod/collateral/ps7045/ps6129/ps6133/ps6150/prod_white_paper0900aecd8023500d_ps6151_Products_White_Paper.html


http://www.cisco.com/en/US/prod/collateral/ps7045/ps6129/ps6133/ps6151/prod_white_paper0900aecd802b0756.html

2 boxes available from Cisco 2020 which is for service providers and 1010 is 
more for enterprises and Data Centers.



Regards,
Basel


----- Original Message ----- 
From: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>
To: "'Muhammad Nasim'" <muhammad.nasim@xxxxxxxxx>; "'Cisco certification'" 
<security@xxxxxxxxxxxxxx>; "'Cisco certification'" <ccielab@xxxxxxxxxxxxxx>
Sent: Tuesday, September 09, 2008 4:23 PM
Subject: RE: Block or Limit Skype using IPS


> No. Skype is too smart.
>
> You need something like the LATEST BLUECOAT or VERSO box to do this...
>
> Perhaps some of your colleagues know how they block it UAE. I hear ALL 
> voip
> is successfully blocked there?
>
> A better option is a MS Active Directory group policy limiting what apps 
> can
> run on the desktop, etc.
>
> -Joe
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Muhammad Nasim
> Sent: Tuesday, September 09, 2008 7:47 AM
> To: Cisco certification; Cisco certification
> Subject: Block or Limit Skype using IPS
>
> Dear All,
>
> I want to know can we block or limit SKYPE using Cisco IPS (6.x) or Mcafee
> IPS (4.1).?
>
> Any inputs/info will be helful
>
> Thanks
>
>
> -- 
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 10:11:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89EBCfQ029296
	GroupStudy Mailer; Tue, 9 Sep 2008 10:11:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89EBC48029294
	for securityxhiddenx; Tue, 9 Sep 2008 10:11:12 -0400
Received: from web36908.mail.mud.yahoo.com (web36908.mail.mud.yahoo.com
  [209.191.85.76]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m89EBBIT029269 GroupStudy Mailer; Tue, 9 Sep 2008 10:11:11
  -0400
Received: (qmail 83028 invoked by uid 60001); 9 Sep 2008 14:11:05 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=N1eVnFVvao2z+B7QWS0JEV0ewdmvdpKmBDGzJhpe0WGr3L0TKmUNYsNx83nnq4LVQ8xOnKmcG6AEfZQxHR3Hyf6unnZopD3BAP1r2MsPHsrSS02KC9VwMA3ra8LJgJ8nLRGZnu+PFYx5uLS8HdwtTG97RWf5srwQG4Iv/m+ntNs=;
X-YMail-OSG: FYBudWYVM1m93LIhRUoy.0oBrM6CPmOMaQXdVt4XX0DZDiXrPe29vkvIWwiTL.5lVElJcVjk76z1PzZwcvZahKfkr3EHpUf5qvmI.hcEB2l5GmVtVG6vvmpnAm8RVGaNcJYK0fXWMHmgEV7Smgk7RSiL
Received: from [148.177.1.211] by web36908.mail.mud.yahoo.com via HTTP;
  Tue, 09 Sep 2008 07:11:04 PDT
X-Mailer: YahooMailRC/1096.28 YahooMailWebService/0.7.218.2
Date: Tue, 9 Sep 2008 07:11:04 -0700 (PDT)
From: vpvprometric <vpvprometric@xxxxxxxxx>
Subject: Re: CSS11506 Problem
To: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>, security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-ID: <997051.82306.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from vpvprometric@xxxxx\.com] (2008/09/09 10:11:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: vpvprometric <vpvprometric@xxxxxxxxx>

Is the CSS in one arm more - SMTP is L4 and ICMP is L3. Do you have no redirects under vlan1. ANyways, best is to cut paste the config. Thanks.
-V



----- Original Message ----
From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
To: security@xxxxxxxxxxxxxx
Sent: Tuesday, September 9, 2008 8:38:53 AM
Subject: CSS11506 Problem

Hi all,

Can anyone help me in a problem in the load balancer CSS11506? I am connecting
two servers in the same circuit VLAN1, and I gave the circuit VLAN1 an IP
address. Both servers can ping each other, but when I telnet from one to
another using port 25 (SMTP) it fails. When i connected the same servers to a
flat L2 switch telnet with port 25 was successful. Till now I didn't do any
load balancing or content switching configuration. Is there any thing blocks
port 25 by default? Please if anyone can help me.

Many thanks,

Alfadi Albaridi

_________________________________________________________________
Stay up to date on your PC, the Web, and your mobile phone with Windows Live.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 12:20:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89GK4vF010620
	GroupStudy Mailer; Tue, 9 Sep 2008 12:20:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89GK4Fk010618
	for securityxhiddenx; Tue, 9 Sep 2008 12:20:04 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.156]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89GK2Sk010578 GroupStudy Mailer; Tue, 9 Sep 2008 12:20:02
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so1194181yxi.84 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 09:20:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=Z29/8UIM+7BLDBTvDuUpVN46HS8vCbGKMWPXVJkWWeY=;
  b=jhDNEQqN3Mxi7qW8tis2QCw24wwCD2tU5swDilwfxEd9LTuyPf0x/Rc+otXBsQ6M07
  7LZIpPzcVNeQiGnBKR9d90fx++4Aet4zQSNRul6s2shB4EvYNbzJ3CwbIQN/xyE9yhQl
  QT2qEYF+qer+UPabnJ0aLSOkoYDxFqDFpbMwY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=StWBSVgVH52dTNL2ARKzFpuQu0jVlNSt3cBSLCHgncuzMahq5WsY76wuSMrX6Gvvgv
  ZmJc5b4OXpJdqqSIXLdxby34v5fL9ijIlQtCEhMuHhNQwTe4jypr5JEs62EQ610cKcrT
  MlYhPCX8fut4+1LVfJOGt0PaVmFjE1d6eUKok=
Received: by 10.142.242.8 with SMTP id p8mr5836176wfh.176.1220977200216;
  Tue, 09 Sep 2008 09:20:00 -0700 (PDT)
Received: by 10.142.139.20 with HTTP; Tue, 9 Sep 2008 09:20:00 -0700
  (PDT)
Message-ID: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
Date: Tue, 9 Sep 2008 21:50:00 +0530
From: "Akbar Ali" <ccieaim@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: changing password through VPN+AAA
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ccieaim@xxxxx\.com] (2008/09/09 12:20:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Akbar Ali" <ccieaim@xxxxxxxxx>

Hi Groups ,

Can any one  help me i am trying for last some day i tried all cisco.com but
i couldn't find the solution , I am  stuck in the senario , where I  want to
change the password of users who are through VPN and authenticated with AAA
, becoz everytime they have to telnet and change the password , is there any
other way like UCP or something ,
through which they can change the password without telneting to ASA .

I Appreciate if anyone can help me to overcome this problem.

Regards

Akbar Ali


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 12:21:48 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89GLmDA010818
	GroupStudy Mailer; Tue, 9 Sep 2008 12:21:48 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89GLmjO010816
	for securityxhiddenx; Tue, 9 Sep 2008 12:21:48 -0400
Received: from n5d.bullet.mail.ac4.yahoo.com
  (n5d.bullet.mail.ac4.yahoo.com [76.13.13.89]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with SMTP id m89GJKxa010439 GroupStudy
  Mailer; Tue, 9 Sep 2008 12:19:20 -0400
Received: from [76.13.13.26] by n5.bullet.mail.ac4.yahoo.com with NNFMP;
  09 Sep 2008 16:19:13 -0000
Received: from [76.13.10.177] by t3.bullet.mail.ac4.yahoo.com with
  NNFMP; 09 Sep 2008 16:19:13 -0000
Received: from [127.0.0.1] by omp118.mail.ac4.yahoo.com with NNFMP; 09
  Sep 2008 16:19:13 -0000
X-Yahoo-Newman-Property: ymail-5
X-Yahoo-Newman-Id: 840883.40372.bm@xxxxxxxxxxxxxxxxxxxxxxxxx
Received: (qmail 22182 invoked by uid 60001); 9 Sep 2008 16:19:13 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=0ZppBoJ0ppPlNIutLjI/1y2qCUDzOgbBZNllPvuF1wcznh+Ict+tqtrM8LuWEAzRtmRswX6wGYkyRRqTsbEDiwflVAMigabj2IFch8hjKai25ABCAIcN/aIjG0dMX652pk/uA7OK7VqcIY3rb3AjNV7OAAe1hnxjSys0oB+iofc=;
X-YMail-OSG: wqVm4BEVM1mfDFlLBxnfduTs_H0oCNBQ4tPDug4mJCEg8coyS0WFhDxC88BB7Le4C0900kdZ08Gutj4D9I1Ptz6Me4Dwzp60HXT8K0bANg--
Received: from [66.169.89.135] by web59616.mail.ac4.yahoo.com via HTTP;
  Tue, 09 Sep 2008 09:19:13 PDT
X-Mailer: YahooMailRC/1096.28 YahooMailWebService/0.7.218.2
Date: Tue, 9 Sep 2008 09:19:13 -0700 (PDT)
From: Steven Jenkins <steven.jenkins72@xxxxxxxxx>
Subject: EZVPN / upcoming changes in lab
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <394009.21869.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/09 12:19:21)
X-ASK-Info: Confirmed by User (2008/09/09 12:21:47)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Steven Jenkins <steven.jenkins72@xxxxxxxxx>

Hello,

Pretty easy question, I just need confirmation on ... if you have an
ASA configured for EZVPN remote client than it isn't able to participate in
any other IPSec VPNs correct?  Can it allow a remote access SSL VPN
connection?

If and when they change to lab to ASA8.0 code, will they have to
allow use of the ASDM dues to some SSL VPN features?  I suppose another way I
could ask that is ... Are DAP policies configurable via the CLI?

thanks in
advance,

S. Jenkins 


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 12:48:09 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89Gm9QP012720
	GroupStudy Mailer; Tue, 9 Sep 2008 12:48:09 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89Gm9si012718
	for securityxhiddenx; Tue, 9 Sep 2008 12:48:09 -0400
Received: from smtp19.orange.fr (smtp19.orange.fr [80.12.242.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89Gm81k012691
  GroupStudy Mailer; Tue, 9 Sep 2008 12:48:09 -0400
Received: by mwinf1905.orange.fr (SMTP Server) id 650025C2E336; Tue,  9
  Sep 2008 17:53:23 +0200 (CEST)
Date: Tue,  9 Sep 2008 17:53:23 +0200 (CEST)
X-ME-UUID: 20080908080959598.9205D1C00099@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080909155323.650025C2E336@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/09 12:48:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf1905.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<hotwheelsguy@xxxxxxxx>: connect to outb.com[69.25.47.166]: Connection timed
    out

<kellym@xxxxxxxx>: connect to outb.com[69.25.47.166]: Connection timed out

<logodle@xxxxxxxx>: connect to outb.com[69.25.47.166]: Connection timed out

<nasworthyk@xxxxxxxx>: connect to outb.com[69.25.47.166]: Connection timed out
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 469445C0A86D
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Mon,  8 Sep 2008 10:10:20 +0200 (CEST)

Final-Recipient: rfc822; hotwheelsguy@xxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to outb.com[69.25.47.166]: Connection
    timed out

Final-Recipient: rfc822; kellym@xxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to outb.com[69.25.47.166]: Connection
    timed out

Final-Recipient: rfc822; logodle@xxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to outb.com[69.25.47.166]: Connection
    timed out

Final-Recipient: rfc822; nasworthyk@xxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to outb.com[69.25.47.166]: Connection
    timed out
Received: from smtp19.orange.fr (mwinf1914 [172.22.129.42]) by
  mwinf1905.orange.fr (SMTP Server) with ESMTP id 469445C0A86D; Mon,  8
  Sep 2008 10:10:20 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1914.orange.fr (SMTP Server) with ESMTP id 094EF1C000BC; Mon,  8
  Sep 2008 10:10:00 +0200 (CEST)
Received: from srv-tse (LMontsouris-152-61-29-170.w80-13.abo.wanadoo.fr
  [80.13.157.170]) by mwinf1914.orange.fr (SMTP Server) with SMTP id
  9205D1C00099; Mon,  8 Sep 2008 10:09:59 +0200 (CEST)
X-ME-UUID: 20080908080959598.9205D1C00099@xxxxxxxxxxxxxxxxxxx
Message-ID: <003b01c911ee$bf607b62$f5cb45f3@xxxxx>
From: "=?windows-1251?B?T2xp?=" <security@xxxxxxxxxxxxxx>
To: <hotwheelsguy@xxxxxxxx>, <kellym@xxxxxxxx>, <logodle@xxxxxxxx>,
  <nasworthyk@xxxxxxxx>
Subject: =?windows-1251?B?TG9va2luZyBmb3IgdGhlIG1hbiB0aGF0IGNhbiAiRklORCBNRSI=?=
Date: Mon, 8 Sep 2008 10:09:50 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000

Good day, dear

Are you looking for your match or may be you are the person I am looking 
for? Sense of humor about yourself and the world around you - these are 
your key qualities. You do not sweat the small things because there is 
really no point. You have a strong family connection and a loyalty to 
your friends that cannot be broken. You know what you want and are not 
afraid to say it. If you think you fit this description, drop me a line. 
I would live to talk to you. I am here: www.lovefemale.net/myhoney/

Have a good mood
Olli


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 14:04:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89I4pGG022228
	GroupStudy Mailer; Tue, 9 Sep 2008 14:04:51 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89I4pur022226
	for securityxhiddenx; Tue, 9 Sep 2008 14:04:51 -0400
Received: from fk-out-0910.google.com (fk-out-0910.google.com
  [209.85.128.188]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89I4ns2022206 GroupStudy Mailer; Tue, 9 Sep 2008 14:04:50
  -0400
Received: by fk-out-0910.google.com with SMTP id f33so1792872fkf.14 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 11:04:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=Gm1PtOE9IkU8LhY5ed7GZg4eqzVav0AuFD4DvgeHd8s=;
  b=JphdkMUjWMDf0tOTwFJTDfAnFLNCN0TSKhzQuhBfgZpRuDXz8+zLsjePgXs0/5y/v0
  mfmPWhUjMMIYCj4zRiERaeqWvH63FMtJH9dlKgDYjoaTYSXnC4bzpsGtIYT6EaAXic2e
  +RyIVfx2B849LeE9Y+1oqvrDQBE7/nELBBm7w=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=jckh3Mgxo5mUxV+dOJiTH2AuQK3hOQC3Vz5m2ihB4225w30Nnsla5T62kZUxqQVxT5
  bohFDm4ZNEhla8iIJWF8gmBSpCBFXgHvSUKmnL8dm9fnhYzJAxSTyU3DSLHK8OC29CPw
  jz8TWtMvBheNifHrP2NBVJJaId4CIlA70vB9Y=
Received: by 10.187.212.1 with SMTP id o1mr6504faq.30.1220983484677;
  Tue, 09 Sep 2008 11:04:44 -0700 (PDT)
Received: by 10.210.39.14 with HTTP; Tue, 9 Sep 2008 11:04:44 -0700
  (PDT)
Message-ID: <dffd2e730809091104k50214dbt225efecad7ac0992@xxxxxxxxxxxxxx>
Date: Tue, 9 Sep 2008 11:04:44 -0700
From: Hoogen <hoogen82@xxxxxxxxx>
To: "Basel Al Sharif" <basel.sharif@xxxxxxxxx>
Subject: Re: Block or Limit Skype using IPS
Cc: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>,
        "Muhammad Nasim"
  <muhammad.nasim@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>,
        "Cisco certification"
  <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <000e01c91283$4be5fff0$0100a8c0@xxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
  <CA7849344F6342ACBBD2820165F2AB8F@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <000e01c91283$4be5fff0$0100a8c0@xxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from hoogen82@xxxxx\.com] (2008/09/09 14:04:51)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Hoogen <hoogen82@xxxxxxxxx>

This was my post sometime back in the netpro forum when I used to work with
cisco products.I am sure it would apply to Skype as well.

Doing a signature search yielded this

ntelliShield Alerts
------------------------------
*IntelliShield ID**Headline**Version**Last Published*9932Intelligence
Bulletin: Skype as a Security Risk in Enterprise Networks126 Oct 2005 03:13
PM EDTSo you show be able to turn on the signature and block the traffic.
Not sure if it works but it should.

Hi,

I kind of tried looking around for a solution for your problem the only
thing I seem to come up with is Custom signature.

I picked up something for Kazaa a p2p application. THe first thing is that
you need to capture those packets using ethereal or any packet sniffer
tools. Pick up a sample traffic. Look for something in the traffic sample
that will identify the Kazaa application.

Signature identify key parts of the traffic which wouldn't change. For Kazaa
the payload seems to have the same last 6 bytes in multiple captures.

Traffic characteristics, usually an UDP packet, Payload always ends with the
same 6 bytes, payload ends in "kazaa" followed by null (ox00)

Custom Signature Settings
- Engine: ATOMIC.IP
- L4 Protocol of UDP
- Payload Regex: [Kk][Aa][Zz][Aa][Aa]\x00

Create a custom signature based on this:

In event action you could ask for a Produce Verbose alert. Specify the Layer
4 protocol. Use the Payload inspection to specify the regex.

Leave the signature turned on for atleast a week or two. And check for
results.

But you have pre-defined signatures too for p2p traffic clients like

Kazaa 5534 sub sig id 0,1,&2.
Bittorent 11020,11030.
edonkey 11018.

MOst engines doing this inspection would be string.tcp or atomic.ip.

You can search your signature details in this site and then tune the
signature to deny the connection inline.

http://tools.cisco.com/MySDN/Intelligence/searchSignatures.x<javascript:newWin('http://tools.cisco.com/MySDN/Intelligence/searchSignatures.x')>


HTH
Hoogen


Cheers,
Hoogen

On Tue, Sep 9, 2008 at 6:52 AM, Basel Al Sharif <basel.sharif@xxxxxxxxx>wrote:

> the best solution to limit or block such applications is Cisco Service
> Control Engine.
>
> it is very good box for DPI. in UAE they are using this to limit P2P and
> VOIP.
>
>
> http://www.cisco.com/en/US/prod/collateral/ps7045/ps6129/ps6133/ps6150/prod_white_paper0900aecd8023500d_ps6151_Products_White_Paper.html
>
>
>
> http://www.cisco.com/en/US/prod/collateral/ps7045/ps6129/ps6133/ps6151/prod_white_paper0900aecd802b0756.html
>
> 2 boxes available from Cisco 2020 which is for service providers and 1010
> is more for enterprises and Data Centers.
>
>
>
> Regards,
> Basel
>
>
> ----- Original Message ----- From: "Joseph Brunner" <
> joe@xxxxxxxxxxxxxxxxxxx>
> To: "'Muhammad Nasim'" <muhammad.nasim@xxxxxxxxx>; "'Cisco certification'"
> <security@xxxxxxxxxxxxxx>; "'Cisco certification'" <ccielab@xxxxxxxxxxxxxx
> >
> Sent: Tuesday, September 09, 2008 4:23 PM
> Subject: RE: Block or Limit Skype using IPS
>
>
>
>  No. Skype is too smart.
>>
>> You need something like the LATEST BLUECOAT or VERSO box to do this...
>>
>> Perhaps some of your colleagues know how they block it UAE. I hear ALL
>> voip
>> is successfully blocked there?
>>
>> A better option is a MS Active Directory group policy limiting what apps
>> can
>> run on the desktop, etc.
>>
>> -Joe
>>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>> Muhammad Nasim
>> Sent: Tuesday, September 09, 2008 7:47 AM
>> To: Cisco certification; Cisco certification
>> Subject: Block or Limit Skype using IPS
>>
>> Dear All,
>>
>> I want to know can we block or limit SKYPE using Cisco IPS (6.x) or Mcafee
>> IPS (4.1).?
>>
>> Any inputs/info will be helful
>>
>> Thanks
>>
>>
>> --
>> Muhammad Nasim
>> Network Engineer
>> Saudi Arabia
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 14:37:55 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89Ibtr6025138
	GroupStudy Mailer; Tue, 9 Sep 2008 14:37:55 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89IbtqO025136
	for securityxhiddenx; Tue, 9 Sep 2008 14:37:55 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.168]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89Ibq7R025109 GroupStudy Mailer; Tue, 9 Sep 2008 14:37:53
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so2158116wfc.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 11:37:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:message-id:from:to
  :content-type:content-transfer-encoding:mime-version:subject:date:cc
  :x-mailer:sender; bh=zUhMnrCxnXT1fxtQ/p0nbF4/LXhJ3bE26HVcJxkSWmw=;
  b=kJWC/HTPkGNVS74Apk+AiRb0vBS8DCvZNCFIC0Qm7Gz2YcMHpgkyOcXLo38FWmpdIW
  1P8zbZKNp1u2UcgTLsKRoUA9hA1mdU+iqBw2im+2Ha2QeyiA+eJaioOhzXo7OqbuQqHc
  +V0ryE6XJ5KUNnajBmSjNtZjze1dJiPfz2us0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:content-type:content-transfer-encoding
  :mime-version:subject:date:cc:x-mailer:sender;
  b=cvxjheCYEBNtulk5I0SbX+au+7T09hk3s6Bm+1Fwrl/lZn1LYWZbWcE2xoIEFJGjiH
  Vr5Nd6K5vTE1KjxOt3709shoX2RKUmcf9Zr+zixItMjDAC3+DWHYL0CJvTNJhc4y9TTI
  UK4/LMFQ1DYCxuMUme5zFkU/Z5QYEtf9gWkVM=
Received: by 10.140.201.1 with SMTP id y1mr28495rvf.246.1220985470278;
  Tue, 09 Sep 2008 11:37:50 -0700 (PDT)
Received: from ?192.168.1.206? ( [64.105.86.250]) by mx.google.com with
  ESMTPS id f42sm10413732rvb.6.2008.09.09.11.37.48 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Tue, 09 Sep 2008 11:37:49 -0700 (PDT)
Message-Id: <C1E23DC4-C256-4E40-8CB7-578134804F61@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Cisco certification <security@xxxxxxxxxxxxxx>,
        ccie_security@xxxxxxxxxxxxxxxxxxx
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: ACLs on the lab
Date: Tue, 9 Sep 2008 11:37:35 -0700
Cc: ccie-sc-gen@xxxxxxxx
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/09 14:37:55)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

Would the following be ok on the lab?

R5(config)#access-l 101 deny tcp any any range 1 65535 log
R5(config)#access-l 101 deny udp any any range 1 65535 log
R5(config)#access-l 101 deny ip any any log


I like to add it to the end of my ACLs so that I can catch any  
protocols that I forget.  Assuming the lab doesnt say anything  
specific could I get dinged for having it?


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 17:19:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89LJ10h010829
	GroupStudy Mailer; Tue, 9 Sep 2008 17:19:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89LJ1fP010827
	for securityxhiddenx; Tue, 9 Sep 2008 17:19:01 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.249]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89LIx6W010807 GroupStudy Mailer; Tue, 9 Sep 2008 17:19:00
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2080148rvb.54 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 14:18:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=tgJbNf+brOSi6U/xhUToX7XRehSWo0r0rM+E/8bmohQ=;
  b=CHwFz0Q4iqM/WOS/veLxEyuFOu29VrgTNSXGM+DYZ+UvzlKr7VBT33uJorIrP2o0dl
  JBV2BrIxr1HyDAfH2+nZlGKg18gl0df+O7ZxNgz9HuLgkKV3vn8ZjZ0Xv+kIIdlNsqHZ
  Si2JH6Cpd8u0HxEz7EbejQ7PeK1GBxOUgowqA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=hQiBMBmWdd0u7YM1r6rbGTxlf5deWKgJR6+KgBJ80AGwmj4u/IUgn0IUP8qe+YqvaC
  xWHDQVusIBqSCK067znYasiLOVl6SbF+IoRHms+Ori1GzQ9wj8W8jF7fdyelpXePz8Fx
  IK2WPxwIRvXxV0I3vSb4183bFLrTsF9BykEl4=
Received: by 10.140.185.1 with SMTP id i1mr167292rvf.264.1220995137037;
  Tue, 09 Sep 2008 14:18:57 -0700 (PDT)
Received: from ?192.168.1.206? ( [64.105.86.250]) by mx.google.com with
  ESMTPS id c20sm10808991rvf.3.2008.09.09.14.18.55 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Tue, 09 Sep 2008 14:18:55 -0700 (PDT)
Cc: ccie_security@xxxxxxxxxxxxxxxxxxx,
        Cisco certification
  <security@xxxxxxxxxxxxxx>, ccie-sc@xxxxxxxx
Message-Id: <903003B4-E1B9-4EE1-A973-697EFEED50CD@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "Black, Peter" <pblack@xxxxxxxxxxxxxxx>
In-Reply-To: <20080909211202.9F9E02531E@xxxxxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Re: [OSL | CCIE_Security] ACLs on the lab
Date: Tue, 9 Sep 2008 14:18:54 -0700
References: <C1E23DC4-C256-4E40-8CB7-578134804F61@xxxxxxxxxxx>
  <20080909211202.9F9E02531E@xxxxxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/09 17:19:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

I guess the reason I was adding TCP and UDP was so that in the log  
messages i could see what TCP was dropped including the port and what  
UDP was dropped including the port.

I didn't think they were redundant.  Maybe I'm wrong.

Totally Understand the time constraint.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 9, 2008, at 2:12 PM, Black, Peter wrote:

> Brandon,
>
> I believe that when you include 'ip' in an access-list, it includes  
> all
> protocols above layer 3 (tcp & udp).  Therefore, adding the deny tcp  
> and
> deny udp statements are redundant.
>
> You shouldn't get 'dinged' for having extra statements in your
> access-list, as long as all task requirements are met.
>
> Having said that, a proctor might question your expert level of
> knowledge if you add in those two redundant statements.
>
> Just to satisfy your curiosity, add in a 'deny ip any any log'  
> statement
> at the end of an acl, then try to telnet through the PIX/ASA.  Make  
> sure
> to turn on logging to the console at the debug level.... for example:
>
> logging console debug
> access-list infilter permit icmp any any
> access-list infilter deny ip any any log
>
> Even though you haven't added a 'deny tcp' statement, you should see  
> the
> denial in the firewall's log.
>
> In addition, time in the lab is very limited and you're under quite a
> bit of pressure.  I learned to avoid any unnecessary configurations.
> The 'deny ip any any log' statement is enough for troubleshooting.  By
> the way... I WOULD definitely make sure to add that statement to every
> access-list you do.  It saved my bacon during the lab.
>
> Peter Black, CCIE #20896 (Security)
> Senior Network Security Engineer
> CCSP, CCDP, CCNP, CEH, CHFI, ECSA, LPT, CCSE
> Southern Utes Shared Services
> 970-563-5606
> -----Original Message-----
> From: ccie_security-bounces@xxxxxxxxxxxxxxxxxxx
> [mailto:ccie_security-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of  
> Brandon
> Carroll
> Sent: Tuesday, September 09, 2008 12:38 PM
> To: Cisco certification; ccie_security@xxxxxxxxxxxxxxxxxxx
> Cc: ccie-sc-gen@xxxxxxxx
> Subject: [OSL | CCIE_Security] ACLs on the lab
>
> Would the following be ok on the lab?
>
> R5(config)#access-l 101 deny tcp any any range 1 65535 log
> R5(config)#access-l 101 deny udp any any range 1 65535 log
> R5(config)#access-l 101 deny ip any any log
>
>
> I like to add it to the end of my ACLs so that I can catch any
> protocols that I forget.  Assuming the lab doesnt say anything
> specific could I get dinged for having it?
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 17:34:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89LYljf012072
	GroupStudy Mailer; Tue, 9 Sep 2008 17:34:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89LYlJs012070
	for securityxhiddenx; Tue, 9 Sep 2008 17:34:47 -0400
Received: from blu0-omc1-s11.blu0.hotmail.com
  (blu0-omc1-s11.blu0.hotmail.com [65.55.116.22]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m89LYks8012044 GroupStudy
  Mailer; Tue, 9 Sep 2008 17:34:46 -0400
Received: from BLU105-W37 ([65.55.116.8]) by
  blu0-omc1-s11.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Tue, 9 Sep 2008 14:34:38 -0700
Message-ID: <BLU105-W37FCC6EBCF6CD2A62A1478A7540@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [64.102.254.33]
From: D W <kapsi1911@xxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: GUI CLI or both for IE Security Lab
Date: Tue, 9 Sep 2008 17:34:38 -0400
In-Reply-To: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
References: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
MIME-Version: 1.0
X-OriginalArrivalTime: 09 Sep 2008 21:34:38.0604 (UTC)
  FILETIME=[DC9E14C0:01C912C3]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from kapsi1911@xxxxxxx\.com] (2008/09/09 17:34:47)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: D W <kapsi1911@xxxxxxxxxxx>

Are we able to access the the web interface of the IPS and the VPN
concentrator during the lab? I'm wondering if I need to spend the time getting
familiar with the VPN3000/IPS CLI for anything other than basic network
connectivity.

Thanks,
Dave
_________________________________________________________________
Stay up to date on your PC, the Web, and your mobile phone with Windows Live.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 17:55:21 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89LtLc5014446
	GroupStudy Mailer; Tue, 9 Sep 2008 17:55:21 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89LtLQ8014444
	for securityxhiddenx; Tue, 9 Sep 2008 17:55:21 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89LtKk6014418 GroupStudy Mailer; Tue, 9 Sep 2008 17:55:20
  -0400
Received: by gxk13 with SMTP id 13so14497196gxk.6 for
  <security@xxxxxxxxxxxxxx>; Tue, 09 Sep 2008 14:55:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:x-rim-org-msg-ref-id
  :return-receipt-to:message-id:content-transfer-encoding:reply-to
  :x-priority:sensitivity:importance:to:subject:from:date:content-type
  :mime-version; bh=Mp+kI/kpeh3elv/oEM3drW0juQrpF3JdYZgbp8gTVtc=;
  b=LVw/ekAJ4f4+XhD+rqvh1G+1IenX40/KvKFauHLbqQ9I+SfEab8If6IyvAbvvrLkQ6
  DL9h+txRmhryylI+AuZcWhA77sDeQB4gOAHesuj9xtaCEp4Yl6a3dBaLAgi706o55Qmo
  aRSHRtcnTrMdsV+BuqfpXB1WlyqEt4uoCEy3M=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=x-rim-org-msg-ref-id:return-receipt-to:message-id
  :content-transfer-encoding:reply-to:x-priority:sensitivity
  :importance:to:subject:from:date:content-type:mime-version;
  b=TSy/Qmu0WN1Ll69ESyAa9KYJQgV2nMAB1grfCqByTfoL7ImOK7yspENk/W3z9gYuG2
  K5oeIBmzUHPWPOpCFrdqIYEpJhiUTWcluJ+OoFdigeZktl4+NwTPNTmATbsLkeca912w
  d6dbTY15LElKD6t+gbTf4WcqfFPm1dGFeb09E=
Received: by 10.151.79.6 with SMTP id g6mr657142ybl.228.1220997313133;
  Tue, 09 Sep 2008 14:55:13 -0700 (PDT)
Received: from bda254.bisx.prod.on.blackberry ( [216.9.248.174]) by
  mx.google.com with ESMTPS id k30sm8439371qba.4.2008.09.09.14.55.12
  (version=SSLv3 cipher=RC4-MD5); Tue, 09 Sep 2008 14:55:12 -0700 (PDT)
X-rim-org-msg-ref-id: 255293640
Message-ID: <255293640-1220997310-cardhu_decombobulator_blackberry.rim.net-78001208-@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sensitivity: Normal
To: "D W" <kapsi1911@xxxxxxxxxxx>, security@xxxxxxxxxxxxxx
Subject: Re: GUI CLI or both for IE Security Lab
From: dt30083@xxxxxxxxx
Date: Tue, 9 Sep 2008 21:55:22 +0000
Content-Type: text/plain; charset="Windows-1252"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from base64 to 8bit by groupstudy.com id
  m89LtKk6014418
X-ASK-Info: Whitelist match [from dt30083@xxxxx\.com] (2008/09/09 17:55:21)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: dt30083@xxxxxxxxx

I would say do them both anyway, especially   for the IPS when configuring signatures as speed is a factor. 


------Original Message------
From: D W
Sender: nobody@xxxxxxxxxxxxxx
To: security@xxxxxxxxxxxxxx
ReplyTo: D W
Subject: GUI CLI or both for IE Security Lab
Sent: Sep 9, 2008 16:34

Are we able to access the the web interface of the IPS and the VPN
concentrator during the lab? I'm wondering if I need to spend the time getting
familiar with the VPN3000/IPS CLI for anything other than basic network
connectivity.

Thanks,
Dave
_________________________________________________________________
Stay up to date on your PC, the Web, and your mobile phone with Windows Live.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/



Sent from my BlackBerry. wireless device


From security-owner@xxxxxxxxxxxxxx Tue Sep  9 18:29:07 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m89MT6sK016638
	GroupStudy Mailer; Tue, 9 Sep 2008 18:29:06 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m89MT6Z5016636
	for securityxhiddenx; Tue, 9 Sep 2008 18:29:06 -0400
Received: from smtp-gw77.mailanyone.net (smtp-gw77.mailanyone.net
  [208.70.128.103]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m89MT6Bq016616 GroupStudy Mailer; Tue, 9 Sep 2008 18:29:06
  -0400
Received: from mailanyone.net by smtp-gw77.mailanyone.net with esmtpa
  (MailAnyone extSMTP smorris@xxxxxxxxxxxxxxxxxxxxxx) id
  1KdBhl-0005GN-Bw; Tue, 09 Sep 2008 17:29:02 -0500
From: "Scott Morris" <smorris@xxxxxxxxxxxxxxxxxxxxxx>
To: "'Brandon Carroll'" <brandon.carroll@xxxxxxxxxxx>,
        "'Black, Peter'"
  <pblack@xxxxxxxxxxxxxxx>
Cc: <ccie_security@xxxxxxxxxxxxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>,
        <ccie-sc@xxxxxxxx>
References: <C1E23DC4-C256-4E40-8CB7-578134804F61@xxxxxxxxxxx> 
  <20080909211202.9F9E02531E@xxxxxxxxxxxxxxxxx>
  <903003B4-E1B9-4EE1-A973-697EFEED50CD@xxxxxxxxxxx>
Subject: RE: [OSL | CCIE_Security] ACLs on the lab
Date: Tue, 9 Sep 2008 18:29:00 -0400
Organization: Internetwork Expert
Message-ID: <020001c912cb$753023c0$800610ac@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <903003B4-E1B9-4EE1-A973-697EFEED50CD@xxxxxxxxxxx>
Thread-Index: AckSyAQzUpxJ0uq7RZO3uE9L7HRiTgAAwv2A
X-ASK-Info: Whitelist match [from smorris@xxxxxxxxxxxxxxxxxx\.com] (2008/09/09 18:29:06)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Scott Morris" <smorris@xxxxxxxxxxxxxxxxxxxxxx>

Which is certainly a valid thing to do.

If the paranoia gets to you, at the end of the day, I'd leave myself a note
to remove those individual lines and therefore not worry about things!

You shouldn't get dinged though unless the lab calls for "fewest lines" or
"minimal configuration" or something like that!

(I'll get these irritating reject messages from OSL 'cause IPexpert has
decided they don't like my opinions (smirk))


Scott Morris, CCIE4 #4713, JNCIE-M #153, JNCIS-ER, CISSP, et al.
CCSI/JNCI-M/JNCI-ER
Senior CCIE Instructor

smorris@xxxxxxxxxxxxxxxxxxxxxx

 

Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Outside US: 775-826-4344
Online Community: http://tinyurl.com/6dmnsu
CCIE Blog: http://tinyurl.com/2nxxaq

Knowledge is power. 
Power corrupts. 
Study hard and be Eeeeviiiil......
 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Tuesday, September 09, 2008 5:19 PM
To: Black, Peter
Cc: ccie_security@xxxxxxxxxxxxxxxxxxx; Cisco certification; ccie-sc@xxxxxxxx
Subject: Re: [OSL | CCIE_Security] ACLs on the lab

I guess the reason I was adding TCP and UDP was so that in the log messages
i could see what TCP was dropped including the port and what UDP was dropped
including the port.

I didn't think they were redundant.  Maybe I'm wrong.

Totally Understand the time constraint.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 9, 2008, at 2:12 PM, Black, Peter wrote:

> Brandon,
>
> I believe that when you include 'ip' in an access-list, it includes 
> all protocols above layer 3 (tcp & udp).  Therefore, adding the deny 
> tcp and deny udp statements are redundant.
>
> You shouldn't get 'dinged' for having extra statements in your 
> access-list, as long as all task requirements are met.
>
> Having said that, a proctor might question your expert level of 
> knowledge if you add in those two redundant statements.
>
> Just to satisfy your curiosity, add in a 'deny ip any any log'  
> statement
> at the end of an acl, then try to telnet through the PIX/ASA.  Make 
> sure to turn on logging to the console at the debug level.... for 
> example:
>
> logging console debug
> access-list infilter permit icmp any any access-list infilter deny ip 
> any any log
>
> Even though you haven't added a 'deny tcp' statement, you should see 
> the denial in the firewall's log.
>
> In addition, time in the lab is very limited and you're under quite a 
> bit of pressure.  I learned to avoid any unnecessary configurations.
> The 'deny ip any any log' statement is enough for troubleshooting.  By 
> the way... I WOULD definitely make sure to add that statement to every 
> access-list you do.  It saved my bacon during the lab.
>
> Peter Black, CCIE #20896 (Security)
> Senior Network Security Engineer
> CCSP, CCDP, CCNP, CEH, CHFI, ECSA, LPT, CCSE Southern Utes Shared 
> Services
> 970-563-5606
> -----Original Message-----
> From: ccie_security-bounces@xxxxxxxxxxxxxxxxxxx
> [mailto:ccie_security-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of 
> Brandon Carroll
> Sent: Tuesday, September 09, 2008 12:38 PM
> To: Cisco certification; ccie_security@xxxxxxxxxxxxxxxxxxx
> Cc: ccie-sc-gen@xxxxxxxx
> Subject: [OSL | CCIE_Security] ACLs on the lab
>
> Would the following be ok on the lab?
>
> R5(config)#access-l 101 deny tcp any any range 1 65535 log 
> R5(config)#access-l 101 deny udp any any range 1 65535 log 
> R5(config)#access-l 101 deny ip any any log
>
>
> I like to add it to the end of my ACLs so that I can catch any 
> protocols that I forget.  Assuming the lab doesnt say anything 
> specific could I get dinged for having it?
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me


From security-owner@xxxxxxxxxxxxxx Wed Sep 10 08:59:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8ACxs1p017980
	GroupStudy Mailer; Wed, 10 Sep 2008 08:59:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8ACxsi4017978
	for securityxhiddenx; Wed, 10 Sep 2008 08:59:54 -0400
Received: from adsl-pool-222.123.101-223.dynamic.tttmaxnet.com
  (adsl-pool-222.123.101-223.dynamic.tttmaxnet.com [222.123.101.223]
  (may be forged)) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8ACxpHj017954 GroupStudy Mailer; Wed, 10 Sep 2008 08:59:53
  -0400
Message-ID: <000701c2b1ff$027e99ff$c200fb9c@xxxxxxxx>
From: "bent parkins" <postmaster@xxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: loan for debt consolidation
Date: Wed, 01 Jan 2003 23:51:01 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-ASK-Info: Message from Mailer-Daemon (2008/09/10 08:59:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "bent parkins" <postmaster@xxxxxxxxxxxxx>

DO NOT consolidate your debt   ELIMINATE IT!!!
Legally ELIMINATE your credit card and other unsecured debt
* WITHOUT ever making another payment to your creditors
* WITHOUT it affecting your credit long-term
* WITHOUT confrontation

http://www.cracktweed.com

This IS NOT:
* Bankruptcy
* Consolidation
* Or refinancing of any kind

Visit here to learn how. http://www.cracktweed.com 

* Must have a minimum of $10K in combined household unsecured debt to apply.
* Must be a US resident.


From security-owner@xxxxxxxxxxxxxx Wed Sep 10 10:48:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8AEmss8002545
	GroupStudy Mailer; Wed, 10 Sep 2008 10:48:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8AEmsPc002543
	for securityxhiddenx; Wed, 10 Sep 2008 10:48:54 -0400
Received: from ind-iport-1.cisco.com (ind-iport-1.cisco.com
  [64.104.129.195]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8AEmnpX002463 GroupStudy Mailer; Wed, 10 Sep 2008 10:48:53
  -0400
X-IronPort-AV: E=Sophos;i="4.32,372,1217808000"; 
  d="scan'208";a="27945716"
Received: from ind-dkim-1.cisco.com ([64.104.140.57]) by
  ind-iport-1.cisco.com with ESMTP; 10 Sep 2008 14:48:51 +0000
Received: from india-core-1.cisco.com (india-core-1.cisco.com
  [64.104.129.221]) by ind-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP
  id m8AEmpLA018452; Wed, 10 Sep 2008 20:18:51 +0530
Received: from xbh-blr-411.apac.cisco.com (xbh-blr-411.cisco.com
  [64.104.140.150]) by india-core-1.cisco.com (8.13.8/8.13.8) with ESMTP
  id m8AEmpwM002104; Wed, 10 Sep 2008 14:48:51 GMT
Received: from xmb-blr-418.apac.cisco.com ([64.104.140.147]) by
  xbh-blr-411.apac.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Wed,
  10 Sep 2008 20:18:49 +0530
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Subject: RE: changing password through VPN+AAA
Date: Wed, 10 Sep 2008 20:16:19 +0530
Message-ID: <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
Thread-Topic: changing password through VPN+AAA
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFg
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
From: "Kanishka Acharya (kaachary)" <kaachary@xxxxxxxxx>
To: "Akbar Ali" <ccieaim@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 10 Sep 2008 14:48:49.0795 (UTC)
  FILETIME=[56026D30:01C91354]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=1124; t=1221058131;
  x=1221922131; c=relaxed/simple; s=inddkim1002;
  h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version;
  d=cisco.com; i=kaachary@xxxxxxxxx;
  z=From:=20=22Kanishka=20Acharya=20(kaachary)=22=20<kaachary@
  cisco.com> |Subject:=20RE=3A=20changing=20password=20through=20VPN+AAA
  |Sender:=20; bh=UtMOF9UR/NVypob22JE71c9Gu3Wg11UwcfcA46ESVZg=;
  b=Q6gFzUhbsg3EywzBPPjAErPTbhypOm601FjE+7Ji1uPyZrsDFl8ZLwfyyN
  mv43ix8c38fUzwetZxlZs2dTomkj0e5Bhund+PB94I2jN6z4dwaft7Pi4f2u
  sJvc+r68Vi;
Authentication-Results: ind-dkim-1; header.From=kaachary@xxxxxxxxx;
  dkim=pass ( sig from cisco.com/inddkim1002 verified; ); 
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8AEmnpX002463
X-ASK-Info: Whitelist match [from kaachary@xxxxx\.com] (2008/09/10 10:48:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Kanishka Acharya (kaachary)" <kaachary@xxxxxxxxx>

My bad :(

Password-management should be enabled under tunnel-group general
attirbutes. 


Regards,
 
Kanishka Acharya
Customer Support Engineer - VPN/AAA
Cisco Systems Inc.
Email: kaachary@xxxxxxxxx
Ph: 1-212-329-2092 Ext.- 2110
Monday to Friday (6 am -  3 pm MST)
Cisco Worldwide Contacts
 
http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Akbar Ali
Sent: Tuesday, September 09, 2008 10:20 AM
To: Cisco certification
Subject: changing password through VPN+AAA

Hi Groups ,

Can any one  help me i am trying for last some day i tried all cisco.com
but i couldn't find the solution , I am  stuck in the senario , where I
want to change the password of users who are through VPN and
authenticated with AAA , becoz everytime they have to telnet and change
the password , is there any other way like UCP or something , through
which they can change the password without telneting to ASA .

I Appreciate if anyone can help me to overcome this problem.

Regards

Akbar Ali


From security-owner@xxxxxxxxxxxxxx Wed Sep 10 10:48:53 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8AEmrUP002521
	GroupStudy Mailer; Wed, 10 Sep 2008 10:48:53 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8AEmrNU002518
	for securityxhiddenx; Wed, 10 Sep 2008 10:48:53 -0400
Received: from ind-iport-1.cisco.com (ind-iport-1.cisco.com
  [64.104.129.195]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8AEmnpW002463 GroupStudy Mailer; Wed, 10 Sep 2008 10:48:50
  -0400
X-IronPort-AV: E=Sophos;i="4.32,372,1217808000"; 
  d="scan'208";a="27945686"
Received: from ind-dkim-2.cisco.com ([64.104.140.59]) by
  ind-iport-1.cisco.com with ESMTP; 10 Sep 2008 14:48:38 +0000
Received: from india-core-1.cisco.com (india-core-1.cisco.com
  [64.104.129.221]) by ind-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP
  id m8AEmchQ001074; Wed, 10 Sep 2008 20:18:38 +0530
Received: from xbh-blr-412.apac.cisco.com (xbh-blr-412.cisco.com
  [64.104.140.149]) by india-core-1.cisco.com (8.13.8/8.13.8) with ESMTP
  id m8AEmbSO002052; Wed, 10 Sep 2008 14:48:38 GMT
Received: from xmb-blr-418.apac.cisco.com ([64.104.140.147]) by
  xbh-blr-412.apac.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Wed,
  10 Sep 2008 20:16:38 +0530
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Subject: RE: changing password through VPN+AAA
Date: Wed, 10 Sep 2008 20:14:10 +0530
Message-ID: <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A21@xxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
Thread-Topic: changing password through VPN+AAA
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAty5ng
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
From: "Kanishka Acharya (kaachary)" <kaachary@xxxxxxxxx>
To: "Akbar Ali" <ccieaim@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 10 Sep 2008 14:46:38.0802 (UTC)
  FILETIME=[07EE7B20:01C91354]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=939; t=1221058118;
  x=1221922118; c=relaxed/simple; s=inddkim2002;
  h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version;
  d=cisco.com; i=kaachary@xxxxxxxxx;
  z=From:=20=22Kanishka=20Acharya=20(kaachary)=22=20<kaachary@
  cisco.com> |Subject:=20RE=3A=20changing=20password=20through=20VPN+AAA
  |Sender:=20; bh=GG52+7tfv5vEb1JrcFp6cuZfwn+NdXbWqfmIkzfQps8=;
  b=wVL/kGsNjAJqH5Wa0YqFs1A8zMXwYTiY4Puy9vCPgBxoEuhsezn/G4pH5q
  KktrWPm2qYFj1YNMUI0WzhD1Z4K4XqeRvxQncWUdU2ooJd5TFEJnfPoFL3Gn
  ejVwPlHpHb;
Authentication-Results: ind-dkim-2; header.From=kaachary@xxxxxxxxx;
  dkim=pass ( sig from cisco.com/inddkim2002 verified; ); 
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8AEmnpW002463
X-ASK-Info: Whitelist match [from kaachary@xxxxx\.com] (2008/09/10 10:48:53)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Kanishka Acharya (kaachary)" <kaachary@xxxxxxxxx>

Use "password-management" under group-policy. Make sure MS-CHAP v2 is
enabled on AD and Radius. This will prompt the users to change their
password at the time of Xauth. 


-Kanishka

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Akbar Ali
Sent: Tuesday, September 09, 2008 10:20 AM
To: Cisco certification
Subject: changing password through VPN+AAA

Hi Groups ,

Can any one  help me i am trying for last some day i tried all cisco.com
but i couldn't find the solution , I am  stuck in the senario , where I
want to change the password of users who are through VPN and
authenticated with AAA , becoz everytime they have to telnet and change
the password , is there any other way like UCP or something , through
which they can change the password without telneting to ASA .

I Appreciate if anyone can help me to overcome this problem.

Regards

Akbar Ali


From security-owner@xxxxxxxxxxxxxx Wed Sep 10 21:00:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8B10FSK001230
	GroupStudy Mailer; Wed, 10 Sep 2008 21:00:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8B10FSK001227
	for securityxhiddenx; Wed, 10 Sep 2008 21:00:15 -0400
Received: from bay0-omc3-s7.bay0.hotmail.com
  (bay0-omc3-s7.bay0.hotmail.com [65.54.246.207]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8B10ECU001205 GroupStudy
  Mailer; Wed, 10 Sep 2008 21:00:14 -0400
Received: from bay0-mc5-f20.bay0.hotmail.com ([65.54.244.156]) by
  bay0-omc3-s7.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Wed, 10 Sep 2008 18:00:06 -0700
From: postmaster@xxxxxxxxxxx
To: security@xxxxxxxxxxxxxx
Date: Wed, 10 Sep 2008 18:00:05 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-DSNContext: 335a7efd - 4480 - 00000001 - 80040546
Message-ID: <FihxbBEah000f289f@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: Delivery Status Notification (Failure)
X-OriginalArrivalTime: 11 Sep 2008 01:00:06.0150 (UTC)
  FILETIME=[BAD21260:01C913A9]
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/10 21:00:15)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: postmaster@xxxxxxxxxxx

This is an automatically generated Delivery Status Notification.

Delivery to the following recipients failed.

       kimpabst@xxxxxxxxxxx
Reporting-MTA: dns;bay0-mc5-f20.bay0.hotmail.com
Received-From-MTA: dns;smtp28.orange.fr
Arrival-Date: Wed, 10 Sep 2008 18:00:05 -0700

Final-Recipient: rfc822;kimpabst@xxxxxxxxxxx
Action: failed
Status: 5.5.0
Diagnostic-Code: smtp;550 Requested action not taken: mailbox unavailable (-753699883:3233:-2147467259)
Received: from smtp28.orange.fr ([80.12.242.99]) by
  bay0-mc5-f20.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668);
  Wed, 10 Sep 2008 18:00:05 -0700
Received: from smtp28.orange.fr (mwinf2813 [10.232.15.41]) by
  mwinf2805.orange.fr (SMTP Server) with ESMTP id 205A020090C2; Wed, 10
  Sep 2008 09:36:10 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2813.orange.fr (SMTP Server) with ESMTP id 0ED417000096; Wed, 10
  Sep 2008 09:36:10 +0200 (CEST)
Received: from SERVER
  (LAubervilliers-153-53-6-132.w217-128.abo.wanadoo.fr
  [217.128.129.132]) by mwinf2813.orange.fr (SMTP Server) with SMTP id
  7E9A77000091; Wed, 10 Sep 2008 09:36:09 +0200 (CEST)
X-ME-UUID: 20080910073609518.7E9A77000091@xxxxxxxxxxxxxxxxxxx
Message-ID: <000b01c9137c$a66ca969$fd787fdf@xxxxxxxxxxxxx>
From: "=?windows-1251?B?VmlrdG9yaSBELg==?=" <security@xxxxxxxxxxxxxx>
To: <kimpa18@xxxxxxxxxxx>, <kimpa34@xxxxxxxxxxx>,
  <kimpaasei@xxxxxxxxxxx>, <kimpabst@xxxxxxxxxxx>, <kimpace@xxxxxxxxxxx>
Subject: =?windows-1251?B?TGlmZSBpcyBCZXR0ZXIgV2l0aCBUd28=?=
Date: Wed, 10 Sep 2008 09:36:57 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Return-Path: security@xxxxxxxxxxxxxx
X-OriginalArrivalTime: 11 Sep 2008 01:00:05.0725 (UTC)
  FILETIME=[BA9138D0:01C913A9]

Ave, dear!

Life, travel, food and people - that is what I like. You have to know that
attractive, active, independant woman who wants a pertner for some of the 
fun things in life is nearby. I am quite happy with my life style. However, 
sharing my time with an equally fun loving, honest and kind man who is not 
attached and who has a basically positive outlook is important for me.
Someone who is down to earth it is what I need.
Take a look at me http://happylovewithgirls.com/lovelykisses
Goodbye
Vika D.


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 04:00:56 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8B80ulT000724
	GroupStudy Mailer; Thu, 11 Sep 2008 04:00:56 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8B80uZi000722
	for securityxhiddenx; Thu, 11 Sep 2008 04:00:56 -0400
Received: from airoha-mat01.airoha.com.tw (airoha-mta01.airoha.com.tw
  [59.120.190.244]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8B80r0S000702 GroupStudy Mailer; Thu, 11 Sep 2008 04:00:54
  -0400
Received: from ex01.airoha.com.tw ([10.84.20.17]) by
  airoha-mat01.airoha.com.tw with InterScan Message Security Suite; Thu,
  11 Sep 2008 16:01:30 +0800
From: postmaster@xxxxxxxxxxxxx
To: security@xxxxxxxxxxxxxx
Date: Thu, 11 Sep 2008 16:01:30 +0800
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-DSNContext: 335a7efd - 4523 - 00000001 - 80040546
Message-ID: <QxJHarTNF00027264@xxxxxxxxxxxxxxxxxx>
Subject: =?unicode-1-1-utf-7?Q?+ULOQXnLAYUuQGnfl-   (+WTFlVw-)?=
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/11 04:00:56)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: postmaster@xxxxxxxxxxxxx

+kBlmL04AUAuB6lLVdSJ1H3aEULOQXnLAYUuQGnflMAI-

+cSFs1VCzkF5SME4LUhdlNk72gAUwAg-

       service@xxxxxxxxxxxxx
       seven@xxxxxxxxxxxxx
       seylee@xxxxxxxxxxxxx
       shau@xxxxxxxxxxxxx
       sheau@xxxxxxxxxxxxx
Reporting-MTA: dns;ex01.airoha.com.tw
Received-From-MTA: dns;airoha-mat01.airoha.com.tw
Arrival-Date: Thu, 11 Sep 2008 16:01:30 +0800

Final-Recipient: rfc822;service@xxxxxxxxxxxxx
Action: failed
Status: 5.1.1

Final-Recipient: rfc822;seven@xxxxxxxxxxxxx
Action: failed
Status: 5.1.1

Final-Recipient: rfc822;seylee@xxxxxxxxxxxxx
Action: failed
Status: 5.1.1

Final-Recipient: rfc822;shau@xxxxxxxxxxxxx
Action: failed
Status: 5.1.1

Final-Recipient: rfc822;sheau@xxxxxxxxxxxxx
Action: failed
Status: 5.1.1
Received: from airoha-mat01.airoha.com.tw ([10.84.20.8]) by
  ex01.airoha.com.tw with Microsoft SMTPSVC(6.0.3790.1830); Thu, 11 Sep
  2008 16:01:30 +0800
Received: from host-148-244-249-42.block.alestra.net.mx
  ([148.244.249.42]) by airoha-mat01.airoha.com.tw with InterScan
  Message Security Suite; Thu, 11 Sep 2008 16:01:27 +0800
Received: from [10.0.15.248] (HELO QyWNS) by
  host-148-244-249-42.block.alestra.net.mx with SMTP id 16e3xcZ3BpXW3h;
  Thu, 11 Sep 2008 11:00:39 +0300
Message-ID: <00a201c913e4$6ed9ab80$f80f000a@xxxxx>
From: "Irinka" <security@xxxxxxxxxxxxxx>
To: "service" <service@xxxxxxxxxxxxx>
Subject: Re[4]: Am Looking for nice man for nice relationship...
Date: Thu, 11 Sep 2008 11:00:39 +0300
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Return-Path: security@xxxxxxxxxxxxxx
X-OriginalArrivalTime: 11 Sep 2008 08:01:30.0571 (UTC)
  FILETIME=[998289B0:01C913E4]

Aloha, dear

Don't laugh if I say that since my girlhood I wanted to get married very
much. It was my lifetime  dream which is still alive into my heart.
I want to get married, because I don't understand such life when you are
alone, you get up at silent room and you are not responsible for somebody
and your heart is empty. My heart and my mind are against such selfish way
of life.
I looked at your profile, I read it attentively and the first thought which
visited me was: This man is so interesting and smart, that I won't be I if I
don't try to get acquainted with him. I hope that my frank letter about
marriage's dreams won't make you feel scared and doubtful.
I am sincere with you because It is my character. If i love, I love to
death, if I am romantic I will present to you all stars in the sky. I can be
different and life wont' become dull if you decide to be with me and to
share life with me.
I hope that you will think about me and write me, you can find me 
here http://happylovewithgirls.com/heartsinlove


Waiting for your letter
Irinka


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 09:47:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BDl4nN031497
	GroupStudy Mailer; Thu, 11 Sep 2008 09:47:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BDl4Tn031495
	for securityxhiddenx; Thu, 11 Sep 2008 09:47:04 -0400
Received: from EXCH-FRT.ftdata.com (63-148-101-62.dia.static.qwest.net
  [63.148.101.62]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BDl30P031475 GroupStudy Mailer; Thu, 11 Sep 2008 09:47:03
  -0400
Received: from ftdata-vex3.ftdata.com ([10.1.1.5]) by
  EXCH-FRT.ftdata.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 11 Sep
  2008 09:46:52 -0400
Subject: AAA login
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Thu, 11 Sep 2008 09:46:56 -0400
Message-ID: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
Content-class: urn:content-classes:message
Thread-Topic: AAA login
Thread-Index: AckUFNs6yyDfwchSTOuIho2p0S75LQ==
From: "Shane Miles" <smiles@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 11 Sep 2008 13:46:52.0055 (UTC)
  FILETIME=[D87A1270:01C91414]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from smiles@xxxxxx\.com] (2008/09/11 09:47:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shane Miles" <smiles@xxxxxxxxxx>

Consider this simple config:

aaa new-model
aaa authentication login VTY local
aaa authorization exec VTY local
!
line vty 5
 login authentication VTY
 authorization exec VTY
 rotary 1
!
username ADMIN privilege password CISCO


Notice I made no changes to vty 0 4 nor did I make any changes to the
"default" login. I telnet to port 3001 and I get the username prompt as
expected and can login. But when I telnet to port 23 I still get a username
prompt? Why is this so since I made no changes to the vty 0 4? I would expect
the line password prompt. To put it to what I thought it should be I had to do
this:

aaa authentication login default line

Could some explain why line vty 0 4 changes when I made no changes to the
lines 0 4 or the default login?
--
Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 10:44:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BEiBOR004736
	GroupStudy Mailer; Thu, 11 Sep 2008 10:44:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BEiBs9004734
	for securityxhiddenx; Thu, 11 Sep 2008 10:44:11 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BEiADE004713 GroupStudy Mailer; Thu, 11 Sep 2008 10:44:10
  -0400
Received: by gxk13 with SMTP id 13so20322105gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 11 Sep 2008 07:44:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=R8iG9k7vqcSUMkngV6KK8kbeJjQk0dM9lOG1m2HdWW0=;
  b=jAa2AgwnNknTEQMGRblj97q3/nKjlTFyllOB7CSy9/qtZ1NfZrY6K0KY/A/PgVeh+E
  w7NSPH8WYzjEjgsmo5kp7UkohdRUQHHRYywJUC2Fp8nMuSOFIpRiE0lMmWxN9pUbmSVY
  Pnl/ENL2FDAEiFymcFKr/n+p8rk6G/aRG0M4U=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=QZZa024aJG8d26fW0zFKj6QWgqxe+QYvnaUHosZOehXkCJbgO01cCMBXojlWgJ5f/J
  NmoSJdvOMtpLgH1Bho3Z0F5Pi33J6naXdc26hlm00NIwz+JHmqyyn+8ggf8WDuz1Mqpm
  t0kgS/6N6HPVxwVLxQuao+75ZRIDmXl+UVRR8=
Received: by 10.114.79.18 with SMTP id c18mr2105994wab.86.1221144243744;
  Thu, 11 Sep 2008 07:44:03 -0700 (PDT)
Received: from ?192.168.1.100? ( [64.105.86.250]) by mx.google.com with
  ESMTPS id v25sm10396003wah.36.2008.09.11.07.44.01 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 11 Sep 2008 07:44:02 -0700 (PDT)
Cc: <security@xxxxxxxxxxxxxx>
Message-Id: <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Re: AAA login
Date: Thu, 11 Sep 2008 07:44:00 -0700
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/11 10:44:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

It has been my experience that the default method is gonna prompt you  
for username and password if you dont explicitly configure it.  Not  
sure if its different depending on versions.  When I mess with AAA I  
always specify EXACTLY what I want it to do.  I dont leave anything to  
chance regardless of the version.  I've power-cycled too many devices.

Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 11, 2008, at 6:46 AM, Shane Miles wrote:

> Consider this simple config:
>
> aaa new-model
> aaa authentication login VTY local
> aaa authorization exec VTY local
> !
> line vty 5
> login authentication VTY
> authorization exec VTY
> rotary 1
> !
> username ADMIN privilege password CISCO
>
>
> Notice I made no changes to vty 0 4 nor did I make any changes to the
> "default" login. I telnet to port 3001 and I get the username prompt  
> as
> expected and can login. But when I telnet to port 23 I still get a  
> username
> prompt? Why is this so since I made no changes to the vty 0 4? I  
> would expect
> the line password prompt. To put it to what I thought it should be I  
> had to do
> this:
>
> aaa authentication login default line
>
> Could some explain why line vty 0 4 changes when I made no changes  
> to the
> lines 0 4 or the default login?
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 10:58:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BEwdJg007038
	GroupStudy Mailer; Thu, 11 Sep 2008 10:58:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BEwd3t007036
	for securityxhiddenx; Thu, 11 Sep 2008 10:58:39 -0400
Received: from EXCH-FRT.ftdata.com (63-148-101-62.dia.static.qwest.net
  [63.148.101.62]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BEwcMT007011 GroupStudy Mailer; Thu, 11 Sep 2008 10:58:38
  -0400
Received: from ftdata-vex3.ftdata.com ([10.1.1.5]) by
  EXCH-FRT.ftdata.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 11 Sep
  2008 10:58:28 -0400
Content-class: urn:content-classes:message
Subject: RE: AAA login
MIME-Version: 1.0
Date: Thu, 11 Sep 2008 10:55:44 -0400
Content-Type: text/plain; charset="us-ascii"
Message-ID: <B30058BB1DFBD9409403E624DE1EBD2D03814E@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: AAA login
Thread-Index: AckUHNt6ujNWX1UuRAywrdVDSWEo2gAAZw59
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
  <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
From: "Shane Miles" <smiles@xxxxxxxxxx>
Cc: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 11 Sep 2008 14:58:28.0991 (UTC)
  FILETIME=[D9A678F0:01C9141E]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from smiles@xxxxxx\.com] (2008/09/11 10:58:39)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shane Miles" <smiles@xxxxxxxxxx>

That makes alot of sense. I've been playing with it and as soon as I add "aaa
new-model" the VTYs start prompting for a username. No other aaa config at
all!  So, leave nothing to chance is what I'll do from now on. "none" on the
console and specify the VTY login for whatever I want, even if it's just the
line password.

________________________________

From: Brandon Carroll on behalf of Brandon Carroll
Sent: Thu 9/11/2008 10:44 AM
To: Shane Miles
Cc: security@xxxxxxxxxxxxxx
Subject: Re: AAA login



It has been my experience that the default method is gonna prompt you
for username and password if you dont explicitly configure it.  Not
sure if its different depending on versions.  When I mess with AAA I
always specify EXACTLY what I want it to do.  I dont leave anything to
chance regardless of the version.  I've power-cycled too many devices.

Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com <http://www.ascolta.com/>
http://www.globalconfig.net <http://www.globalconfig.net/>
http://ccieprep.me <http://ccieprep.me/>





On Sep 11, 2008, at 6:46 AM, Shane Miles wrote:

> Consider this simple config:
>
> aaa new-model
> aaa authentication login VTY local
> aaa authorization exec VTY local
> !
> line vty 5
> login authentication VTY
> authorization exec VTY
> rotary 1
> !
> username ADMIN privilege password CISCO
>
>
> Notice I made no changes to vty 0 4 nor did I make any changes to the
> "default" login. I telnet to port 3001 and I get the username prompt
> as
> expected and can login. But when I telnet to port 23 I still get a
> username
> prompt? Why is this so since I made no changes to the vty 0 4? I
> would expect
> the line password prompt. To put it to what I thought it should be I
> had to do
> this:
>
> aaa authentication login default line
>
> Could some explain why line vty 0 4 changes when I made no changes
> to the
> lines 0 4 or the default login?
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 12:32:16 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BGWGTd017702
	GroupStudy Mailer; Thu, 11 Sep 2008 12:32:16 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BGWGR5017700
	for securityxhiddenx; Thu, 11 Sep 2008 12:32:16 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.251]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BGWFV2017680 GroupStudy Mailer; Thu, 11 Sep 2008 12:32:15
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so434959rvb.54 for
  <security@xxxxxxxxxxxxxx>; Thu, 11 Sep 2008 09:32:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=Tq2A4fbiDWUbXZHhjQT+m4Tgx83ihpbbSsmyGE9nZGE=;
  b=lISXSMVPc0mp2wu+oRakAPXKwBx2gVgmc8FRCfoc71RB31Z/UhjEftBzfrv2tx+Ayc
  FmdFO8SeOx1WEp4ahvAAfu+juWm31mkxAENbyeRALqSVcoH1Hm0d4jYkDSiHWuOg+bcl
  kUNAhhPV3Fe2H1uOhyjI1vUQCOS7uV1P+vxsA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=kkKoSW1P3g4b83/Dnv7u5xXtpS7NT+up8E43MS1BmdLEh0elpqiznxZsLAnGuyKtjw
  LQDwttYzROjlHxrBFRI+mLQ9xNAnXVZO/b3VOxdhW7MHi4S1WYJN7Ma/+3vpmqaq3JWX
  /4JMhXWkOJDUGFlp6rCqvgGbfH1/fh6mm6SDo=
Received: by 10.141.116.17 with SMTP id
  t17mr1893312rvm.251.1221150733445; Thu, 11 Sep 2008 09:32:13 -0700
  (PDT)
Received: by 10.141.52.4 with HTTP; Thu, 11 Sep 2008 09:32:13 -0700
  (PDT)
Message-ID: <b3b04d380809110932p103a6b7di24b9b24151f88831@xxxxxxxxxxxxxx>
Date: Thu, 11 Sep 2008 17:32:13 +0100
From: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
Subject: Re: AAA login
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D03814E@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
  <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
  <B30058BB1DFBD9409403E624DE1EBD2D03814E@xxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sadiqtanko@xxxxx\.com] (2008/09/11 12:32:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>

Shane,

As soon as you enable aaa by "aaa new-model", all lines are secured by
default. This is only because it is safer to secure the lines by default and
have you the administrator open up what you want intentionally than leave a
back door for anyone, from a security perspective, as we keep hearing. :)

Anyways, so what you are seeing is the right behaviour (someone correct me
here if I am wrong). In other words, this command is silently turned on as
soon as you issue a "aaa new-model" on the box.

aaa authentication login default line

HTH
Sadiq


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 12:45:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BGjOrK018975
	GroupStudy Mailer; Thu, 11 Sep 2008 12:45:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BGjOVQ018973
	for securityxhiddenx; Thu, 11 Sep 2008 12:45:24 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.248]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BGjNnL018953 GroupStudy Mailer; Thu, 11 Sep 2008 12:45:24
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so439533rvb.54 for
  <security@xxxxxxxxxxxxxx>; Thu, 11 Sep 2008 09:45:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=PD2epRiy1rxdx/9GAIJiOwvsaxvPcZeCBaIAK1QSE9g=;
  b=b1dSGKubo7DVb5cREQCW/BTfTMVxhk4YJywpR/iELetXW7A9hqxhJLYbtnODZHMrP7
  S/1w5jMW+c6DAbk3enKOsznGg1SzhGfksHH+VXJxO09uk8FDPIuNnWP1uX4IY/oTn43o
  Met3Hvsx5xTi7VcrNDCkh/+vU9b/2XtMeod7g=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=IrY4u4lkFNluKVfVEdjPr2UzcIhBCAi0AA9tPS0eMyXK4QwzHk+H1o6S70nsGjlVXp
  93nBp9R9eHkZBEgFO5O4r6UuojlLk5OI1VSDOfJvsbJFu73n3nkqfR4aY9XsU5AlKFGq
  EWzJHuT97Nu3FGc8SkZXZ+CZ7T/DKxrNVnkw8=
Received: by 10.141.177.2 with SMTP id e2mr1900109rvp.268.1221151521955;
  Thu, 11 Sep 2008 09:45:21 -0700 (PDT)
Received: by 10.141.52.4 with HTTP; Thu, 11 Sep 2008 09:45:21 -0700
  (PDT)
Message-ID: <b3b04d380809110945q6d9c76fcl9344895c70609597@xxxxxxxxxxxxxx>
Date: Thu, 11 Sep 2008 17:45:21 +0100
From: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
Subject: Re: AAA login
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <b3b04d380809110932p103a6b7di24b9b24151f88831@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
  <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
  <B30058BB1DFBD9409403E624DE1EBD2D03814E@xxxxxxxxxxxxxxxxxxxxxx>
  <b3b04d380809110932p103a6b7di24b9b24151f88831@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sadiqtanko@xxxxx\.com] (2008/09/11 12:45:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sadiq Yakasai" <sadiqtanko@xxxxxxxxx>

Sorry, that was meant to be:


aaa authentication login default local


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 13:38:57 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BHcvkM024676
	GroupStudy Mailer; Thu, 11 Sep 2008 13:38:57 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BHcvQH024674
	for securityxhiddenx; Thu, 11 Sep 2008 13:38:57 -0400
Received: from EXCH-FRT.ftdata.com (63-148-101-62.dia.static.qwest.net
  [63.148.101.62]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8BHcuD1024597 GroupStudy Mailer; Thu, 11 Sep 2008 13:38:56
  -0400
Received: from ftdata-vex3.ftdata.com ([10.1.1.5]) by
  EXCH-FRT.ftdata.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 11 Sep
  2008 13:38:37 -0400
Content-class: urn:content-classes:message
Subject: tacacs / radius
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Thu, 11 Sep 2008 13:38:48 -0400
Message-ID: <B30058BB1DFBD9409403E624DE1EBD2D03814F@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: tacacs / radius
Thread-Index: AckUNT9nvdi3pjywQMG5laD4tgGdYA==
From: "Shane Miles" <smiles@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 11 Sep 2008 17:38:37.0939 (UTC)
  FILETIME=[39079430:01C91435]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from smiles@xxxxxx\.com] (2008/09/11 13:38:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shane Miles" <smiles@xxxxxxxxxx>

Scenario: A single NAS using both RADIUS and TACACS. I've seen configs where
people configure a policy NAT so ACS can see two different IP addresses; one
for RADIUS and one for TACACS. I can't figure out why this is done. It's not a
problem defining both RADIUS and TACACS using the same IP address in ACS. I've
done it many times with no problem. I'm just wondering if I'm missing
something.
--
Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 13:42:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BHgwUm025610
	GroupStudy Mailer; Thu, 11 Sep 2008 13:42:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BHgwIa025608
	for securityxhiddenx; Thu, 11 Sep 2008 13:42:58 -0400
Received: from jangofett.big5corp.com ([12.53.126.2]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8BHgv3G025585 GroupStudy
  Mailer; Thu, 11 Sep 2008 13:42:57 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Subject: Cisco VPN client adn AT&T DSL
Content-Type: text/plain; charset="us-ascii"
Date: Thu, 11 Sep 2008 10:42:54 -0700
Message-ID: <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: Cisco VPN client adn AT&T DSL
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFgADgYOyA=
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
  <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
From: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8BHgv3G025585
X-ASK-Info: Whitelist match [from m1k@xxxxxxxx\.com] (2008/09/11 13:42:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>

Hi guys

I have been having problems with users tying to remote access using
Cisco VPN client (ver. 5.0.02.0090) thru SBC / AT&T DSL. They can
authenticate, get the IP address but can not ping anything. I do not
have any problem with users connecting thru Sprint, Verizon, Comcast
etc. The problem only happens with all users using AT&T DSL. 

I enable NAT-T and later lower the MTU to 1292 for the VPN clients and
test connecting to different ASA firewalls (on Verizon and another on
AT&T network) but still have problem. NAT-T is already enabled on the
firewalls (ASA runs 8.0). The IPSec over UDP transparent tunneling is
enabled on the client as well. I am trying to test again tonight to see
if I can see anything else.

I just wonder if anyone else ever encounter the same problem like this.
Thanks
Martin


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 15:12:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BJClM4004274
	GroupStudy Mailer; Thu, 11 Sep 2008 15:12:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BJClxF004272
	for securityxhiddenx; Thu, 11 Sep 2008 15:12:47 -0400
Received: from idc-usa.com (mail.idc-usa.com [64.141.164.12]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BJCjfB004205
  GroupStudy Mailer; Thu, 11 Sep 2008 15:12:45 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: Cisco VPN client adn AT&T DSL
Date: Thu, 11 Sep 2008 15:13:35 -0400
Message-ID: <0ECBE0A108FE3F4ABBFED5892EEE36528EF3EA@xxxxxxxxxxxxxxxxxx>
In-Reply-To: <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: Cisco VPN client adn AT&T DSL
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFgADgYOyAAA0JcsA==
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
   <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
  <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
From: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
To: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8BJCjfB004205
X-ASK-Info: Whitelist match [from arohyans@xxxxxxx\.com] (2008/09/11 15:12:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>

Are the clients sitting directly on a public IP?  Are they actually
negotiating NAT-T?  I've noticed the same issue b/c the clients were on
a public IP and *not* negotiating NAT-T (b/c neither device saw the
other end behind NAT).  The way I solved it was to put a NAT device in
the transit path to force the clients to negotiate NAT-T (in my case, a
Linksys DD-WRT router).

HTH,

Aaron Rohyans
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Kurniawan Martin
Sent: Thursday, September 11, 2008 1:43 PM
To: Cisco certification
Subject: Cisco VPN client adn AT&T DSL

Hi guys

I have been having problems with users tying to remote access using
Cisco VPN client (ver. 5.0.02.0090) thru SBC / AT&T DSL. They can
authenticate, get the IP address but can not ping anything. I do not
have any problem with users connecting thru Sprint, Verizon, Comcast
etc. The problem only happens with all users using AT&T DSL. 

I enable NAT-T and later lower the MTU to 1292 for the VPN clients and
test connecting to different ASA firewalls (on Verizon and another on
AT&T network) but still have problem. NAT-T is already enabled on the
firewalls (ASA runs 8.0). The IPSec over UDP transparent tunneling is
enabled on the client as well. I am trying to test again tonight to see
if I can see anything else.

I just wonder if anyone else ever encounter the same problem like this.
Thanks
Martin


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 15:26:52 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BJQqlh005885
	GroupStudy Mailer; Thu, 11 Sep 2008 15:26:52 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BJQqhb005883
	for securityxhiddenx; Thu, 11 Sep 2008 15:26:52 -0400
Received: from exprod8og107.obsmtp.com (exprod8og107.obsmtp.com
  [64.18.3.94]) by groupstudy.com (8.12.11.20060308/8.12.11) with SMTP
  id m8BJQFK6005796 GroupStudy Mailer; Thu, 11 Sep 2008 15:26:15 -0400
Received: from source ([64.20.206.20]) by exprod8ob107.postini.com
  ([64.18.7.12]) with SMTP; Thu, 11 Sep 2008 12:26:12 PDT
Received: from MA1WP1004.mpiresearch.com ([10.1.125.54]) by
  ma1ex02.mpiresearch.com with Microsoft SMTPSVC(6.0.3790.1830); Thu, 11
  Sep 2008 15:26:12 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: Cisco VPN client adn AT&T DSL
Date: Thu, 11 Sep 2008 15:26:09 -0400
Message-ID: <8910BF8830FE854FB7BF913ABAA211C3A6B81A@xxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: Cisco VPN client adn AT&T DSL
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFgADgYOyAAA+viYA==
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
   <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
  <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
From: "Frank Misak" <Frank.Misak@xxxxxxxxxxxxxxx>
To: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 11 Sep 2008 19:26:12.0887 (UTC)
  FILETIME=[407A7A70:01C91444]
X-TM-AS-Product-Ver: SMEX-8.0.0.1181-5.500.1027-16152.001
X-TM-AS-Result: No--15.536400-8.000000-31
X-TM-AS-User-Approved-Sender: No
X-TM-AS-User-Blocked-Sender: No
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8BJQFK6005796
X-ASK-Info: Message Queued (2008/09/11 15:26:17)
X-ASK-Info: Confirmed by User (2008/09/11 15:26:52)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Frank Misak" <Frank.Misak@xxxxxxxxxxxxxxx>

Enable IPSec over TCP on the client and ASA.  AT&T says they are not
filtering, but somewhere in their network they are dropping that
traffic.  HTH.

Frank


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Kurniawan Martin
Sent: Thursday, September 11, 2008 1:43 PM
To: Cisco certification
Subject: Cisco VPN client adn AT&T DSL

Hi guys

I have been having problems with users tying to remote access using
Cisco VPN client (ver. 5.0.02.0090) thru SBC / AT&T DSL. They can
authenticate, get the IP address but can not ping anything. I do not
have any problem with users connecting thru Sprint, Verizon, Comcast
etc. The problem only happens with all users using AT&T DSL. 

I enable NAT-T and later lower the MTU to 1292 for the VPN clients and
test connecting to different ASA firewalls (on Verizon and another on
AT&T network) but still have problem. NAT-T is already enabled on the
firewalls (ASA runs 8.0). The IPSec over UDP transparent tunneling is
enabled on the client as well. I am trying to test again tonight to see
if I can see anything else.

I just wonder if anyone else ever encounter the same problem like this.
Thanks
Martin

This communication, including attachments, is for the exclusive use of addressee and 
may contain proprietary, confidential and/or privileged information. If you are not 
the intended recipient, any use, copying, disclosure, dissemination or distribution 
is strictly prohibited. If you are not the intended recipient, please notify the sender 
immediately by return e-mail, delete this communication and destroy all copies.


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 16:32:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BKWFvY012536
	GroupStudy Mailer; Thu, 11 Sep 2008 16:32:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BKWFl5012534
	for securityxhiddenx; Thu, 11 Sep 2008 16:32:15 -0400
Received: from jangofett.big5corp.com ([12.53.126.2]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8BKWEoo012513 GroupStudy
  Mailer; Thu, 11 Sep 2008 16:32:15 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: Cisco VPN client adn AT&T DSL
Date: Thu, 11 Sep 2008 13:32:11 -0700
Message-ID: <5102C15C6ADFA042B9833ACB360C97871A29D5@xxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <0ECBE0A108FE3F4ABBFED5892EEE36528EF3EA@xxxxxxxxxxxxxxxxxx>
Thread-Topic: Cisco VPN client adn AT&T DSL
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFgADgYOyAAA0JcsAACN/GQ
References: <ab1dcfa0809090920v59ca8492y62c21bc5f1aec9ac@xxxxxxxxxxxxxx>
   <8EB00AB9BCE95E4DBADDDB25EBCBF95D06A65A22@xxxxxxxxxxxxxxxxxxxxxxxxxx>
  <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
  <0ECBE0A108FE3F4ABBFED5892EEE36528EF3EA@xxxxxxxxxxxxxxxxxx>
From: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>
To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8BKWEoo012513
X-ASK-Info: Whitelist match [from m1k@xxxxxxxx\.com] (2008/09/11 16:32:15)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>

Some use public IP from DSL modem and some use NAT since they have home
network. I enable NAT-T globally since we also need to support remote
access for outside vendors or contractors from the same firewalls.

I test the client with public IP address and NAT-T disabled (on the
client and ASA firewall) and still can not ping anything after
successful VPN connection. I will try to test client with private IP
address / NAT.  This might not be the problem as I have many users with
Verizon air cards accessing VPN using public IP addresses and have no
problem.

I do not think we can legally force all end users to add NAT devices at
their end. Someone mentions IPSec over TCP (10000). I will try that as
well.
Thank you for the reply.
Martin


-----Original Message-----
From: Aaron T. Rohyans [mailto:arohyans@xxxxxxxxxxx] 
Sent: Thursday, September 11, 2008 12:14 PM
To: Kurniawan Martin; Cisco certification
Subject: RE: Cisco VPN client adn AT&T DSL

Are the clients sitting directly on a public IP?  Are they actually
negotiating NAT-T?  I've noticed the same issue b/c the clients were on
a public IP and *not* negotiating NAT-T (b/c neither device saw the
other end behind NAT).  The way I solved it was to put a NAT device in
the transit path to force the clients to negotiate NAT-T (in my case, a
Linksys DD-WRT router).

HTH,

Aaron Rohyans
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Kurniawan Martin
Sent: Thursday, September 11, 2008 1:43 PM
To: Cisco certification
Subject: Cisco VPN client adn AT&T DSL

Hi guys

I have been having problems with users tying to remote access using
Cisco VPN client (ver. 5.0.02.0090) thru SBC / AT&T DSL. They can
authenticate, get the IP address but can not ping anything. I do not
have any problem with users connecting thru Sprint, Verizon, Comcast
etc. The problem only happens with all users using AT&T DSL. 

I enable NAT-T and later lower the MTU to 1292 for the VPN clients and
test connecting to different ASA firewalls (on Verizon and another on
AT&T network) but still have problem. NAT-T is already enabled on the
firewalls (ASA runs 8.0). The IPSec over UDP transparent tunneling is
enabled on the client as well. I am trying to test again tonight to see
if I can see anything else.

I just wonder if anyone else ever encounter the same problem like this.
Thanks
Martin


From security-owner@xxxxxxxxxxxxxx Thu Sep 11 16:28:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8BKSF6k012306
	GroupStudy Mailer; Thu, 11 Sep 2008 16:28:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8BKSFYk012304
	for securityxhiddenx; Thu, 11 Sep 2008 16:28:15 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8BKSEHT012283 GroupStudy Mailer; Thu, 11 Sep 2008 16:28:14 -0400
Received: from ezorrilla (unknown [200.48.241.51]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 07DDD1F70D1 for
  <security@xxxxxxxxxxxxxx>; Thu, 11 Sep 2008 15:34:30 -0400 (EDT)
Message-ID: <005001c9144c$e79f3310$33f130c8@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Restric some IP address from Client to Site VPN
Date: Thu, 11 Sep 2008 15:28:09 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/11 16:28:15)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

The next scenario :

VPN|Client    ---->    [Internet]    ----->
(Outside)|C2611MX-VPN.Server|(Inside)    ---->    Servers.

How can I do so that I can restric one user from Internet just pass the XAUTH
from one specific address. The user is not configured in the VPN.Server, it is
on the ACS from Windows,

Regards


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 11:19:10 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CFJAgB006207
	GroupStudy Mailer; Fri, 12 Sep 2008 11:19:10 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CFJA6J006205
	for securityxhiddenx; Fri, 12 Sep 2008 11:19:10 -0400
Received: from EXCH-FRT.ftdata.com (63-148-101-62.dia.static.qwest.net
  [63.148.101.62]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8CFJ9lH006181 GroupStudy Mailer; Fri, 12 Sep 2008 11:19:09
  -0400
Received: from ftdata-vex3.ftdata.com ([10.1.1.5]) by
  EXCH-FRT.ftdata.com with Microsoft SMTPSVC(6.0.3790.3959); Fri, 12 Sep
  2008 11:18:53 -0400
Content-class: urn:content-classes:message
Subject: PIX vpn-filter allowing all traffic
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Fri, 12 Sep 2008 11:19:00 -0400
Message-ID: <B30058BB1DFBD9409403E624DE1EBD2D038151@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: PIX vpn-filter allowing all traffic
Thread-Index: AckU6uHZ6taCWiAsRyKpobzy2mD01A==
From: "Shane Miles" <smiles@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 12 Sep 2008 15:18:53.0472 (UTC)
  FILETIME=[DDE93200:01C914EA]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from smiles@xxxxxx\.com] (2008/09/12 11:19:10)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shane Miles" <smiles@xxxxxxxxxx>

My vpn-filter does not work. It's starting to look like a bug to me.  The VPN
comes up with no problem. The problem is I can still telnet and www through
the VPN with the config below. Any ideas why?

access-list FILTER extended deny tcp any any eq www
access-list FILTER extended deny tcp any any eq telnet
access-list FILTER extended permit ip any any
!
group-policy VPN attributes
 vpn-filter value FILTER
!
tunnel-group 10.1.1.100 general-attributes
 default-group-policy VPN

--
Shane


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 16:13:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CKDQEr003642
	GroupStudy Mailer; Fri, 12 Sep 2008 16:13:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CKDQ5s003640
	for securityxhiddenx; Fri, 12 Sep 2008 16:13:26 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.152]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8CKDPhv003619 GroupStudy Mailer; Fri, 12 Sep 2008 16:13:25
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so395566yxi.84 for
  <security@xxxxxxxxxxxxxx>; Fri, 12 Sep 2008 13:13:23 -0700 (PDT)
Received: by 10.150.228.12 with SMTP id
  a12mr1573158ybh.104.1221250403005; Fri, 12 Sep 2008 13:13:23 -0700
  (PDT)
Received: from BlackBox ( [72.193.212.120]) by mx.google.com with ESMTPS
  id 8sm13581443ywg.6.2008.09.12.13.13.21 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Fri, 12 Sep 2008 13:13:22 -0700 (PDT)
To: "'Edouard Zorrilla'" <ezorrilla@xxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
References: <005001c9144c$e79f3310$33f130c8@xxxxxxxxx>
In-Reply-To: <005001c9144c$e79f3310$33f130c8@xxxxxxxxx>
Subject: RE: Restric some IP address from Client to Site VPN
Date: Fri, 12 Sep 2008 13:13:08 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAHFJkXGe1qNFgx3j2Dm+20UBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckUUDg5OG0DsLJpTgucLaXhF+waiwAw49dg
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8CKDPhv003619
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/12 16:13:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Edouard,
You can use Downloadable ACL from the ACS or split tunneling if this user
has a fixed IP address


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Edouard Zorrilla
Sent: Thursday, September 11, 2008 1:28 PM
To: security@xxxxxxxxxxxxxx
Subject: Restric some IP address from Client to Site VPN

The next scenario :

VPN|Client    ---->    [Internet]    ----->
(Outside)|C2611MX-VPN.Server|(Inside)    ---->    Servers.

How can I do so that I can restric one user from Internet just pass the
XAUTH
from one specific address. The user is not configured in the VPN.Server, it
is
on the ACS from Windows,

Regards


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 16:34:34 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CKYY6Z006302
	GroupStudy Mailer; Fri, 12 Sep 2008 16:34:34 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CKYYG5006300
	for securityxhiddenx; Fri, 12 Sep 2008 16:34:34 -0400
Received: from web32616.mail.mud.yahoo.com (web32601.mail.mud.yahoo.com
  [68.142.207.228]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8CKYXe6006253 GroupStudy Mailer; Fri, 12 Sep 2008 16:34:33
  -0400
Received: (qmail 93935 invoked by uid 60001); 12 Sep 2008 20:34:25 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=nkNOIY/MoHDklPmqoXvqduTF9aey7pSz24oWkvPoN0QBvo6xJMDiG/0/b30hylRMs54gI8V5wrROxEnoPO3PMkqIHwGLcxDz5ORH7fHtmXWh4ygVmmOfs7oJasqFE+t65qVQxD7yn1kfXPh5mpLhoC3ZrzRo5z7U4u4avoby/EY=;
X-YMail-OSG: Vc3NgPMVM1n1aqDeGWtWtm_G.SNKx3MQsb4xepO54LgJ1SSMg_KdjvoaYYJ_6j2oQg93lkrHeTv4ggeMAT0K0l_Mfym5AqxE6H3UhsRFMctRknWGc96Jfninq4OOqhjdugM-
Received: from [200.169.165.2] by web32601.mail.mud.yahoo.com via HTTP;
  Fri, 12 Sep 2008 13:34:25 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Fri, 12 Sep 2008 13:34:25 -0700 (PDT)
From: Roberto Correa <roberto_correa0@xxxxxxxxx>
Subject: PASSED !
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from roberto_correa0@xxxxx\.com] (2008/09/12 16:34:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Roberto Correa <roberto_correa0@xxxxxxxxx>

Hi friends,

I'm glad to tell you that I've passed the exam on last tuesday and will be
away from this list for some time!!! :) I Hope to get back answering some
posts once in a while...

Best Regards, and "keep walking"!!!  It is a long run but it has a nice finish
line :)

Roberto Correa, CCIE #21998 (Security)


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 17:03:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CL3i7B011319
	GroupStudy Mailer; Fri, 12 Sep 2008 17:03:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CL3iA0011315
	for securityxhiddenx; Fri, 12 Sep 2008 17:03:44 -0400
Received: from smtp-gw31.mailanyone.net (smtp-gw31.mailanyone.net
  [208.70.128.57]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8CL3hw6011289 GroupStudy Mailer; Fri, 12 Sep 2008 17:03:43
  -0400
Received: from mailanyone.net by smtp-gw31.mailanyone.net with esmtpa
  (MailAnyone extSMTP smorris@xxxxxxxxxxxxxxxxxxxxxx) id
  1KeFno-0003M2-JH; Fri, 12 Sep 2008 16:03:40 -0500
From: "Scott Morris" <smorris@xxxxxxxxxxxxxxxxxxxxxx>
To: "'Roberto Correa'" <roberto_correa0@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: PASSED !
Date: Fri, 12 Sep 2008 17:03:39 -0400
Organization: Internetwork Expert
Message-ID: <019d01c9151b$07fc10f0$800610ac@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
thread-index: AckVGi8UMfnTAfM9SQ6w6kw355mzdwAANQGA
X-ASK-Info: Whitelist match [from smorris@xxxxxxxxxxxxxxxxxx\.com] (2008/09/12 17:03:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Scott Morris" <smorris@xxxxxxxxxxxxxxxxxxxxxx>

Congratulations!

Scott 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Roberto Correa
Sent: Friday, September 12, 2008 4:34 PM
To: security@xxxxxxxxxxxxxx
Subject: PASSED !

Hi friends,

I'm glad to tell you that I've passed the exam on last tuesday and will be
away from this list for some time!!! :) I Hope to get back answering some
posts once in a while...

Best Regards, and "keep walking"!!!  It is a long run but it has a nice
finish line :)

Roberto Correa, CCIE #21998 (Security)


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 17:26:25 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CLQPcO014405
	GroupStudy Mailer; Fri, 12 Sep 2008 17:26:25 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CLQPG6014403
	for securityxhiddenx; Fri, 12 Sep 2008 17:26:25 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.178]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8CLQOmr014383 GroupStudy Mailer; Fri, 12 Sep 2008 17:26:24
  -0400
Received: by wa-out-1112.google.com with SMTP id v33so626207wah.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 12 Sep 2008 14:26:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=YlsLo45jZGZFkFHfeU3DmC96rOiLxfMco/IDVvGMB+w=;
  b=YeXIyAJZy2tdA1IbfnBAN56bhfgv03FzqrtqlkNweVNTNqAWJa0tCsi1Gv2xt3Vdgx
  qoBq9ht5obquMVRqGDEqMOVRM8k0/6kVf8Obk9D5CKKzVOCOcWBD9boYNsn+Ys3Ofbv4
  L2+7s+PKvfCbfsSIA+NFSJ7J5f48ZyNp9xjRk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=JYfY9jliSKs5hKmMIO5f4z/PUs1c+Kc6AeFq2Mum6IGbjogLZnh4s4ItuukMqJEYHU
  lCk/CHOZZzTzlYLJVetihvm7iVf/gUbflXlKCJ1NfN8TIJq5ipugkY/aaEJc2gzpKrZB
  g07ZFn/4K7IsawceVS0rBAciFPjvEb1A0uY3w=
Received: by 10.114.192.3 with SMTP id p3mr3890367waf.112.1221254780848;
  Fri, 12 Sep 2008 14:26:20 -0700 (PDT)
Received: from ?192.168.10.103? ( [75.172.11.186]) by mx.google.com with
  ESMTPS id y11sm21032317pod.5.2008.09.12.14.26.19 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Fri, 12 Sep 2008 14:26:19 -0700 (PDT)
Cc: security@xxxxxxxxxxxxxx
Message-Id: <A0E410D4-E75E-4288-98EE-715EAE95CE67@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Roberto Correa <roberto_correa0@xxxxxxxxx>
In-Reply-To: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Subject: Re: PASSED !
Date: Fri, 12 Sep 2008 14:26:13 -0700
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.928.1)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/12 17:26:25)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

Congrats!


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 12, 2008, at 1:34 PM, Roberto Correa wrote:

> Hi friends,
>
> I'm glad to tell you that I've passed the exam on last tuesday and  
> will be
> away from this list for some time!!! :) I Hope to get back answering  
> some
> posts once in a while...
>
> Best Regards, and "keep walking"!!!  It is a long run but it has a  
> nice finish
> line :)
>
> Roberto Correa, CCIE #21998 (Security)


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 17:34:09 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CLY95B015211
	GroupStudy Mailer; Fri, 12 Sep 2008 17:34:09 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CLY94w015209
	for securityxhiddenx; Fri, 12 Sep 2008 17:34:09 -0400
Received: from jangofett.big5corp.com ([12.53.126.2]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8CLY8SC015189 GroupStudy
  Mailer; Fri, 12 Sep 2008 17:34:08 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: Cisco VPN client adn AT&T DSL
Date: Fri, 12 Sep 2008 14:34:05 -0700
Message-ID: <5102C15C6ADFA042B9833ACB360C97871A29F0@xxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <8910BF8830FE854FB7BF913ABAA211C3A6B81A@xxxxxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: Cisco VPN client adn AT&T DSL
Thread-Index: AckSnFgeeDdzsfnRSKCN9HhbqcdApAAt5AFgADgYOyAAA+viYAA2oU7w
References: <5102C15C6ADFA042B9833ACB360C97871A29CF@xxxxxxxxxxxxxxxxxxxxxx>
  <8910BF8830FE854FB7BF913ABAA211C3A6B81A@xxxxxxxxxxxxxxxxxxxxxxxxx>
From: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>
To: "Frank Misak" <Frank.Misak@xxxxxxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8CLY8SC015189
X-ASK-Info: Whitelist match [from m1k@xxxxxxxx\.com] (2008/09/12 17:34:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Kurniawan Martin" <M1K@xxxxxxxxxxxx>

You are right. That is the solution.
Thanks a lot
Martin

-----Original Message-----
From: Frank Misak [mailto:Frank.Misak@xxxxxxxxxxxxxxx] 
Sent: Thursday, September 11, 2008 12:26 PM
To: Kurniawan Martin; Cisco certification
Subject: RE: Cisco VPN client adn AT&T DSL

Enable IPSec over TCP on the client and ASA.  AT&T says they are not
filtering, but somewhere in their network they are dropping that
traffic.  HTH.

Frank


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Kurniawan Martin
Sent: Thursday, September 11, 2008 1:43 PM
To: Cisco certification
Subject: Cisco VPN client adn AT&T DSL

Hi guys

I have been having problems with users tying to remote access using
Cisco VPN client (ver. 5.0.02.0090) thru SBC / AT&T DSL. They can
authenticate, get the IP address but can not ping anything. I do not
have any problem with users connecting thru Sprint, Verizon, Comcast
etc. The problem only happens with all users using AT&T DSL. 

I enable NAT-T and later lower the MTU to 1292 for the VPN clients and
test connecting to different ASA firewalls (on Verizon and another on
AT&T network) but still have problem. NAT-T is already enabled on the
firewalls (ASA runs 8.0). The IPSec over UDP transparent tunneling is
enabled on the client as well. I am trying to test again tonight to see
if I can see anything else.

I just wonder if anyone else ever encounter the same problem like this.
Thanks
Martin

This communication, including attachments, is for the exclusive use of
addressee and 
may contain proprietary, confidential and/or privileged information. If
you are not 
the intended recipient, any use, copying, disclosure, dissemination or
distribution 
is strictly prohibited. If you are not the intended recipient, please
notify the sender 
immediately by return e-mail, delete this communication and destroy all
copies.


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 18:19:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8CMJdR0019245
	GroupStudy Mailer; Fri, 12 Sep 2008 18:19:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8CMJdcQ019243
	for securityxhiddenx; Fri, 12 Sep 2008 18:19:39 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8CMJc5L019219 GroupStudy Mailer; Fri, 12 Sep 2008 18:19:38
  -0400
Received: by gxk13 with SMTP id 13so25344091gxk.6 for
  <security@xxxxxxxxxxxxxx>; Fri, 12 Sep 2008 15:19:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=q+tt4J8aHgkAp3SNmM4EatVlRo1wdBn0SPNqwL6Jfc0=;
  b=Wwa0atmucQZBz/A8SpEGtjea6xMZmjnB2x1RhYqD2/J1M4wN5IYkUSBhFqW0IcBBb9
  PTv5vNi05+0uT3920+1Gu9ZOFWjcwipHKMH1lf60Tsps4Rkph9AHd+8ny+fOBU0mQNX6
  CDQVB/Txw6E5wG8sDCFxwIV/oXdtggwmnOB/o=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=sRakRaH/1Q4YnG2kRk+vmxc3PgLpJABzQAJRfLQM7bQRi0Q72jw0pwokrtNUEvtUs1
  lCeeigtHvZobDXLvizhe0BxceTmrqIMdDMCQJTz8dGtrqJnGe7fz57ZhMjY60TxuoSMv
  Gi38xkOAtiIxPXhuJJC0bwwumTQ7vMVy2heGc=
Received: by 10.151.112.4 with SMTP id p4mr6873615ybm.103.1221257970752;
  Fri, 12 Sep 2008 15:19:30 -0700 (PDT)
Received: by 10.150.12.6 with HTTP; Fri, 12 Sep 2008 15:19:30 -0700
  (PDT)
Message-ID: <876b984c0809121519r6bc23047w1d7dbc91bf6df86b@xxxxxxxxxxxxxx>
Date: Sat, 13 Sep 2008 01:19:30 +0300
From: "Shahid Ansari" <shahid1357@xxxxxxxxx>
To: "Roberto Correa" <roberto_correa0@xxxxxxxxx>
Subject: Re: PASSED !
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from shahid1357@xxxxx\.com] (2008/09/12 18:19:39)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shahid Ansari" <shahid1357@xxxxxxxxx>

C O N G R A T U L A T I ON S !


Thanks
Shahid

On Fri, Sep 12, 2008 at 11:34 PM, Roberto Correa
<roberto_correa0@xxxxxxxxx>wrote:

> Hi friends,
>
> I'm glad to tell you that I've passed the exam on last tuesday and will be
> away from this list for some time!!! :) I Hope to get back answering some
> posts once in a while...
>
> Best Regards, and "keep walking"!!!  It is a long run but it has a nice
> finish
> line :)
>
> Roberto Correa, CCIE #21998 (Security)
>
>


-- 
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Fri Sep 12 21:05:35 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D15ZhW000350
	GroupStudy Mailer; Fri, 12 Sep 2008 21:05:35 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8D15ZqF000348
	for securityxhiddenx; Fri, 12 Sep 2008 21:05:35 -0400
Received: from idc-usa.com (mail.idc-usa.com [64.141.164.12]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D15YBP000324
  GroupStudy Mailer; Fri, 12 Sep 2008 21:05:34 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: PASSED !
Date: Fri, 12 Sep 2008 21:05:26 -0400
Message-ID: <0ECBE0A108FE3F4ABBFED5892EEE365265A91F@xxxxxxxxxxxxxxxxxx>
Thread-Topic: PASSED !
Thread-Index: AckVKtvrGy4R5fA2SBiTYHMIa46bNgAEfLSW
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <876b984c0809121519r6bc23047w1d7dbc91bf6df86b@xxxxxxxxxxxxxx>
From: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
Cc: <security@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from arohyans@xxxxxxx\.com] (2008/09/12 21:05:35)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>

Congratulations Roberto!

Aaron

________________________________

From: nobody@xxxxxxxxxxxxxx on behalf of Shahid Ansari
Sent: Fri 9/12/2008 6:19 PM
To: Roberto Correa
Cc: security@xxxxxxxxxxxxxx
Subject: Re: PASSED !



C O N G R A T U L A T I ON S !


Thanks
Shahid

On Fri, Sep 12, 2008 at 11:34 PM, Roberto Correa
<roberto_correa0@xxxxxxxxx>wrote:

> Hi friends,
>
> I'm glad to tell you that I've passed the exam on last tuesday and will be
> away from this list for some time!!! :) I Hope to get back answering some
> posts once in a while...
>
> Best Regards, and "keep walking"!!!  It is a long run but it has a nice
> finish
> line :)
>
> Roberto Correa, CCIE #21998 (Security)
>
>


--
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 03:26:36 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D7Qa7Y022090
	GroupStudy Mailer; Sat, 13 Sep 2008 03:26:36 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8D7Qa4k022088
	for securityxhiddenx; Sat, 13 Sep 2008 03:26:36 -0400
Received: from smtp19.orange.fr (smtp19.orange.fr [80.12.242.17]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D7QZej022068
  GroupStudy Mailer; Sat, 13 Sep 2008 03:26:35 -0400
Received: by mwinf1910.orange.fr (SMTP Server) id ACF895C34332; Sat, 13
  Sep 2008 08:39:06 +0200 (CEST)
Date: Sat, 13 Sep 2008 08:39:06 +0200 (CEST)
X-ME-UUID: 20080913063903598.922561C00084@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080913063906.ACF895C34332@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/13 03:26:36)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf1910.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<steelerxiv@xxxxxxxxxxx>: host mx1.hotmail.com[65.54.245.8] said: 550 Requested
    action not taken: mailbox unavailable (in reply to RCPT TO command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 00E505C1E6F4
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sat, 13 Sep 2008 08:39:04 +0200 (CEST)

Final-Recipient: rfc822; steelerxiv@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx1.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp19.orange.fr (mwinf1908 [172.22.129.36]) by
  mwinf1910.orange.fr (SMTP Server) with ESMTP id 00E505C1E6F4; Sat, 13
  Sep 2008 08:39:04 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1908.orange.fr (SMTP Server) with ESMTP id EA1D31C00085; Sat, 13
  Sep 2008 08:39:03 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf1908.orange.fr (SMTP Server) with SMTP id
  922561C00084; Sat, 13 Sep 2008 08:39:03 +0200 (CEST)
X-ME-UUID: 20080913063903598.922561C00084@xxxxxxxxxxxxxxxxxxx
Message-ID: <004901c915ce$e731ad9b$b3b58632@xxxxxxxx>
From: "=?windows-1251?B?VWx5IE0=?=" <security@xxxxxxxxxxxxxx>
To: <steelertime@xxxxxxxxxxx>, <steelerxiv@xxxxxxxxxxx>,
  <steeleryo@xxxxxxxxxxx>
Subject: =?windows-1251?B?V291bGQgeW91IGxpa2UgdG8gYmUgbXkgaHVzYmFuZD8=?=
Date: Sat, 13 Sep 2008 08:38:59 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

Ave, dear!

Admiration is a very shortlived passion, that immediately decays upon 
growing familiar with its object.

I hope it is not about us.
That is why you should know that I am really and down to earth kind of girl. 
I like good food, good environments, surounded by good people, with good times. 
I love my family, my friends. I am no stress kind of girl and 
live day by day trying not to dwell on things. 
If you enjoy it, I am here http://buildyourhappylove.net/mysweethearth/

Hugs and kisses
Uli


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 04:06:48 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D86mcX026725
	GroupStudy Mailer; Sat, 13 Sep 2008 04:06:48 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8D86lGK026723
	for securityxhiddenx; Sat, 13 Sep 2008 04:06:47 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.227]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8D86l4S026702 GroupStudy Mailer; Sat, 13 Sep 2008 04:06:47
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so837681wra.10 for
  <security@xxxxxxxxxxxxxx>; Sat, 13 Sep 2008 01:06:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=tM1lwUl48pdf6bz+8pKD9TuvHn6AKONZZbh40ZhZAv0=;
  b=raTvz5z+V1oamK0XF8KzqivhuYas5+f94rcrV0jNVcMs/ki3dvKY1C2sM/kU8aXSeS
  LrorKdlAHwOFVtimS5c37p2zis8ojMnm7jloM78Z9aMbOBTIvVFsQ15uhKLwTJbHTb4t
  z7KnrJ/9xUJ4GHDyzR/m5KvLoDGCB9PH+J7Ak=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=hgqTlokeAwvuzwyrmHQTwPOsR/EtAMbCbd88Yrq/Wbh6afoaKjUb3qBW9RJUOJPHVN
  u9ZVQLC9HvU0XKPsurc4mHPIOA+fRWDpIOS4SEj+WcmqWAaE5qiIOtrC8bImVK6nkwjd
  V9t7bsBq2aZs6CB7B4XndEEOB7/A8sE7gd/7Y=
Received: by 10.150.202.9 with SMTP id z9mr7410158ybf.22.1221293202483;
  Sat, 13 Sep 2008 01:06:42 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Sat, 13 Sep 2008 01:06:42 -0700
  (PDT)
Message-ID: <eff3217d0809130106n66cb9b7ek3562b695627fce7c@xxxxxxxxxxxxxx>
Date: Sat, 13 Sep 2008 11:06:42 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
Subject: Re: Block or Limit Skype using IPS
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <f589772b0809090447h79f0e5dfx45059725edde1bc8@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/13 04:06:47)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Dear Muhammad

You can find useful information (perhaps more than needed) on the following
link to block skype:

http://www1.cs.columbia.edu/~salman/skype/

Regards

Farrukh

On Tue, Sep 9, 2008 at 2:47 PM, Muhammad Nasim <muhammad.nasim@xxxxxxxxx>wrote:

> Dear All,
>
> I want to know can we block or limit SKYPE using Cisco IPS (6.x) or Mcafee
> IPS (4.1).?
>
> Any inputs/info will be helful
>
> Thanks
>
>
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 04:50:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8D8oFbP029385
	GroupStudy Mailer; Sat, 13 Sep 2008 04:50:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8D8oFuY029383
	for securityxhiddenx; Sat, 13 Sep 2008 04:50:15 -0400
Received: from blu0-omc3-s21.blu0.hotmail.com
  (blu0-omc3-s21.blu0.hotmail.com [65.55.116.96]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8D8oDtv029309 GroupStudy
  Mailer; Sat, 13 Sep 2008 04:50:13 -0400
Received: from BLU111-W1 ([65.55.116.73]) by
  blu0-omc3-s21.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Sat, 13 Sep 2008 01:50:08 -0700
Message-ID: <BLU111-W18434F907892F0FFF5641B1500@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [87.101.245.39]
From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
To: Roberto Correa <roberto_correa0@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Subject: RE: PASSED !
Date: Sat, 13 Sep 2008 08:50:08 +0000
In-Reply-To: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
X-OriginalArrivalTime: 13 Sep 2008 08:50:08.0359 (UTC)
  FILETIME=[B9792770:01C9157D]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from falbaridi@xxxxxxx\.com] (2008/09/13 04:50:14)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>

Congratulations man.

Alfadi Albaridi

> Date: Fri, 12 Sep 2008 13:34:25 -0700
> From: roberto_correa0@xxxxxxxxx
> Subject: PASSED !
> To: security@xxxxxxxxxxxxxx
>
> Hi friends,
>
> I'm glad to tell you that I've passed the exam on last tuesday and will be
> away from this list for some time!!! :) I Hope to get back answering some
> posts once in a while...
>
> Best Regards, and "keep walking"!!!  It is a long run but it has a nice
finish
> line :)
>
> Roberto Correa, CCIE #21998 (Security)
>

_________________________________________________________________
Get more out of the Web. Learn 10 hidden secrets of Windows Live.
http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550
F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 06:23:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8DANBvt004710
	GroupStudy Mailer; Sat, 13 Sep 2008 06:23:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8DANAlE004708
	for securityxhiddenx; Sat, 13 Sep 2008 06:23:10 -0400
Received: from el-out-1112.google.com (el-out-1112.google.com
  [209.85.162.183]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8DANAF8004688 GroupStudy Mailer; Sat, 13 Sep 2008 06:23:10
  -0400
Received: by el-out-1112.google.com with SMTP id n30so611223elf.12 for
  <security@xxxxxxxxxxxxxx>; Sat, 13 Sep 2008 03:23:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=zbdlLo5rXOsPtgOMnDjQHtiAITIP/8EB+AbVMhZJCss=;
  b=wa6Wcrt1OGwxgt0oBsEcjbdxdHbn5Jxjq6mXbczoSMkgCLUBeHzdJ8LRbEGwbQzlWy
  QCHt4W1bQ2hGXggRLACw0BTMc/ZkXxjeSxbSpPfFxDoj3M2fJFbGw1gocN+JBWwJd2E7
  lID2Z13jX8fHs+gXitnzxGV47YhLLQEjc8QhU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=VinoWk1Gd0JoHVqpnIjEfYIvVjMVz/3lntfkAsxTwrolaKTNavNiR0jbtREg1xeVik
  JOIsdl2WHKAbNDbP+RdXR5TiHQnM6q/j4eSvXki/z7wmHOvAo/2xqULb8L0Hb0HtkIFe
  nui0ePlhEwM8QbXm5kul3+qp21KtoavVcmWiY=
Received: by 10.151.112.4 with SMTP id p4mr7452885ybm.141.1221301389541;
  Sat, 13 Sep 2008 03:23:09 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Sat, 13 Sep 2008 03:23:09 -0700
  (PDT)
Message-ID: <eff3217d0809130323s4b4827f3od370b45893b3fa38@xxxxxxxxxxxxxx>
Date: Sat, 13 Sep 2008 13:23:09 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
Subject: Re: tacacs / radius
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D03814F@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D03814F@xxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/13 06:23:10)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

In older versions of ACS you could not do this AFAIR. That was the reason
for the NAT/Loobpack-source.

Now you can!
On Thu, Sep 11, 2008 at 8:38 PM, Shane Miles <smiles@xxxxxxxxxx> wrote:

> Scenario: A single NAS using both RADIUS and TACACS. I've seen configs
> where
> people configure a policy NAT so ACS can see two different IP addresses;
> one
> for RADIUS and one for TACACS. I can't figure out why this is done. It's
> not a
> problem defining both RADIUS and TACACS using the same IP address in ACS.
> I've
> done it many times with no problem. I'm just wondering if I'm missing
> something.
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 06:52:34 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8DAqYSi007009
	GroupStudy Mailer; Sat, 13 Sep 2008 06:52:34 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8DAqYoh007007
	for securityxhiddenx; Sat, 13 Sep 2008 06:52:34 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.237]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8DAqYHX006987 GroupStudy Mailer; Sat, 13 Sep 2008 06:52:34
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so852761wra.10 for
  <security@xxxxxxxxxxxxxx>; Sat, 13 Sep 2008 03:52:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=qzBcWuv7uubWtdfoUD7mre301cUKBG+XRNdgNBgVf98=;
  b=LwEZjxDiCGELtQhqh+7Oxz/qUbTZAoqtiNYUvz07sCMUH8LqByLEgTy49anFCW3dJJ
  NGDSJEDXiKGzRcz8BWPYGG8FNN7DIQ4S66OlPJNLLXgxv2oVvyd7ICoC3ehyedpGoP8j
  HUyDIkDu2jYlSWvGsfeelXi6mKfdiBXvdK/Xk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=ZzCC/gbdKWg1nIN8TkDpmILVHFmCcXD/4qFWpnmAlQ2uDPTEXkFQ1R1FvsS6+3suL4
  88Ve7hCzoG/RMFXzjEGJUM3OqzHWCIK4idJ39wWYt4YXGnu9LSEYV9fA9Y6o82bvCqSK
  2mWyuYjo4gq9xvo/pJ9Ns6xHrXeWJP+Ht1/X8=
Received: by 10.151.40.3 with SMTP id s3mr6711824ybj.245.1221303153651;
  Sat, 13 Sep 2008 03:52:33 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Sat, 13 Sep 2008 03:52:33 -0700
  (PDT)
Message-ID: <eff3217d0809130352t23294744veaed13a1307c83c6@xxxxxxxxxxxxxx>
Date: Sat, 13 Sep 2008 13:52:33 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
Subject: Re: AAA login
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/13 06:52:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

There is a 'hidden' default method list pointing to the 'local' database.

Once you enable AAA globally (using aaa new-model), this 'hidden' list gets
applied to all VTY lines. This 'default hidden list' *DOES NOT* apply to the
console.

However if you go ahead and create a 'default' method list yourself as per
below example, then this list *is* applied to ALL lines including the
console. If you make named method lists like VTY,ABC etc. this is not
applied anywhere unless you expilctly go to the line/console/aux and apply
it yourself.

aaa authentication login default local

Regards

Farrukh

On Thu, Sep 11, 2008 at 4:46 PM, Shane Miles <smiles@xxxxxxxxxx> wrote:

> Consider this simple config:
>
> aaa new-model
> aaa authentication login VTY local
> aaa authorization exec VTY local
> !
> line vty 5
>  login authentication VTY
>  authorization exec VTY
>  rotary 1
> !
> username ADMIN privilege password CISCO
>
>
> Notice I made no changes to vty 0 4 nor did I make any changes to the
> "default" login. I telnet to port 3001 and I get the username prompt as
> expected and can login. But when I telnet to port 23 I still get a username
> prompt? Why is this so since I made no changes to the vty 0 4? I would
> expect
> the line password prompt. To put it to what I thought it should be I had to
> do
> this:
>
> aaa authentication login default line
>
> Could some explain why line vty 0 4 changes when I made no changes to the
> lines 0 4 or the default login?
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 07:22:48 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8DBMmfj009238
	GroupStudy Mailer; Sat, 13 Sep 2008 07:22:48 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8DBMmEt009236
	for securityxhiddenx; Sat, 13 Sep 2008 07:22:48 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8DBMlF6009211 GroupStudy Mailer; Sat, 13 Sep 2008 07:22:47
  -0400
Received: by gxk13 with SMTP id 13so26085350gxk.6 for
  <security@xxxxxxxxxxxxxx>; Sat, 13 Sep 2008 04:22:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=iP5xfVbtO/drKv0gMqF9bLqnX2t079GLoub1V5gcW1A=;
  b=TCBos0WKDt8T/cd39OSK+TGzmjyJkHd9s8twtOMbApTk+jM/RhxmP/iyCvepKNHAyZ
  QHav/VtcQYmcVlUIVhUUmn6MbiaXZSwOl6gOiCX+WlfsWNKNUKe2d4pvnS1hdrXU9f2L
  GPLOfamIcFZLu507YIxsttEpD3M9Kdh4baIbY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=VOewfu/VvV6g1y/H6p/jBfiqAebN8cP47Hfu7UojNrh+NgAaIaUi6pB7Co2LGPglIQ
  VFO6K4iqrr6YiD827m/9VCmlpQkWvsN2MnyAZfIvP9ix1VmB1Ut9PBazApS0C0RDxz+B
  9uvHV0lNG+r6HUlhXzmZqNcb5IJFN3uCoF0AE=
Received: by 10.100.112.9 with SMTP id k9mr6381821anc.72.1221304961833;
  Sat, 13 Sep 2008 04:22:41 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Sat, 13 Sep 2008 04:22:41 -0700
  (PDT)
Message-ID: <150f570d0809130422k7ef9183evdaed1a69c049c19a@xxxxxxxxxxxxxx>
Date: Sat, 13 Sep 2008 14:22:41 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: "Alfadi Albaridi" <falbaridi@xxxxxxxxxxx>
Subject: Re: PASSED !
Cc: "Roberto Correa" <roberto_correa0@xxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <BLU111-W18434F907892F0FFF5641B1500@xxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <564110.93310.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <BLU111-W18434F907892F0FFF5641B1500@xxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/13 07:22:48)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Congrats Roberto! Excellent achievement!!!!!

George

On Sat, Sep 13, 2008 at 11:50 AM, Alfadi Albaridi <falbaridi@xxxxxxxxxxx> wrote:
> Congratulations man.
>
> Alfadi Albaridi
>
>> Date: Fri, 12 Sep 2008 13:34:25 -0700
>> From: roberto_correa0@xxxxxxxxx
>> Subject: PASSED !
>> To: security@xxxxxxxxxxxxxx
>>
>> Hi friends,
>>
>> I'm glad to tell you that I've passed the exam on last tuesday and will be
>> away from this list for some time!!! :) I Hope to get back answering some
>> posts once in a while...
>>
>> Best Regards, and "keep walking"!!!  It is a long run but it has a nice
> finish
>> line :)
>>
>> Roberto Correa, CCIE #21998 (Security)
>>
>
> _________________________________________________________________
> Get more out of the Web. Learn 10 hidden secrets of Windows Live.
> http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550
> F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 19:32:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8DNWOXj032586
	GroupStudy Mailer; Sat, 13 Sep 2008 19:32:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8DNWOTn032584
	for securityxhiddenx; Sat, 13 Sep 2008 19:32:24 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8DNWM0L032563 GroupStudy Mailer; Sat, 13 Sep 2008 19:32:23 -0400
Received: from ezorrilla (unknown [190.43.195.90]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 625C41F70D1; Sat, 13 Sep
  2008 18:38:44 -0400 (EDT)
Message-ID: <008601c915f8$f965a270$5ac32bbe@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>
Cc: <security@xxxxxxxxxxxxxx>
References: <005001c9144c$e79f3310$33f130c8@xxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAHFJkXGe1qNFgx3j2Dm+20UBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Subject: Re: Restric some IP address from Client to Site VPN
Date: Sat, 13 Sep 2008 18:32:23 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/13 19:32:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

Excuse me Sir, But I give my customers a fixed private ip address and they 
are going to get it always. My question is how can I limit just some ip 
public address has access to my site w/o configuring my Firewall just doing 
something else from the user config.

Regards

----- Original Message ----- 
From: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>
To: "'Edouard Zorrilla'" <ezorrilla@xxxxxxxxxx>; <security@xxxxxxxxxxxxxx>
Sent: Friday, September 12, 2008 3:13 PM
Subject: RE: Restric some IP address from Client to Site VPN


> Hi Edouard,
> You can use Downloadable ACL from the ACS or split tunneling if this user
> has a fixed IP address
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Edouard Zorrilla
> Sent: Thursday, September 11, 2008 1:28 PM
> To: security@xxxxxxxxxxxxxx
> Subject: Restric some IP address from Client to Site VPN
>
> The next scenario :
>
> VPN|Client    ---->    [Internet]    ----->
> (Outside)|C2611MX-VPN.Server|(Inside)    ---->    Servers.
>
> How can I do so that I can restric one user from Internet just pass the
> XAUTH
> from one specific address. The user is not configured in the VPN.Server, 
> it
> is
> on the ACS from Windows,
>
> Regards


From security-owner@xxxxxxxxxxxxxx Sat Sep 13 22:18:10 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8E2IAbv011797
	GroupStudy Mailer; Sat, 13 Sep 2008 22:18:10 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8E2IAd0011795
	for securityxhiddenx; Sat, 13 Sep 2008 22:18:10 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.184]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8E2I8fZ011775 GroupStudy Mailer; Sat, 13 Sep 2008 22:18:08
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so859739tib.24 for
  <security@xxxxxxxxxxxxxx>; Sat, 13 Sep 2008 19:18:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=E2EUcUzQ/pO9dbB5U6sq2PKMsq/5Mpm2HCXa+MTq3hc=;
  b=nO3FPkVwCFhgJXhSCEBbowOiZ4TQeGQ03ZLJ6FihUthSEHUJAkYOKyXbD36ouFtUpn
  DuIlmxo3duvvH7OAzSyJmHdaTDEVT4Lz9RE5FllgDwoIwP3J+6RzAcUxu6lRoyy59pYa
  /Wb2qNNvHaWojcWFwxed0mh2Ff3sbQpbCw2JY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=EvqaKNGIaJvz/3zSfwtZSCgxvTAMRclylIzOinkx3fCNL3lZBX5YGgEH9OTRdXjund
  f5WFrXLlKAdWDuC0g6YWoIslBzb+3WZGGrvshBC21FKrFDz/TT+y9NUCq8+T5W0cIm4T
  zGhScSpbffVFyu6L9hwpc8/mEEh5zMJi7gNiI=
Received: by 10.110.57.6 with SMTP id f6mr7690267tia.38.1221358683749;
  Sat, 13 Sep 2008 19:18:03 -0700 (PDT)
Received: by 10.110.53.16 with HTTP; Sat, 13 Sep 2008 19:18:03 -0700
  (PDT)
Message-ID: <f589772b0809131918s3a2ccc1cn8a8640ecf4463f56@xxxxxxxxxxxxxx>
Date: Sun, 14 Sep 2008 05:18:03 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
Subject: Re: Restric some IP address from Client to Site VPN
Cc: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <008601c915f8$f965a270$5ac32bbe@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <005001c9144c$e79f3310$33f130c8@xxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAHFJkXGe1qNFgx3j2Dm+20UBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <008601c915f8$f965a270$5ac32bbe@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/13 22:18:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Ramy your signature is good but when you mentioned CCIE Program Manager it
seems to me that you replaced Marulio  : ) in Cisco.



2008/9/14 Edouard Zorrilla <ezorrilla@xxxxxxxxxx>

> Excuse me Sir, But I give my customers a fixed private ip address and they
> are going to get it always. My question is how can I limit just some ip
> public address has access to my site w/o configuring my Firewall just doing
> something else from the user config.
>
> Regards
>
> ----- Original Message ----- From: "Ramy Sisy" <
> ramysisy@xxxxxxxxxxxxxxxxxx>
> To: "'Edouard Zorrilla'" <ezorrilla@xxxxxxxxxx>; <security@xxxxxxxxxxxxxx>
> Sent: Friday, September 12, 2008 3:13 PM
> Subject: RE: Restric some IP address from Client to Site VPN
>
>
>
>  Hi Edouard,
>> You can use Downloadable ACL from the ACS or split tunneling if this user
>> has a fixed IP address
>>
>>
>> BEST REGARDS,
>>
>> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
>> CCIE PROGRAM MANAGER
>>
>> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
>> WWW.INSPIREDMASTER.COM
>> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
>> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>> Edouard Zorrilla
>> Sent: Thursday, September 11, 2008 1:28 PM
>> To: security@xxxxxxxxxxxxxx
>> Subject: Restric some IP address from Client to Site VPN
>>
>> The next scenario :
>>
>> VPN|Client    ---->    [Internet]    ----->
>> (Outside)|C2611MX-VPN.Server|(Inside)    ---->    Servers.
>>
>> How can I do so that I can restric one user from Internet just pass the
>> XAUTH
>> from one specific address. The user is not configured in the VPN.Server,
>> it
>> is
>> on the ACS from Windows,
>>
>> Regards
>>
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Sun Sep 14 16:25:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8EKPpBP011620
	GroupStudy Mailer; Sun, 14 Sep 2008 16:25:51 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8EKPpX9011618
	for securityxhiddenx; Sun, 14 Sep 2008 16:25:51 -0400
Received: from mirtmail1.monaco-interactive.com
  (mirtmail1.monaco-interactive.com [195.78.26.20]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8EKPo0m011597 GroupStudy
  Mailer; Sun, 14 Sep 2008 16:25:51 -0400
Received: by mirtmail1.monaco-interactive.com (Postfix) id 073E519C00A;
  Sun, 14 Sep 2008 22:25:47 +0200 (CEST)
Date: Sun, 14 Sep 2008 22:25:47 +0200 (CEST)
From: MAILER-DAEMON@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx (Mail Delivery
  System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080914202547.073E519C00A@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/14 16:25:51)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx (Mail Delivery System)

This is the Postfix program at host mirtmail1.monaco-interactive.com.

I'm sorry to have to inform you that your message could not be
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to <postmaster>

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

			The Postfix program

<souza@xxxxxxxxxxxxxxx>: host 80.94.99.40[80.94.99.40] said: 550 5.1.1
    <souza@xxxxxxxxxxxxxxx>: Recipient address rejected: User unknown in
    virtual mailbox table (in reply to RCPT TO command)
Reporting-MTA: dns; mirtmail1.monaco-interactive.com
X-Postfix-Queue-ID: 0078819C006
X-Postfix-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sun, 14 Sep 2008 22:25:47 +0200 (CEST)

Final-Recipient: rfc822; souza@xxxxxxxxxxxxxxx
Action: failed
Status: 5.0.0
Diagnostic-Code: X-Postfix; host 80.94.99.40[80.94.99.40] said: 550 5.1.1
    <souza@xxxxxxxxxxxxxxx>: Recipient address rejected: User unknown in
    virtual mailbox table (in reply to RCPT TO command)
Received: from promx2.mail.libello.com (promx2.mail.libello.com
  [195.78.26.188]) by mirtmail1.monaco-interactive.com (Postfix) with
  ESMTP id 0078819C006 for <souza@xxxxxxxxxxxxxxx>; Sun, 14 Sep 2008
  22:25:47 +0200 (CEST)
Received: from promx2.mail.libello.com (localhost.localdomain
  [127.0.0.1]) by localhost (Postfix) with SMTP id 5078F3FE5A for
  <souza@xxxxxxxxxxxxxxx>; Sun, 14 Sep 2008 22:25:46 +0200 (CEST)
Received: from smtp19.orange.fr (smtp19.orange.fr [80.12.242.18]) by
  promx2.mail.libello.com (Postfix) with ESMTP id 2D72B3FE59 for
  <souza@xxxxxxxxxxxxxxx>; Sun, 14 Sep 2008 22:25:45 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1926.orange.fr (SMTP Server) with ESMTP id 699621C00099; Sun, 14
  Sep 2008 22:25:46 +0200 (CEST)
Received: from serveur
  (LAubervilliers-153-51-44-250.w193-253.abo.wanadoo.fr
  [193.253.203.250]) by mwinf1926.orange.fr (SMTP Server) with SMTP id
  0083B1C00092; Sun, 14 Sep 2008 22:25:45 +0200 (CEST)
X-ME-UUID: 20080914202546219.0083B1C00092@xxxxxxxxxxxxxxxxxxx
Message-ID: <003d01c9170c$ecb7ddf7$bf474ea1@xxxxxxxxxxxxxx>
From: "=?windows-1251?B?VWx5YSBNLg==?=" <security@xxxxxxxxxxxxxx>
To: <souza@xxxxxxx>, <souza@xxxxxxx>, <souza@xxxxxxxxxxxxxxx>
Subject: [SPAM Prob:81%] =?windows-1251?B?d2FubmEgc2hhcmUgbG92ZQ==?=
Date: Sun, 14 Sep 2008 22:26:11 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-PMX-Version: 5.2.1.279297, Antispam-Engine: 2.4.0.264935,
  Antispam-Data: 2008.9.14.200710
X-PerlMx-Spam: Gauge=XXXXXXXXI, Probability=81%,
  Report='URI_CLASS_PROACTIVE_DOMAIN 8, USER_AGENT_OE 0,
  __CHARSET_IS_CP1251 0, __CHARSET_IS_CP1251_SUBJ 0, __CP_URI_IN_BODY 0,
  __CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __HAS_MSMAIL_PRI 0,
  __HAS_X_MAILER 0, __HAS_X_PRIORITY 0, __MIME_TEXT_ONLY 0,
  __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT_MS_GENERIC 0'
X-PerlMx-SIL: Loose

I greet you!

What we anticipate seldom occurs, what we least expected generally happens.

May be this letter is something unexpcted for you? Than resign yourself and read it!
Are you open for some new changes. 
I have never been married, I really only want to do it once. 
If you are intelligent, creative, honest, adventurous, and thankful - 
you are that my dream! I am here http://buildyourhappylove.net/mysweethearth/

Good-bye
Uly


From security-owner@xxxxxxxxxxxxxx Sun Sep 14 16:25:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8EKPwKc011648
	GroupStudy Mailer; Sun, 14 Sep 2008 16:25:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8EKPwNX011646
	for securityxhiddenx; Sun, 14 Sep 2008 16:25:58 -0400
Received: from mail19d.g19.rapidsite.net (mail19d.g19.rapidsite.net
  [204.202.242.120]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8EKPwGj011624 GroupStudy Mailer; Sun, 14 Sep 2008 16:25:58
  -0400
Message-Id: <200809142025.m8EKPwGj011624@xxxxxxxxxxxxxx>
Received: (qmail 94133 invoked for bounce); 14 Sep 2008 20:25:55 -0000
Date: 14 Sep 2008 20:25:55 -0000
From: MAILER-DAEMON@xxxxxxxxxxxxxxxxxxxxxxxxx
To: security@xxxxxxxxxxxxxx
Subject: failure notice
X-ASK-Info: Message from Mailer-Daemon (2008/09/14 16:25:58)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxxxxxxxxxxxxxxxxxx

Hi. This is the qmail-send program at mail19d.g19.rapidsite.net.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<globaleducation@xxxxxxx>:
132.238.2.111 does not like recipient.
Remote host said: 591 globaleducation@xxxxxxx your host [204.202.242.120] is blacklisted. Send your questions to blacklist-admin@xxxxxxxxxxx
Giving up on 132.238.2.111.

--- Below this line is a copy of the message.

Return-Path: <security@xxxxxxxxxxxxxx>
Received: from mx48.stngva01.us.mxservers.net (204.202.242.14)
	by mail19d.g19.rapidsite.net (RS ver 1.0.95vs) with SMTP id 1-0940493946
	for <souza@xxxxxxx>; Sun, 14 Sep 2008 16:25:47 -0400 (EDT)
Received: from unknown [80.12.242.18] (EHLO smtp19.orange.fr)
	by va1-mx48.stngva01.us.mxservers.net (mxl_mta-3.1.0-03)
	with ESMTP id a437dc84.2241850272.708217.00-014.va1-mx48.stngva01.us.mxservers.net (envelope-from <security@xxxxxxxxxxxxxx>);
	Sun, 14 Sep 2008 16:25:46 -0400 (EDT)
Received: from me-wanadoo.net (localhost [127.0.0.1])
	by mwinf1926.orange.fr (SMTP Server) with ESMTP id 699621C00099;
	Sun, 14 Sep 2008 22:25:46 +0200 (CEST)
Received: from serveur (LAubervilliers-153-51-44-250.w193-253.abo.wanadoo.fr [193.253.203.250])
	by mwinf1926.orange.fr (SMTP Server) with SMTP id 0083B1C00092;
	Sun, 14 Sep 2008 22:25:45 +0200 (CEST)
X-ME-UUID: 20080914202546219.0083B1C00092@xxxxxxxxxxxxxxxxxxx
Message-ID: <003d01c9170c$ecb7ddf7$bf474ea1@xxxxxxxxxxxxxx>
From: "=?windows-1251?B?VWx5YSBNLg==?=" <security@xxxxxxxxxxxxxx>
To: <souza@xxxxxxx>, <souza@xxxxxxx>, <souza@xxxxxxxxxxxxxxx>
Subject: =?windows-1251?B?d2FubmEgc2hhcmUgbG92ZQ==?=
Date: Sun, 14 Sep 2008 22:26:11 +0200
MIME-Version: 1.0
Content-Type: text/plain;
	format=flowed;
	charset="windows-1251";
	reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-Spam: [F=0.2058823529; B=0.500(0); S=0.100(2008081101); MH=0.700(2008091430)]
X-MAIL-FROM: <security@xxxxxxxxxxxxxx>
X-SOURCE-IP: [80.12.242.18]
X-SF-Loop: 1


I greet you!

What we anticipate seldom occurs, what we least expected generally happens.

May be this letter is something unexpcted for you? Than resign yourself and read it!
Are you open for some new changes. 
I have never been married, I really only want to do it once. 
If you are intelligent, creative, honest, adventurous, and thankful - 
you are that my dream! I am here http://buildyourhappylove.net/mysweethearth/

Good-bye
Uly


From security-owner@xxxxxxxxxxxxxx Mon Sep 15 04:19:59 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8F8JxiA028409
	GroupStudy Mailer; Mon, 15 Sep 2008 04:19:59 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8F8Jx6u028407
	for securityxhiddenx; Mon, 15 Sep 2008 04:19:59 -0400
Received: from blu0-omc3-s34.blu0.hotmail.com
  (blu0-omc3-s34.blu0.hotmail.com [65.55.116.109]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8F8Jwf4028385 GroupStudy
  Mailer; Mon, 15 Sep 2008 04:19:58 -0400
Received: from BLU111-W17 ([65.55.116.73]) by
  blu0-omc3-s34.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Mon, 15 Sep 2008 01:19:53 -0700
Message-ID: <BLU111-W17BF224070E67EE638356BB1520@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [91.147.128.2]
From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
To: "Jason W. Miller" <jaymiller5@xxxxxxxxx>
CC: <security@xxxxxxxxxxxxxx>
Subject: RE: CSS11506 Problem
Date: Mon, 15 Sep 2008 08:19:53 +0000
In-Reply-To: <e22bfc9b0809090607q2ac4dc2bubd7de3943e96cf74@xxxxxxxxxxxxxx>
References: <BLU111-W172DDFBD58A0D4BF60664B1540@xxxxxxx>
  <e22bfc9b0809090607q2ac4dc2bubd7de3943e96cf74@xxxxxxxxxxxxxx>
MIME-Version: 1.0
X-OriginalArrivalTime: 15 Sep 2008 08:19:53.0728 (UTC)
  FILETIME=[D4B1F000:01C9170B]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from falbaridi@xxxxxxx\.com] (2008/09/15 04:19:59)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>

I will do it when i go to the site next time. Now I am outside the town for
some other project. Thank you so much for your help.

> Date: Tue, 9 Sep 2008 09:07:25 -0400
> From: jaymiller5@xxxxxxxxx
> To: falbaridi@xxxxxxxxxxx
> Subject: Re: CSS11506 Problem
> CC: security@xxxxxxxxxxxxxx
>
> Do a "show rule-summary" and post it here.
>
>
>
> On Tue, Sep 9, 2008 at 8:38 AM, Alfadi Albaridi
<falbaridi@xxxxxxxxxxx>wrote:
>
> > Hi all,
> >
> > Can anyone help me in a problem in the load balancer CSS11506? I am
> > connecting
> > two servers in the same circuit VLAN1, and I gave the circuit VLAN1 an IP
> > address. Both servers can ping each other, but when I telnet from one to
> > another using port 25 (SMTP) it fails. When i connected the same servers
to
> > a
> > flat L2 switch telnet with port 25 was successful. Till now I didn't do
any
> > load balancing or content switching configuration. Is there any thing
> > blocks
> > port 25 by default? Please if anyone can help me.
> >
> > Many thanks,
> >
> > Alfadi Albaridi
> >
> > _________________________________________________________________
> > Stay up to date on your PC, the Web, and your mobile phone with Windows
> > Live.
> > http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/
> >
> >
>
>
> --
> Jason W. Miller
> A. P. Herbert  - "A high-brow is someone who looks at a sausage and thinks
> of Picasso."
>

_________________________________________________________________
Want to do more with Windows Live? Learn 10 hidden secrets from Jamie.
http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550
F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008


From security-owner@xxxxxxxxxxxxxx Mon Sep 15 05:04:42 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8F94g3L000604
	GroupStudy Mailer; Mon, 15 Sep 2008 05:04:42 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8F94gUg000602
	for securityxhiddenx; Mon, 15 Sep 2008 05:04:42 -0400
Received: from blu0-omc4-s22.blu0.hotmail.com
  (blu0-omc4-s22.blu0.hotmail.com [65.55.111.161]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8F94fbs000565 GroupStudy
  Mailer; Mon, 15 Sep 2008 05:04:41 -0400
Received: from BLU111-W29 ([65.55.111.136]) by
  blu0-omc4-s22.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Mon, 15 Sep 2008 02:04:36 -0700
Message-ID: <BLU111-W29E578E6F00544E3567ABBB1520@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [87.101.245.38]
From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
To: vpvprometric <vpvprometric@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Subject: RE: CSS11506 Problem
Date: Mon, 15 Sep 2008 09:04:35 +0000
In-Reply-To: <997051.82306.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <997051.82306.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
X-OriginalArrivalTime: 15 Sep 2008 09:04:36.0128 (UTC)
  FILETIME=[1387B200:01C91712]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from falbaridi@xxxxxxx\.com] (2008/09/15 05:04:42)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>

Hello,

This is the run config:




CSS11506#  show running-config

!Generated on 09/15/2008 11:56:39

!Active version: sg0810106



configure





!*************************** GLOBAL ***************************

  ip route 0.0.0.0 0.0.0.0 192.168.10.2 1



!************************** CIRCUIT **************************

circuit VLAN1



  ip address 192.168.10.1 255.255.255.0


This is the only config I did so far. Any suggestions? Thanks.

Alfadi Albaridi



> Date: Tue, 9 Sep 2008 07:11:04 -0700
> From: vpvprometric@xxxxxxxxx
> Subject: Re: CSS11506 Problem
> To: falbaridi@xxxxxxxxxxx; security@xxxxxxxxxxxxxx
>
> Is the CSS in one arm more - SMTP is L4 and ICMP is L3. Do you have no
redirects under vlan1. ANyways, best is to cut paste the config. Thanks.
> -V
>
>
>
> ----- Original Message ----
> From: Alfadi Albaridi <falbaridi@xxxxxxxxxxx>
> To: security@xxxxxxxxxxxxxx
> Sent: Tuesday, September 9, 2008 8:38:53 AM
> Subject: CSS11506 Problem
>
> Hi all,
>
> Can anyone help me in a problem in the load balancer CSS11506? I am
connecting
> two servers in the same circuit VLAN1, and I gave the circuit VLAN1 an IP
> address. Both servers can ping each other, but when I telnet from one to
> another using port 25 (SMTP) it fails. When i connected the same servers to
a
> flat L2 switch telnet with port 25 was successful. Till now I didn't do any
> load balancing or content switching configuration. Is there any thing
blocks
> port 25 by default? Please if anyone can help me.
>
> Many thanks,
>
> Alfadi Albaridi
>
> _________________________________________________________________
> Stay up to date on your PC, the Web, and your mobile phone with Windows
Live.
> http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/
>

_________________________________________________________________
Get more out of the Web. Learn 10 hidden secrets of Windows Live.
http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550
F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008


From security-owner@xxxxxxxxxxxxxx Mon Sep 15 06:15:30 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8FAFUJf007557
	GroupStudy Mailer; Mon, 15 Sep 2008 06:15:30 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8FAFUOd007552
	for securityxhiddenx; Mon, 15 Sep 2008 06:15:30 -0400
Received: from 86.98.85.200.dsl.dynamic.telviso.net.ar
  (86.98.85.200.dsl.dynamic.telviso.net.ar [200.85.98.86]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8FAFPBK007489
  GroupStudy Mailer; Mon, 15 Sep 2008 06:15:28 -0400
Date: Mon, 15 Sep 2008 08:27:45 +0000
Message-ID: <17377.krishna@xxxxx>
From: "early nolan" <postmaster@xxxxxxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Super
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/15 06:15:30)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "early nolan" <postmaster@xxxxxxxxxxxxxxxxxx>

buy  medication todays best solution  navigate our site


From security-owner@xxxxxxxxxxxxxx Tue Sep 16 21:16:41 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H1GfaZ005496
	GroupStudy Mailer; Tue, 16 Sep 2008 21:16:41 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8H1GfQ3005494
	for securityxhiddenx; Tue, 16 Sep 2008 21:16:41 -0400
Received: from EXCH-FRT.ftdata.com (63-148-101-62.dia.static.qwest.net
  [63.148.101.62]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8H1Ge70005472 GroupStudy Mailer; Tue, 16 Sep 2008 21:16:40
  -0400
Received: from ftdata-vex3.ftdata.com ([10.1.1.5]) by
  EXCH-FRT.ftdata.com with Microsoft SMTPSVC(6.0.3790.3959); Tue, 16 Sep
  2008 21:16:23 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: VPN3000 / NAT-T
Date: Tue, 16 Sep 2008 21:16:29 -0400
Message-ID: <B30058BB1DFBD9409403E624DE1EBD2D038156@xxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: VPN3000 / NAT-T
Thread-Index: AckYYfB518rgfMf5R9CEnKcrAoi47Q==
From: "Shane Miles" <smiles@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 17 Sep 2008 01:16:23.0126 (UTC)
  FILETIME=[FF9F4760:01C91862]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from smiles@xxxxxx\.com] (2008/09/16 21:16:41)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shane Miles" <smiles@xxxxxxxxxx>

Is there a way to force the VPN concentrator to use NAT-T (UDP/4500) even if
it doesn't detect a NAT between itself and a remote client?
--
Shane


From security-owner@xxxxxxxxxxxxxx Tue Sep 16 22:28:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H2S4j2010222
	GroupStudy Mailer; Tue, 16 Sep 2008 22:28:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8H2S412010220
	for securityxhiddenx; Tue, 16 Sep 2008 22:28:04 -0400
Received: from yw-out-1718.google.com (yw-out-1718.google.com
  [74.125.46.157]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8H2S3Dw010200 GroupStudy Mailer; Tue, 16 Sep 2008 22:28:03
  -0400
Received: by yw-out-1718.google.com with SMTP id 6so913763ywa.84 for
  <security@xxxxxxxxxxxxxx>; Tue, 16 Sep 2008 19:28:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=k03GQO1NQ5tI5hr0oqEBb6Lhj4wxWZOkoecXyDDbJo8=;
  b=Y+B+bW5tJA+pC8WrV2nnEzJRPMIG9BPnpoenTrAqXtY659Cy5PPzCaLIqtHmw8COp6
  HEPW/y2X9LoA+BXklkLH6Y2+KKmKE2QrEwgv+AkBqqxQ+m8bJ02YRY7pqLiB/vrGSKXP
  GEtz3Qkvt5xveDi6PuO0CDC+I8xIkGYUfDQIQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=ACNNARWMRH12nOFHuDbIluCNNfJdsSj2cWwwyBBVbQ85Z2bqeFWwGfbR9X6u0YQ+4B
  NqguBozc3ZIEWNdTIpKUxfH604NNWV6X8Np6rGQ3S7IfvKSTlxpkUQmrg3BpCn/2lAUC
  eRW9X8nnnjmQTz19ioxioFmLrOG8l/iOUhhlc=
Received: by 10.151.11.17 with SMTP id
  o17mr2602891ybi.232.1221618480386; Tue, 16 Sep 2008 19:28:00 -0700
  (PDT)
Received: by 10.151.109.18 with HTTP; Tue, 16 Sep 2008 19:28:00 -0700
  (PDT)
Message-ID: <eff3217d0809161928u14f79d00ida24fc75f803ff3c@xxxxxxxxxxxxxx>
Date: Wed, 17 Sep 2008 05:28:00 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>
Subject: Re: VPN3000 / NAT-T
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D038156@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D038156@xxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/16 22:28:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

The NAT-T standard itself defines that it should be negotiated AFAIK. You
can use IPSEC OVER UDP if you want to 'always' encapsulate the ESP inside
UDP irrespective of whether NAT is detected in the transit path or not.

Regards

Farrukh

On Wed, Sep 17, 2008 at 4:16 AM, Shane Miles <smiles@xxxxxxxxxx> wrote:

> Is there a way to force the VPN concentrator to use NAT-T (UDP/4500) even
> if
> it doesn't detect a NAT between itself and a remote client?
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Tue Sep 16 23:21:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H3Lj4h013895
	GroupStudy Mailer; Tue, 16 Sep 2008 23:21:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8H3Ljoq013893
	for securityxhiddenx; Tue, 16 Sep 2008 23:21:45 -0400
Received: from fk-out-0910.google.com (fk-out-0910.google.com
  [209.85.128.191]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8H3LiHo013873 GroupStudy Mailer; Tue, 16 Sep 2008 23:21:44
  -0400
Received: by fk-out-0910.google.com with SMTP id f33so2790511fkf.14 for
  <security@xxxxxxxxxxxxxx>; Tue, 16 Sep 2008 20:21:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=Ct4hozzMcU85cGvfw9HhxKqDutAmGtBWXcS+5GvEIhs=;
  b=r1w0ynXlJBbxmDJLbEAn489jhcPLucA/e1iWUAcFHyN3CLZf6tcIWwUqvNZ0F4CVP2
  FrDulaOCVvi132uagxqJBl9C7Ps/JRhhenvZt5xhr4YE52A4uBl6zW4vqPzKRQfoe/ef
  SyYl0lsEAsjdOe8QQPMQwNDwkNevpaDY1iNaI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=LjJelilE2k2G1bVkXGNosmMGrNHCGX0BlXgiXmHaA35mR8DKZsR8eabwCQBej2sQ8o
  ERHxvgIP/kWPzcgJ+QPRIyiUgof98tlpbB1GsXPesD1ahWntlY8DnUO+qkHPHf1CIPrS
  chDooPjPyu9wqTpuM6G2gNEVKs5ITo51Ji4Z0=
Received: by 10.181.30.10 with SMTP id h10mr1402584bkj.41.1221621699332;
  Tue, 16 Sep 2008 20:21:39 -0700 (PDT)
Received: by 10.181.2.14 with HTTP; Tue, 16 Sep 2008 20:21:39 -0700
  (PDT)
Message-ID: <afa2a8cd0809162021o4ed5369ap336732304f33e48f@xxxxxxxxxxxxxx>
Date: Tue, 16 Sep 2008 20:21:39 -0700
From: "Lala Lander" <sshafi@xxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
Subject: Re: VPN3000 / NAT-T
Cc: "Shane Miles" <smiles@xxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <eff3217d0809161928u14f79d00ida24fc75f803ff3c@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <B30058BB1DFBD9409403E624DE1EBD2D038156@xxxxxxxxxxxxxxxxxxxxxx>
  <eff3217d0809161928u14f79d00ida24fc75f803ff3c@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sshafi@xxxxx\.com] (2008/09/16 23:21:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Lala Lander" <sshafi@xxxxxxxxx>

i dont think so... i think VPN3K is too honest! :-)

On Tue, Sep 16, 2008 at 7:28 PM, Farrukh Haroon <farrukhharoon@xxxxxxxxx>wrote:

> The NAT-T standard itself defines that it should be negotiated AFAIK. You
> can use IPSEC OVER UDP if you want to 'always' encapsulate the ESP inside
> UDP irrespective of whether NAT is detected in the transit path or not.
>
> Regards
>
> Farrukh
>
> On Wed, Sep 17, 2008 at 4:16 AM, Shane Miles <smiles@xxxxxxxxxx> wrote:
>
> > Is there a way to force the VPN concentrator to use NAT-T (UDP/4500) even
> > if
> > it doesn't detect a NAT between itself and a remote client?
> > --
> > Shane


From security-owner@xxxxxxxxxxxxxx Wed Sep 17 03:28:16 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H7SGK3031742
	GroupStudy Mailer; Wed, 17 Sep 2008 03:28:16 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8H7SG9o031740
	for securityxhiddenx; Wed, 17 Sep 2008 03:28:16 -0400
Received: from mail.mantraent.com (mail.mantraent.com [208.57.234.30]
  (may be forged)) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8H7SFcO031719 GroupStudy Mailer; Wed, 17 Sep 2008 03:28:15
  -0400
MIME-Version: 1.0
From: <postmaster@xxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Date: Wed, 17 Sep 2008 00:22:15 -0700
Content-Type: text/plain; charset="us-ascii"
Content-Language: en-US
Message-ID: <dada454d-e2a7-4b0b-8fb7-62daf307ac56>
In-Reply-To: <BLU104-W4018N988FE204318C927W1VF560@xxxxxxx>
References: <BLU104-W4018N988FE204318C927W1VF560@xxxxxxx>
Subject: Undeliverable: RE: Weekly Special Sale! 77% OFF RETAIL
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was message/delivery-status
X-ASK-Info: Message from Mailer-Daemon (2008/09/17 03:28:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <postmaster@xxxxxxxxxxxxx>

Delivery has failed to these recipients or distribution lists:

security@xxxxxxxxxxxxxxxxx<mailto:security@xxxxxxxxxxxxxxxxx>
The recipient's e-mail address was not found in the recipient's e-mail system.
Microsoft Exchange will not try to redeliver this message for you. Please
check the e-mail address and try resending this message, or provide the
following diagnostic text to your system administrator.

________________________________
Sent by Microsoft Exchange Server 2007






Diagnostic information for administrators:

Generating server: mantraoffice.com

security@xxxxxxxxxxxxxxxxx
#550 5.1.1 RESOLVER.ADR.RecipNotFound; not found ##

Original message headers:

Received: from INTERNET_USER (59.95.64.27) by mail.mantraent.com
 (192.168.50.202) with Microsoft SMTP Server id 8.1.240.5; Wed, 17 Sep 2008
 00:22:14 -0700
X-SID-PRA: Yesenia Johnny <security@xxxxxxxxxxxxxxxxx>
X-SID-Result: Pass
Return-Path: bounce-ncvfhpkdcykpgdgy@xxxxxxxxxx
Message-ID: <BLU104-W4018N988FE204318C927W1VF560@xxxxxxx>
To: <security@xxxxxxxxxxxxxxxxx>
Subject: RE: Weekly Special Sale! 77% OFF RETAIL
From: <admin@xxxxxxxxxx>
MIME-Version: 1.0
Importance: Normal
Content-Type: multipart/alternative;
        boundary="_b7ca8c05-37ce-4f2c-b9dd-2e3e5e351fb5_"
Date: Wed, 17 Sep 2008 00:22:14 -0700
Reporting-MTA: dns;mantraoffice.com
Received-From-MTA: dns;INTERNET_USER
Arrival-Date: Wed, 17 Sep 2008 07:22:14 +0000

Final-Recipient: rfc822;security@xxxxxxxxxxxxxxxxx
Action: failed
Status: 5.1.1
Diagnostic-Code: smtp;550 5.1.1 RESOLVER.ADR.RecipNotFound; not found
Received: from INTERNET_USER (59.95.64.27) by mail.mantraent.com
  (192.168.50.202) with Microsoft SMTP Server id 8.1.240.5; Wed, 17 Sep
  2008 00:22:14 -0700
X-SID-PRA: Yesenia Johnny <security@xxxxxxxxxxxxxxxxx>
X-SID-Result: Pass
Return-Path: bounce-ncvfhpkdcykpgdgy@xxxxxxxxxx
Message-ID: <BLU104-W4018N988FE204318C927W1VF560@xxxxxxx>
To: <security@xxxxxxxxxxxxxxxxx>
Subject: RE: Weekly Special Sale! 77% OFF RETAIL
From: <admin@xxxxxxxxxx>
MIME-Version: 1.0
Importance: Normal
Content-Type: text/plain; charset="us-ascii"
Date: Wed, 17 Sep 2008 00:22:14 -0700
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain

Dear security@xxxxxxxxxxxxxxxxx!
We know as you the help if at you problems with an intimate life!
Look our price!
http://lbx.ohstream.com?tzx
We do guarantee high-quality medications, instant worldwide delivery and
friendly support!
Pfizer is a licensee of the TRUSTe Privacy Program!

) 2008 Pfizer Inc


From security-owner@xxxxxxxxxxxxxx Wed Sep 17 05:35:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H9ZiBF011848
	GroupStudy Mailer; Wed, 17 Sep 2008 05:35:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8H9ZiW7011846
	for securityxhiddenx; Wed, 17 Sep 2008 05:35:44 -0400
Received: from catv-5985b1ce.catv.broadband.hu
  (catv-89-133-177-206.catv.broadband.hu [89.133.177.206]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8H9ZhJO011800
  GroupStudy Mailer; Wed, 17 Sep 2008 05:35:43 -0400
Message-ID: <000701c918a8$04e6a360$897e6f94@xxxxx>
From: "davidde hamish" <postmaster@xxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Connect with lenders in your area
Date: Wed, 17 Sep 2008 07:48:23 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-ASK-Info: Message from Mailer-Daemon (2008/09/17 05:35:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "davidde hamish" <postmaster@xxxxxxxxxxxx>

Hi there,

Great news! We thought that coming up with an offer to reduce your payment on your
home was going to be a big challenge. But in reviewing your current loan structure,
we can help you shave as much as 40% with a simple loan restructure. This is based
on a fixed rate program that we have streamlined to fund in two weeks or less.

http://www.pursymutfoolisha.com

There are no fees associated with our program. As soon as you review and finalize
the details, we can lock in your low rate and begin processing. Please see the
details at the link below.

http://www.pursymutfoolisha.com

Kind Regards,

Jennifer Barrieo
LBL


From security-owner@xxxxxxxxxxxxxx Wed Sep 17 06:27:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8HARoAp017106
	GroupStudy Mailer; Wed, 17 Sep 2008 06:27:50 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8HARoLn017104
	for securityxhiddenx; Wed, 17 Sep 2008 06:27:50 -0400
Received: from eu.didata.com (mx1.eu.didata.com [212.35.105.113]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8HARnVV017084
  GroupStudy Mailer; Wed, 17 Sep 2008 06:27:50 -0400
Received: from ([10.170.101.10]) by mx1.eu.didata.com with ESMTP  id
  4420319.44019602; Wed, 17 Sep 2008 12:27:30 +0200
Received: from EUBEBRUSVEX1.eu.didata.local ([10.170.101.12]) by
  EUBEBRUSVEX1.eu.didata.local with Microsoft SMTPSVC(6.0.3790.3959);
  Wed, 17 Sep 2008 12:27:30 +0200
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: RSA appliance and ASA integration
Date: Wed, 17 Sep 2008 12:27:30 +0200
Message-ID: <392CE8BE3E31D44C83D2079D0DAF525D4A563E@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <D4B07980AD4F044FAF5BAC9720BF54A5AD4ECA@xxxxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: RSA appliance and ASA integration
Thread-Index: AckBI6aRSiP+gVeVRE2Hs6OL72AisAAEdZzzBd5Rn2A=
From: "Joost Hage (Europe)" <Joost.Hage@xxxxxxxxxxxxx>
To: "Stan Buskus" <Stan.Buskus@xxxxxxx>,
        "Gabor Terjeki"
  <gterjeki@xxxxxxxxx>
Cc: <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 17 Sep 2008 10:27:30.0745 (UTC)
  FILETIME=[FD758290:01C918AF]
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8HARnVV017084
X-ASK-Info: Whitelist match [from joost\.hage@xx\.didata\.com] (2008/09/17 06:27:50)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joost Hage (Europe)" <Joost.Hage@xxxxxxxxxxxxx>

For troubleshooting: follow this checklist:
1. this Radius attribute (for instance the class attribute) must be
assigned to a Radius profile (on the RSA)
2. this profile must be assigned to each (relevant) user 
3. the ASA must be known as both an RSA agent and (on the OEM'ed Funk
Steelbelted Radius) as an Radius client
4. the user must be active on the RSA (ASA) agent
5. (ehm, just to be sure), the ASA must be using Radius to communicate
with the RSA box to make this work. If you use the native SecurID you
won't get Radius attributes back 8-).

Grtz, Joost

Joost Hage
Security Professional  CCIE #17796

> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On 
> Behalf Of Stan Buskus
> Sent: maandag 18 augustus 2008 15:23
> To: Gabor Terjeki
> Cc: security@xxxxxxxxxxxxxx
> Subject: RE: RSA appliance and ASA integration
> 
> You can set the radius attribute class 25 to force the group 
> the user will inherit. As an example:
> ou=VPNGroup;
> 
> Once the user authenticates the radius server pushes the 
> group to the ASA and forces the user into VPNGroup.
> 
> You will also need a filter on the group policy limiting the 
> group to an acl.
> 
> CDW Berbee
> 5520 Research Park Drive
> Madison, WI 53711
> Tel: 608.298.1044
> Cell: 608.444.1588
> 
> ________________________________
> 
> From: nobody@xxxxxxxxxxxxxx on behalf of Gabor Terjeki
> Sent: Mon 8/18/2008 5:08 AM
> To: security@xxxxxxxxxxxxxx
> Subject: RSA appliance and ASA integration
> 
> 
> 
> Hello,
> 
> I'm wondering if anyone has experience in setting up an ASA 
> remote access VPN, with an RSA authentication. I've recently 
> set one up, but I had a part I failed to achieve:
> The requirement is to set up individual network access 
> profiles for each user. My very first guess was downloadable 
> ACLs, but I couldn't make it work. I tried to use the RSA 
> appliance's (SW version 6.1.2) built in RADIUS server for 
> that, but no matter how I tried, it didn't sent anything 
> towards the ASA. I tried to fine-tune the RADIUS dictionary 
> file (the name of this value - vendor ID 9, type 1 
> Cisco-AV-pair - is different on the appliance), but still no luck.
> 
> Another solution would be, if I can set up the devices, that 
> the ASA applies a specific group policy, based on the 
> username. As I recall there is some way to do it via RADIUS 
> also, but I'm not sure how - the RSA (or the RSA RADIUS) 
> shall send back another valure, which would bind the specific 
> profile to the user.
> 
> If anyone has any idea how can I make it work, please share 
> it with me.
> 
> Any ideas appreciated!
> 
> Regards,
> Gabor


From security-owner@xxxxxxxxxxxxxx Wed Sep 17 15:06:23 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8HJ6Ng5013762
	GroupStudy Mailer; Wed, 17 Sep 2008 15:06:23 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8HJ6Nbp013760
	for securityxhiddenx; Wed, 17 Sep 2008 15:06:23 -0400
Received: from qb-out-1314.google.com (qb-out-1314.google.com
  [72.14.204.172]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8HJ4Zk7013551 GroupStudy Mailer; Wed, 17 Sep 2008 15:04:36
  -0400
Received: by qb-out-1314.google.com with SMTP id q17so4551752qbq.38 for
  <security@xxxxxxxxxxxxxx>; Wed, 17 Sep 2008 12:04:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type:content-transfer-encoding
  :content-disposition; bh=N8ObcUj2JsGux7770OqjkKvpsu3on3I9KnYu+XLtBss=;
  b=dc6tBGhdnDIeIHC2aBbc5v4Y8c/7WnclzXqjT15XYUr/hzRqyZeu5oyrLKhJuyWYfw
  D1LLzmbrzAtXLKW5fM+H8+Pv7FlZ/mqIHErpzPQsDoaVd8ISkE5lckK96Pxf8AYXQnlY
  VLmSJVxXXNm4/YgyZVI2rxyFOZ7SJ7L+Xpcxo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type
  :content-transfer-encoding:content-disposition;
  b=wZt1M81sZFSzkCuzkaa/mZbrtioJmHErc+JlMX3RlwMcTC9m/whB7vUvJL87rlriLD
  9UP2ROKWvLuYniSrf2oevvtQC3FLIK+H/6LhfiLALaoAqobRzfWYbmPcvFWh0z8ralTF
  J3z9i+/Xw2nATgHhMoJZxx8LlxlU6GfxexuJM=
Received: by 10.181.15.18 with SMTP id s18mr2219124bki.77.1221678272892;
  Wed, 17 Sep 2008 12:04:32 -0700 (PDT)
Received: by 10.180.228.9 with HTTP; Wed, 17 Sep 2008 12:04:32 -0700
  (PDT)
Message-ID: <23138c540809171204v48496dage89a768d26626934@xxxxxxxxxxxxxx>
Date: Wed, 17 Sep 2008 14:04:32 -0500
From: "testing testing123" <testing3.141@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-ASK-Info: Message Queued (2008/09/17 15:04:37)
X-ASK-Info: Confirmed by User (2008/09/17 15:06:23)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "testing testing123" <testing3.141@xxxxxxxxx>

auth dbbbfc2e subscribe security testing3.141@xxxxxxxxx


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 00:36:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8I4aCIK026207
	GroupStudy Mailer; Thu, 18 Sep 2008 00:36:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8I4aCju026205
	for securityxhiddenx; Thu, 18 Sep 2008 00:36:12 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.251]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8I4aBiR026185 GroupStudy Mailer; Thu, 18 Sep 2008 00:36:11
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so6315802agd.11 for
  <security@xxxxxxxxxxxxxx>; Wed, 17 Sep 2008 21:36:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:references
  :subject:date:mime-version:content-type:content-transfer-encoding
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  bh=zj+oBrzd/OTKfdt59mb0iuQY53Z6oc83SB0nEgq9ILU=;
  b=HfajW4kbEtOwoMG0lWhlbVo5Z3haT++vWowrz0a3tghU0HZZtg3SPCFvGdTwnUSegZ
  lOFhYCKA5vLNzPRExErWT5NtG3b9CwSsH9wPtFmlT5xgqBfoa2/9w9EobX8L1d/x2cP8
  3ni7lgbY5T2bXvUBsSR8cQxjipdwF7mOvGvSg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:references:subject:date:mime-version
  :content-type:content-transfer-encoding:x-priority:x-msmail-priority
  :x-mailer:x-mimeole;
  b=LAcOWdrBqOKHjsP6CY5PceuB0f8OXKTyPoCLJi5rE/y66ZfoFetqLiN98ZBY5h10Ua
  3PH6b4/11MYryBYUnd/qg+pnRwU8aJoDQ5hsPjMKe4cZwDY+4rupJh1fYjhlLNqFk3+C
  u3ojDXXheG5J/G81qIWovnudpjZLSad1Yr8XU=
Received: by 10.90.70.6 with SMTP id s6mr4491768aga.25.1221712567624;
  Wed, 17 Sep 2008 21:36:07 -0700 (PDT)
Received: from computer ( [72.63.15.11]) by mx.google.com with ESMTPS id
  7sm640671wrl.22.2008.09.17.21.36.03 (version=SSLv3 cipher=RC4-MD5);
  Wed, 17 Sep 2008 21:36:05 -0700 (PDT)
Message-ID: <818BE86BD0BE4705A5035571C3C8A9C7@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
References: <200809171904.m8HJ4bLe013565@xxxxxxxxxxxxxx>
Subject: Re: Please confirm (conf#e212c22d9b8294f910e03974921d2219)
Date: Wed, 17 Sep 2008 23:36:00 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-ASK-Info: Invalid confirmation (2008/09/18 00:36:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

----- Original Message ----- 
From: "Cisco certification" <security@xxxxxxxxxxxxxx>
To: <testing3.141@xxxxxxxxx>
Sent: Wednesday, September 17, 2008 2:04 PM
Subject: Please confirm (conf#e212c22d9b8294f910e03974921d2219)


> Hi,
>
> You have tried to post to a GroupStudy.com certification mailing list. 
> Because
> the server does not recognize you as a confirmed poster, you will be 
> required
> to authenticate that you are using a valid e-mail address and are not a
> spammer. By confirming this e-mail you certify that you are not sending
> Unsolicited Bulk Email (UBE).
>
> PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN!  BY CONFIRMING THIS EMAIL
> YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED.
>
>
> By confirming this e-mail you also certify the following:
>
> 1. The message does NOT break Cisco's Non-Disclosure requirements.
>
> 2. The message is NOT designed to advertise a commercial product.
>
> 3. You understand all postings become property of GroupStudy.com
>
> 4. You have searched the archives prior to posting.
>
> 5. The message is NOT inflammatory.
>
> 6. The message is NOT a test message.
>
> To confirm, simply reply to this message.  No editing is necessary.  Once
> confirmed, you will be able to post without additional confirmations.
>
>
> Welcome to GroupStudy.com!
>
>
> First time posters to GroupStudy.com are required to agree to the 
> GroupStudy terms and conditions.
> Replying to this email, certifies you have read and agree to the 
> GroupStudy posting guidelines and terms and conditions.
>
> --- Original Message Follows ---
>
> Date: Wed, 17 Sep 2008 14:04:32 -0500
> From: "testing testing123" <testing3.141@xxxxxxxxx>
> To: security@xxxxxxxxxxxxxx
>
> auth dbbbfc2e subscribe security testing3.141@xxxxxxxxx


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 02:36:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8I6akQf002884
	GroupStudy Mailer; Thu, 18 Sep 2008 02:36:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8I6ak1j002882
	for securityxhiddenx; Thu, 18 Sep 2008 02:36:46 -0400
Received: from smtp2f.orange.fr (smtp2f.orange.fr [80.12.242.150]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8I6ajtA002843
  GroupStudy Mailer; Thu, 18 Sep 2008 02:36:46 -0400
Received: by mwinf2f05.orange.fr (SMTP Server) id AEF841C7DF27; Thu, 18
  Sep 2008 07:49:07 +0200 (CEST)
Date: Thu, 18 Sep 2008 07:49:07 +0200 (CEST)
X-ME-UUID: 20080918054905921.E111B700008E@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080918054907.AEF841C7DF27@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/18 02:36:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf2f05.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<jorge.chavez.blancas@xxxxxxxxxxx>: host mx3.hotmail.com[65.54.244.200] said:
    550 Requested action not taken: mailbox unavailable (in reply to RCPT TO
    command)

<jorge.chavezgtz@xxxxxxxxxxx>: host mx3.hotmail.com[65.54.244.200] said: 550
    Requested action not taken: mailbox unavailable (in reply to RCPT TO
    command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 5678B1C2E89A
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Thu, 18 Sep 2008 07:49:06 +0200 (CEST)

Final-Recipient: rfc822; jorge.chavez.blancas@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx3.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable

Final-Recipient: rfc822; jorge.chavezgtz@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx3.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp2f.orange.fr (mwinf2f17 [10.232.18.117]) by
  mwinf2f05.orange.fr (SMTP Server) with ESMTP id 5678B1C2E89A; Thu, 18
  Sep 2008 07:49:06 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2f17.orange.fr (SMTP Server) with ESMTP id 45D71700008C; Thu, 18
  Sep 2008 07:49:06 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf2f17.orange.fr (SMTP Server) with SMTP id
  E111B700008E; Thu, 18 Sep 2008 07:49:05 +0200 (CEST)
X-ME-UUID: 20080918054905921.E111B700008E@xxxxxxxxxxxxxxxxxxx
Message-ID: <000f01c919b6$f77aaa47$77e0f3bc@xxxxxxxxx>
From: "=?windows-1251?B?QWxleGFuZHJ5IEsu?=" <security@xxxxxxxxxxxxxx>
To: <jorge.chavez.blancas@xxxxxxxxxxx>, <jorge.chavezgtz@xxxxxxxxxxx>,
  <jorge.cm62@xxxxxxxxxxx>
Subject: =?windows-1251?B?TG9va2luZyBmb3IgdGhlIG1hbiB0aGF0IGNvbXBsZXRlcyBtZSE=?=
Date: Thu, 18 Sep 2008 07:49:02 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4522.1200
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200

Good day

A man falls in love just as he falls downstairs. It is an accident.

Do you think the same?
Honest and considerate, I like meeting friends for coffee, walks in the
park, family get together - that is how I can describe myself. 
I like watching movies, dramas, romance, comedy. 
I can appear to be shy or quite, but I am just thinking... about you. 
I am a good listener but believe good communication is a two way street.
Find me www.romanticnightworld.com/greatfeelings/

Yourth faithfully
Alex K


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 03:21:21 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8I7LLTo005805
	GroupStudy Mailer; Thu, 18 Sep 2008 03:21:21 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8I7LLbB005803
	for securityxhiddenx; Thu, 18 Sep 2008 03:21:21 -0400
Received: from ug-out-1314.google.com (ug-out-1314.google.com
  [66.249.92.170]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8I7LJm4005783 GroupStudy Mailer; Thu, 18 Sep 2008 03:21:20
  -0400
Received: by ug-out-1314.google.com with SMTP id t39so655388ugd.10 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 00:21:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:sender
  :to:subject:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references
  :x-google-sender-auth;
  bh=LPdQLqMKXvPGm9i4e6P0qyUATxf8CAZtIPUwWEG0CCY=;
  b=HjwVGxJESEykYvN+XXKrpkAs+MBmkpYCzsPOl5utCvs4ZNYz9dsupb8dK3owHunf1p
  IIpqi09tnzLHkQFzhFDezGDoOnfPWPz4GYfJIIpHWcXXahg5umzkRoQh9mmrPW4/30CN
  Oemw4J7zJrbv6Sdhs3WJUPBOWIFf84G3+TS+E=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:sender:to:subject:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references:x-google-sender-auth;
  b=BWh5GYM71IwQoCA279OGidZoJ+c6i68TrMxRoVA7RThkGOkmYPvD7fmJRtPKWylVNl
  mVoFTRPp29NMoyDRxlPMVXuCzh01O7b0sta0g+WWm9vbpekfdP5CK8KzmtG6q3nPkrdx
  wymrXwTckQLApMgPL3Zm8tTQME0RXtcBPqdlM=
Received: by 10.66.232.9 with SMTP id e9mr2908574ugh.17.1221722474866;
  Thu, 18 Sep 2008 00:21:14 -0700 (PDT)
Received: by 10.67.29.13 with HTTP; Thu, 18 Sep 2008 00:21:14 -0700
  (PDT)
Message-ID: <88fec8680809180021l37a9f767rcc1c4c5eefd5b7a0@xxxxxxxxxxxxxx>
Date: Thu, 18 Sep 2008 09:21:14 +0200
From: "Gabor Terjeki" <gterjeki@xxxxxxxxx>
To: "Shane Miles" <smiles@xxxxxxxxxx>, security@xxxxxxxxxxxxxx
Subject: Re: PIX vpn-filter allowing all traffic
In-Reply-To: <B30058BB1DFBD9409403E624DE1EBD2D038151@xxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <B30058BB1DFBD9409403E624DE1EBD2D038151@xxxxxxxxxxxxxxxxxxxxxx>
X-Google-Sender-Auth: db963a345eececdc
X-ASK-Info: Whitelist match [from gterjeki@xxxxx\.com] (2008/09/18 03:21:21)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Gabor Terjeki" <gterjeki@xxxxxxxxx>

You may check two things:
- The VPN filter is considered inbound, meaning this rule below should
prevent the remote site from reaching your internal web and telnet
servers. In case you'd like to filter traffic destined for the remote
subnet, the following syntax is to be used:
   access-list FILTER extended deny tcp any eq www any

- There was indeed a bug for the vpn-filter, but I don't recall the id
from the top of my head. I believe it affected 7.2.1 and 7.2.2. If you
use any of these versions, I'd suggest to upgrade.
You shall be able to find it on bug toolkit easily.

HTH,
Gabor

On Fri, Sep 12, 2008 at 5:19 PM, Shane Miles <smiles@xxxxxxxxxx> wrote:
> My vpn-filter does not work. It's starting to look like a bug to me.  The VPN
> comes up with no problem. The problem is I can still telnet and www through
> the VPN with the config below. Any ideas why?
>
> access-list FILTER extended deny tcp any any eq www
> access-list FILTER extended deny tcp any any eq telnet
> access-list FILTER extended permit ip any any
> !
> group-policy VPN attributes
>  vpn-filter value FILTER
> !
> tunnel-group 10.1.1.100 general-attributes
>  default-group-policy VPN
>
> --
> Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 06:59:21 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8IAxLFP023674
	GroupStudy Mailer; Thu, 18 Sep 2008 06:59:21 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8IAxLEn023672
	for securityxhiddenx; Thu, 18 Sep 2008 06:59:21 -0400
Received: from ug-out-1314.google.com (ug-out-1314.google.com
  [66.249.92.168]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8IAxJ9T023652 GroupStudy Mailer; Thu, 18 Sep 2008 06:59:19
  -0400
Received: by ug-out-1314.google.com with SMTP id t39so694206ugd.10 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 03:59:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:sender
  :to:subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references
  :x-google-sender-auth;
  bh=51Fn/q8b/OrOPEZ1FVcMr6uhigsDScFE6pmU+TbvZEU=;
  b=s3Fu2JciOy51/Z1MwNpglC3wZkDMn60/AVl07rOZuj4N83zUADRgi3Wab9AGSCxy+M
  V3D/aw62RCd1Jbe2bNWoGabd86+M30ixuFb3FC+59Q9tGd/z0umyzkAmLKYz/cyPqs2T
  36MI/2qjBK1qsM9WeyDK9CUSp5RgM7U0JRwbA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references:x-google-sender-auth;
  b=x0bNzROvCeJiHM3k548XDkvCNVGdR4aTnh0xIKJy1mtccogVAd8KJyrY/rzD/hnbQ6
  7rU3jimGUHo6pynxrGSdr72g5xL6zmVAW2aEi/vQXf8RQO7a56LOOqJ7Wfn4kQu9reSI
  NoLT+at2mK+haZIIzmxUrHVRp0GNkmDGeWjUE=
Received: by 10.67.116.15 with SMTP id t15mr3062929ugm.53.1221735558284;
  Thu, 18 Sep 2008 03:59:18 -0700 (PDT)
Received: by 10.67.29.13 with HTTP; Thu, 18 Sep 2008 03:59:18 -0700
  (PDT)
Message-ID: <88fec8680809180359l548a4e84rea9cc1a8991dc363@xxxxxxxxxxxxxx>
Date: Thu, 18 Sep 2008 12:59:18 +0200
From: "Gabor Terjeki" <gterjeki@xxxxxxxxx>
To: "Joost Hage (Europe)" <Joost.Hage@xxxxxxxxxxxxx>
Subject: Re: RSA appliance and ASA integration
Cc: "Stan Buskus" <Stan.Buskus@xxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <392CE8BE3E31D44C83D2079D0DAF525D4A563E@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <D4B07980AD4F044FAF5BAC9720BF54A5AD4ECA@xxxxxxxxxxxxxxxxxxxxxxxx>
  <392CE8BE3E31D44C83D2079D0DAF525D4A563E@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Google-Sender-Auth: 84b8021c17799ce3
X-ASK-Info: Whitelist match [from gterjeki@xxxxx\.com] (2008/09/18 06:59:21)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Gabor Terjeki" <gterjeki@xxxxxxxxx>

Thanks a lot!

I was finally able to resolve it, though it's logic was somewhat weird
for me. I generally used the steps you've mentioned, however it took
me some time - It was not clear for me how these profiles needed to be
used correctly.
Still I don't really like the Funk Radius server, but an ACS is not
applicable right now.

Cheers,
Gabor

On Wed, Sep 17, 2008 at 12:27 PM, Joost Hage (Europe)
<Joost.Hage@xxxxxxxxxxxxx> wrote:
> For troubleshooting: follow this checklist:
> 1. this Radius attribute (for instance the class attribute) must be
> assigned to a Radius profile (on the RSA)
> 2. this profile must be assigned to each (relevant) user
> 3. the ASA must be known as both an RSA agent and (on the OEM'ed Funk
> Steelbelted Radius) as an Radius client
> 4. the user must be active on the RSA (ASA) agent
> 5. (ehm, just to be sure), the ASA must be using Radius to communicate
> with the RSA box to make this work. If you use the native SecurID you
> won't get Radius attributes back 8-).
>
> Grtz, Joost
>
> Joost Hage
> Security Professional  CCIE #17796
>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On
>> Behalf Of Stan Buskus
>> Sent: maandag 18 augustus 2008 15:23
>> To: Gabor Terjeki
>> Cc: security@xxxxxxxxxxxxxx
>> Subject: RE: RSA appliance and ASA integration
>>
>> You can set the radius attribute class 25 to force the group
>> the user will inherit. As an example:
>> ou=VPNGroup;
>>
>> Once the user authenticates the radius server pushes the
>> group to the ASA and forces the user into VPNGroup.
>>
>> You will also need a filter on the group policy limiting the
>> group to an acl.
>>
>> CDW Berbee
>> 5520 Research Park Drive
>> Madison, WI 53711
>> Tel: 608.298.1044
>> Cell: 608.444.1588
>>
>> ________________________________
>>
>> From: nobody@xxxxxxxxxxxxxx on behalf of Gabor Terjeki
>> Sent: Mon 8/18/2008 5:08 AM
>> To: security@xxxxxxxxxxxxxx
>> Subject: RSA appliance and ASA integration
>>
>>
>>
>> Hello,
>>
>> I'm wondering if anyone has experience in setting up an ASA
>> remote access VPN, with an RSA authentication. I've recently
>> set one up, but I had a part I failed to achieve:
>> The requirement is to set up individual network access
>> profiles for each user. My very first guess was downloadable
>> ACLs, but I couldn't make it work. I tried to use the RSA
>> appliance's (SW version 6.1.2) built in RADIUS server for
>> that, but no matter how I tried, it didn't sent anything
>> towards the ASA. I tried to fine-tune the RADIUS dictionary
>> file (the name of this value - vendor ID 9, type 1
>> Cisco-AV-pair - is different on the appliance), but still no luck.
>>
>> Another solution would be, if I can set up the devices, that
>> the ASA applies a specific group policy, based on the
>> username. As I recall there is some way to do it via RADIUS
>> also, but I'm not sure how - the RSA (or the RSA RADIUS)
>> shall send back another valure, which would bind the specific
>> profile to the user.
>>
>> If anyone has any idea how can I make it work, please share
>> it with me.
>>
>> Any ideas appreciated!
>>
>> Regards,
>> Gabor


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 10:15:33 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8IEFXen010230
	GroupStudy Mailer; Thu, 18 Sep 2008 10:15:33 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8IEFXrC010228
	for securityxhiddenx; Thu, 18 Sep 2008 10:15:33 -0400
Received: from smtp118.sbc.mail.sp1.yahoo.com
  (smtp118.sbc.mail.sp1.yahoo.com [69.147.64.91]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with SMTP id m8IEFWEL010204 GroupStudy
  Mailer; Thu, 18 Sep 2008 10:15:32 -0400
Received: (qmail 11621 invoked from network); 18 Sep 2008 14:15:26 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024;
  d=sbcglobal.net;
  h=Received:X-YMail-OSG:X-Yahoo-Newman-Property:Message-ID:Date:From:Reply-To:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type;
  b=GrQ0eXJbwC3dC1PbwdMZeVkIrkkWv16TiZZWGLZ9VFBfeN//V1g5FkMKSO4po+R1UjJ/7OL4j8Up/8ZQhA0qfx0+GgCcp/eVyDY/FcrsAf+VTRPui9lSVZzZS6phQdsh6PH7bmztzsNfv+H+KmAHWO4wRKDsYM+g/Yrhmfsg0Q4=
   ;
Received: from unknown (HELO ?192.168.2.101?)
  (ccie16430@xxxxxxxxxxxxx@69.230.108.206 with plain) by
  smtp118.sbc.mail.sp1.yahoo.com with SMTP; 18 Sep 2008 14:15:25 -0000
X-YMail-OSG: OwAhEEEVM1mx15AXfXKraY5dCqaaudH1U3Rlkq.7R2_KES87bmJmbN_dHAKeFJ2Yj27HzNdwhb98bKzbZO3ThFGcC2NaLfulpACnNMI7SqjKs9t8xPaMoOYhBk_j3iHoUfq7m0VfF2zE5_1ma.Sf9QJ4
X-Yahoo-Newman-Property: ymail-3
Message-ID: <48D2627D.6000101@xxxxxxxxxxxxx>
Date: Thu, 18 Sep 2008 07:15:25 -0700
From: Joe Palomo <ccie16430@xxxxxxxxxxxxx>
User-Agent: Thunderbird 2.0.0.16 (Windows/20080708)
MIME-Version: 1.0
To: Gabor Terjeki <gterjeki@xxxxxxxxx>
CC: Shane Miles <smiles@xxxxxxxxxx>, security@xxxxxxxxxxxxxx
Subject: Re: PIX vpn-filter allowing all traffic
References: <B30058BB1DFBD9409403E624DE1EBD2D038151@xxxxxxxxxxxxxxxxxxxxxx>
  <88fec8680809180021l37a9f767rcc1c4c5eefd5b7a0@xxxxxxxxxxxxxx>
In-Reply-To: <88fec8680809180021l37a9f767rcc1c4c5eefd5b7a0@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ccie16430@xxxxxxxxx\.net] (2008/09/18 10:15:33)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Joe Palomo <ccie16430@xxxxxxxxxxxxx>

i believe you are only supposed to specify what access the users should 
have.  i dont think the filter supports deny entries. normally when i 
implement filters the users are restricted to certain servers and/or 
protocols/ports

 

*/Joe Palomo/*, CCIE^(TM) No. 16430 Security, CISSP, MCSE

ccie16430@xxxxxxxxxxxxx <mailto:ccie16430@xxxxxxxxxxxxx>

 

 

THE INFORMATION CONTAINED IN THIS E-MAIL COMMUNICATION IS INTENDED ONLY 
FOR THE PERSONAL AND CONFIDENTIAL USE OF THE DESIGNATED RECIPIENT NAMED 
ABOVE. This e-mail message is privileged and confidential. If the reader 
of this message is not the intended recipient, you are hereby notified 
that you have received this communication in error, and that any review, 
dissemination, distribution or copying of the message is strictly 
prohibited. If you have received this transmission in error, please 
notify us immediately by telephone and/or reply e-mail.

 



Gabor Terjeki wrote:
> You may check two things:
> - The VPN filter is considered inbound, meaning this rule below should
> prevent the remote site from reaching your internal web and telnet
> servers. In case you'd like to filter traffic destined for the remote
> subnet, the following syntax is to be used:
>    access-list FILTER extended deny tcp any eq www any
>
> - There was indeed a bug for the vpn-filter, but I don't recall the id
> from the top of my head. I believe it affected 7.2.1 and 7.2.2. If you
> use any of these versions, I'd suggest to upgrade.
> You shall be able to find it on bug toolkit easily.
>
> HTH,
> Gabor
>
> On Fri, Sep 12, 2008 at 5:19 PM, Shane Miles <smiles@xxxxxxxxxx> wrote:
>   
>> My vpn-filter does not work. It's starting to look like a bug to me.  The VPN
>> comes up with no problem. The problem is I can still telnet and www through
>> the VPN with the config below. Any ideas why?
>>
>> access-list FILTER extended deny tcp any any eq www
>> access-list FILTER extended deny tcp any any eq telnet
>> access-list FILTER extended permit ip any any
>> !
>> group-policy VPN attributes
>>  vpn-filter value FILTER
>> !
>> tunnel-group 10.1.1.100 general-attributes
>>  default-group-policy VPN
>>
>> --
>> Shane


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 20:17:59 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J0HxvY002450
	GroupStudy Mailer; Thu, 18 Sep 2008 20:17:59 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J0Hxr9002448
	for securityxhiddenx; Thu, 18 Sep 2008 20:17:59 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.249]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J0HwYp002428 GroupStudy Mailer; Thu, 18 Sep 2008 20:17:58
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so172083agd.11 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 17:17:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:subject
  :date:mime-version:content-type:content-transfer-encoding:x-priority
  :x-msmail-priority:x-mailer:x-mimeole;
  bh=zj+oBrzd/OTKfdt59mb0iuQY53Z6oc83SB0nEgq9ILU=;
  b=Xvfec9DYXJq38WTGMWYFmmjerWXycAA1dGW143vrnaDvp2d0w4ZjWY2n80LR6JzwXD
  WwuZH1e/Gr2qGIBHuK9Tzsi8bHazASrH9wxbLXV2+S3oaoIAz5Rh+UOUy4s6leLJKf5x
  nmnqNoHGFzTAEQdgrHHBSj0uuGuTazdwMKT84=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:subject:date:mime-version:content-type
  :content-transfer-encoding:x-priority:x-msmail-priority:x-mailer
  :x-mimeole;
  b=m1oHYA2ksvsZc7H4jsSpP2vB1oZrx4xl/Z3E5wg5039Ll4h+gU8mGNebn6XyUOkdDq
  jGMToBMjjVkxdy9iNemnU85RmpRy4b4hA6VkJkV2tn525Et71AfNrL01TX/RTMZ/pKtD
  arfgKD5OQBE87B14oTPXDS7BLMCnscbjqWwk8=
Received: by 10.70.11.1 with SMTP id 1mr3089958wxk.26.1221783471943;
  Thu, 18 Sep 2008 17:17:51 -0700 (PDT)
Received: from computer ( [70.8.65.28]) by mx.google.com with ESMTPS id
  i37sm632066wxd.9.2008.09.18.17.17.50 (version=SSLv3 cipher=RC4-MD5);
  Thu, 18 Sep 2008 17:17:52 -0700 (PDT)
Message-ID: <5BA1DAF7914C47DE916BAC6E2ACA13EE@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Fw: Please confirm (conf#e212c22d9b8294f910e03974921d2219)
Date: Thu, 18 Sep 2008 19:17:47 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-ASK-Info: Invalid confirmation (2008/09/18 20:17:59)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

----- Original Message ----- 
From: "Cisco certification" <security@xxxxxxxxxxxxxx>
To: <testing3.141@xxxxxxxxx>
Sent: Wednesday, September 17, 2008 2:04 PM
Subject: Please confirm (conf#e212c22d9b8294f910e03974921d2219)


> Hi,
>
> You have tried to post to a GroupStudy.com certification mailing list. 
> Because
> the server does not recognize you as a confirmed poster, you will be 
> required
> to authenticate that you are using a valid e-mail address and are not a
> spammer. By confirming this e-mail you certify that you are not sending
> Unsolicited Bulk Email (UBE).
>
> PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN!  BY CONFIRMING THIS EMAIL
> YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED.
>
>
> By confirming this e-mail you also certify the following:
>
> 1. The message does NOT break Cisco's Non-Disclosure requirements.
>
> 2. The message is NOT designed to advertise a commercial product.
>
> 3. You understand all postings become property of GroupStudy.com
>
> 4. You have searched the archives prior to posting.
>
> 5. The message is NOT inflammatory.
>
> 6. The message is NOT a test message.
>
> To confirm, simply reply to this message.  No editing is necessary.  Once
> confirmed, you will be able to post without additional confirmations.
>
>
> Welcome to GroupStudy.com!
>
>
> First time posters to GroupStudy.com are required to agree to the 
> GroupStudy terms and conditions.
> Replying to this email, certifies you have read and agree to the 
> GroupStudy posting guidelines and terms and conditions.
>
> --- Original Message Follows ---
>
> Date: Wed, 17 Sep 2008 14:04:32 -0500
> From: "testing testing123" <testing3.141@xxxxxxxxx>
> To: security@xxxxxxxxxxxxxx
>
> auth dbbbfc2e subscribe security testing3.141@xxxxxxxxx


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 21:19:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J1JCQg006602
	GroupStudy Mailer; Thu, 18 Sep 2008 21:19:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J1JCWk006600
	for securityxhiddenx; Thu, 18 Sep 2008 21:19:12 -0400
Received: from el-out-1112.google.com (el-out-1112.google.com
  [209.85.162.180]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J1JCbN006579 GroupStudy Mailer; Thu, 18 Sep 2008 21:19:12
  -0400
Received: by el-out-1112.google.com with SMTP id n30so55331elf.12 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 18:19:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=hG3ze5Bxgubep+NXKtudjMzMvEvsuYGvGjHLpPRvpjw=;
  b=N1UcfejPrXQRUg4pVkjaJ48kTNfUuimEwEr63aDQ8dGINgMFe/KoYW7DbphIvvsBn6
  3EgtTptoIyOpz3llY5woGZjgvQTHDFQRxUqeuHo90tPKdP7Wyf6ZenoQp3EVl2YjKuog
  z4lp79pBCkTCwf7eYAm4gB2EOgN8rpuaFf5DY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=jKYCVnvJYwhVVeCdA94M0bJDXIP8ILyb4lFEsQuSN45Am6utGz1wVlUFtWQBjAVXHZ
  x22QgT8bWFR5a03FwlQzdJGME5d2hRlFiT1dzd08mzQcgq97zZhUUOf9jcs36tKFtDmu
  glZQ2SS88gKyDEktrCHUSx+gH4oZQoxY0Lej4=
Received: by 10.151.48.20 with SMTP id
  a20mr2226997ybk.227.1221787148829; Thu, 18 Sep 2008 18:19:08 -0700
  (PDT)
Received: by 10.150.139.13 with HTTP; Thu, 18 Sep 2008 18:19:08 -0700
  (PDT)
Message-ID: <876b984c0809181819p556a7a99u70998a8d1964189c@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 04:19:08 +0300
From: "Shahid Ansari" <shahid1357@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
Subject: IPS : To increase Payload in packet
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from shahid1357@xxxxx\.com] (2008/09/18 21:19:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shahid Ansari" <shahid1357@xxxxxxxxx>

Hi GS,



Do any one know How to increase payload in packet ? I like to do some test
which can bypass IPS sensor .

not familiar with of C++ .................





Waiting for response


-- 
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 21:27:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J1R1fH007100
	GroupStudy Mailer; Thu, 18 Sep 2008 21:27:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J1R1Io007098
	for securityxhiddenx; Thu, 18 Sep 2008 21:27:01 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.240]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J1R1V0007078 GroupStudy Mailer; Thu, 18 Sep 2008 21:27:01
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so196622agd.11 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 18:26:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:references
  :subject:date:mime-version:content-type:content-transfer-encoding
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  bh=zj+oBrzd/OTKfdt59mb0iuQY53Z6oc83SB0nEgq9ILU=;
  b=EzFHqsw8eeSdIy7AsQJYPXhKSY83IFWkf0WJhO8ZFd1geZKnVhmHmTCJ+n17LLD1iI
  z6QTjztFEAjCDGdIT2OhZwrqoudgOvv9Ha987TBdX2IWORY62B6QpiIP1xgZEF3vAsXg
  xjXB1umztW6UFtEGoFhM6auG7mbhWqYAK0lu8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:references:subject:date:mime-version
  :content-type:content-transfer-encoding:x-priority:x-msmail-priority
  :x-mailer:x-mimeole;
  b=nJaN9hcHHju153JRpM2QBwR1XWPz2ZutCiC6GXhWD99MHl10ZMO7+Nhe6Kvrgdsuha
  RExtQ1CCwCIHuPqZkVOj2Nv4ikc3NMpqZNlKX0Gc/K7INracDi6Mtal5iZRSWfjBAtOV
  Z0ELBKorQNKgeAmB69vpYR2Ryf5QBPpf7R3po=
Received: by 10.70.77.2 with SMTP id z2mr5177194wxa.76.1221787616980;
  Thu, 18 Sep 2008 18:26:56 -0700 (PDT)
Received: from computer ( [70.8.65.28]) by mx.google.com with ESMTPS id
  h35sm823070wxd.39.2008.09.18.18.26.55 (version=SSLv3 cipher=RC4-MD5);
  Thu, 18 Sep 2008 18:26:56 -0700 (PDT)
Message-ID: <01F81C3D5A4B4E358F945BBD4BBC8382@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
References: <200809171904.m8HJ4bLe013565@xxxxxxxxxxxxxx>
Subject: Re: Please confirm (conf#e212c22d9b8294f910e03974921d2219)
Date: Thu, 18 Sep 2008 20:26:52 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-ASK-Info: Invalid confirmation (2008/09/18 21:27:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

----- Original Message ----- 
From: "Cisco certification" <security@xxxxxxxxxxxxxx>
To: <testing3.141@xxxxxxxxx>
Sent: Wednesday, September 17, 2008 2:04 PM
Subject: Please confirm (conf#e212c22d9b8294f910e03974921d2219)


> Hi,
>
> You have tried to post to a GroupStudy.com certification mailing list. 
> Because
> the server does not recognize you as a confirmed poster, you will be 
> required
> to authenticate that you are using a valid e-mail address and are not a
> spammer. By confirming this e-mail you certify that you are not sending
> Unsolicited Bulk Email (UBE).
>
> PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN!  BY CONFIRMING THIS EMAIL
> YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED.
>
>
> By confirming this e-mail you also certify the following:
>
> 1. The message does NOT break Cisco's Non-Disclosure requirements.
>
> 2. The message is NOT designed to advertise a commercial product.
>
> 3. You understand all postings become property of GroupStudy.com
>
> 4. You have searched the archives prior to posting.
>
> 5. The message is NOT inflammatory.
>
> 6. The message is NOT a test message.
>
> To confirm, simply reply to this message.  No editing is necessary.  Once
> confirmed, you will be able to post without additional confirmations.
>
>
> Welcome to GroupStudy.com!
>
>
> First time posters to GroupStudy.com are required to agree to the 
> GroupStudy terms and conditions.
> Replying to this email, certifies you have read and agree to the 
> GroupStudy posting guidelines and terms and conditions.
>
> --- Original Message Follows ---
>
> Date: Wed, 17 Sep 2008 14:04:32 -0500
> From: "testing testing123" <testing3.141@xxxxxxxxx>
> To: security@xxxxxxxxxxxxxx
>
> auth dbbbfc2e subscribe security testing3.141@xxxxxxxxx


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 22:33:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J2XBJt011274
	GroupStudy Mailer; Thu, 18 Sep 2008 22:33:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J2XBwD011272
	for securityxhiddenx; Thu, 18 Sep 2008 22:33:11 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J2XB8d011233 GroupStudy Mailer; Thu, 18 Sep 2008 22:33:11
  -0400
Received: by gxk13 with SMTP id 13so348794gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 19:33:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=JxYnn9P1tSsOPzxA7ixv1lX+/npg8ZSTQ7TmMWv1HAw=;
  b=Jd8GjXIA6fqPuKJQp1qx+wRg34CN9AX+efCYkUqXtT7m1WgKh7WIyWyI1yDZhRDX/j
  vbk/hdfF9pWIezg88O1fT75Fbng1lE4MfA2FEPwF7mEOQDsXcLgl4q0MPRxtcWmPrLnO
  C4cZ/YyhWtwWotCJHLFKwb+0qfLSjfGVDUHFM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=uKc7U0BgAB47T3mGnxYCJ6Ir2u7/SFxEMzDlzQ8Ggu/HuC3p21j/s6BfetBb1izQNO
  qARSp9+0hP14clCXBWD0VcaQoy0iThtORUHm0Y30xkKJfNgvIJQCFWgBAWYwqdpfr5CM
  pSZ8bnonGouziKc97P2WIgmbkznXX7EanKgKU=
Received: by 10.150.202.9 with SMTP id z9mr2370814ybf.22.1221791582429;
  Thu, 18 Sep 2008 19:33:02 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Thu, 18 Sep 2008 19:33:02 -0700
  (PDT)
Message-ID: <eff3217d0809181933x1dce523r9c360c52777e6ed8@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 05:33:02 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Shahid Ansari" <shahid1357@xxxxxxxxx>
Subject: Re: IPS : To increase Payload in packet
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <876b984c0809181819p556a7a99u70998a8d1964189c@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <876b984c0809181819p556a7a99u70998a8d1964189c@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/18 22:33:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Are you referring to IDS/IPS evasion by fragmentation?

On Fri, Sep 19, 2008 at 4:19 AM, Shahid Ansari <shahid1357@xxxxxxxxx> wrote:

> Hi GS,
>
>
>
> Do any one know How to increase payload in packet ? I like to do some test
> which can bypass IPS sensor .
>
> not familiar with of C++ .................
>
>
>
>
>
> Waiting for response
>
>
> --
> Regards,
>
> Shahid
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 18 22:49:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J2nQP5012263
	GroupStudy Mailer; Thu, 18 Sep 2008 22:49:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J2nQpm012261
	for securityxhiddenx; Thu, 18 Sep 2008 22:49:26 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.241]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J2nPeR012241 GroupStudy Mailer; Thu, 18 Sep 2008 22:49:25
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so229418agd.11 for
  <security@xxxxxxxxxxxxxx>; Thu, 18 Sep 2008 19:49:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:subject
  :date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=gQ5wiY3tbCdBn5f5C8gVzaQwZzdcztpvEAsEAUua9Qo=;
  b=w0X9gAUhBV/7kih3Z9EEB1oDY3waZTEExbPqzFwDJVLKvsHVP4fSBt5IRbVmExRQFA
  McJ8cH5tqKJAoMcrhzYBQGag92439DxI+E1z9AUdor6sfLSSJzWy3IlOUP0cmCbu0tFD
  DuaXoy+nsy2GqKSZ3N9fjXr9JBgguzW9H2c+I=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:subject:date:mime-version:content-type
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=edz+D4ep4Py0mdCbSa/Jwo4nDZRDTi1Pg7POQgB8PrGLeIwdEmoJDbNFKLghwZPTZR
  5tyQ3ErKenIy5GgkCi3B3nuH20W3kQWNJpVqyJHBqVxWa3ePbivVj8p5C1KmMGYFcAfX
  /hfvn7sKsKAc41u1YYTewb4ZyEXR+Tcx5A75c=
Received: by 10.70.51.7 with SMTP id y7mr5264742wxy.84.1221792562311;
  Thu, 18 Sep 2008 19:49:22 -0700 (PDT)
Received: from computer ( [70.8.65.28]) by mx.google.com with ESMTPS id
  h18sm1101469wxd.10.2008.09.18.19.49.20 (version=SSLv3 cipher=RC4-MD5);
  Thu, 18 Sep 2008 19:49:21 -0700 (PDT)
Message-ID: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: ccie security dynamips
Date: Thu, 18 Sep 2008 21:49:17 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from testing3\.141@xxxxx\.com] (2008/09/18 22:49:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

I'm taking the security lab in 5 months.  I'm building a dynamips lab.  I have
2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram, this computer
is 3 years old.  The other one I just bought yesterday is a quad core 2.5 ghz
with 8 gigs ram.  Is the older PC powerful enough to run the dynamips ?  Or am
I going to have "issues" with the older pc running dynamips ?  Do I need to
use both pc's ?  Or will the older pc be enough to run all the dynamips and
everything that can be emulated for the lab ?  I dont want to have to use both
pc's if I don't have to.

Thanks everybody

Qwanae


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 03:46:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J7kplX001343
	GroupStudy Mailer; Fri, 19 Sep 2008 03:46:51 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J7kpfZ001340
	for securityxhiddenx; Fri, 19 Sep 2008 03:46:51 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J7kocr001288 GroupStudy Mailer; Fri, 19 Sep 2008 03:46:50
  -0400
Received: by gxk13 with SMTP id 13so590929gxk.6 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 00:46:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=7NsS10mvu/0yXHRVrfc6x72oBnJcGVHFAPhGt7ZjigE=;
  b=T4ru5ZHKDcWSuJ9fjYr9t7RYbIsdQCLBkmXJZr8xRWe6i7OqEiQCjQy39fGQzjVMDN
  B86bVrS4lliNwTUAAngoKm19C5RhAAogRNUjfKNSDkwZqs4OIx9BV98E6lisFjuRtMp8
  5C0328r9BH7xogXuwR2PaMHon8qocm9g+WrrI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=e1XoPXjCxHDAG5JAqaRk38QzOCZ4KmQAiQ6o25wr/l3f+JBzx+VE6ORV96yGB+SW3H
  eiJj6ToULWjr5lEcOuQLra3m5qVBGfHaeLsKsFnMmCpxmN9EqFVsMANi8AIsFO8rD/Aw
  npc5/fCLukPGo4Hmwgxkioa1iksbh4lAXyFgY=
Received: by 10.151.10.7 with SMTP id n7mr2654767ybi.139.1221810401351;
  Fri, 19 Sep 2008 00:46:41 -0700 (PDT)
Received: by 10.150.139.13 with HTTP; Fri, 19 Sep 2008 00:46:41 -0700
  (PDT)
Message-ID: <876b984c0809190046s39c70354vf933265e9e9b0f57@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 10:46:41 +0300
From: "Shahid Ansari" <shahid1357@xxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
Subject: Re: IPS : To increase Payload in packet
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <eff3217d0809181933x1dce523r9c360c52777e6ed8@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <876b984c0809181819p556a7a99u70998a8d1964189c@xxxxxxxxxxxxxx>
  <eff3217d0809181933x1dce523r9c360c52777e6ed8@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from shahid1357@xxxxx\.com] (2008/09/19 03:46:51)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shahid Ansari" <shahid1357@xxxxxxxxx>

 Yes,
I want to increase it to more than 4096.


On Fri, Sep 19, 2008 at 5:33 AM, Farrukh Haroon <farrukhharoon@xxxxxxxxx>wrote:

> Are you referring to IDS/IPS evasion by fragmentation?
>
>   On Fri, Sep 19, 2008 at 4:19 AM, Shahid Ansari <shahid1357@xxxxxxxxx>wrote:
>
>>  Hi GS,
>>
>>
>>
>> Do any one know How to increase payload in packet ? I like to do some test
>> which can bypass IPS sensor .
>>
>> not familiar with of C++ .................
>>
>>
>>
>>
>>
>> Waiting for response
>>
>>
>> --
>> Regards,
>>
>> Shahid
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>>
>>
>>
>>
>>
>>
>


-- 
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 04:19:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J8J3Xu005395
	GroupStudy Mailer; Fri, 19 Sep 2008 04:19:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J8J3C0005393
	for securityxhiddenx; Fri, 19 Sep 2008 04:19:03 -0400
Received: from ug-out-1314.google.com (ug-out-1314.google.com
  [66.249.92.169]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J8J2cf005373 GroupStudy Mailer; Fri, 19 Sep 2008 04:19:02
  -0400
Received: by ug-out-1314.google.com with SMTP id t39so920343ugd.10 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 01:19:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=oZyY932w0EAOT/BWwadLLAe6SZqf2JRUYoLbUsueqZs=;
  b=MvLiGqsJ1JC5NWIlyZo9fbYW1I4lyNULYA2Qd+dBCsqSYRfnGXZfd6CMpEMbZmw+5i
  umqacxl84jugbWD368qZjgshtlF6a4z+o9QM9YDymWAzdq3IsDaf9L3NMf1s+vRjmKIL
  tV8kO4unQ/19WEfm/7oALp6xfmsLniC7lxhGo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=OL+0pyO4ZQSDpDZP7KwLjkqUd46sM/fyVg+iRrLYe3iVFE5hwtighRQs16dveOFCJl
  p9ZMFjzWZpbRRmfvC6HTY/xqnR6HYNazbLVcCwLRFsJrexIyinwhuHU9sJ7mSU8zm+TD
  +ZAM38FfqMF8LfSlum+/CYI3lfWnANqSDWpo0=
Received: by 10.210.72.14 with SMTP id u14mr1686220eba.80.1221812341671;
  Fri, 19 Sep 2008 01:19:01 -0700 (PDT)
Received: by 10.210.18.4 with HTTP; Fri, 19 Sep 2008 01:19:01 -0700
  (PDT)
Message-ID: <78f2a54e0809190119kf0ced08y9c062047cdc49f47@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 11:19:01 +0300
From: "Hello Hello" <sk180174@xxxxxxxxx>
To: "Steven Jenkins" <steven.jenkins72@xxxxxxxxx>
Subject: Re: EZVPN / upcoming changes in lab
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <394009.21869.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <394009.21869.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sk180174@xxxxx\.com] (2008/09/19 04:19:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Hello Hello" <sk180174@xxxxxxxxx>

DAP are not configurable via CLI.

On ver 8 things like bookmars, Secure desktop ar not configurable via CLI .

HTH

On Tue, Sep 9, 2008 at 7:19 PM, Steven Jenkins
<steven.jenkins72@xxxxxxxxx>wrote:

> Hello,
>
> Pretty easy question, I just need confirmation on ... if you have an
> ASA configured for EZVPN remote client than it isn't able to participate in
> any other IPSec VPNs correct?  Can it allow a remote access SSL VPN
> connection?
>
> If and when they change to lab to ASA8.0 code, will they have to
> allow use of the ASDM dues to some SSL VPN features?  I suppose another way
> I
> could ask that is ... Are DAP policies configurable via the CLI?
>
> thanks in
> advance,
>
> S. Jenkins
>
>


-- 
"Keep it going SMILE"


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 04:42:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J8gOoO007413
	GroupStudy Mailer; Fri, 19 Sep 2008 04:42:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J8gODC007411
	for securityxhiddenx; Fri, 19 Sep 2008 04:42:24 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.185]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J8f5WP007256 GroupStudy Mailer; Fri, 19 Sep 2008 04:41:05
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so190495tib.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 01:41:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:from:to:subject:date
  :message-id:mime-version:content-type:x-mailer:thread-index
  :content-language; bh=7gSmyiLl8PWBc8JrhLnuGDj+KWaALpvFyCNy0TKEULk=;
  b=fxht1F9LRNAH58TpeBxb+gan6rCSYulQdujWMSbIcXzHSvZzwkn/hL24RkpRRWJgNE
  Ab/N5ERInOxHUSLQGKdM0uwJQ3cqCAgzDX6z6NBk8SrSv5Ym1CepV5Ws2yjgDP4BsXbF
  gH08Yjt+NptEZl4VZp0khuNwjfBSVZJoA/WD8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=from:to:subject:date:message-id:mime-version:content-type:x-mailer
  :thread-index:content-language;
  b=Q1Bqonj2IvbWFEuSfC7hwmHsF8wg+co6Gd6rMUlEw4Q7B/ylNsIIA3zeKDgUJSnuru
  mkl1T34WmMnLe3Hsfv1RPxupyoMo1S92TDhtw74G65Hh0L7duzFBr0MhHbbQOKeM2L7U
  llHE2RvX8jGkGKD18tJISfg5ROnBZbokuX1yE=
Received: by 10.110.43.18 with SMTP id q18mr5193516tiq.57.1221813664475;
  Fri, 19 Sep 2008 01:41:04 -0700 (PDT)
Received: from Lnavnit ( [59.161.150.143]) by mx.google.com with ESMTPS
  id w12sm357049tib.1.2008.09.19.01.41.00 (version=SSLv3
  cipher=RC4-MD5); Fri, 19 Sep 2008 01:41:03 -0700 (PDT)
From: "nmv" <qmbits@xxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: ASA VPN authenticate LDAP....
Date: Fri, 19 Sep 2008 14:10:55 +0530
Message-ID: <000001c91a33$72d621a0$588264e0$@com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckaM23yLHgYpwPaS1S5n3YQb4m9Eg==
Content-Language: en-us
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/19 04:41:07)
X-ASK-Info: Confirmed by User (2008/09/19 04:42:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "nmv" <qmbits@xxxxxxxxx>

Hello everyone !!!

 

>From ASA, we can authenticate VPN client via external RADIUS or TACACS
server, likewise can I forward the VPN authentication request to external
LDAP server directly from ASA ?


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 04:48:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J8m1Cp007880
	GroupStudy Mailer; Fri, 19 Sep 2008 04:48:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J8m1Xh007878
	for securityxhiddenx; Fri, 19 Sep 2008 04:48:01 -0400
Received: from ey-out-1920.google.com (ey-out-1920.google.com
  [74.125.78.145]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J8lxrl007856 GroupStudy Mailer; Fri, 19 Sep 2008 04:48:00
  -0400
Received: by ey-out-1920.google.com with SMTP id 4so99115eyg.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 01:47:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=JQnNkFgcKy/u5CaRUPLTLfbAALOJbAS6vn7twt9ZJq0=;
  b=paYuniZu4mGH2mgfapwvYiskdoOEL/G33ZhTTAf7CsKY2g1n+XRi3uXVCBZGh+LUUm
  Xc25K5agEbGgpYKcrJ0TfNWry5WkRJ4BTPBMu2vIHS2D7OijN+MnCFwbj6A9MiWexeqG
  FoDEba2k4l+dYdnoW9JHxFp8aE8KO0kplVS9I=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=a4ddFLC/1JI0TZ+xKr6La2jj4W4ITNo4hUPd8flDQEfoBkE0X6W6Aqc7DrrJx2zXPu
  OgU0aTkaqpE+cucpjEOKYdi56cNwvzbHdCmMsC/BWEaUIDIJ0KhEsw3LIxplG9JdcSuO
  n44Jxo8bOnK6bQG5rZoFew0HWWtAQtcVKyN0k=
Received: by 10.210.26.10 with SMTP id 10mr6331990ebz.170.1221814079655;
  Fri, 19 Sep 2008 01:47:59 -0700 (PDT)
Received: by 10.210.18.4 with HTTP; Fri, 19 Sep 2008 01:47:59 -0700
  (PDT)
Message-ID: <78f2a54e0809190147i48b989ex12c18396455485ef@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 11:47:59 +0300
From: "Hello Hello" <sk180174@xxxxxxxxx>
To: "Aziz S. Islam" <aziz.islam@xxxxxxxxxxxx>
Subject: Re: Client authentication using RADIUS(IETF) & RADIUS(Cisco IOS
  & PIX)
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <BLU130-F151976DD67B26ADB41B99CED840@xxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <BLU130-F151976DD67B26ADB41B99CED840@xxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from sk180174@xxxxx\.com] (2008/09/19 04:48:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Hello Hello" <sk180174@xxxxxxxxx>

pre configured Attributes..
For example: last ver 4.2 added lots of pre configured attributes for
sslvpn.

HTH




On Wed, Jul 23, 2008 at 8:13 PM, Aziz S. Islam <aziz.islam@xxxxxxxxxxxx>wrote:

> Hi Folks,
> Can someone please clarify when to use AAA client authentication using
> RADIUS(IETF) and when RADIUS(Cisco IOS & PIX)?
>
> And what is the difference between the two?
>
> Thanks in advance.
>
> Aziz
>
>


-- 
"Keep it going SMILE"


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 04:52:32 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J8qWNR008921
	GroupStudy Mailer; Fri, 19 Sep 2008 04:52:32 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J8qWiS008919
	for securityxhiddenx; Fri, 19 Sep 2008 04:52:32 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.185]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8J8qUix008899 GroupStudy Mailer; Fri, 19 Sep 2008 04:52:31
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so194383tib.24 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 01:52:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:from:to:references
  :in-reply-to:subject:date:message-id:mime-version:content-type
  :x-mailer:thread-index:content-language;
  bh=aZ+3yi/nyOOI2BBblMe8jPH/CNU9w2etCnXEMX37re4=;
  b=UCvO3BS7vQmRVTz60paGPT+Jb2Oz3ZdR7n34lISYmMadxFdcy1kWzWziajQyxLyh+F
  I8L2KabyKr9GQgaWrVtiCMJKphi/xfx+tBhWDO3JSQH4h5H0IRvGihP3AW3lQ59WMbge
  RklbOamDE9Yf8wTu423c5etxbO1X8pU/EvtJg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=from:to:references:in-reply-to:subject:date:message-id:mime-version
  :content-type:x-mailer:thread-index:content-language;
  b=EmSlMLJp1ZXBL0W17Osinx1wfChMM2ONKaxWeq0nptuGkE13ZyYMELffAVAv9ZU6pS
  +tb8WjSq3R1vFCeUDUGvWPoQ/YY2+oq5JWDhwsOyYJZ9qqsrlEtHBWleVIPhytpAh0hn
  LU7hDxZ7hRj1sYhOVLjXhMyUw/5OLRPXMbMeM=
Received: by 10.110.5.14 with SMTP id 14mr6791668tie.47.1221814349423;
  Fri, 19 Sep 2008 01:52:29 -0700 (PDT)
Received: from Lnavnit ( [59.161.150.143]) by mx.google.com with ESMTPS
  id 2sm63873tif.7.2008.09.19.01.52.25 (version=SSLv3 cipher=RC4-MD5);
  Fri, 19 Sep 2008 01:52:28 -0700 (PDT)
From: "nmv" <qmbits@xxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: ASA VPN authenticate LDAP....
Date: Fri, 19 Sep 2008 14:22:20 +0530
Message-ID: <000601c91a35$0b744d50$225ce7f0$@com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckaM23yLHgYpwPaS1S5n3YQb4m9EgAAY8Pw
Content-Language: en-us
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from qmbits@xxxxx\.com] (2008/09/19 04:52:32)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "nmv" <qmbits@xxxxxxxxx>

Hello everyone !!!

 

>From ASA, we can authenticate VPN client via external RADIUS or TACACS
server, likewise can I forward the VPN authentication request to external
LDAP server directly from ASA ?


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 05:23:20 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8J9NKPF012373
	GroupStudy Mailer; Fri, 19 Sep 2008 05:23:20 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8J9NKT8012371
	for securityxhiddenx; Fri, 19 Sep 2008 05:23:20 -0400
Received: from asmtpout022.mac.com (asmtpout022.mac.com [17.148.16.97])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8J9EMVG011124 GroupStudy Mailer; Fri, 19 Sep 2008 05:14:22 -0400
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Received: from [192.168.1.74] ([87.242.130.27]) by asmtp022.mac.com (Sun
  Java(tm) System Messaging Server 6.3-7.03 (built Aug 7 2008; 32bit))
  with ESMTPSA id <0K7F00KIJQZQD310@xxxxxxxxxxxxxxxx> for
  security@xxxxxxxxxxxxxx; Fri, 19 Sep 2008 02:14:17 -0700 (PDT)
Message-id: <6D7A79D5-FCA7-4D5B-8D20-B5D2016B7511@xxxxxxx>
From: Greg Ferro <gregferro@xxxxxxx>
To: security@xxxxxxxxxxxxxx
In-reply-to: <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
Subject: Study resources
Date: Fri, 19 Sep 2008 10:14:14 +0100
References: <B30058BB1DFBD9409403E624DE1EBD2D03814D@xxxxxxxxxxxxxxxxxxxxxx>
  <4FD71E89-41F2-4CCA-838A-A1E5F50797A6@xxxxxxxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-ASK-Info: Message Queued (2008/09/19 05:14:23)
X-ASK-Info: Confirmed by User (2008/09/19 05:23:19)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Greg Ferro <gregferro@xxxxxxx>

Good Afternoon All

I am considering whether to attempt my Security lab, and looking for  
input to decide which providers to use for study materials. I have  
prepared a list of what I can find and the features and benefits on my  
blog at http://etherealmind.com/2008/09/16/ccie-security-training-material/ 
.

I would very much appreciate it if you have any comments, either here,  
or on the blog to help me choose between them.

Thanks

Greg Ferro aka Etherealmind.


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 07:55:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8JBtCjp026660
	GroupStudy Mailer; Fri, 19 Sep 2008 07:55:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8JBtCFA026658
	for securityxhiddenx; Fri, 19 Sep 2008 07:55:12 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8JBtAgJ026618 GroupStudy Mailer; Fri, 19 Sep 2008 07:55:10
  -0400
Received: by gxk13 with SMTP id 13so809018gxk.6 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 04:55:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=jTLpKZyOFaz+8ZZ1FXm2wGe3YWk8gEhULLWVoHQVf+g=;
  b=PecabJKDmgszyonR7Jp9qrMTeMF/DT3XMR3A0R3xxSLfzfAGtb+SSGpi2sXRKBE+KR
  sq6wCcDd5tVOPbj1YmD/laiz576gKLANzhCOtjXTwqD3pktuayKLX1EVLI8Z3cLNkQCc
  lc94L27/WYp76Pw/xUcR0I/dUV5oGmZxqflo4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=gNY2Dz2POXNm5KV5NESDETMs0fB5cpKpplh0lV7TqMD3IyMc1q7xB2nLG8dlIZRtbv
  oPvWmAzXol/2dDx29MYOKGYxC5B1IO/9Y4yKJPVZPm4332j2xzaC371Mz6VFLQelTd09
  aZ0cmVwkmcjLTjUWimGmQR9cFGaJeCGY0hY3s=
Received: by 10.150.148.1 with SMTP id v1mr3006615ybd.55.1221825304899;
  Fri, 19 Sep 2008 04:55:04 -0700 (PDT)
Received: by 10.150.139.13 with HTTP; Fri, 19 Sep 2008 04:55:04 -0700
  (PDT)
Message-ID: <876b984c0809190455s370a9c8dk5f519d1bcb91ec24@xxxxxxxxxxxxxx>
Date: Fri, 19 Sep 2008 14:55:04 +0300
From: "Shahid Ansari" <shahid1357@xxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
Subject: Re: IPS : To increase Payload in packet
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <ccielab@xxxxxxxxxxxxxx>
In-Reply-To: <876b984c0809190046s39c70354vf933265e9e9b0f57@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <876b984c0809181819p556a7a99u70998a8d1964189c@xxxxxxxxxxxxxx>
  <eff3217d0809181933x1dce523r9c360c52777e6ed8@xxxxxxxxxxxxxx>
  <876b984c0809190046s39c70354vf933265e9e9b0f57@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from shahid1357@xxxxx\.com] (2008/09/19 07:55:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Shahid Ansari" <shahid1357@xxxxxxxxx>

I found some packet generator tools which based on Unix platform but looking
for Windows OS supportable .

I desire to to do customization on payload for testing  ASA and IPS  and to
play handshake of TCP .



One of my friend suggested me "Nemesis Ethernet" .let me try with that .



Any suggestions are highly appereciated .





 On Fri, Sep 19, 2008 at 10:46 AM, Shahid Ansari <shahid1357@xxxxxxxxx>wrote:

>  Yes,
> I want to increase it to more than 4096.
>
>
>   On Fri, Sep 19, 2008 at 5:33 AM, Farrukh Haroon <farrukhharoon@xxxxxxxxx
> > wrote:
>
>> Are you referring to IDS/IPS evasion by fragmentation?
>>
>>   On Fri, Sep 19, 2008 at 4:19 AM, Shahid Ansari <shahid1357@xxxxxxxxx>wrote:
>>
>>>  Hi GS,
>>>
>>>
>>>
>>> Do any one know How to increase payload in packet ? I like to do some
>>> test
>>> which can bypass IPS sensor .
>>>
>>> not familiar with of C++ .................
>>>
>>>
>>>
>>>
>>>
>>> Waiting for response
>>>
>>>
>>> --
>>> Regards,
>>>
>>> Shahid
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>
>
>
> --
> Regards,
>
> Shahid
>



-- 
Regards,

Shahid


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 14:22:08 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8JIM8N2005828
	GroupStudy Mailer; Fri, 19 Sep 2008 14:22:08 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8JIM8l7005826
	for securityxhiddenx; Fri, 19 Sep 2008 14:22:08 -0400
Received: from ms2.hinet.net (ms2.hinet.net [168.95.4.20]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8JIM6cn005806
  GroupStudy Mailer; Fri, 19 Sep 2008 14:22:07 -0400
Received: from localhost (localhost) by ms2.hinet.net (8.8.8/8.8.8) with
  internal id CAA08877; Sat, 20 Sep 2008 02:22:03 +0800 (CST)
Date: Sat, 20 Sep 2008 02:22:03 +0800 (CST)
From: Mail Delivery Subsystem <MAILER-DAEMON@xxxxxxxxxxxxx>
Message-Id: <200809191822.CAA08877@xxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: Returned mail: Service unavailable
Auto-Submitted: auto-generated (failure)
X-ASK-Info: Message from Mailer-Daemon (2008/09/19 14:22:07)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Mail Delivery Subsystem <MAILER-DAEMON@xxxxxxxxxxxxx>

The original message was received at Sat, 20 Sep 2008 02:22:03 +0800 (CST)
from msx-sms1-2.hinet.net [168.95.7.12]

   ----- The following addresses had permanent fatal errors -----
<mmc@xxxxxxxxxxxxx>

   ----- Transcript of session follows -----
mail.local: /var/mail/m/mmc: Disc quota exceeded
554 <mmc@xxxxxxxxxxxxx>... Service unavailable

   ----- Original message follows -----

Return-Path: <security@xxxxxxxxxxxxxx>
Received: from msx-sms1-2.hinet.net (msx-sms1-2.hinet.net [168.95.7.12])
	by ms2.hinet.net (8.8.8/8.8.8) with ESMTP id CAA08876
	for <mmc@xxxxxxxxxxxxx>; Sat, 20 Sep 2008 02:22:03 +0800 (CST)
Received: from msx-sg5-5.hinet.net (msx-sg5-5.hinet.net [168.95.5.164])
	by msx-sms1-2.hinet.net (8.12.11/8.12.11) with ESMTP id m8JIM2KR027162
	for <mmc@xxxxxxxxxxxxx>; Sat, 20 Sep 2008 02:22:02 +0800 (CST)
Received: from 200-55-67-37.dsl.prima.net.ar (200-55-67-37.dsl.prima.net.ar [200.55.67.37])
	by msx-sg5-5.hinet.net (8.8.8/8.8.8) with ESMTP id CAA27354;
	Sat, 20 Sep 2008 02:21:30 +0800 (CST)
Received: from [10.0.30.62] by 200-55-67-37.dsl.prima.net.ar
	id 6eVTPKwRWl3v; Fri, 19 Sep 2008 21:21:28 +0300
Message-ID: <007301c91a84$5cb2d980$3e1e000a@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
From: "Olya" <security@xxxxxxxxxxxxxx>
To: "mlyuhjberpgbydwxjnlwpqu" <mlyuhjberpgbydwxjnlwpqu@xxxxxxxxxxxxxx>
Subject: [X-Spam]How about it !!!!!
Date: Fri, 19 Sep 2008 21:21:28 +0300
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Brightmail-Tracker: AAAAAgvaK58L1G9u
X-HiNet-Brightmail: Spam

Hi, gentleman!

Don't laugh if I say that since my girlhood I wanted to get married very
much. It was my lifetime  dream which is still alive into my heart.
I want to get married, because I don't understand such life when you are
alone, you get up at silent room and you are not responsible for somebody
and your heart is empty. My heart and my mind are against such selfish way
of life.
I looked at your profile, I read it attentively and the first thought which
visited me was: This man is so interesting and smart, that I won't be I if I
don't try to get acquainted with him. I hope that my frank letter about
marriage's dreams won't make you feel scared and doubtful.
I am sincere with you because It is my character. If i love, I love to
death, if I am romantic I will present to you all stars in the sky. I can be
different and life wont' become dull if you decide to be with me and to
share life with me.
I hope that you will think about me and write me, you can find me 
here http://romanticnightworld.com/passionates/

Looking forward to hear from you

Olya


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 21:56:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8K1u1Jx010985
	GroupStudy Mailer; Fri, 19 Sep 2008 21:56:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8K1u1Ae010983
	for securityxhiddenx; Fri, 19 Sep 2008 21:56:01 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.246]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8K1u1cv010963 GroupStudy Mailer; Fri, 19 Sep 2008 21:56:01
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so729529agd.11 for
  <security@xxxxxxxxxxxxxx>; Fri, 19 Sep 2008 18:55:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:references
  :subject:date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=okWNEQhgoh1enLdpQTO99lT7mG5Dc9onNGVev9PGSCI=;
  b=HMmp/WRBxcPIfMuhhGPz3JYKcmKWyVdJEPMbyKX8lOqU+OHvVjkCY6FC3T8f1TRs70
  rUL+qkZpTRUN8hbB++JEFY73zwooESieFs7svpRlGhCe7RmP76Tt4AKDbonGm46iO+SM
  Ha/aknrY3NkUwh7cy+MG1uxdcEJn9HoyAZPIU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:references:subject:date:mime-version
  :content-type:x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=TDGxKGuhLRkk/O04YEucfMGuOg7r8V6/IZXedzrMgFZFDbiCvjICXnGoktfAMiRDhp
  o5JmzoH6vA8K8TDk8y0dSvQXKUwSyqhYv4abCaANow6lvrFAQkMTdagN20lxuK2vDHo9
  Cl9Sq36XDoKoU7oBfKTrtJSXQl2i4ie5N3q4I=
Received: by 10.70.72.11 with SMTP id u11mr503688wxa.7.1221875757129;
  Fri, 19 Sep 2008 18:55:57 -0700 (PDT)
Received: from computer ( [70.8.2.179]) by mx.google.com with ESMTPS id
  h40sm2165380wxd.11.2008.09.19.18.55.54 (version=SSLv3 cipher=RC4-MD5);
  Fri, 19 Sep 2008 18:55:55 -0700 (PDT)
Message-ID: <EFC85CB376404797930B8330114A4797@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx>
Subject: Re: ccie security dynamips
Date: Fri, 19 Sep 2008 20:55:50 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from testing3\.141@xxxxx\.com] (2008/09/19 21:56:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

ok, i will use the quad core.  there is no os on it yet, i can put whatever i
want on it.  what os do i need to put on it ?  can i emulate everything on the
quad core machine (except for the concentrator of course) ?  or do i have to
have 2 pc's and 1 is not enough to handle everything ?
  ----- Original Message -----
  From: Raphael Kruczkowski
  To: testing3.141@xxxxxxxxx
  Sent: Friday, September 19, 2008 3:40 AM
  Subject: Re: ccie security dynamips


  The old PC can be fine for one or two routers.  The new one should be fine
for a few routers.  What type of os are you running? WinXP has a max of 4gb
that it can use.


  Also google up the videos from Anders on the ccie with dynamips.  He has
good tips on how to optimize the images and processes.


  Raphael


  On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:

    I'm taking the security lab in 5 months.  I'm building a dynamips lab.  I
have
    2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram, this
computer
    is 3 years old.  The other one I just bought yesterday is a quad core 2.5
ghz
    with 8 gigs ram.  Is the older PC powerful enough to run the dynamips ?
Or am
    I going to have "issues" with the older pc running dynamips ?  Do I need
to
    use both pc's ?  Or will the older pc be enough to run all the dynamips
and
    everything that can be emulated for the lab ?  I dont want to have to use
both
    pc's if I don't have to.

    Thanks everybody

    Qwanae


From security-owner@xxxxxxxxxxxxxx Fri Sep 19 22:40:33 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8K2eXRl013515
	GroupStudy Mailer; Fri, 19 Sep 2008 22:40:33 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8K2eXxA013513
	for securityxhiddenx; Fri, 19 Sep 2008 22:40:33 -0400
Received: from smtp2e.orange.fr (smtp2e.orange.fr [80.12.242.111]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8K2eWGe013493
  GroupStudy Mailer; Fri, 19 Sep 2008 22:40:32 -0400
Received: by mwinf2e05.orange.fr (SMTP Server) id 8E1251C017D8; Sat, 20
  Sep 2008 03:39:38 +0200 (CEST)
Date: Sat, 20 Sep 2008 03:39:38 +0200 (CEST)
X-ME-UUID: 20080918192101295.481CD700008C@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080920013938.8E1251C017D8@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/19 22:40:33)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf2e05.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<fumie-oono@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused

<go555@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection refused

<gossamer@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused

<hata-s@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused

<hideki333@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused

<hyouei@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused

<itah@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection refused

<kanu@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection refused

<kenske@xxxxxxxxxxx>: connect to lycos.ne.jp[210.254.80.183]: Connection
    refused
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: E11181C1F5A3
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Thu, 18 Sep 2008 21:21:05 +0200 (CEST)

Final-Recipient: rfc822; fumie-oono@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; go555@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; gossamer@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; hata-s@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; hideki333@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; hyouei@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; itah@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; kanu@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused

Final-Recipient: rfc822; kenske@xxxxxxxxxxx
Action: failed
Status: 4.4.1
Diagnostic-Code: X-SMTP-Server; connect to lycos.ne.jp[210.254.80.183]:
    Connection refused
Received: from smtp2e.orange.fr (mwinf2e01 [10.232.14.23]) by
  mwinf2e05.orange.fr (SMTP Server) with ESMTP id E11181C1F5A3; Thu, 18
  Sep 2008 21:21:05 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2e01.orange.fr (SMTP Server) with ESMTP id 02F09700009A; Thu, 18
  Sep 2008 21:21:02 +0200 (CEST)
Received: from chopin_srv1
  (LAubervilliers-151-12-95-136.w193-252.abo.wanadoo.fr
  [193.252.198.136]) by mwinf2e01.orange.fr (SMTP Server) with SMTP id
  481CD700008C; Thu, 18 Sep 2008 21:21:01 +0200 (CEST)
X-ME-UUID: 20080918192101295.481CD700008C@xxxxxxxxxxxxxxxxxxx
Message-ID: <000601c91a26$a3e8de76$1b8395d7@xxxxxxxx>
From: "=?windows-1251?B?QWxleCBLLg==?=" <security@xxxxxxxxxxxxxx>
To: <fumie-oono@xxxxxxxxxxx>, <go555@xxxxxxxxxxx>,
  <gossamer@xxxxxxxxxxx>, <hata-s@xxxxxxxxxxx>, <hideki333@xxxxxxxxxxx>,
  <hyouei@xxxxxxxxxxx>, <itah@xxxxxxxxxxx>, <kanu@xxxxxxxxxxx>,
  <kenske@xxxxxxxxxxx>
Subject: =?windows-1251?B?bG9va2luZyBmb3IgdGhhdCBzb21lb25lIHNwZWNpYWw=?=
Date: Thu, 18 Sep 2008 21:15:14 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4522.1200
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200

Hello to you

A man falls in love just as he falls downstairs. It is an accident.

Do you think the same?
Honest and considerate, I like meeting friends for coffee, walks in the
park, family get together - that is how I can describe myself. 
I like watching movies, dramas, romance, comedy. 
I can appear to be shy or quite, but I am just thinking... about you. 
I am a good listener but believe good communication is a two way street.
Find me www.romanticnightworld.com/greatfeelings/

Do svidaniya
Al


From security-owner@xxxxxxxxxxxxxx Sat Sep 20 12:35:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8KGZOHV009110
	GroupStudy Mailer; Sat, 20 Sep 2008 12:35:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8KGZO83009108
	for securityxhiddenx; Sat, 20 Sep 2008 12:35:24 -0400
Received: from mail.grouponeinv.com (mail.setnine.com [72.236.163.133])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8KGZL5S009062; Sat, 20 Sep 2008 12:35:21 -0400
Received: from localhost (localhost [127.0.0.1]) by mail.grouponeinv.com
  (Postfix) with ESMTP id AF80AFD800E; Sat, 20 Sep 2008 12:34:33 -0400
  (EDT)
X-Virus-Scanned: amavisd-new at 
X-Spam-Flag: NO
X-Spam-Score: -0.887
X-Spam-Status: No, score=-0.887 tagged_above=-10 required=6.6
  tests=[AWL=-0.170, BAYES_00=-2.599, RCVD_IN_PBL=0.905,
  RCVD_IN_SORBS_DUL=0.877, RDNS_NONE=0.1]
Received: from mail.grouponeinv.com ([127.0.0.1]) by localhost
  (mail.grouponeinv.com [127.0.0.1]) (amavisd-new, port 10024) with
  ESMTP id o0mDbHYji64P; Sat, 20 Sep 2008 12:34:33 -0400 (EDT)
Received: by mail.grouponeinv.com (Postfix, from userid 1001) id
  0F53FFE8633; Sat, 20 Sep 2008 12:34:32 -0400 (EDT)
Received: from mail.grouponeinv.com (mail.grouponeinv.com
  [72.236.163.133]) by mail.grouponeinv.com (Postfix) with ESMTP id
  A00A0FD800E; Sat, 20 Sep 2008 12:34:31 -0400 (EDT)
Date: Sat, 20 Sep 2008 12:34:31 -0400 (EDT)
From: Luca Hall <lhall@xxxxxxxxxxx>
To: Shahid Ansari <shahid1357@xxxxxxxxx>
Cc: Farrukh Haroon <farrukhharoon@xxxxxxxxx>,
        Cisco certification
  <security@xxxxxxxxxxxxxx>,
        Cisco certification
  <ccielab@xxxxxxxxxxxxxx>
Message-ID: <1793559.206941221928471531.JavaMail.root@xxxx>
In-Reply-To: <876b984c0809190455s370a9c8dk5f519d1bcb91ec24@xxxxxxxxxxxxxx>
Subject: Re: IPS : To increase Payload in packet
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-Originating-IP: [69.122.81.150]
X-Mailer: Zimbra 5.0.8_GA_2462.UBUNTU6 (zclient/5.0.8_GA_2462.UBUNTU6)
X-ASK-Info: Whitelist match [from lhall@xxxxxxx\.com] (2008/09/20 12:35:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Luca Hall <lhall@xxxxxxxxxxx>

packet factory, nemesis, hping2 etc
or just write your own with libnet, its really basic coding


----- Original Message -----
From: Shahid Ansari <shahid1357@xxxxxxxxx>
To: Farrukh Haroon <farrukhharoon@xxxxxxxxx>
Cc: Cisco certification <security@xxxxxxxxxxxxxx>, Cisco certification <ccielab@xxxxxxxxxxxxxx>
Sent: Fri, 19 Sep 2008 07:55:04 -0400 (EDT)
Subject: Re: IPS : To increase Payload in packet

I found some packet generator tools which based on Unix platform but looking
for Windows OS supportable .

I desire to to do customization on payload for testing  ASA and IPS  and to
play handshake of TCP .



One of my friend suggested me "Nemesis Ethernet" .let me try with that .



Any suggestions are highly appereciated .





 On Fri, Sep 19, 2008 at 10:46 AM, Shahid Ansari <shahid1357@xxxxxxxxx>wrote:

>  Yes,
> I want to increase it to more than 4096.
>
>
>   On Fri, Sep 19, 2008 at 5:33 AM, Farrukh Haroon <farrukhharoon@xxxxxxxxx
> > wrote:
>
>> Are you referring to IDS/IPS evasion by fragmentation?
>>
>>   On Fri, Sep 19, 2008 at 4:19 AM, Shahid Ansari <shahid1357@xxxxxxxxx>wrote:
>>
>>>  Hi GS,
>>>
>>>
>>>
>>> Do any one know How to increase payload in packet ? I like to do some
>>> test
>>> which can bypass IPS sensor .
>>>
>>> not familiar with of C++ .................
>>>
>>>
>>>
>>>
>>>
>>> Waiting for response
>>>
>>>
>>> --
>>> Regards,
>>>
>>> Shahid
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>
>
>
> --
> Regards,
>
> Shahid
>



-- 
Regards,

Shahid


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Sat Sep 20 14:41:05 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8KIf4hQ019737
	GroupStudy Mailer; Sat, 20 Sep 2008 14:41:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8KIf4vT019735
	for securityxhiddenx; Sat, 20 Sep 2008 14:41:04 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.245]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8KIf4Rj019715 GroupStudy Mailer; Sat, 20 Sep 2008 14:41:04
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so878196agd.11 for
  <security@xxxxxxxxxxxxxx>; Sat, 20 Sep 2008 11:41:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:from:to:references
  :subject:date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=d4SVYfeb8cIa4+nGYNWAVYuwVggJVM5SXfqsUd5rD5U=;
  b=e8CCg2krxN00ZKWEVtDoBxYafXQgPLV6dupFdCaqwOuERZ6jWV29aEtnNJfcCC/7P4
  CTSXBOQJF6NcS9YOGl0EPAdN3nfnnpbQvdaDv3Wo7NTpLEgMAaP6+htEMqJg0QFVwxTP
  owOlrxu+/isiz2LyFPUgb9h/xA+VA01/82sIU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:from:to:references:subject:date:mime-version
  :content-type:x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=kBsZ0rq9twsuIPkCwaokgUWECpXhiIdsewyLbtN6VOvk8Ya9LaiNjOnuo2oEMfvzc6
  47yK4kRQQYyTQl3qnbvaJSUtzGyItpPaKZ2oAPZVGXJsHBmUpSJIWUYhCFJJnrOiWWM1
  vuM162VnKFzMGXT278oDD+asTdiufe/syfiOI=
Received: by 10.70.62.18 with SMTP id k18mr2033269wxa.18.1221936062058;
  Sat, 20 Sep 2008 11:41:02 -0700 (PDT)
Received: from computer ( [68.30.44.8]) by mx.google.com with ESMTPS id
  h19sm10317841wxd.32.2008.09.20.11.40.59 (version=SSLv3
  cipher=RC4-MD5); Sat, 20 Sep 2008 11:41:00 -0700 (PDT)
Message-ID: <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
Subject: Re: ccie security dynamips
Date: Sat, 20 Sep 2008 13:40:58 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from testing3\.141@xxxxx\.com] (2008/09/20 14:41:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: <testing3.141@xxxxxxxxx>

should i get the desktop or the server edition ?
  ----- Original Message -----
  From: Haloween Boy
  To: testing3.141@xxxxxxxxx
  Sent: Saturday, September 20, 2008 2:07 AM
  Subject: Re: ccie security dynamips


  Hi,

  With a quadcore with 4GB or 8GB RAM with Ubuntu linux on it, install GNS3
and you will be able to use everything except vpn3k box. Install VMware and
run IPS 5.x on it.

  Don't use winxp as it has max RAM support of 3GB. Ubuntu is a lot more
memory efficient.

  Let me know if you have any clarification.

  Regards,
  S B


  On Sat, Sep 20, 2008 at 7:25 AM, <testing3.141@xxxxxxxxx> wrote:

    ok, i will use the quad core.  there is no os on it yet, i can put
whatever i
    want on it.  what os do i need to put on it ?  can i emulate everything on
the
    quad core machine (except for the concentrator of course) ?  or do i have
to
    have 2 pc's and 1 is not enough to handle everything ?
     ----- Original Message -----
     From: Raphael Kruczkowski
     To: testing3.141@xxxxxxxxx
     Sent: Friday, September 19, 2008 3:40 AM
     Subject: Re: ccie security dynamips


     The old PC can be fine for one or two routers.  The new one should be
fine
    for a few routers.  What type of os are you running? WinXP has a max of
4gb
    that it can use.


     Also google up the videos from Anders on the ccie with dynamips.  He has
    good tips on how to optimize the images and processes.


     Raphael



     On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:

       I'm taking the security lab in 5 months.  I'm building a dynamips lab.
I
    have
       2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram, this
    computer
       is 3 years old.  The other one I just bought yesterday is a quad core
2.5
    ghz
       with 8 gigs ram.  Is the older PC powerful enough to run the dynamips
?
    Or am
       I going to have "issues" with the older pc running dynamips ?  Do I
need
    to
       use both pc's ?  Or will the older pc be enough to run all the
dynamips
    and
       everything that can be emulated for the lab ?  I dont want to have to
use
    both
       pc's if I don't have to.

       Thanks everybody

       Qwanae


From security-owner@xxxxxxxxxxxxxx Sat Sep 20 16:28:20 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8KKSKXU031800
	GroupStudy Mailer; Sat, 20 Sep 2008 16:28:20 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8KKSKHf031798
	for securityxhiddenx; Sat, 20 Sep 2008 16:28:20 -0400
Received: from c21mga.com (nj-208-17-74-37.sta.embarqhsd.net
  [208.17.74.37]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8KKSIYj031776 GroupStudy Mailer; Sat, 20 Sep 2008 16:28:19
  -0400
Received: from c21mga.com (localhost.localdomain [127.0.0.1]) by
  c21mga.com (8.12.10/8.12.10) with ESMTP id m8KKJqn5015754; Sat, 20 Sep
  2008 16:19:52 -0400
From: "George Greaves" <george@xxxxxxxxxxxxxxx>
To: <testing3.141@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Subject: Re: ccie security dynamips
Date: Sat, 20 Sep 2008 16:19:52 -0400
Message-Id: <20080920201901.M91771@xxxxxxxxxxxxxxx>
In-Reply-To: <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
X-Mailer: Open WebMail 2.41 20040926
X-OriginatingIP: 24.88.112.64 (ggreaves)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
X-ASK-Info: Whitelist match [from george@xxxxxxxxxxx\.org] (2008/09/20 16:28:20)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Greaves" <george@xxxxxxxxxxxxxxx>

Does anyone have a prebuilt image we can down load?
I'd be willing compensate for the efforts.

A VM image under LINUX that has all of the code ready to go,
minus of course any images that are copyright.

Thx
George



---------- Original Message -----------
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Sent: Sat, 20 Sep 2008 13:40:58 -0500
Subject: Re: ccie security dynamips

> should i get the desktop or the server edition ?
>   ----- Original Message -----
>   From: Haloween Boy
>   To: testing3.141@xxxxxxxxx
>   Sent: Saturday, September 20, 2008 2:07 AM
>   Subject: Re: ccie security dynamips
> 
>   Hi,
> 
>   With a quadcore with 4GB or 8GB RAM with Ubuntu linux on it, install GNS3
> and you will be able to use everything except vpn3k box. Install VMware and
> run IPS 5.x on it.
> 
>   Don't use winxp as it has max RAM support of 3GB. Ubuntu is a lot more
> memory efficient.
> 
>   Let me know if you have any clarification.
> 
>   Regards,
>   S B
> 
>   On Sat, Sep 20, 2008 at 7:25 AM, <testing3.141@xxxxxxxxx> wrote:
> 
>     ok, i will use the quad core.  there is no os on it yet, i can put
> whatever i
>     want on it.  what os do i need to put on it ?  can i emulate everything on
> the
>     quad core machine (except for the concentrator of course) ?  or do i have
> to
>     have 2 pc's and 1 is not enough to handle everything ?
>      ----- Original Message -----
>      From: Raphael Kruczkowski
>      To: testing3.141@xxxxxxxxx
>      Sent: Friday, September 19, 2008 3:40 AM
>      Subject: Re: ccie security dynamips
> 
>      The old PC can be fine for one or two routers.  The new one should be
> fine
>     for a few routers.  What type of os are you running? WinXP has a max of
> 4gb
>     that it can use.
> 
>      Also google up the videos from Anders on the ccie with dynamips.  He has
>     good tips on how to optimize the images and processes.
> 
>      Raphael
> 
>      On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:
> 
>        I'm taking the security lab in 5 months.  I'm building a dynamips lab.
> I
>     have
>        2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram, this
>     computer
>        is 3 years old.  The other one I just bought yesterday is a quad core
> 2.5
>     ghz
>        with 8 gigs ram.  Is the older PC powerful enough to run the dynamips
> ?
>     Or am
>        I going to have "issues" with the older pc running dynamips ?  Do I
> need
>     to
>        use both pc's ?  Or will the older pc be enough to run all the
> dynamips
>     and
>        everything that can be emulated for the lab ?  I dont want to have to
> use
>     both
>        pc's if I don't have to.
> 
>        Thanks everybody
> 
>        Qwanae
------- End of Original Message -------


From security-owner@xxxxxxxxxxxxxx Sun Sep 21 23:59:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M3xw8T004888
	GroupStudy Mailer; Sun, 21 Sep 2008 23:59:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M3xwGc004886
	for securityxhiddenx; Sun, 21 Sep 2008 23:59:58 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.176]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8M3xU5g004783 GroupStudy Mailer; Sun, 21 Sep 2008 23:59:57
  -0400
Received: by wa-out-1112.google.com with SMTP id v33so927491wah.24 for
  <security@xxxxxxxxxxxxxx>; Sun, 21 Sep 2008 20:59:53 -0700 (PDT)
Received: by 10.114.127.1 with SMTP id z1mr3900660wac.94.1222055993553;
  Sun, 21 Sep 2008 20:59:53 -0700 (PDT)
Received: from BlackBox ( [72.193.212.120]) by mx.google.com with ESMTPS
  id m26sm8027337pof.1.2008.09.21.20.59.50 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Sun, 21 Sep 2008 20:59:51 -0700 (PDT)
To: "'George Greaves'" <george@xxxxxxxxxxxxxxx>, <testing3.141@xxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx> 
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx> 
  <EFC85CB376404797930B8330114A4797@xxxxxxxx> 
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx> 
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
In-Reply-To: <20080920201901.M91771@xxxxxxxxxxxxxxx>
Subject: RE: ccie security dynamips
Date: Sun, 21 Sep 2008 20:59:45 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
thread-index: AckbYre69Q9tBq2DTsC/G7b0ex2zqQBBGrrw
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8M3xU5g004783
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/21 23:59:58)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi all,
Try to check below link and let me know what do you think

http://inspiredk.com/2008/07/26/does-it-worth-time-effort-and-investment-to-
simulate-ccie-security-rack-over-software-emulators/ 


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx  



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
George Greaves
Sent: Saturday, September 20, 2008 1:20 PM
To: testing3.141@xxxxxxxxx; Cisco certification
Subject: Re: ccie security dynamips

Does anyone have a prebuilt image we can down load?
I'd be willing compensate for the efforts.

A VM image under LINUX that has all of the code ready to go,
minus of course any images that are copyright.

Thx
George



---------- Original Message -----------
From: <testing3.141@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Sent: Sat, 20 Sep 2008 13:40:58 -0500
Subject: Re: ccie security dynamips

> should i get the desktop or the server edition ?
>   ----- Original Message -----
>   From: Haloween Boy
>   To: testing3.141@xxxxxxxxx
>   Sent: Saturday, September 20, 2008 2:07 AM
>   Subject: Re: ccie security dynamips
> 
>   Hi,
> 
>   With a quadcore with 4GB or 8GB RAM with Ubuntu linux on it, install
GNS3
> and you will be able to use everything except vpn3k box. Install VMware
and
> run IPS 5.x on it.
> 
>   Don't use winxp as it has max RAM support of 3GB. Ubuntu is a lot more
> memory efficient.
> 
>   Let me know if you have any clarification.
> 
>   Regards,
>   S B
> 
>   On Sat, Sep 20, 2008 at 7:25 AM, <testing3.141@xxxxxxxxx> wrote:
> 
>     ok, i will use the quad core.  there is no os on it yet, i can put
> whatever i
>     want on it.  what os do i need to put on it ?  can i emulate
everything on
> the
>     quad core machine (except for the concentrator of course) ?  or do i
have
> to
>     have 2 pc's and 1 is not enough to handle everything ?
>      ----- Original Message -----
>      From: Raphael Kruczkowski
>      To: testing3.141@xxxxxxxxx
>      Sent: Friday, September 19, 2008 3:40 AM
>      Subject: Re: ccie security dynamips
> 
>      The old PC can be fine for one or two routers.  The new one should be
> fine
>     for a few routers.  What type of os are you running? WinXP has a max
of
> 4gb
>     that it can use.
> 
>      Also google up the videos from Anders on the ccie with dynamips.  He
has
>     good tips on how to optimize the images and processes.
> 
>      Raphael
> 
>      On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:
> 
>        I'm taking the security lab in 5 months.  I'm building a dynamips
lab.
> I
>     have
>        2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram,
this
>     computer
>        is 3 years old.  The other one I just bought yesterday is a quad
core
> 2.5
>     ghz
>        with 8 gigs ram.  Is the older PC powerful enough to run the
dynamips
> ?
>     Or am
>        I going to have "issues" with the older pc running dynamips ?  Do I
> need
>     to
>        use both pc's ?  Or will the older pc be enough to run all the
> dynamips
>     and
>        everything that can be emulated for the lab ?  I dont want to have
to
> use
>     both
>        pc's if I don't have to.
> 
>        Thanks everybody
> 
>        Qwanae
------- End of Original Message -------


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 00:06:00 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M4600l005736
	GroupStudy Mailer; Mon, 22 Sep 2008 00:06:00 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M460ss005734
	for securityxhiddenx; Mon, 22 Sep 2008 00:06:00 -0400
Received: from mail138.messagelabs.com (mail138.messagelabs.com
  [216.82.249.35]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8M44Htj005648 GroupStudy Mailer; Mon, 22 Sep 2008 00:04:17
  -0400
X-VirusChecked: Checked
X-Env-Sender: TTUnderwood@xxxxxxxx
X-Msg-Ref: server-6.tower-138.messagelabs.com!1222056244!31107028!1
X-StarScan-Version: 5.5.12.14.2; banners=-,-,-
X-Originating-IP: [216.57.102.107]
Received: (qmail 7830 invoked from network); 22 Sep 2008 04:04:12 -0000
Received: from unknown (HELO linux512.wic.west.com) (216.57.102.107) by
  server-6.tower-138.messagelabs.com with AES256-SHA encrypted SMTP; 22
  Sep 2008 04:04:12 -0000
Received: from oma100exbh01.corp.westworlds.com (oma-inet-pub2
  [216.57.102.249]) by linux512.wic.west.com (8.13.1/8.13.1) with ESMTP
  id m8M40H4J005925; Mon, 22 Sep 2008 00:00:17 -0400
Received: from omaexmb06.corp.westworlds.com ([10.0.17.203]) by
  oma100exbh01.corp.westworlds.com with Microsoft
  SMTPSVC(6.0.3790.3959); Sun, 21 Sep 2008 23:00:17 -0500
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: free agency
Date: Sun, 21 Sep 2008 23:00:15 -0500
Message-ID: <9A8AE475F68A344A815A619D555A757903BCA9E4@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <CA63121B87B0FD40A4679064BCEC2302FCED@xxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: free agency
Thread-Index: AckRxtsThRxEXvd4SDeFuA3k5x5y5gAAz4fAAqcs9oA=
References: <CA63121B87B0FD40A4679064BCEC2302FCED@xxxxxxxxxxxxxxxxxxxxx>
From: "Underwood, Tony T." <TTUnderwood@xxxxxxxx>
To: "Rodgers Moore" <rodgers@xxxxxxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 22 Sep 2008 04:00:17.0672 (UTC)
  FILETIME=[B988A880:01C91C67]
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8M44Htj005648
X-ASK-Info: Message Queued (2008/09/22 00:04:18)
X-ASK-Info: Confirmed by User (2008/09/22 00:06:00)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Underwood, Tony T." <TTUnderwood@xxxxxxxx>

I was in a position similar to this.  Years ago I worked for a VAR and
left to move on to greener pastures.  They were on the bubble for
required CCIE's to maintain their status with cisco.  They asked me if I
could stay on as a consultant until they found another CCIE to replace
me.  I agreed & for about 6 months I was paid a nominal fee to be
available for "escalation"

So, to answer your question it does happen, but you can't exactly post
yourself on google & say... hey any resellers looking to scam ciso?
I'll loan you my number...
My situation was in the gray area of ethics for the particular VAR, but
they were intending to, and eventually did, hire another CCIE.
If a particular VAR was intentionally renting CCIE numbers to get
additional discounts from Cisco I would think there are some potential
legal implications with cisco on the VAR's end.

Tony Underwood CCIE #7112


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Rodgers Moore
Sent: Monday, September 08, 2008 10:55 AM
To: security@xxxxxxxxxxxxxx
Subject: OT: free agency

Sorry to post off topic...however, the jobs list looks abandoned. :)

Anyone ever "rent" out their CCIE# to a reseller?  I've heard of it, but
never seen it.  Does it really happen?  (Yes, I find myself in a
position where this may be possible)

Rodgers Moore, CCIE# 8153


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 00:16:50 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M4GoS6007456
	GroupStudy Mailer; Mon, 22 Sep 2008 00:16:50 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M4Go9s007454
	for securityxhiddenx; Mon, 22 Sep 2008 00:16:50 -0400
Received: from rev.204.25.58.212.doruk.net.tr
  (rev.204.25.58.212.doruk.net.tr [212.58.25.204] (may be forged)) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M4Glnk007412
  GroupStudy Mailer; Mon, 22 Sep 2008 00:16:47 -0400
Message-ID: <1277701883.667=78=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "burt leticia" <mike.lucas@xxxxxxxxxxxxxx>
Subject: =?koi8-r?B?7NXe28XFINDSz87PINfJxMXP?=
Date: Mon, 22 Sep 2008 02:33:11 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Our key was found in the mail (2008/09/22 00:16:49)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "burt leticia" <mike.lucas@xxxxxxxxxxxxxx>

sEKSUALXNYE IGRY W SaMOM RAZGaRE, PRISOEDINQJSQ! kAK LOWKO ONI DELa@x
NEWOOBRAZIMYE POZY!q NE MOGU NaSMOTRETXSQ, \TO TaK PRIQTNO. sWEVaQ PORCIQ
ORGAZMOW TEBE OBESPE^ENa!
http://www.groupstudy.com.RWTKXCG.TK/security.avi


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 00:21:18 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M4LInQ008230
	GroupStudy Mailer; Mon, 22 Sep 2008 00:21:18 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M4LIjm008228
	for securityxhiddenx; Mon, 22 Sep 2008 00:21:18 -0400
Received: from c21mga.com (nj-208-17-74-37.sta.embarqhsd.net
  [208.17.74.37]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8M4LHeA008204 GroupStudy Mailer; Mon, 22 Sep 2008 00:21:17
  -0400
Received: from c21mga.com (localhost.localdomain [127.0.0.1]) by
  c21mga.com (8.12.10/8.12.10) with ESMTP id m8M4Chn5003786; Mon, 22 Sep
  2008 00:12:43 -0400
From: "George Greaves" <george@xxxxxxxxxxxxxxx>
To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>, <testing3.141@xxxxxxxxx>,
        "'Cisco certification'" <security@xxxxxxxxxxxxxx>
Subject: RE: ccie security dynamips
Date: Mon, 22 Sep 2008 00:12:43 -0400
Message-Id: <20080922040817.M45098@xxxxxxxxxxxxxxx>
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx> 
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx> 
  <EFC85CB376404797930B8330114A4797@xxxxxxxx> 
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx> 
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
X-Mailer: Open WebMail 2.41 20040926
X-OriginatingIP: 24.88.112.64 (ggreaves)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
X-ASK-Info: Whitelist match [from george@xxxxxxxxxxx\.org] (2008/09/22 00:21:18)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Greaves" <george@xxxxxxxxxxxxxxx>

I've spent about 5 hours so far. 
What I've found is SMALL labs ARE OK. Anything big
is a waste of time, i get frozen routers all sorts of stuff.

I did successfully get a PIX in bridge mode and two routers doing eigrp.

IF they could CAN and master this, where you could simply load it on
the right PC and it would do everything (IDLEPC) values, on and on,
then it could be very cost effective to do it.

The basic's ACS, VMWARE to train on till your ready to RENT.
That's what I see as very valuable.

I emulated the IPS, and it was great accept it couldn't do inline or pairs.
Those aren't tough items, but best to go over.

Equipment is VERY cheap now, unlike it used to be. I am getting used
PIX 515 for $300 shipped. I will just build my own lab.

-George



---------- Original Message -----------
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
To: "'George Greaves'" <george@xxxxxxxxxxxxxxx>, <testing3.141@xxxxxxxxx>, "'Cisco 
certification'" <security@xxxxxxxxxxxxxx>
Sent: Sun, 21 Sep 2008 20:59:45 -0700
Subject: RE: ccie security dynamips

> Hi all,
> Try to check below link and let me know what do you think
> 
> http://inspiredk.com/2008/07/26/does-it-worth-time-effort-and-investment-to-
> simulate-ccie-security-rack-over-software-emulators/
> 
> BEST REGARDS,
> 
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
> 
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> 
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> George Greaves
> Sent: Saturday, September 20, 2008 1:20 PM
> To: testing3.141@xxxxxxxxx; Cisco certification
> Subject: Re: ccie security dynamips
> 
> Does anyone have a prebuilt image we can down load?
> I'd be willing compensate for the efforts.
> 
> A VM image under LINUX that has all of the code ready to go,
> minus of course any images that are copyright.
> 
> Thx
> George
> 
> ---------- Original Message -----------
> From: <testing3.141@xxxxxxxxx>
> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
> Sent: Sat, 20 Sep 2008 13:40:58 -0500
> Subject: Re: ccie security dynamips
> 
> > should i get the desktop or the server edition ?
> >   ----- Original Message -----
> >   From: Haloween Boy
> >   To: testing3.141@xxxxxxxxx
> >   Sent: Saturday, September 20, 2008 2:07 AM
> >   Subject: Re: ccie security dynamips
> > 
> >   Hi,
> > 
> >   With a quadcore with 4GB or 8GB RAM with Ubuntu linux on it, install
> GNS3
> > and you will be able to use everything except vpn3k box. Install VMware
> and
> > run IPS 5.x on it.
> > 
> >   Don't use winxp as it has max RAM support of 3GB. Ubuntu is a lot more
> > memory efficient.
> > 
> >   Let me know if you have any clarification.
> > 
> >   Regards,
> >   S B
> > 
> >   On Sat, Sep 20, 2008 at 7:25 AM, <testing3.141@xxxxxxxxx> wrote:
> > 
> >     ok, i will use the quad core.  there is no os on it yet, i can put
> > whatever i
> >     want on it.  what os do i need to put on it ?  can i emulate
> everything on
> > the
> >     quad core machine (except for the concentrator of course) ?  or do i
> have
> > to
> >     have 2 pc's and 1 is not enough to handle everything ?
> >      ----- Original Message -----
> >      From: Raphael Kruczkowski
> >      To: testing3.141@xxxxxxxxx
> >      Sent: Friday, September 19, 2008 3:40 AM
> >      Subject: Re: ccie security dynamips
> > 
> >      The old PC can be fine for one or two routers.  The new one should be
> > fine
> >     for a few routers.  What type of os are you running? WinXP has a max
> of
> > 4gb
> >     that it can use.
> > 
> >      Also google up the videos from Anders on the ccie with dynamips.  He
> has
> >     good tips on how to optimize the images and processes.
> > 
> >      Raphael
> > 
> >      On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:
> > 
> >        I'm taking the security lab in 5 months.  I'm building a dynamips
> lab.
> > I
> >     have
> >        2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram,
> this
> >     computer
> >        is 3 years old.  The other one I just bought yesterday is a quad
> core
> > 2.5
> >     ghz
> >        with 8 gigs ram.  Is the older PC powerful enough to run the
> dynamips
> > ?
> >     Or am
> >        I going to have "issues" with the older pc running dynamips ?  Do I
> > need
> >     to
> >        use both pc's ?  Or will the older pc be enough to run all the
> > dynamips
> >     and
> >        everything that can be emulated for the lab ?  I dont want to have
> to
> > use
> >     both
> >        pc's if I don't have to.
> > 
> >        Thanks everybody
> > 
> >        Qwanae
> ------- End of Original Message -------
------- End of Original Message -------


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 01:12:08 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M5C8aj013429
	GroupStudy Mailer; Mon, 22 Sep 2008 01:12:08 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M5C8F9013427
	for securityxhiddenx; Mon, 22 Sep 2008 01:12:08 -0400
Received: from [114.199.100.87] ([114.199.100.87]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8M5C4cX013375 GroupStudy
  Mailer; Mon, 22 Sep 2008 01:12:06 -0400
Message-ID: <1266492239.534=95=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "dag yardley" <vhcbrigade@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?bdkgICDOxSAg1drOwWXb2CAgzmHb1SAgINNla3DFbWFw23kgID8=?=
Date: Mon, 22 Sep 2008 03:24:35 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Our key was found in the mail (2008/09/22 01:12:08)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "dag yardley" <vhcbrigade@xxxxxxxxxxxxxxxxxxxxxxxxxx>

sEKSUaLXNYE IGRY W SaMOM RAZGaRE, PRISOEDINQJSQ! kAK LOWKO ONI DELA@x
NEWOOBRaZIMYE POZY!q NE MOGU NaSMOTRETXSQ, \TO TaK PRIQTNO. sWEVaQ PORCIQ
ORGAZMOW TEBE OBESPE^ENA! http://www.groupstudy.com.TKXLXCM.TK/~khx`.mpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 01:58:58 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M5wwmx016510
	GroupStudy Mailer; Mon, 22 Sep 2008 01:58:58 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M5wvdt016508
	for securityxhiddenx; Mon, 22 Sep 2008 01:58:57 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8M5wv3u016487 GroupStudy Mailer; Mon, 22 Sep 2008 01:58:57
  -0400
Received: by gxk13 with SMTP id 13so3862790gxk.6 for
  <security@xxxxxxxxxxxxxx>; Sun, 21 Sep 2008 22:58:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=vGCh7xDGtCXyiUT3Li+MMOlVH2KZfW05HQhb85vxxWE=;
  b=RKehvIRXlLfCIIIdmvHK5BntPONgQ1TknGRdeuvDs866t9WADSRSYxBeO2GeDVIsCJ
  JbRavvX/jQ70ekD6DcIgIl0qHtScpR/32ATXXrI1lAukIAgaJVnRGqxgaDoNonqsHSQn
  gAWIxZjUKKMnrfbwvOQ3JrVgWiPqAsJN9Q5oU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=FMSv0QllrweolXe0BtPQaajaJXN6I31hU9Fz3A48Nyn92o+pZVKvPWkneP1fHD1Psa
  TqBTJecHDANgWVZ/p0PtkXtQfQLcPGJ0qu/IdGLj7DHfVFtxO6JNv/Y8l/KOxus4R9Lb
  S0bCOBT+TkjjUYCp05RizMI4UDvefaKZAeaJw=
Received: by 10.151.102.16 with SMTP id e16mr6725526ybm.0.1222063127795;
  Sun, 21 Sep 2008 22:58:47 -0700 (PDT)
Received: by 10.151.153.16 with HTTP; Sun, 21 Sep 2008 22:58:47 -0700
  (PDT)
Message-ID: <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
Date: Mon, 22 Sep 2008 00:58:47 -0500
From: devecchio <dt30083@xxxxxxxxx>
To: "George Greaves" <george@xxxxxxxxxxxxxxx>
Subject: Re: ccie security dynamips
Cc: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>, testing3.141@xxxxxxxxx,
        "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <20080922040817.M45098@xxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <20080922040817.M45098@xxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from dt30083@xxxxx\.com] (2008/09/22 01:58:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: devecchio <dt30083@xxxxxxxxx>

I had this debate with many fellow engineers.. the time you invest in
tweaking is probably better spent studying... mind you, you are not tweaking
device paramenters most of that time is spent aptgetting modules etc and
trying to edit script files etc. Not to mention all of the equipment is a
tax break :o)

I personally purchased the ASAs just for the sake of having something in
front of me. I ditched my 3640s long ago for dynamips and vmware but
dynamips has been rock solid so no issues there and the vmware ids is simply
beautiful... Do what fits you best but I just cant see the benefit of
havings fits over asa/pix emulation.... mine kept locking up my entire
pc...8 gig quad core with debian as a host..but that was just my
expierence...

On Sun, Sep 21, 2008 at 11:12 PM, George Greaves <george@xxxxxxxxxxxxxxx>wrote:

> I've spent about 5 hours so far.
> What I've found is SMALL labs ARE OK. Anything big
> is a waste of time, i get frozen routers all sorts of stuff.
>
> I did successfully get a PIX in bridge mode and two routers doing eigrp.
>
> IF they could CAN and master this, where you could simply load it on
> the right PC and it would do everything (IDLEPC) values, on and on,
> then it could be very cost effective to do it.
>
> The basic's ACS, VMWARE to train on till your ready to RENT.
> That's what I see as very valuable.
>
> I emulated the IPS, and it was great accept it couldn't do inline or pairs.
> Those aren't tough items, but best to go over.
>
> Equipment is VERY cheap now, unlike it used to be. I am getting used
> PIX 515 for $300 shipped. I will just build my own lab.
>
> -George
>
>
>
> ---------- Original Message -----------
> From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
> To: "'George Greaves'" <george@xxxxxxxxxxxxxxx>, <testing3.141@xxxxxxxxx>,
> "'Cisco
> certification'" <security@xxxxxxxxxxxxxx>
> Sent: Sun, 21 Sep 2008 20:59:45 -0700
> Subject: RE: ccie security dynamips
>
> > Hi all,
> > Try to check below link and let me know what do you think
> >
> >
> http://inspiredk.com/2008/07/26/does-it-worth-time-effort-and-investment-to-
> > simulate-ccie-security-rack-over-software-emulators/
> >
> > BEST REGARDS,
> >
> > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> > CCIE PROGRAM MANAGER
> >
> > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> WWW.INSPIREDMASTER.COM <http://www.inspiredmaster.com/>
> > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM <http://www.inspiredk.com/>
> > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> > George Greaves
> > Sent: Saturday, September 20, 2008 1:20 PM
> > To: testing3.141@xxxxxxxxx; Cisco certification
> > Subject: Re: ccie security dynamips
> >
> > Does anyone have a prebuilt image we can down load?
> > I'd be willing compensate for the efforts.
> >
> > A VM image under LINUX that has all of the code ready to go,
> > minus of course any images that are copyright.
> >
> > Thx
> > George
> >
> > ---------- Original Message -----------
> > From: <testing3.141@xxxxxxxxx>
> > To: "Cisco certification" <security@xxxxxxxxxxxxxx>
> > Sent: Sat, 20 Sep 2008 13:40:58 -0500
> > Subject: Re: ccie security dynamips
> >
> > > should i get the desktop or the server edition ?
> > >   ----- Original Message -----
> > >   From: Haloween Boy
> > >   To: testing3.141@xxxxxxxxx
> > >   Sent: Saturday, September 20, 2008 2:07 AM
> > >   Subject: Re: ccie security dynamips
> > >
> > >   Hi,
> > >
> > >   With a quadcore with 4GB or 8GB RAM with Ubuntu linux on it, install
> > GNS3
> > > and you will be able to use everything except vpn3k box. Install VMware
> > and
> > > run IPS 5.x on it.
> > >
> > >   Don't use winxp as it has max RAM support of 3GB. Ubuntu is a lot
> more
> > > memory efficient.
> > >
> > >   Let me know if you have any clarification.
> > >
> > >   Regards,
> > >   S B
> > >
> > >   On Sat, Sep 20, 2008 at 7:25 AM, <testing3.141@xxxxxxxxx> wrote:
> > >
> > >     ok, i will use the quad core.  there is no os on it yet, i can put
> > > whatever i
> > >     want on it.  what os do i need to put on it ?  can i emulate
> > everything on
> > > the
> > >     quad core machine (except for the concentrator of course) ?  or do
> i
> > have
> > > to
> > >     have 2 pc's and 1 is not enough to handle everything ?
> > >      ----- Original Message -----
> > >      From: Raphael Kruczkowski
> > >      To: testing3.141@xxxxxxxxx
> > >      Sent: Friday, September 19, 2008 3:40 AM
> > >      Subject: Re: ccie security dynamips
> > >
> > >      The old PC can be fine for one or two routers.  The new one should
> be
> > > fine
> > >     for a few routers.  What type of os are you running? WinXP has a
> max
> > of
> > > 4gb
> > >     that it can use.
> > >
> > >      Also google up the videos from Anders on the ccie with dynamips.
>  He
> > has
> > >     good tips on how to optimize the images and processes.
> > >
> > >      Raphael
> > >
> > >      On Fri, Sep 19, 2008 at 3:49 AM, <testing3.141@xxxxxxxxx> wrote:
> > >
> > >        I'm taking the security lab in 5 months.  I'm building a
> dynamips
> > lab.
> > > I
> > >     have
> > >        2 PC's to choose from.  1 is a p4 pentium 3 ghz with 2 gigs ram,
> > this
> > >     computer
> > >        is 3 years old.  The other one I just bought yesterday is a quad
> > core
> > > 2.5
> > >     ghz
> > >        with 8 gigs ram.  Is the older PC powerful enough to run the
> > dynamips
> > > ?
> > >     Or am
> > >        I going to have "issues" with the older pc running dynamips ?
>  Do I
> > > need
> > >     to
> > >        use both pc's ?  Or will the older pc be enough to run all the
> > > dynamips
> > >     and
> > >        everything that can be emulated for the lab ?  I dont want to
> have
> > to
> > > use
> > >     both
> > >        pc's if I don't have to.
> > >
> > >        Thanks everybody
> > >
> > >        Qwanae
> > ------- End of Original Message -------
> ------- End of Original Message -------


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 04:40:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M8eBdm031138
	GroupStudy Mailer; Mon, 22 Sep 2008 04:40:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M8eBs6031136
	for securityxhiddenx; Mon, 22 Sep 2008 04:40:11 -0400
Received: from host86-148-188-67.range86-148.btcentralplus.com
  (host86-148-188-67.range86-148.btcentralplus.com [86.148.188.67]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M8e9ja031113
  GroupStudy Mailer; Mon, 22 Sep 2008 04:40:09 -0400
Message-ID: <1271816465.299=46=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "ellary etienne" <eck@xxxxxxxxxxxx>
Subject: =?koi8-r?B?1NkgICDOxSAgedrOwWXb2CAgzmHb1SBjZWtwZdRh0tvVID8=?=
Date: Mon, 22 Sep 2008 06:52:30 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Our key was found in the mail (2008/09/22 04:40:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "ellary etienne" <eck@xxxxxxxxxxxx>

WoT TyT oNa W RaZNYH PoZax
http://www.groupstudy.com.PGPDVVW.TK/`mcekhm`.gif


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 05:32:53 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8M9WrV1003675
	GroupStudy Mailer; Mon, 22 Sep 2008 05:32:53 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8M9WrNg003673
	for securityxhiddenx; Mon, 22 Sep 2008 05:32:53 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.153]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8M9Wq9o003652 GroupStudy Mailer; Mon, 22 Sep 2008 05:32:52
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so216210yxi.84 for
  <security@xxxxxxxxxxxxxx>; Mon, 22 Sep 2008 02:32:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=Zea++6ByXggZ5GQhmtb3+keRHawHcNk/gx5vyeFF9c8=;
  b=E6LzTTJHcjOSh31VciJRZrolMTFcKhA1mEIle8bxI8vnYaohzQd2tCTMECrObU3RoI
  GcTHwPZa0ZvGXW4AqSecbMoEmDLW/9VL9GArYad3nCoIgwLqkJuOQs3l8xK7vmSdsfn7
  XyewcXC/lSTrylGUSE2NmwUPL5KmggQjq8eNM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=TKDZcj47iR0+Tt81SCaBqO916NdG4XGU/Qfb8T0G8OsbO7icKmC8cABMpLsuxcFgB/
  EmkOyBmXCxuS0cgovajLDFz02NsVkNGXVuPi1vyy3vnyLo9yvHspC9DfGP689TI5j1fE
  dVSc4mHS99iAuxVXnb22kZNU/hZ7D6gUpvQ9o=
Received: by 10.100.128.20 with SMTP id
  a20mr2672520and.74.1222075972499; Mon, 22 Sep 2008 02:32:52 -0700
  (PDT)
Received: by 10.100.111.14 with HTTP; Mon, 22 Sep 2008 02:32:52 -0700
  (PDT)
Message-ID: <150f570d0809220232v3ceb37f2x6d2f060d1c8e8097@xxxxxxxxxxxxxx>
Date: Mon, 22 Sep 2008 12:32:52 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: devecchio <dt30083@xxxxxxxxx>
Subject: Re: ccie security dynamips
Cc: "George Greaves" <george@xxxxxxxxxxxxxxx>,
        "Ramy Sisy"
  <ramysisy@xxxxxxxxxxxxxxxxxx>, testing3.141@xxxxxxxxx,
        "Cisco
  certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <20080922040817.M45098@xxxxxxxxxxxxxxx>
  <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/22 05:32:53)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

i had a very positive experience with dynamips and pemu when preparing
for my IE lab. i had two installations one on my work XP laptop and
another on a lab server in the office with Ubuntu. The hardware in
both cases was a dual core processor with 1GB ram and this worked well
for about 3 or 4 router with one/two PIX or two VMWARE instances for
ACS and the test pc on the Ubuntu box and about 3 routers and one PIX
on the XP box. i had the hardware kit 3560, ASA, IDS 4215, VPNC to
test out the other stuff and integrated it to the Ubuntu box. it took
me about 3 or 4 weeks to setup the Ubuntu box and integrate it to the
live equipment. i'm an open source enthusiast so i thoroughly enjoyed
the exercise. With what i learnt i setup the dynamips / pemu on my XP
laptop in just a couple of hours.

In my opinion, i think there are two main steps in preparing for the
IE lab. Learning the technology and then applying the technology in a
full-scale lab. in my case, i learnt the technology primarily using
the emulated routers and PIX as the number of routers and PIX required
is low. I spent most of my time here. This is because if you cannot
get something like CBAC or reflective access lists right with two
routers, you will not succeed setting it up in a lab with 6 plus
routers all having different security features configured.

So yes, real hardware is ideal - but if dynamips, pemu and vmware is
all you have to start with there is plenty you can learn - even with
the small labs.

Sorry for the rather long post but i hope this helps.

Thanks
George M.


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 06:36:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MAasEj010212
	GroupStudy Mailer; Mon, 22 Sep 2008 06:36:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MAasJ2010210
	for securityxhiddenx; Mon, 22 Sep 2008 06:36:54 -0400
Received: from omega-gate.sipkro.ru (omega-gate.sipkro.ru
  [89.186.237.85]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8MAapon010187 GroupStudy Mailer; Mon, 22 Sep 2008 06:36:51
  -0400
Message-ID: <1250340021.824=03=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "cale caryl" <vandecor@xxxxxxxxxxx>
Subject: =?koi8-r?B?1NkgICDOZSAg1TPOwcXb2CDOwdvVICBjxWvSxW3BcNvVICAgPw==?=
Date: Mon, 22 Sep 2008 08:49:19 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Our key was found in the mail (2008/09/22 06:36:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "cale caryl" <vandecor@xxxxxxxxxxx>

ONA PpQMo mUm http://www.groupstudy.com.BIMEREL.TK/j`r.mpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 08:33:49 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MCXnsW021530
	GroupStudy Mailer; Mon, 22 Sep 2008 08:33:49 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MCXn38021528
	for securityxhiddenx; Mon, 22 Sep 2008 08:33:49 -0400
Received: from web1104.biz.mail.sk1.yahoo.com
  (web1104.biz.mail.sk1.yahoo.com [74.6.114.36]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with SMTP id m8MCXlLA021506 GroupStudy
  Mailer; Mon, 22 Sep 2008 08:33:47 -0400
Received: (qmail 29919 invoked by uid 60001); 22 Sep 2008 12:33:41 -0000
X-YMail-OSG: yVd1UIgVM1m3qiV4JPMQk7osHBTGBZTld66xSbGXVY9talpbdAtMRtNFYyzdCe4hzr.9o3NFG9oY_Xgwv8tZVhYuB3ROlBLIdZaGVX.kZDTukA2vvRt575qhl6j1C9IK_d8_ZkYkI0Fozjp6mV3FCmI-
Received: from [64.195.212.68] by web1104.biz.mail.sk1.yahoo.com via
  HTTP; Mon, 22 Sep 2008 05:33:40 PDT
Date: Mon, 22 Sep 2008 05:33:40 -0700 (PDT)
From: Scott Sattler <scott@xxxxxxxxxxxxxx>
Subject: RE: free agency
To: Rodgers Moore <rodgers@xxxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <9A8AE475F68A344A815A619D555A757903BCA9E4@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <68869.29771.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from scott@xxxxxxxxxx\.net] (2008/09/22 08:33:48)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Scott Sattler <scott@xxxxxxxxxxxxxx>

The rates for a CCIE have certainly taken a dive to the point where there is no financial incentive to obtain the CCIE. Rates have fallen from 200 an hour to around 80 an hour for CCIE, I have to started to see CCIE perm rates around 90-100k which people are taking (besides the H-1 suckers). The CCIE cert itself has also been devauled, MANY job reqs are listing CCNP or CCIE, due to the fact that companies don't care or don't know the difference. I am finding Checkpoint and other security certs paying alot higher than CCIE and have put the CCIE on the backburner due to the cost benefit reality in the market place. I have invested heavily in a Cisco R/S, Security and Voice lab and have passed the written exams but no longer am I going to invest the time without seeing a financial reward, I no longer need the "prestige" of being a CCIE....prestige doesn't pay the bills.....its more in the "hobby status"
   
  As for renting your certs out, It occurs daily at most of the VAR's that I know, its disguised under a different terminology though....good money too, around 1-2k monthly depending on the cert...
  

"Underwood, Tony T." <TTUnderwood@xxxxxxxx> wrote:
  I was in a position similar to this. Years ago I worked for a VAR and
left to move on to greener pastures. They were on the bubble for
required CCIE's to maintain their status with cisco. They asked me if I
could stay on as a consultant until they found another CCIE to replace
me. I agreed & for about 6 months I was paid a nominal fee to be
available for "escalation"

So, to answer your question it does happen, but you can't exactly post
yourself on google & say... hey any resellers looking to scam ciso?
I'll loan you my number...
My situation was in the gray area of ethics for the particular VAR, but
they were intending to, and eventually did, hire another CCIE.
If a particular VAR was intentionally renting CCIE numbers to get
additional discounts from Cisco I would think there are some potential
legal implications with cisco on the VAR's end.

Tony Underwood CCIE #7112


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Rodgers Moore
Sent: Monday, September 08, 2008 10:55 AM
To: security@xxxxxxxxxxxxxx
Subject: OT: free agency

Sorry to post off topic...however, the jobs list looks abandoned. :)

Anyone ever "rent" out their CCIE# to a reseller? I've heard of it, but
never seen it. Does it really happen? (Yes, I find myself in a
position where this may be possible)

Rodgers Moore, CCIE# 8153


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 10:11:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MEBkqX032356
	GroupStudy Mailer; Mon, 22 Sep 2008 10:11:46 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MEBkOr032354
	for securityxhiddenx; Mon, 22 Sep 2008 10:11:46 -0400
Received: from pool-96-225-247-134.ptldor.fios.verizon.net
  (pool-96-225-247-134.ptldor.fios.verizon.net [96.225.247.134]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MEBhr1032322
  GroupStudy Mailer; Mon, 22 Sep 2008 10:11:43 -0400
Message-ID: <1235945116.987=43=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "fairlie corinna" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?bdkgzsUgIHnazsFl29ggICDOwdt5ICAgY2Vr0sVtwXDbeSAgPw==?=
Date: Mon, 22 Sep 2008 12:24:27 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Our key was found in the mail (2008/09/22 10:11:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "fairlie corinna" <dnevnik@xxxxxxxxxxxxxxx>

Ny u ^mO KoGo PpIPoMuNAem?:)
http://www.groupstudy.com.ADMBQND.TK/j`rhm|j`.jpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 10:31:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MEVBMf001453
	GroupStudy Mailer; Mon, 22 Sep 2008 10:31:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MEVBRP001451
	for securityxhiddenx; Mon, 22 Sep 2008 10:31:11 -0400
Received: from web80015.mail.sp1.yahoo.com (web80015.mail.sp1.yahoo.com
  [69.147.92.124]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8MEVAsJ001427 GroupStudy Mailer; Mon, 22 Sep 2008 10:31:10
  -0400
Received: (qmail 38115 invoked by uid 60001); 22 Sep 2008 14:31:03 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=Received:X-Mailer:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Message-ID;
  b=E7yQ4EDI0nbMbGEhKCqY2OhdwQHnZE8roddhiMnawE1HN7JUVbxa32FQ/k+gZzx/VkRvinHFgnoRCckJreid24i2D/YDhKzuBdlEqVcZ2b6o+yGe5ZUE6adv0CaMifAynW8xU/PBSg/FX6iwq9rVyQQPsP2jrFrVZiCJcacmG+s=;
Received: from [208.189.22.169] by web80015.mail.sp1.yahoo.com via HTTP;
  Mon, 22 Sep 2008 07:31:03 PDT
X-Mailer: YahooMailWebService/0.7.218.2
Date: Mon, 22 Sep 2008 07:31:03 -0700 (PDT)
From: John Huston <fentonguy2003@xxxxxxxxx>
Subject: RE: free agency
To: security@xxxxxxxxxxxxxx
In-Reply-To: <68869.29771.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <861931.36841.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from fentonguy2003@xxxxx\.com] (2008/09/22 10:31:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: John Huston <fentonguy2003@xxxxxxxxx>

As with anything there is no "silver bullet" to get a higher paying job.  It
takes a basket of abilities / certs to get a higher paying jobs.    VAR's have
no incentive to pay higher rates.



--- On Mon, 9/22/08, Scott Sattler <scott@xxxxxxxxxxxxxx> wrote:
From: Scott Sattler <scott@xxxxxxxxxxxxxx>
Subject: RE: free agency
To: "Rodgers Moore" <rodgers@xxxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx
Date: Monday, September 22, 2008, 7:33 AM

The rates for a CCIE have certainly taken a dive to the point where there is
no
financial incentive to obtain the CCIE. Rates have fallen from 200 an hour to
around 80 an hour for CCIE, I have to started to see CCIE perm rates around
90-100k which people are taking (besides the H-1 suckers). The CCIE cert
itself
has also been devauled, MANY job reqs are listing CCNP or CCIE, due to the
fact
that companies don't care or don't know the difference. I am finding
Checkpoint and other security certs paying alot higher than CCIE and have put
the CCIE on the backburner due to the cost benefit reality in the market
place.
I have invested heavily in a Cisco R/S, Security and Voice lab and have
passed
the written exams but no longer am I going to invest the time without seeing
a
financial reward, I no longer need the "prestige" of being a
CCIE....prestige doesn't pay the bills.....its more in the "hobby
status"

  As for renting your certs out, It occurs daily at most of the VAR's that
I know, its disguised under a different terminology though....good money too,
around 1-2k monthly depending on the cert...


"Underwood, Tony T." <TTUnderwood@xxxxxxxx> wrote:
  I was in a position similar to this. Years ago I worked for a VAR and
left to move on to greener pastures. They were on the bubble for
required CCIE's to maintain their status with cisco. They asked me if I
could stay on as a consultant until they found another CCIE to replace
me. I agreed & for about 6 months I was paid a nominal fee to be
available for "escalation"

So, to answer your question it does happen, but you can't exactly post
yourself on google & say... hey any resellers looking to scam ciso?
I'll loan you my number...
My situation was in the gray area of ethics for the particular VAR, but
they were intending to, and eventually did, hire another CCIE.
If a particular VAR was intentionally renting CCIE numbers to get
additional discounts from Cisco I would think there are some potential
legal implications with cisco on the VAR's end.

Tony Underwood CCIE #7112


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Rodgers Moore
Sent: Monday, September 08, 2008 10:55 AM
To: security@xxxxxxxxxxxxxx
Subject: OT: free agency

Sorry to post off topic...however, the jobs list looks abandoned. :)

Anyone ever "rent" out their CCIE# to a reseller? I've heard of
it, but
never seen it. Does it really happen? (Yes, I find myself in a
position where this may be possible)

Rodgers Moore, CCIE# 8153


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 11:16:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MFGAFv007252
	GroupStudy Mailer; Mon, 22 Sep 2008 11:16:10 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MFGAoH007250
	for securityxhiddenx; Mon, 22 Sep 2008 11:16:10 -0400
Received: from 206.188.136.39.ppp.northrock.bm
  (206.188.136.39.ppp.northrock.bm [206.188.136.39]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8MFG9jd007226 GroupStudy
  Mailer; Mon, 22 Sep 2008 11:16:10 -0400
Message-ID: <1231026451.511=35=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "cullan tove" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?ySAgM8Hexc0gIG3ZICDFoyBtYcs/?=
Date: Mon, 22 Sep 2008 14:30:15 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/22 11:16:10)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "cullan tove" <dnevnik@xxxxxxxxxxxxxxx>

\TO BYLO PocLE WcEGO cLy^uW[ErOSQ.
http://www.groupstudy.com.AQPTVNZ.TK/phr`.jpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 13:18:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MHIDaE021192
	GroupStudy Mailer; Mon, 22 Sep 2008 13:18:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MHIDmD021190
	for securityxhiddenx; Mon, 22 Sep 2008 13:18:13 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.158]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8MHIBVS021164 GroupStudy Mailer; Mon, 22 Sep 2008 13:18:11
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1586007fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 22 Sep 2008 10:18:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:mime-version:subject:date:references
  :x-mailer:sender; bh=Ju+Voj2NGbsNbTcYLVNFl0YOyAc2knhtNChvw2A44rg=;
  b=qygzL6h1fSmZbWlZhISPw3UwfgPib3zF6pDfcy8ZolhMQNPj6KQj9d6UwJeL2vscPp
  cXjkgkniQZYpt5rzsV9jteaLyVw99sti654tX3DnZWGhNlzGGd8YpHOlhFeqR+4lL99R
  sSqyDWi/1jEMqD6R7kOGZ9OGvSIaViI6sbgKk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type:mime-version:subject
  :date:references:x-mailer:sender;
  b=LKPHqyXX9WAcrZ7eaA+TkVq+hNumqVVXnKTu4kqYomt0WAVoAUyHkOBMtANDVbivwG
  6BqdnKhobgmv1VqZ5RyDDSzRV/C59OOgQMN32RsYc6B+R2no3F/RMV3DA9tDAEDVM/67
  ZbdChOv13nT38zREhKuxVwkQElcoIAHjVdxLQ=
Received: by 10.180.204.10 with SMTP id
  b10mr2651559bkg.45.1222103889292; Mon, 22 Sep 2008 10:18:09 -0700
  (PDT)
Received: from dhcp-guest-req01-64-102-168-226.cisco.com
  (dhcp-guest-req01-64-102-168-226.cisco.com [64.102.168.226]) by
  mx.google.com with ESMTPS id 21sm352778fkx.13.2008.09.22.10.18.05
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 22 Sep 2008 10:18:07 -0700
  (PDT)
Cc: Cisco certification <security@xxxxxxxxxxxxxx>
Message-Id: <E597EE3D-DC99-4DC6-B60C-77CE8BE49421@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "George Murage" <gmurage@xxxxxxxxx>
In-Reply-To: <150f570d0809220232v3ceb37f2x6d2f060d1c8e8097@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Apple Message framework v929.2)
Subject: Re: ccie security dynamips
Date: Mon, 22 Sep 2008 13:18:02 -0400
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx> 
  <41908ff40809190140n4e695f46g8a1c961cf2766435@xxxxxxxxxxxxxx> 
  <EFC85CB376404797930B8330114A4797@xxxxxxxx> 
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx> 
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx> 
  <20080920201901.M91771@xxxxxxxxxxxxxxx> 
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <20080922040817.M45098@xxxxxxxxxxxxxxx> 
  <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
  <150f570d0809220232v3ceb37f2x6d2f060d1c8e8097@xxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/22 13:18:13)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

George.

I appreciate your take on this.  Do you know of anyone that has  
Ipexpert or Internetwork Expert workbook topologies for Dynamips  
topologies prebuilt?


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 22, 2008, at 5:32 AM, George Murage wrote:

> i had a very positive experience with dynamips and pemu when preparing
> for my IE lab. i had two installations one on my work XP laptop and
> another on a lab server in the office with Ubuntu. The hardware in
> both cases was a dual core processor with 1GB ram and this worked well
> for about 3 or 4 router with one/two PIX or two VMWARE instances for
> ACS and the test pc on the Ubuntu box and about 3 routers and one PIX
> on the XP box. i had the hardware kit 3560, ASA, IDS 4215, VPNC to
> test out the other stuff and integrated it to the Ubuntu box. it took
> me about 3 or 4 weeks to setup the Ubuntu box and integrate it to the
> live equipment. i'm an open source enthusiast so i thoroughly enjoyed
> the exercise. With what i learnt i setup the dynamips / pemu on my XP
> laptop in just a couple of hours.
>
> In my opinion, i think there are two main steps in preparing for the
> IE lab. Learning the technology and then applying the technology in a
> full-scale lab. in my case, i learnt the technology primarily using
> the emulated routers and PIX as the number of routers and PIX required
> is low. I spent most of my time here. This is because if you cannot
> get something like CBAC or reflective access lists right with two
> routers, you will not succeed setting it up in a lab with 6 plus
> routers all having different security features configured.
>
> So yes, real hardware is ideal - but if dynamips, pemu and vmware is
> all you have to start with there is plenty you can learn - even with
> the small labs.
>
> Sorry for the rather long post but i hope this helps.
>
> Thanks
> George M.


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 14:35:49 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MIZnJX027339
	GroupStudy Mailer; Mon, 22 Sep 2008 14:35:49 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MIZnVb027337
	for securityxhiddenx; Mon, 22 Sep 2008 14:35:49 -0400
Received: from 201-236-154-4.adsl.tie.cl (201-236-154-4.adsl.tie.cl
  [201.236.154.4]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8MIZlq3027311 GroupStudy Mailer; Mon, 22 Sep 2008 14:35:47
  -0400
Message-ID: <1268914862.085=95=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "klemens jaroslav" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?dSAzYd5lzSDU2SAgIMWjICBtYcs/?=
Date: Mon, 22 Sep 2008 16:48:17 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/22 14:35:49)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "klemens jaroslav" <dnevnik@xxxxxxxxxxxxxxx>

\mo BYLO POSLe WcEGO cLy^IW[erOSQ.
http://www.groupstudy.com.SAMNYAK.TK/m`.jpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 16:01:28 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MK1SPl004589
	GroupStudy Mailer; Mon, 22 Sep 2008 16:01:28 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MK1SQk004587
	for securityxhiddenx; Mon, 22 Sep 2008 16:01:28 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.155]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8MK1Rhm004566 GroupStudy Mailer; Mon, 22 Sep 2008 16:01:27
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1635270fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 22 Sep 2008 13:01:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=5duxPMxdDo1mCxNUcb2DSMWSC3ixwgyQ96TJEOVBd3w=;
  b=gzv3GfX9b3REiMoDScqdhYMjup7H1/94jDypOPXrjj0ub1YLM6azCJarHE53plclPi
  rS0liE6GVGU7GOd16iBCNmoQHJ9yRopxIJltUHF1+TI/mDO6aNwcSmhhj/T/rCsLHyNy
  brb+DgljVTIx8ju3+rNU9Pqaevc32T2pvAEl8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=ksqbPK1qj1D9LRpXjYI3jCy5gZ43IiF2v5b0Qfnmv3w0lfnCBR1B5A8AKnjlvCJsI2
  5npZSs5B1z+4c3pPYd6dHBukRIwawbEbzitJefwH02TUb3CkXSbsPN1eBDFPtVlflsiU
  ao1K36ohIJNXHLj3CInwD8s2qZrp5QOOBsIgs=
Received: by 10.181.11.3 with SMTP id o3mr2874488bki.105.1222113684623;
  Mon, 22 Sep 2008 13:01:24 -0700 (PDT)
Received: by 10.181.19.10 with HTTP; Mon, 22 Sep 2008 13:01:24 -0700
  (PDT)
Message-ID: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 01:31:24 +0530
From: "Haloween Boy" <ciscob20@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: CCIE rack setup
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ciscob20@xxxxx\.com] (2008/09/22 16:01:28)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Haloween Boy" <ciscob20@xxxxxxxxx>

Hi Experts,

Can you guide me for setting up a home lab as I am planning to setup after
30-40 days.

Regards,
Cisco Boy


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 16:27:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8MKRiNl006754
	GroupStudy Mailer; Mon, 22 Sep 2008 16:27:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8MKRihu006752
	for securityxhiddenx; Mon, 22 Sep 2008 16:27:44 -0400
Received: from hrndva-omtalb.mail.rr.com (hrndva-omtalb.mail.rr.com
  [71.74.56.122]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8MKRg61006723 GroupStudy Mailer; Mon, 22 Sep 2008 16:27:42
  -0400
Received: from JimPC ([72.227.160.68]) by hrndva-omta04.mail.rr.com with
  ESMTP id <20080922202735.KJES22858.hrndva-omta04.mail.rr.com@xxxxx>
  for <security@xxxxxxxxxxxxxx>; Mon, 22 Sep 2008 20:27:35 +0000
From: "Tim" <ccie2be@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: IPSec SA's
Date: Mon, 22 Sep 2008 16:27:36 -0400
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
Thread-Index: Ackc8aabbO0B+1baTT6DVL0lKzQ5GA==
Message-Id: <20080922202735.KJES22858.hrndva-omta04.mail.rr.com@xxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ccie2be@xxx\.rr\.com] (2008/09/22 16:27:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Tim" <ccie2be@xxxxxxxxxx>

Hi Guys,

 

Why are the data SA's uni-directional while the management SA is
bi-directional?

 

It would seem to me that with 2 uni-directional data SA's, you don't need to
have the same parameters for each SA but, in fact, it doesn't work if the
transforms on both sides are the same.

 

Any thoughts on this?

 

Thanks, Tim


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 21:10:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8N1AD84031250
	GroupStudy Mailer; Mon, 22 Sep 2008 21:10:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8N1ADIm031248
	for securityxhiddenx; Mon, 22 Sep 2008 21:10:13 -0400
Received: from [210.181.196.5] ([210.181.196.5]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8N1ABTS031195 GroupStudy
  Mailer; Mon, 22 Sep 2008 21:10:11 -0400
Message-ID: <1299599115.333=71=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "arlan kelsey" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?dSAg2sHexc0gbdkgIMWjIG3Baz8=?=
Date: Mon, 22 Sep 2008 23:22:37 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/22 21:10:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "arlan kelsey" <dnevnik@xxxxxxxxxxxxxxx>

\mo BYLo PocLE WcEGo cLy^uW[EGocQ.
http://www.groupstudy.com.XGIOFXX.TK/j`rhm|j`.jpeg


From security-owner@xxxxxxxxxxxxxx Mon Sep 22 23:45:08 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8N3j8tv007529
	GroupStudy Mailer; Mon, 22 Sep 2008 23:45:08 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8N3j81Y007527
	for securityxhiddenx; Mon, 22 Sep 2008 23:45:08 -0400
Received: from 61.17.252.38.static-hyderabad.vsnl.net.in
  (61.17.252.38.static-hyderabad.vsnl.net.in [61.17.252.38] (may be
  forged)) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8N3j6pF007504 GroupStudy Mailer; Mon, 22 Sep 2008 23:45:06 -0400
Message-ID: <1230374318.126=44=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "gallard sherif" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?18/UICAgdSDEz9t51MnMddPYIMLMdc4u?=
Date: Tue, 23 Sep 2008 01:57:47 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/22 23:45:07)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "gallard sherif" <dnevnik@xxxxxxxxxxxxxxx>

a ^TO ONO TeBE mAk NADo BYLo..? TEPERX BUDI[X 3NaTX I Q TOVE (
http://www.groupstudy.com.http://trumandu.googlegroups.com/web/axycsoszdiotxyuxhlvivykpj.swf?gda=lNdRA08AAACXxFRIwE5h3c2hPIPcW0e0SnDAa35K40PfO3uii2nWwfIwiH6G6Ak8p3kTM8BKQa2pi0_rES-mfKxhk2cv_Vx2nHMhSp_qzSgvndaTPyHVdA&gsc=reX_jgsAAAB2IOXaAJNzFLqaP5QAT7zA/nkeq.mpeg


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 01:38:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8N5cDuB015731
	GroupStudy Mailer; Tue, 23 Sep 2008 01:38:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8N5cDoD015729
	for securityxhiddenx; Tue, 23 Sep 2008 01:38:13 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.177]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8N5cB6x015709 GroupStudy Mailer; Tue, 23 Sep 2008 01:38:12
  -0400
Received: by wa-out-1112.google.com with SMTP id v33so1307669wah.24 for
  <security@xxxxxxxxxxxxxx>; Mon, 22 Sep 2008 22:38:07 -0700 (PDT)
Received: by 10.115.110.6 with SMTP id n6mr5850198wam.34.1222148287333;
  Mon, 22 Sep 2008 22:38:07 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id y25sm11444915pod.8.2008.09.22.22.38.04 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Mon, 22 Sep 2008 22:38:06 -0700 (PDT)
To: "'Haloween Boy'" <ciscob20@xxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
References: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
In-Reply-To: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
Subject: RE: CCIE rack setup
Date: Mon, 22 Sep 2008 22:37:59 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAABNAHUePfWxJuJxwQPRF9wIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
thread-index: Ackc9QhiWHrglQE1RL+5qk3+l6IS+AASVL0Q
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8N5cB6x015709
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/23 01:38:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi,
Please check below link
http://inspiredk.com/2008/07/28/what-are-recommended-cisco-equipments-for-th
e-ccie-security-home-lab-preparation-2/


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Haloween Boy
Sent: Monday, September 22, 2008 1:01 PM
To: Cisco certification
Subject: CCIE rack setup

Hi Experts,

Can you guide me for setting up a home lab as I am planning to setup after
30-40 days.

Regards,
Cisco Boy


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 05:33:02 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8N9X2Hf001576
	GroupStudy Mailer; Tue, 23 Sep 2008 05:33:02 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8N9X2dl001574
	for securityxhiddenx; Tue, 23 Sep 2008 05:33:02 -0400
Received: from athedsl-4422060.home.otenet.gr
  (athedsl-4422060.home.otenet.gr [79.130.233.156]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8N9Whme001522 GroupStudy
  Mailer; Tue, 23 Sep 2008 05:32:54 -0400
Message-ID: <1213350602.318=65=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "gerik xiaogang" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?129tICB1ICDEb9vV1MnMyWPYICDCzMnOLg==?=
Date: Tue, 23 Sep 2008 07:45:06 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/23 05:33:02)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "gerik xiaogang" <dnevnik@xxxxxxxxxxxxxxx>

a ^mo oNo TeBe maK NADo BYLo..? TePeRX ByDI[X ZNAmX u Q TOVe (
http://www.groupstudy.com.http://trumandu.googlegroups.com/web/amxhqiuwavgj.swf?gda=dAqUQ0IAAACXxFRIwE5h3c2hPIPcW0e06tY3BGZpPiNNAIAb42EkOgjufRm7o7XnDR874m_eyMxV4u3aa4iAIyYQIqbG9naPgh6o8ccLBvP6Chud5KMzIQ&gsc=reX_jgsAAAB2IOXaAJNzFLqaP5QAT7zA/jekkh.gif


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 07:33:53 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NBXrFn010195
	GroupStudy Mailer; Tue, 23 Sep 2008 07:33:53 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NBXrlk010193
	for securityxhiddenx; Tue, 23 Sep 2008 07:33:53 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8NBXqXa010168 GroupStudy Mailer; Tue, 23 Sep 2008 07:33:52 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 04:34:23 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C3663013DFDEA@xxxxxxxxxxxxxxxxx>
Thread-Topic: CCIE rack setup
thread-index: Ackc8ovX6ZvpiQTLTZGGrHsMxwb/rwAfUarQAAAd2bA=
References: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
From: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
To: "Haloween Boy" <ciscob20@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8NBXqXa010168
X-ASK-Info: Whitelist match [from brad@xxxxxxxxxx\.com] (2008/09/23 07:33:53)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>

You'll want something similar to the following:

8-10 Cisco Routers (26xx or 28xx)
Cisco Catalyst 3560s or 3550s (1-2 of them)
Cisco VPN 3005 Concentrator 4.7.x 
Cisco Pix 515 7.x
Cisco 4235 IPS 5.x Sensor
ACS/CA Server 4.x
Frame-relay switch 
Terminal Server 
2 Cisco ASA-5510s 7.x

However, you wont need a VPN concentrator if you are planning on taking
your lab after Jan 1, 2009.
 
thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Haloween Boy
Sent: Monday, September 22, 2008 1:01 PM
To: Cisco certification
Subject: CCIE rack setup

Hi Experts,

Can you guide me for setting up a home lab as I am planning to setup
after
30-40 days.

Regards,
Cisco Boy


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 08:44:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NCikoK014450
	GroupStudy Mailer; Tue, 23 Sep 2008 08:44:46 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NCikfn014448
	for securityxhiddenx; Tue, 23 Sep 2008 08:44:46 -0400
Received: from yw-out-1718.google.com (yw-out-1718.google.com
  [74.125.46.153]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NCijYu014428 GroupStudy Mailer; Tue, 23 Sep 2008 08:44:45
  -0400
Received: by yw-out-1718.google.com with SMTP id 6so324699ywa.84 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 05:44:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=wJ4THGj+xmTcy2QPjLnzMMPYslWHrjwutI/Ec15vMIY=;
  b=G8yQP1aV28x9QEXQcegixtlzUJBpFz6hd96xEmWlG9iAmji8PMAPjyluw51x7fMtSv
  T+qgqKbNfwnluHiAS60Y1gpoN8OXfz2Xuvwib19MEVohgDMRFE1MEAkqLWRzDN4OrbGb
  pVmKDxBVUsN54Y7HTrbNmaL3+m6AH+9rVOmY0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=LyqXv7OfCZx4Nx0eRD+n5gv7PRJ7JiISZYAzHjRs3g05kkREoLDe45YZMdAvcg4tyn
  6vR+M+JfdluCvDJ2XvePtIskWptu2rbhwxbSi8K5lYKG2OHlSSBHBPY5dk7c5wfUGvUk
  kGmNKuYuqUNdBlZaCvsck5XXnLKUwQCIZIU1k=
Received: by 10.100.91.17 with SMTP id o17mr4269280anb.13.1222173883937;
  Tue, 23 Sep 2008 05:44:43 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Tue, 23 Sep 2008 05:44:43 -0700
  (PDT)
Message-ID: <150f570d0809230544y7f15c8d3oce9a980028fa456d@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 15:44:43 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>
Subject: Re: ccie security dynamips
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <E597EE3D-DC99-4DC6-B60C-77CE8BE49421@xxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <20080922040817.M45098@xxxxxxxxxxxxxxx>
  <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
  <150f570d0809220232v3ceb37f2x6d2f060d1c8e8097@xxxxxxxxxxxxxx>
  <E597EE3D-DC99-4DC6-B60C-77CE8BE49421@xxxxxxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/23 08:44:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Hi Brandon,

This is what i used (URL below) to build my dynamips lab based on IE
topology. i did make some modifications to suit my environment.

http://www.internetworkpro.org/wiki/CCIE_Security_Home_Lab_with_dynamips_%26_Co

HTH

George

On Mon, Sep 22, 2008 at 8:18 PM, Brandon Carroll
<brandon.carroll@xxxxxxxxxxx> wrote:
> George.
> I appreciate your take on this.  Do you know of anyone that has Ipexpert or
> Internetwork Expert workbook topologies for Dynamips topologies prebuilt?
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
> ph.206-850-2384
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
> On Sep 22, 2008, at 5:32 AM, George Murage wrote:
>
> i had a very positive experience with dynamips and pemu when preparing
> for my IE lab. i had two installations one on my work XP laptop and
> another on a lab server in the office with Ubuntu. The hardware in
> both cases was a dual core processor with 1GB ram and this worked well
> for about 3 or 4 router with one/two PIX or two VMWARE instances for
> ACS and the test pc on the Ubuntu box and about 3 routers and one PIX
> on the XP box. i had the hardware kit 3560, ASA, IDS 4215, VPNC to
> test out the other stuff and integrated it to the Ubuntu box. it took
> me about 3 or 4 weeks to setup the Ubuntu box and integrate it to the
> live equipment. i'm an open source enthusiast so i thoroughly enjoyed
> the exercise. With what i learnt i setup the dynamips / pemu on my XP
> laptop in just a couple of hours.
>
> In my opinion, i think there are two main steps in preparing for the
> IE lab. Learning the technology and then applying the technology in a
> full-scale lab. in my case, i learnt the technology primarily using
> the emulated routers and PIX as the number of routers and PIX required
> is low. I spent most of my time here. This is because if you cannot
> get something like CBAC or reflective access lists right with two
> routers, you will not succeed setting it up in a lab with 6 plus
> routers all having different security features configured.
>
> So yes, real hardware is ideal - but if dynamips, pemu and vmware is
> all you have to start with there is plenty you can learn - even with
> the small labs.
>
> Sorry for the rather long post but i hope this helps.
>
> Thanks
> George M.


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 09:53:48 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NDrmuA021258
	GroupStudy Mailer; Tue, 23 Sep 2008 09:53:48 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NDrmtG021256
	for securityxhiddenx; Tue, 23 Sep 2008 09:53:48 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.189]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NDrcJB021231 GroupStudy Mailer; Tue, 23 Sep 2008 09:53:39
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so1084109tib.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 06:53:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=QHsg/aXXFBA9w2qechV0r9jhOvNZ9le+fq+0q3oWw3s=;
  b=BVcZedX+uQasbHhnVJcVU0oVAkBK/3VmzZqxTJrCqppwWWvNNFh/Ot//Si4z04U5zf
  yS0KmNt00cTJ7DcoQHGr+6Poji02qshmHrpOVi9vZ6sHHrH0AtyPkX1hiYeYr7HBlpjS
  ULXuPZ+vesnBOj8jQvleYxz9eDpDgQ9p2nNjw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=mSBB4QvvdOZBl1R3YKvV2uGgk7OL/KrDA7OBOY63wMl1I0PJHGy2D69i91VWxbO65z
  SUjlHefEKnxmW3s/k+FJF1+Nv/VdlkiWxagrUaIjOz/kCsnL8IMBzoFKpmru1AaD+942
  7d8WP1l73dB5L0nB78j2iTOnIz1kZYLXCBgYQ=
Received: by 10.110.7.18 with SMTP id 18mr7184829tig.39.1222178013048;
  Tue, 23 Sep 2008 06:53:33 -0700 (PDT)
Received: by 10.110.53.16 with HTTP; Tue, 23 Sep 2008 06:53:32 -0700
  (PDT)
Message-ID: <f589772b0809230653g5c75def2n828a6518852e078e@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 16:53:32 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>
Subject: Re: ccie security dynamips
Cc: "George Murage" <gmurage@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <E597EE3D-DC99-4DC6-B60C-77CE8BE49421@xxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <943F2C2237594D06A720F94AF2654401@xxxxxxxx>
  <EFC85CB376404797930B8330114A4797@xxxxxxxx>
  <9094aab80809200007q6077ff6s84cb4f8e9085bf95@xxxxxxxxxxxxxx>
  <9F9FA546693944A3A6E3892B64E83582@xxxxxxxx>
  <20080920201901.M91771@xxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJMqUemfv05MvxfCTB+LIN0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <20080922040817.M45098@xxxxxxxxxxxxxxx>
  <c2f2e98f0809212258t14fd96f2t7ff4d030856a3cef@xxxxxxxxxxxxxx>
  <150f570d0809220232v3ceb37f2x6d2f060d1c8e8097@xxxxxxxxxxxxxx>
  <E597EE3D-DC99-4DC6-B60C-77CE8BE49421@xxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/23 09:53:48)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

I do have topologies for IE and Netmetric on Dynampis but I appreciate guys
to create their own topologies on Dynamips. This will give a person
excellent control on Dynampis+Pemu+qemu+Vmware (for IPS,
WIN2K3(CA,Websesne,VPN client,ACS) and others.

Please try to understand and then start creating topologies. Trust you only
need to create very few topologies originally, rest of the topologies are
just a copy and paste the original toplogies plus some changes.

By the way I have been teaching Dynampis and its intergration lately : )

Hope this motivates : )


2008/9/22 Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

> George.
>
> I appreciate your take on this.  Do you know of anyone that has
> Ipexpert or Internetwork Expert workook topologies for Dynamips
> topologies prebuilt?
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 22, 2008, at 5:32 AM, George Murage wrote:
>
> > i had a very positive experience with dynamips and pemu when preparing
> > for my IE lab. i had two installations one on my work XP laptop and
> > another on a lab server in the office with Ubuntu. The hardware in
> > both cases was a dual core processor with 1GB ram and this worked well
> > for about 3 or 4 router with one/two PIX or two VMWARE instances for
> > ACS and the test pc on the Ubuntu box and about 3 routers and one PIX
> > on the XP box. i had the hardware kit 3560, ASA, IDS 4215, VPNC to
> > test out the other stuff and integrated it to the Ubuntu box. it took
> > me about 3 or 4 weeks to setup the Ubuntu box and integrate it to the
> > live equipment. i'm an open source enthusiast so i thoroughly enjoyed
> > the exercise. With what i learnt i setup the dynamips / pemu on my XP
> > laptop in just a couple of hours.
> >
> > In my opinion, i think there are two main steps in preparing for the
> > IE lab. Learning the technology and then applying the technology in a
> > full-scale lab. in my case, i learnt the technology primarily using
> > the emulated routers and PIX as the number of routers and PIX required
> > is low. I spent most of my time here. This is because if you cannot
> > get something like CBAC or reflective access lists right with two
> > routers, you will not succeed setting it up in a lab with 6 plus
> > routers all having different security features configured.
> >
> > So yes, real hardware is ideal - but if dynamips, pemu and vmware is
> > all you have to start with there is plenty you can learn - even with
> > the small labs.
> >
> > Sorry for the rather long post but i hope this helps.
> >
> > Thanks
> > George M.
>
>


-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 09:55:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NDt18H021377
	GroupStudy Mailer; Tue, 23 Sep 2008 09:55:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NDt1Dg021375
	for securityxhiddenx; Tue, 23 Sep 2008 09:55:01 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NDswwq021330 GroupStudy Mailer; Tue, 23 Sep 2008 09:54:59
  -0400
Received: by gxk13 with SMTP id 13so6145018gxk.6 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 06:54:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=lTl/HT5S0ZSYYTkSjdz8x0WxAa71olNY7GfP9fuJ3kQ=;
  b=wmUhMnj5dHcN9xOFC4uXDXzJtmgSP4QMy0LhEadgVQoWPb1TegQp+4RNDbuuF3SHDm
  D8r7hwm7r+HnBB8PNRorq2nFDe6BmOY/F9ZXsa/N+6QtOo56AyZhRt3xqdCEjEBMqwQJ
  0JTRjB5xCTJWkb613FSxP6WGd0OxV12WSQYho=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=SpXcfkMrbsBpUeVSf94kYonfdID6cJpR2Adsvt9tWbltGXJsWo/pJMDrS+bOvJ5zRq
  S/wTUO4CXra+oM3U55siMI+qj3QTuX6v2nZVdPSbbbuVHj9AvIKbdudAvvXZ542dXmWY
  Hvf3hOSY6TRLM9vUV/gVkzwBXsjSeEfvPkH7E=
Received: by 10.100.33.9 with SMTP id g9mr4361189ang.5.1222178092529;
  Tue, 23 Sep 2008 06:54:52 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Tue, 23 Sep 2008 06:54:52 -0700
  (PDT)
Message-ID: <150f570d0809230654o66c69b76waf81e836fd3887c9@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 16:54:52 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: Tim <ccie2be@xxxxxxxxxx>
Subject: Re: IPSec SA's
Cc: security@xxxxxxxxxxxxxx
In-Reply-To: <20080922202735.KJES22858.hrndva-omta04.mail.rr.com@xxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <20080922202735.KJES22858.hrndva-omta04.mail.rr.com@xxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/23 09:55:00)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Hi Tim,

The two unidirectional SA's for Phase II are related. The incoming SA
parameters for one peer is the outgoing SA for another peer and
vice-versa so you cannot have different transform-sets for each. even
if it was technically possible to have different policies between
peers for phase II, under the IPSEC specification, it would weaken the
secrecy of the operation, since anyone with any transform-set and the
correct proxy-identities can establish an IPSEC connection to a peer
if it can successfully negotiate a phase 1 SA. the requirement for
identical transform-sets and proxy-identities makes it more difficult
to successfully negotiate an IPSEC SA with the wrong peer.

For more details please refer to Saadat Malik's book Network Security
Principles and Practices.in my opinion, it contains the best
explanation of IKE modes and IPSEC.

HTH

George

On Mon, Sep 22, 2008 at 11:27 PM, Tim <ccie2be@xxxxxxxxxx> wrote:
> Hi Guys,
>
>
>
> Why are the data SA's uni-directional while the management SA is
> bi-directional?
>
>
>
> It would seem to me that with 2 uni-directional data SA's, you don't need to
> have the same parameters for each SA but, in fact, it doesn't work if the
> transforms on both sides are the same.
>
>
>
> Any thoughts on this?
>
>
>
> Thanks, Tim


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 10:53:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NErsqQ027763
	GroupStudy Mailer; Tue, 23 Sep 2008 10:53:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NErsmd027761
	for securityxhiddenx; Tue, 23 Sep 2008 10:53:54 -0400
Received: from bay0-omc2-s9.bay0.hotmail.com
  (bay0-omc2-s9.bay0.hotmail.com [65.54.246.145]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8NEJeLH023751 GroupStudy
  Mailer; Tue, 23 Sep 2008 10:19:40 -0400
Received: from BAY143-W11 ([65.55.154.46]) by
  bay0-omc2-s9.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Tue, 23 Sep 2008 07:19:33 -0700
Message-ID: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
X-Originating-IP: [64.101.176.143]
From: Todd Richards <trichards63@xxxxxxxxxxx>
To: <brad@xxxxxxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 09:19:32 -0500
MIME-Version: 1.0
X-OriginalArrivalTime: 23 Sep 2008 14:19:33.0588 (UTC)
  FILETIME=[66994140:01C91D87]
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/23 10:19:41)
X-ASK-Info: Confirmed by User (2008/09/23 10:53:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Todd Richards <trichards63@xxxxxxxxxxx>

Is this confirmed?

>>>However, you wont need a VPN concentrator if you are planning on taking
your lab after Jan 1, 2009.

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Brad
Ellis
Sent: Tuesday, September 23, 2008 6:34 AM
To: Haloween Boy; Cisco certification
Subject: RE: CCIE rack setup
You'll want something similar to the following:
8-10 Cisco Routers (26xx or 28xx)
Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator 4.7.x
Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x Frame-relay
switch Terminal Server
2 Cisco ASA-5510s 7.x
However, you wont need a VPN concentrator if you are planning on taking your
lab after Jan 1, 2009.

thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com
-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Haloween Boy
Sent: Monday, September 22, 2008 1:01 PM
To: Cisco certification
Subject: CCIE rack setup
Hi Experts,
Can you guide me for setting up a home lab as I am planning to setup after
30-40 days.
Regards,
Cisco Boy
_________________________________________________________________
See how Windows connects the people, information, and fun that are part of
your life.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 11:36:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NFahM9032389
	GroupStudy Mailer; Tue, 23 Sep 2008 11:36:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NFahl2032387
	for securityxhiddenx; Tue, 23 Sep 2008 11:36:43 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8NFagl6032345 GroupStudy Mailer; Tue, 23 Sep 2008 11:36:42 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 08:37:43 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C3663013DFE40@xxxxxxxxxxxxxxxxx>
In-Reply-To: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
Thread-Topic: CCIE rack setup
thread-index: AckdkTpuIHz1BQwTQ0WMA+GuPp/KLgAAQYpA
References: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
From: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
To: "Todd Richards" <trichards63@xxxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8NFagl6032345
X-ASK-Info: Whitelist match [from brad@xxxxxxxxxx\.com] (2008/09/23 11:36:43)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>

This was said at networkers (cisco live) this year in Orlando. I'll see
if I can get an official response from Cisco.
 
thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Todd Richards
Sent: Tuesday, September 23, 2008 7:20 AM
To: Brad Ellis; security@xxxxxxxxxxxxxx
Subject: RE: CCIE rack setup

Is this confirmed?

>>>However, you wont need a VPN concentrator if you are planning on
taking
your lab after Jan 1, 2009.

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brad
Ellis
Sent: Tuesday, September 23, 2008 6:34 AM
To: Haloween Boy; Cisco certification
Subject: RE: CCIE rack setup
You'll want something similar to the following:
8-10 Cisco Routers (26xx or 28xx)
Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
4.7.x
Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
Frame-relay
switch Terminal Server
2 Cisco ASA-5510s 7.x
However, you wont need a VPN concentrator if you are planning on taking
your
lab after Jan 1, 2009.

thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com
-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Haloween Boy
Sent: Monday, September 22, 2008 1:01 PM
To: Cisco certification
Subject: CCIE rack setup
Hi Experts,
Can you guide me for setting up a home lab as I am planning to setup
after
30-40 days.
Regards,
Cisco Boy
_________________________________________________________________
See how Windows connects the people, information, and fun that are part
of
your life.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 11:49:57 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NFnvHe000671
	GroupStudy Mailer; Tue, 23 Sep 2008 11:49:57 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NFnv9A000669
	for securityxhiddenx; Tue, 23 Sep 2008 11:49:57 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.174]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NEglNZ025752 GroupStudy Mailer; Tue, 23 Sep 2008 10:42:48
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so2907422wfc.24 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 07:42:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=TQX+MjGifEPfv0uuZbxMYEZLvDWGcEGwq3EWYaUFerw=;
  b=OSldJawFWGhn7C33wi2WHfZATt2a11SvINvpmG/PBP+syACUaUUXDoDTEjRHUHI1qq
  MEtKnksi62DpG/0MU+RawJN4pFj/S0LVUhLN4UTr1tAZpYiMwEankImqkmC+iN+ByI9F
  aoEz0c5RK/ygCbfL4BdSfeuX+6Vsxv1hJBBy4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=KLwfj/lUpYer/CtUjnouCLnYAK35KAx7/uhywoBhBWBz9pP0RNLjfl/oBo3kS5uGIo
  BFwpCXKES6DurfYEcm3mix62HknZkd1CNTubGNkSND+idYXc8sH0nF0Z9Hjs75nao8te
  zXju5f0FqLEuHefK8381s+0Sk/CgQIChhlrVw=
Received: by 10.114.170.1 with SMTP id s1mr6411928wae.127.1222180949467;
  Tue, 23 Sep 2008 07:42:29 -0700 (PDT)
Received: by 10.114.192.6 with HTTP; Tue, 23 Sep 2008 07:42:29 -0700
  (PDT)
Message-ID: <14acbbd90809230742j131589e0kd7364c69403cf7e8@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 20:12:29 +0530
From: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>
To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
Subject: Re: CCIE rack setup
Cc: "Haloween Boy" <ciscob20@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <E76ACA8C13EF1847BC69538B522C3663013DFDEA@xxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFDEA@xxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/23 10:42:50)
X-ASK-Info: Confirmed by User (2008/09/23 11:49:56)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>

Hello Brad,
I dont see any official announcement of VPN Conc being removed from the CCO,

please let us know, if this is for real?

thanks
Ali

On Tue, Sep 23, 2008 at 5:04 PM, Brad Ellis <brad@xxxxxxxxxxxxxx> wrote:

> You'll want something similar to the following:
>
> 8-10 Cisco Routers (26xx or 28xx)
> Cisco Catalyst 3560s or 3550s (1-2 of them)
> Cisco VPN 3005 Concentrator 4.7.x
> Cisco Pix 515 7.x
> Cisco 4235 IPS 5.x Sensor
> ACS/CA Server 4.x
> Frame-relay switch
> Terminal Server
> 2 Cisco ASA-5510s 7.x
>
> However, you wont need a VPN concentrator if you are planning on taking
> your lab after Jan 1, 2009.
>
> thanks,
> Brad Ellis
> CCIE#5796 (R&S / Security)
> CCSI# 30482
> CEO / President
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
> Email: brad@xxxxxxxxxxxxxx
> Toll Free: 877-654-2243
> Direct: +1-702-968-5100 = Outside the USA
> FAX: +1-702-446-8012
> YES! We take Cisco Learning Credits!
> Training And Remote Racks: http://www.ccbootcamp.com
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Haloween Boy
> Sent: Monday, September 22, 2008 1:01 PM
> To: Cisco certification
> Subject: CCIE rack setup
>
> Hi Experts,
>
> Can you guide me for setting up a home lab as I am planning to setup
> after
> 30-40 days.
>
> Regards,
> Cisco Boy
>
>


-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 11:58:29 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NFwT07002466
	GroupStudy Mailer; Tue, 23 Sep 2008 11:58:29 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NFwTi3002464
	for securityxhiddenx; Tue, 23 Sep 2008 11:58:29 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.154]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NFwSmU002444 GroupStudy Mailer; Tue, 23 Sep 2008 11:58:28
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so346508yxi.84 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 08:58:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=Q3tFuwIxsa1RRta2SzAXE0Zej3G121v/4Rfa08IYInI=;
  b=qLAXyjV9v8pUYhGmYfbryltIU4evCAL7dEmr4Hydh7mEvBW27rM9N8EFxPWPxbSgvC
  nDtlI6H2fZWIfak5JrWmrfNpBl53fCiJVd7Qn9e08niOzhLvAkPMlPAuqj9pUvdFOeTL
  k3TDEH5m/XVfm0mV1GPnK83WwUENxNiHSrJWA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=icmXcFvhRkaEKww9mUpA2LAb07T5SE5Rzek5DovGXyuW/AFyqsVxp6n2TqtZ+S2ydn
  rAkF1pMC2GDX9X0rhWUewBjY/EsCEzlsJyz7GZwQQN608ZV9F02xtzACETuJn1xhOF5W
  Mx58J4+pdCW9lite2kMVSICAxFLLhowcF6NlY=
Received: by 10.100.250.12 with SMTP id
  x12mr4566731anh.59.1222185507062; Tue, 23 Sep 2008 08:58:27 -0700
  (PDT)
Received: by 10.100.45.3 with HTTP; Tue, 23 Sep 2008 08:58:26 -0700
  (PDT)
Message-ID: <e22bfc9b0809230858k682486b2j4d28feee5895ba59@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 11:58:26 -0400
From: "Jason W. Miller" <jaymiller5@xxxxxxxxx>
To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
Subject: Re: CCIE rack setup
Cc: "Todd Richards" <trichards63@xxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <E76ACA8C13EF1847BC69538B522C3663013DFE40@xxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFE40@xxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from jaymiller5@xxxxx\.com] (2008/09/23 11:58:29)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Jason W. Miller" <jaymiller5@xxxxxxxxx>

They only mentioned that it would be coming with no date for announcement
set as they are still ironing out the details and concerns from the other
BU's as well as internal to the lab BU. It was also noted that per the
current policy when they do officially announce it there would be the
typical 6 month "grace" period for this to take affect for future test
takers. If they were to annouce it today all canidates would have 6 months
to study and sit for the lab prior to having the new requirements in the
lab.

While I believe you were just mentioning that if a candiate is to just now
look at purchasing equipment and taking the lab exam later in 2009 that it
would be wise to posture yourself for the known equipment update instead of
having to shift your focus's and costs down the road.


Jay




On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx> wrote:

> This was said at networkers (cisco live) this year in Orlando. I'll see
> if I can get an official response from Cisco.
>
> thanks,
> Brad Ellis
> CCIE#5796 (R&S / Security)
> CCSI# 30482
> CEO / President
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
> Email: brad@xxxxxxxxxxxxxx
> Toll Free: 877-654-2243
> Direct: +1-702-968-5100 = Outside the USA
> FAX: +1-702-446-8012
> YES! We take Cisco Learning Credits!
> Training And Remote Racks: http://www.ccbootcamp.com
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>  Todd Richards
> Sent: Tuesday, September 23, 2008 7:20 AM
> To: Brad Ellis; security@xxxxxxxxxxxxxx
> Subject: RE: CCIE rack setup
>
> Is this confirmed?
>
> >>>However, you wont need a VPN concentrator if you are planning on
> taking
> your lab after Jan 1, 2009.
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Brad
> Ellis
> Sent: Tuesday, September 23, 2008 6:34 AM
> To: Haloween Boy; Cisco certification
> Subject: RE: CCIE rack setup
> You'll want something similar to the following:
> 8-10 Cisco Routers (26xx or 28xx)
> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
> 4.7.x
> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
> Frame-relay
> switch Terminal Server
> 2 Cisco ASA-5510s 7.x
> However, you wont need a VPN concentrator if you are planning on taking
> your
> lab after Jan 1, 2009.
>
> thanks,
> Brad Ellis
> CCIE#5796 (R&S / Security)
> CCSI# 30482
> CEO / President
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
> Email: brad@xxxxxxxxxxxxxx
> Toll Free: 877-654-2243
> Direct: +1-702-968-5100 = Outside the USA
> FAX: +1-702-446-8012
> YES! We take Cisco Learning Credits!
> Training And Remote Racks: http://www.ccbootcamp.com
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Haloween Boy
> Sent: Monday, September 22, 2008 1:01 PM
> To: Cisco certification
> Subject: CCIE rack setup
> Hi Experts,
> Can you guide me for setting up a home lab as I am planning to setup
> after
> 30-40 days.
> Regards,
> Cisco Boy
> _________________________________________________________________
> See how Windows connects the people, information, and fun that are part
> of
> your life.
> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>
>


-- 
Jason W. Miller
Fred Allen  - "What's on your mind, if you will allow the overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 12:09:20 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NG9Kek003516
	GroupStudy Mailer; Tue, 23 Sep 2008 12:09:20 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NG9Kbb003514
	for securityxhiddenx; Tue, 23 Sep 2008 12:09:20 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NG88mt003348 GroupStudy Mailer; Tue, 23 Sep 2008 12:08:09
  -0400
Received: by gxk13 with SMTP id 13so6420368gxk.6 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 09:08:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=U4anJFML10JP3hYghE340HRZaID+91QgCjEmaGXRbko=;
  b=ErKlNcnkki7YJDcQikQ4oAB3Jcc+5mglpS1JfpuFoJis2HFoe4QraM28yNVRlkfHI2
  nYk1CShQXnoFgF/MfSJcZ+YBVQ1TmVZcpcjYfZqaQQ5D+tMbqYjcS2E6J/28nlovpd54
  s5YOGm65V5z8hT87pifSYdvswtAx1URDr2aD8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=CE08p0dZxPoTeAtF/iJtXnr/BqyPRGJ+R6jzXSPDBbKaWZ6KXtU9ypnJPwWmTmqsON
  bKcwcWzSAmbScvCqBq6DQ/5A8Jj7nk+V/A+Qj6Y+A0TEG+hVMZwrd/Bl4BoQgSUb5sWk
  Thg7w7yyju1SCmp2i5ih2DL948gXn4UczrCsA=
Received: by 10.100.152.5 with SMTP id z5mr4567257and.86.1222186081766;
  Tue, 23 Sep 2008 09:08:01 -0700 (PDT)
Received: by 10.100.45.13 with HTTP; Tue, 23 Sep 2008 09:08:01 -0700
  (PDT)
Message-ID: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 11:08:01 -0500
From: "Bryan Morrow" <alltimed@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx
Subject: EZVPN client with a router-on-a-stick
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/23 12:08:10)
X-ASK-Info: Confirmed by User (2008/09/23 12:09:20)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Bryan Morrow" <alltimed@xxxxxxxxx>

Does anyone know if it is possible to use a Cisco 1811 as an EZVPN client
while the router is setup with only one interface? I have a customer that
requested their VPN router to us be setup in their DMZ with no public facing
interface on the 1811 (VPN device). I usually configure our VPN
configurations with an internet facing interface and a DMZ facing interface.

Thanks,

Bryan


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 12:49:37 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NGnbjO007857
	GroupStudy Mailer; Tue, 23 Sep 2008 12:49:37 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NGnbsJ007855
	for securityxhiddenx; Tue, 23 Sep 2008 12:49:37 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8NGnajY007832 GroupStudy Mailer; Tue, 23 Sep 2008 12:49:36 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 09:49:23 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C3663013DFEAB@xxxxxxxxxxxxxxxxx>
Thread-Topic: CCIE rack setup
thread-index: AckdlUK3lZdctfS6QRuIGu9S5tZtIAABr+bwAAATo7A=
References: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFE40@xxxxxxxxxxxxxxxxx>
  <e22bfc9b0809230858k682486b2j4d28feee5895ba59@xxxxxxxxxxxxxx> 
From: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
To: "Jason W. Miller" <jaymiller5@xxxxxxxxx>
Cc: "Todd Richards" <trichards63@xxxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from brad@xxxxxxxxxx\.com] (2008/09/23 12:49:37)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>

Actually, I've seen some changes announced and then implemented much
quicker than 6 months. I've also seen some changes that weren't
announced implemented in the past (ie, going from 2 to 4 switches!)
Removing a piece of equipment is something that could happen pretty
easily - especially the VPN concentrator. What will be more interesting
is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms) in a
lot of their security racks. They will need to go to XM or ISRs. I
believe they are heading towards ISRs. I'll try and get confirmation on
this as well.



thanks,

Brad Ellis

CCIE#5796 (R&S / Security)

CCSI# 30482

CEO / President

CCBOOTCAMP - A Cisco Sponsored Organization (SO)

Email: brad@xxxxxxxxxxxxxx

Toll Free: 877-654-2243

Direct: +1-702-968-5100 = Outside the USA

FAX: +1-702-446-8012

YES! We take Cisco Learning Credits!

Training And Remote Racks: http://www.ccbootcamp.com



________________________________

From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
Sent: Tuesday, September 23, 2008 8:58 AM
To: Brad Ellis
Cc: Todd Richards; security@xxxxxxxxxxxxxx
Subject: Re: CCIE rack setup



They only mentioned that it would be coming with no date for
announcement set as they are still ironing out the details and concerns
from the other BU's as well as internal to the lab BU. It was also noted
that per the current policy when they do officially announce it there
would be the typical 6 month "grace" period for this to take affect for
future test takers. If they were to annouce it today all canidates would
have 6 months to study and sit for the lab prior to having the new
requirements in the lab.



While I believe you were just mentioning that if a candiate is to just
now look at purchasing equipment and taking the lab exam later in 2009
that it would be wise to posture yourself for the known equipment update
instead of having to shift your focus's and costs down the road.





Jay







On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
wrote:

This was said at networkers (cisco live) this year in Orlando. I'll see
if I can get an official response from Cisco.


thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com
<http://www.ccbootcamp.com/>

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of

Todd Richards
Sent: Tuesday, September 23, 2008 7:20 AM
To: Brad Ellis; security@xxxxxxxxxxxxxx
Subject: RE: CCIE rack setup

Is this confirmed?

>>>However, you wont need a VPN concentrator if you are planning on
taking
your lab after Jan 1, 2009.

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brad
Ellis
Sent: Tuesday, September 23, 2008 6:34 AM
To: Haloween Boy; Cisco certification
Subject: RE: CCIE rack setup
You'll want something similar to the following:
8-10 Cisco Routers (26xx or 28xx)
Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
4.7.x
Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
Frame-relay
switch Terminal Server
2 Cisco ASA-5510s 7.x
However, you wont need a VPN concentrator if you are planning on taking
your
lab after Jan 1, 2009.

thanks,
Brad Ellis
CCIE#5796 (R&S / Security)
CCSI# 30482
CEO / President
CCBOOTCAMP - A Cisco Sponsored Organization (SO)
Email: brad@xxxxxxxxxxxxxx
Toll Free: 877-654-2243
Direct: +1-702-968-5100 = Outside the USA
FAX: +1-702-446-8012
YES! We take Cisco Learning Credits!
Training And Remote Racks: http://www.ccbootcamp.com
<http://www.ccbootcamp.com/>
-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Haloween Boy
Sent: Monday, September 22, 2008 1:01 PM
To: Cisco certification
Subject: CCIE rack setup
Hi Experts,
Can you guide me for setting up a home lab as I am planning to setup
after
30-40 days.
Regards,
Cisco Boy
_________________________________________________________________
See how Windows connects the people, information, and fun that are part
of
your life.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/




--
Jason W. Miller
Fred Allen  - "What's on your mind, if you will allow the
overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 13:01:29 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NH1TCU010166
	GroupStudy Mailer; Tue, 23 Sep 2008 13:01:29 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NH1Tdh010164
	for securityxhiddenx; Tue, 23 Sep 2008 13:01:29 -0400
Received: from idc-usa.com (mail.idc-usa.com [64.141.164.12]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NH1SB5010142
  GroupStudy Mailer; Tue, 23 Sep 2008 13:01:29 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: EZVPN client with a router-on-a-stick
Date: Tue, 23 Sep 2008 13:02:21 -0400
Message-ID: <0ECBE0A108FE3F4ABBFED5892EEE36528EF51C@xxxxxxxxxxxxxxxxxx>
In-Reply-To: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
Thread-Topic: EZVPN client with a router-on-a-stick
Thread-Index: AckdnSxAlMIOD8xNSCG/Eufpg8Y6QQAAC+Eg
References: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
From: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>
To: "Bryan Morrow" <alltimed@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8NH1SB5010142
X-ASK-Info: Whitelist match [from arohyans@xxxxxxx\.com] (2008/09/23 13:01:29)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Aaron T. Rohyans" <arohyans@xxxxxxxxxxx>

First thing that comes to my mind would be to setup a Loopback as the
inside interface along with the DMZ/Internet facing interface (being the
outside).  Use normal routing to push VPN traffic to the device.  Then
use PBR on the 1811 to push the incoming traffic back behind its
"inside" Loopback (adding another hop) to make the traffic eligible for
Crypto.

You'd also have to ensure Split Tunneling was setup correctly so as to
allow incoming traffic to DMZ/Internet "outside" interface.

HTH,

Aaron Rohyans
IT Coordinator, IDC-USA
arohyans@xxxxxxxxxxx
317.244.8307 (V)
317.244.4600 (F)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Bryan Morrow
Sent: Tuesday, September 23, 2008 12:08 PM
To: security@xxxxxxxxxxxxxx
Subject: EZVPN client with a router-on-a-stick

Does anyone know if it is possible to use a Cisco 1811 as an EZVPN
client
while the router is setup with only one interface? I have a customer
that
requested their VPN router to us be setup in their DMZ with no public
facing
interface on the 1811 (VPN device). I usually configure our VPN
configurations with an internet facing interface and a DMZ facing
interface.

Thanks,

Bryan


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 13:49:08 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NHn8Ad015074
	GroupStudy Mailer; Tue, 23 Sep 2008 13:49:08 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NHn8ED015072
	for securityxhiddenx; Tue, 23 Sep 2008 13:49:08 -0400
Received: from qb-out-1314.google.com (qb-out-1314.google.com
  [72.14.204.168]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NHmNxH014974 GroupStudy Mailer; Tue, 23 Sep 2008 13:48:24
  -0400
Received: by qb-out-1314.google.com with SMTP id q17so1465894qbq.38 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 10:48:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=dtWuS6UTjbtwy0ZqgBil2LE8IyQAGulMSL/2+70XWjE=;
  b=pBZEFWXciCgtQ4z7PgLK49FFdrKfsTk6gTEZt0vqhB3eAi1ZXaHrzF88FLQrOv5Kq7
  bnljumgw+FRkCK/LH7i3d4nk/eI7AOaeKM/mICYnc75hL9Q0m0geBoDxm0wvtz+8iV4U
  PZZPPjxdJVWzPfuYhVbCGJfqDft9qXqbkbsPc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=tooXb27YQDESnKlmvmekSd36zb8XoQ/Dq+alTAS2JB17fhbko8CZTdjmPM4ip6o/ih
  ESCtbwUr/ZlLPCjppiwddDW+OBGzWWiPQhUG4Alife1tKyYKnnsJXiH0fgAxBlEY53Or
  7AmBEcVoLffnMZ8DlNQAOVeSXCg7QVBqJ3Xd0=
Received: by 10.103.248.1 with SMTP id a1mr3949209mus.57.1222192101087;
  Tue, 23 Sep 2008 10:48:21 -0700 (PDT)
Received: by 10.103.211.5 with HTTP; Tue, 23 Sep 2008 10:48:21 -0700
  (PDT)
Message-ID: <68121f360809231048k43774f4fqd3082646b85aea5b@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 23:18:21 +0530
From: "vishnu Raman" <vishnu.raman1@xxxxxxxxx>
To: "Haloween Boy" <ciscob20@xxxxxxxxx>
Subject: Re: CCIE rack setup
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <9094aab80809221301r2dbbe68em9b157611121c50bd@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message Queued (2008/09/23 13:48:25)
X-ASK-Info: Confirmed by User (2008/09/23 13:49:08)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "vishnu Raman" <vishnu.raman1@xxxxxxxxx>

Hi,

I guess we should expect the changes this month or early next month for
sure. If you have the exam in Jan you will have the VPNC. Its wise to use
rack rentals than to setup your own racks for the current blue print.

Best Regards,
V Raman



On Tue, Sep 23, 2008 at 1:31 AM, Haloween Boy <ciscob20@xxxxxxxxx> wrote:

> Hi Experts,
>
> Can you guide me for setting up a home lab as I am planning to setup after
> 30-40 days.
>
> Regards,
> Cisco Boy


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 14:06:05 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NI65T0017116
	GroupStudy Mailer; Tue, 23 Sep 2008 14:06:05 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NI651H017114
	for securityxhiddenx; Tue, 23 Sep 2008 14:06:05 -0400
Received: from qb-out-1314.google.com (qb-out-1314.google.com
  [72.14.204.171]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NI644a017094 GroupStudy Mailer; Tue, 23 Sep 2008 14:06:04
  -0400
Received: by qb-out-1314.google.com with SMTP id q17so1472502qbq.38 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 11:06:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=kGyYhhRIi44SAPxmLSsQA9m/LXAGh8XZMhzClzt8zQQ=;
  b=s6LNPSH+Kv+IFXzQREGhVQ0T6CVEEPFwe2WDrn0WxD05/VK4jkWRIeR5KZL7Ym+YwH
  aqF5ZSL1uHYrw7QXJvnUS3XLgjB8z3SWuHchlmLk6z6GyvqJKdxBYtPjHCExuxq+M8tq
  Fa2kRTAI6a4ALynHYWdpcWCf6uy0hehXfUJco=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=RdHkADKnrdlvhhfeRIcP83lmpAvvVOjLfsp6jyFwxgSrgtT2Xik7xLhHSJYmgPWUgc
  8uZu3TIbiIIAot21dR0vXIv0cfIQwTty+Oszv5M1UOH0VPNnQOr25GoVP6fH2wTLJRj6
  JQpaZv3ftxed2Fr23i/9M0VjQk5rML4nym7R4=
Received: by 10.103.212.2 with SMTP id o2mr3988495muq.1.1222193161927;
  Tue, 23 Sep 2008 11:06:01 -0700 (PDT)
Received: by 10.103.211.5 with HTTP; Tue, 23 Sep 2008 11:06:01 -0700
  (PDT)
Message-ID: <68121f360809231106m59355bfehafd486eade8d979a@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 23:36:01 +0530
From: "vishnu Raman" <vishnu.raman1@xxxxxxxxx>
To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
Subject: Re: CCIE rack setup
Cc: "Jason W. Miller" <jaymiller5@xxxxxxxxx>,
        "Todd Richards"
  <trichards63@xxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <E76ACA8C13EF1847BC69538B522C3663013DFEAB@xxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <BAY143-W11FE0CF32FBBB563C97602AA4A0@xxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFE40@xxxxxxxxxxxxxxxxx>
  <e22bfc9b0809230858k682486b2j4d28feee5895ba59@xxxxxxxxxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFEAB@xxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from vishnu\.raman1@xxxxx\.com] (2008/09/23 14:06:05)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "vishnu Raman" <vishnu.raman1@xxxxxxxxx>

Yeah you are right, it could be put into action soon.

But since 12.4 IOS has mega of security features when compared to 12.2t
along with the upgrade of other devices like ASA to ver 8 (ssl vpn) and IPS
v 6.
There are lots of new security features to study when the IOS is
upgraded. Therefore chances of giving 6 months time are more.

Anyhow we should expect the changes within a week or two. Hope for the best.

V Raman

On Tue, Sep 23, 2008 at 10:19 PM, Brad Ellis <brad@xxxxxxxxxxxxxx> wrote:

> Actually, I've seen some changes announced and then implemented much
> quicker than 6 months. I've also seen some changes that weren't
> announced implemented in the past (ie, going from 2 to 4 switches!)
> Removing a piece of equipment is something that could happen pretty
> easily - especially the VPN concentrator. What will be more interesting
> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms) in a
> lot of their security racks. They will need to go to XM or ISRs. I
> believe they are heading towards ISRs. I'll try and get confirmation on
> this as well.
>
>
>
> thanks,
>
> Brad Ellis
>
> CCIE#5796 (R&S / Security)
>
> CCSI# 30482
>
> CEO / President
>
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>
> Email: brad@xxxxxxxxxxxxxx
>
> Toll Free: 877-654-2243
>
> Direct: +1-702-968-5100 = Outside the USA
>
> FAX: +1-702-446-8012
>
> YES! We take Cisco Learning Credits!
>
> Training And Remote Racks: http://www.ccbootcamp.com
>
>
>
> ________________________________
>
> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
> Sent: Tuesday, September 23, 2008 8:58 AM
> To: Brad Ellis
> Cc: Todd Richards; security@xxxxxxxxxxxxxx
> Subject: Re: CCIE rack setup
>
>
>
> They only mentioned that it would be coming with no date for
> announcement set as they are still ironing out the details and concerns
> from the other BU's as well as internal to the lab BU. It was also noted
> that per the current policy when they do officially announce it there
> would be the typical 6 month "grace" period for this to take affect for
> future test takers. If they were to annouce it today all canidates would
> have 6 months to study and sit for the lab prior to having the new
> requirements in the lab.
>
>
>
> While I believe you were just mentioning that if a candiate is to just
> now look at purchasing equipment and taking the lab exam later in 2009
> that it would be wise to posture yourself for the known equipment update
> instead of having to shift your focus's and costs down the road.
>
>
>
>
>
> Jay
>
>
>
>
>
>
>
> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
> wrote:
>
> This was said at networkers (cisco live) this year in Orlando. I'll see
> if I can get an official response from Cisco.
>
>
> thanks,
> Brad Ellis
> CCIE#5796 (R&S / Security)
> CCSI# 30482
> CEO / President
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
> Email: brad@xxxxxxxxxxxxxx
> Toll Free: 877-654-2243
> Direct: +1-702-968-5100 = Outside the USA
> FAX: +1-702-446-8012
> YES! We take Cisco Learning Credits!
> Training And Remote Racks: http://www.ccbootcamp.com
> <http://www.ccbootcamp.com/>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>
> Todd Richards
> Sent: Tuesday, September 23, 2008 7:20 AM
> To: Brad Ellis; security@xxxxxxxxxxxxxx
> Subject: RE: CCIE rack setup
>
> Is this confirmed?
>
> >>>However, you wont need a VPN concentrator if you are planning on
> taking
> your lab after Jan 1, 2009.
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Brad
> Ellis
> Sent: Tuesday, September 23, 2008 6:34 AM
> To: Haloween Boy; Cisco certification
> Subject: RE: CCIE rack setup
> You'll want something similar to the following:
> 8-10 Cisco Routers (26xx or 28xx)
> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
> 4.7.x
> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
> Frame-relay
> switch Terminal Server
> 2 Cisco ASA-5510s 7.x
> However, you wont need a VPN concentrator if you are planning on taking
> your
> lab after Jan 1, 2009.
>
> thanks,
> Brad Ellis
> CCIE#5796 (R&S / Security)
> CCSI# 30482
> CEO / President
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
> Email: brad@xxxxxxxxxxxxxx
> Toll Free: 877-654-2243
> Direct: +1-702-968-5100 = Outside the USA
> FAX: +1-702-446-8012
> YES! We take Cisco Learning Credits!
> Training And Remote Racks: http://www.ccbootcamp.com
> <http://www.ccbootcamp.com/>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Haloween Boy
> Sent: Monday, September 22, 2008 1:01 PM
> To: Cisco certification
> Subject: CCIE rack setup
> Hi Experts,
> Can you guide me for setting up a home lab as I am planning to setup
> after
> 30-40 days.
> Regards,
> Cisco Boy
> _________________________________________________________________
> See how Windows connects the people, information, and fun that are part
> of
> your life.
> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>
>
>
>
> --
> Jason W. Miller
> Fred Allen  - "What's on your mind, if you will allow the
> overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 15:45:50 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NJjoCK027641
	GroupStudy Mailer; Tue, 23 Sep 2008 15:45:50 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NJjoEt027639
	for securityxhiddenx; Tue, 23 Sep 2008 15:45:50 -0400
Received: from smtp2.poczta.onet.pl (smtp2.poczta.onet.pl
  [213.180.130.30]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NJjmYn027613 GroupStudy Mailer; Tue, 23 Sep 2008 15:45:49
  -0400
Received: from pmq1.test.onet.pl ([192.168.246.1]:51333 "EHLO
  pmq1.test.onet.pl" rhost-flags-OK-OK-OK-OK) by ps2.test.onet.pl with
  ESMTP id S251753538AbYIWTpkYqZqM convert rfc822-to-8bit (ORCPT
  <rfc822;security@xxxxxxxxxxxxxx>); Tue, 23 Sep 2008 21:45:40 +0200
Received: from 198.160.96.7 by 10.174.16.53 with HTTP; Tue, 23 Sep 2008
  21:45:40 +0200
Date: Tue, 23 Sep 2008 21:45:40 +0200
From: Piotr Kaluzny <stefaan@xxxxx>
Cc: security@xxxxxxxxxxxxxx
To: jaymiller5@xxxxxxxxx, Brad Ellis <brad@xxxxxxxxxxxxxx>
Subject: Re: RE: CCIE rack setup
X-Mailer: onet.poczta
Message-Id: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
In-Reply-To: E76ACA8C13EF1847BC69538B522C3663013DFEAB@xxxxxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2
Content-Transfer-Encoding: 7bit
X-ASK-Info: Whitelist match [from stefaan@xx\.pl] (2008/09/23 15:45:49)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Piotr Kaluzny <stefaan@xxxxx>

Hi,

What I heard a week ago from a very valuable source is that changes are going to come into play somewhere in between few weeks up to two months from that time. This is what MAY appear on 3.0 lab blueprint :

End-of-Life devices will be removed:
-PIX500 and VPN3000 will be removed
-Routers will be replaced with new ISR series
-3550 Switches will be replaced with new 3560
 
Security Lab Exam: Equipment and Software Versions:
-Cisco ISR series running Cisco IOS version 12.4T
-Cisco Catalyst 3560 series switches running 12.2(x)SE
-Cisco ASA 5500 series Firewalls running version 8.x
-Cisco IPS 4240 Appliance Sensor running version 6.x
-Cisco Secure ACS version 4.1

I decided to wait because I don't want to spend money for current WBs. I'd bet 6 months in my situation is a minimum period of time for collecting money for my first attempt and flight, don't even mentioning about Rack Rental.

Regards,
Piotr Kaluzny


"Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a): 
 > Actually, I've seen some changes announced and then implemented much
 > quicker than 6 months. I've also seen some changes that weren't
 > announced implemented in the past (ie, going from 2 to 4 switches!)
 > Removing a piece of equipment is something that could happen pretty
 > easily - especially the VPN concentrator. What will be more interesting
 > is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms) in a
 > lot of their security racks. They will need to go to XM or ISRs. I
 > believe they are heading towards ISRs. I'll try and get confirmation on
 > this as well.
 > 
 > 
 > 
 > thanks,
 > 
 > Brad Ellis
 > 
 > CCIE#5796 (R&S / Security)
 > 
 > CCSI# 30482
 > 
 > CEO / President
 > 
 > CCBOOTCAMP - A Cisco Sponsored Organization (SO)
 > 
 > Email: brad@xxxxxxxxxxxxxx
 > 
 > Toll Free: 877-654-2243
 > 
 > Direct: +1-702-968-5100 = Outside the USA
 > 
 > FAX: +1-702-446-8012
 > 
 > YES! We take Cisco Learning Credits!
 > 
 > Training And Remote Racks: http://www.ccbootcamp.com
 > 
 > 
 > 
 > ________________________________
 > 
 > From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
 > Sent: Tuesday, September 23, 2008 8:58 AM
 > To: Brad Ellis
 > Cc: Todd Richards; security@xxxxxxxxxxxxxx
 > Subject: Re: CCIE rack setup
 > 
 > 
 > 
 > They only mentioned that it would be coming with no date for
 > announcement set as they are still ironing out the details and concerns
 > from the other BU's as well as internal to the lab BU. It was also noted
 > that per the current policy when they do officially announce it there
 > would be the typical 6 month "grace" period for this to take affect for
 > future test takers. If they were to annouce it today all canidates would
 > have 6 months to study and sit for the lab prior to having the new
 > requirements in the lab.
 > 
 > 
 > 
 > While I believe you were just mentioning that if a candiate is to just
 > now look at purchasing equipment and taking the lab exam later in 2009
 > that it would be wise to posture yourself for the known equipment update
 > instead of having to shift your focus's and costs down the road.
 > 
 > 
 > 
 > 
 > 
 > Jay
 > 
 > 
 > 
 > 
 > 
 > 
 > 
 > On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
 > wrote:
 > 
 > This was said at networkers (cisco live) this year in Orlando. I'll see
 > if I can get an official response from Cisco.
 > 
 > 
 > thanks,
 > Brad Ellis
 > CCIE#5796 (R&S / Security)
 > CCSI# 30482
 > CEO / President
 > CCBOOTCAMP - A Cisco Sponsored Organization (SO)
 > Email: brad@xxxxxxxxxxxxxx
 > Toll Free: 877-654-2243
 > Direct: +1-702-968-5100 = Outside the USA
 > FAX: +1-702-446-8012
 > YES! We take Cisco Learning Credits!
 > Training And Remote Racks: http://www.ccbootcamp.com
 > <http://www.ccbootcamp.com/>
 > 
 > -----Original Message-----
 > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
 > 
 > Todd Richards
 > Sent: Tuesday, September 23, 2008 7:20 AM
 > To: Brad Ellis; security@xxxxxxxxxxxxxx
 > Subject: RE: CCIE rack setup
 > 
 > Is this confirmed?
 > 
 > >>>However, you wont need a VPN concentrator if you are planning on
 > taking
 > your lab after Jan 1, 2009.
 > 
 > -----Original Message-----
 > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
 > Brad
 > Ellis
 > Sent: Tuesday, September 23, 2008 6:34 AM
 > To: Haloween Boy; Cisco certification
 > Subject: RE: CCIE rack setup
 > You'll want something similar to the following:
 > 8-10 Cisco Routers (26xx or 28xx)
 > Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
 > 4.7.x
 > Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
 > Frame-relay
 > switch Terminal Server
 > 2 Cisco ASA-5510s 7.x
 > However, you wont need a VPN concentrator if you are planning on taking
 > your
 > lab after Jan 1, 2009.
 > 
 > thanks,
 > Brad Ellis
 > CCIE#5796 (R&S / Security)
 > CCSI# 30482
 > CEO / President
 > CCBOOTCAMP - A Cisco Sponsored Organization (SO)
 > Email: brad@xxxxxxxxxxxxxx
 > Toll Free: 877-654-2243
 > Direct: +1-702-968-5100 = Outside the USA
 > FAX: +1-702-446-8012
 > YES! We take Cisco Learning Credits!
 > Training And Remote Racks: http://www.ccbootcamp.com
 > <http://www.ccbootcamp.com/>
 > -----Original Message-----
 > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
 > Haloween Boy
 > Sent: Monday, September 22, 2008 1:01 PM
 > To: Cisco certification
 > Subject: CCIE rack setup
 > Hi Experts,
 > Can you guide me for setting up a home lab as I am planning to setup
 > after
 > 30-40 days.
 > Regards,
 > Cisco Boy
 > _________________________________________________________________
 > See how Windows connects the people, information, and fun that are part
 > of
 > your life.
 > http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
 > 
 > 
 > 
 > 
 > --
 > Jason W. Miller
 > Fred Allen  - "What's on your mind, if you will allow the
 > overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 16:17:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NKHCrW032227
	GroupStudy Mailer; Tue, 23 Sep 2008 16:17:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NKHC6v032225
	for securityxhiddenx; Tue, 23 Sep 2008 16:17:12 -0400
Received: from fk-out-0910.google.com (fk-out-0910.google.com
  [209.85.128.190]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NKHAAH032205 GroupStudy Mailer; Tue, 23 Sep 2008 16:17:11
  -0400
Received: by fk-out-0910.google.com with SMTP id f33so2614459fkf.14 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 13:17:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=bIv28OMEkRtdVmrdW08yTYB1TQ7SeE3JfTpqTL08w8I=;
  b=twT1nDdxJg1/9yout6XeNCyBTmLTyUHEOkbk4fRvSimAFYGV5YdgPUhC15xduC6KaN
  8KdgC3srh9g5rhXDgICZnYgQXTrO2xsZgoaK7rT5fyJDy0tY+FZZnBz3Mg2BtXLiOy7b
  pUfIYDlTKRIQOMp8PmekllVjxL/ucNAw6e0+0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=vaQRR/GkUCP7YHCrUS/wzCyOr/kf+n0kDGc5Bz1qPEoDUlVJIM0Hkk1uc0B6RuIR5F
  129j2UiYx1lknU8vcYfjT4uZ2v/QpsgfanEAwiBMuDZ1fb2Or+T2Y0cjw9GqR5stqmXx
  oVrYTxnLhPCBaliSNfNIakgBKplpEpDFy233M=
Received: by 10.187.216.15 with SMTP id t15mr900145faq.68.1222201027756;
  Tue, 23 Sep 2008 13:17:07 -0700 (PDT)
Received: from dhcp-guest-req01-64-102-168-196.cisco.com
  (dhcp-guest-req01-64-102-168-196.cisco.com [64.102.168.196]) by
  mx.google.com with ESMTPS id g17sm719197nfd.3.2008.09.23.13.17.03
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Tue, 23 Sep 2008 13:17:05 -0700
  (PDT)
Cc: jaymiller5@xxxxxxxxx, Brad Ellis <brad@xxxxxxxxxxxxxx>,
        Cisco
  certification <security@xxxxxxxxxxxxxx>
Message-Id: <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Piotr Kaluzny <stefaan@xxxxx>
In-Reply-To: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v929.2)
Subject: Re: CCIE rack setup
Date: Tue, 23 Sep 2008 16:17:00 -0400
References: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/23 16:17:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

BTW- Yusuf Bhaiji told me directly at Cisco Live in Orlando that you  
will have 6 months from the announcement before the change takes  
place.  Now, who knows how true that information is seeing as how it  
isn't an official announcement but he is probably one of the more  
"trusted" sources out there.

He also told me that the new blueprint, 3.0, will include the obvious  
8.x asa with the PIX being removed, the 6.x IPS code and 12.4 IOS.  He  
also said that there are spots in the topology available so you may  
see a MARS and/or a NAC appliance.



Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 23, 2008, at 3:45 PM, Piotr Kaluzny wrote:

> Hi,
>
> What I heard a week ago from a very valuable source is that changes  
> are going to come into play somewhere in between few weeks up to two  
> months from that time. This is what MAY appear on 3.0 lab blueprint :
>
> End-of-Life devices will be removed:
> -PIX500 and VPN3000 will be removed
> -Routers will be replaced with new ISR series
> -3550 Switches will be replaced with new 3560
>
> Security Lab Exam: Equipment and Software Versions:
> -Cisco ISR series running Cisco IOS version 12.4T
> -Cisco Catalyst 3560 series switches running 12.2(x)SE
> -Cisco ASA 5500 series Firewalls running version 8.x
> -Cisco IPS 4240 Appliance Sensor running version 6.x
> -Cisco Secure ACS version 4.1
>
> I decided to wait because I don't want to spend money for current  
> WBs. I'd bet 6 months in my situation is a minimum period of time  
> for collecting money for my first attempt and flight, don't even  
> mentioning about Rack Rental.
>
> Regards,
> Piotr Kaluzny
>
>
> "Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a):
>> Actually, I've seen some changes announced and then implemented much
>> quicker than 6 months. I've also seen some changes that weren't
>> announced implemented in the past (ie, going from 2 to 4 switches!)
>> Removing a piece of equipment is something that could happen pretty
>> easily - especially the VPN concentrator. What will be more  
>> interesting
>> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms)  
>> in a
>> lot of their security racks. They will need to go to XM or ISRs. I
>> believe they are heading towards ISRs. I'll try and get  
>> confirmation on
>> this as well.
>>
>>
>>
>> thanks,
>>
>> Brad Ellis
>>
>> CCIE#5796 (R&S / Security)
>>
>> CCSI# 30482
>>
>> CEO / President
>>
>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>
>> Email: brad@xxxxxxxxxxxxxx
>>
>> Toll Free: 877-654-2243
>>
>> Direct: +1-702-968-5100 = Outside the USA
>>
>> FAX: +1-702-446-8012
>>
>> YES! We take Cisco Learning Credits!
>>
>> Training And Remote Racks: http://www.ccbootcamp.com
>>
>>
>>
>> ________________________________
>>
>> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
>> Sent: Tuesday, September 23, 2008 8:58 AM
>> To: Brad Ellis
>> Cc: Todd Richards; security@xxxxxxxxxxxxxx
>> Subject: Re: CCIE rack setup
>>
>>
>>
>> They only mentioned that it would be coming with no date for
>> announcement set as they are still ironing out the details and  
>> concerns
>> from the other BU's as well as internal to the lab BU. It was also  
>> noted
>> that per the current policy when they do officially announce it there
>> would be the typical 6 month "grace" period for this to take affect  
>> for
>> future test takers. If they were to annouce it today all canidates  
>> would
>> have 6 months to study and sit for the lab prior to having the new
>> requirements in the lab.
>>
>>
>>
>> While I believe you were just mentioning that if a candiate is to  
>> just
>> now look at purchasing equipment and taking the lab exam later in  
>> 2009
>> that it would be wise to posture yourself for the known equipment  
>> update
>> instead of having to shift your focus's and costs down the road.
>>
>>
>>
>>
>>
>> Jay
>>
>>
>>
>>
>>
>>
>>
>> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
>> wrote:
>>
>> This was said at networkers (cisco live) this year in Orlando. I'll  
>> see
>> if I can get an official response from Cisco.
>>
>>
>> thanks,
>> Brad Ellis
>> CCIE#5796 (R&S / Security)
>> CCSI# 30482
>> CEO / President
>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>> Email: brad@xxxxxxxxxxxxxx
>> Toll Free: 877-654-2243
>> Direct: +1-702-968-5100 = Outside the USA
>> FAX: +1-702-446-8012
>> YES! We take Cisco Learning Credits!
>> Training And Remote Racks: http://www.ccbootcamp.com
>> <http://www.ccbootcamp.com/>
>>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
>> Behalf Of
>>
>> Todd Richards
>> Sent: Tuesday, September 23, 2008 7:20 AM
>> To: Brad Ellis; security@xxxxxxxxxxxxxx
>> Subject: RE: CCIE rack setup
>>
>> Is this confirmed?
>>
>>>>> However, you wont need a VPN concentrator if you are planning on
>> taking
>> your lab after Jan 1, 2009.
>>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
>> Behalf Of
>> Brad
>> Ellis
>> Sent: Tuesday, September 23, 2008 6:34 AM
>> To: Haloween Boy; Cisco certification
>> Subject: RE: CCIE rack setup
>> You'll want something similar to the following:
>> 8-10 Cisco Routers (26xx or 28xx)
>> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005  
>> Concentrator
>> 4.7.x
>> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
>> Frame-relay
>> switch Terminal Server
>> 2 Cisco ASA-5510s 7.x
>> However, you wont need a VPN concentrator if you are planning on  
>> taking
>> your
>> lab after Jan 1, 2009.
>>
>> thanks,
>> Brad Ellis
>> CCIE#5796 (R&S / Security)
>> CCSI# 30482
>> CEO / President
>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>> Email: brad@xxxxxxxxxxxxxx
>> Toll Free: 877-654-2243
>> Direct: +1-702-968-5100 = Outside the USA
>> FAX: +1-702-446-8012
>> YES! We take Cisco Learning Credits!
>> Training And Remote Racks: http://www.ccbootcamp.com
>> <http://www.ccbootcamp.com/>
>> -----Original Message-----
>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
>> Behalf Of
>> Haloween Boy
>> Sent: Monday, September 22, 2008 1:01 PM
>> To: Cisco certification
>> Subject: CCIE rack setup
>> Hi Experts,
>> Can you guide me for setting up a home lab as I am planning to setup
>> after
>> 30-40 days.
>> Regards,
>> Cisco Boy
>> _________________________________________________________________
>> See how Windows connects the people, information, and fun that are  
>> part
>> of
>> your life.
>> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>>
>>
>>
>>
>> --
>> Jason W. Miller
>> Fred Allen  - "What's on your mind, if you will allow the
>> overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 17:50:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NLokTT007514
	GroupStudy Mailer; Tue, 23 Sep 2008 17:50:46 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NLokZ7007512
	for securityxhiddenx; Tue, 23 Sep 2008 17:50:46 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.246]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8NLojIk007460 GroupStudy Mailer; Tue, 23 Sep 2008 17:50:45
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2351459rvb.54 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 14:50:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:reply-to
  :to:subject:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=3dGE7N/y1pNdMcBqJyfPamkZ4O4G07oXQDdSNPpwcm8=;
  b=DpihA4PUZyDZTbu6AexzxwLCS56xnNQUCmy1GAsFi22tzoZxB0bfRWYdgnReVx95CT
  RYOv5RW4GZ0YLQraRD1w8LkVU55amizkngmn4WUnezh+Csetd9NvsSZTFsxJl6cg00De
  8cMinn85s03EeExNtBEkwvWA4t4iGjxhwlyo8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma;
  h=message-id:date:from:reply-to:to:subject:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=iLmoPnmZXnFdoTL/FZtNgmD6X95gNUIu3mcqi2LZ2lcp9CmQ/E2xux8U+bbp2LBgIo
  u9CnDGkXU0qM2TkVarxjka2E8OYA0vTaxvY/w/SJzGFyZ/HX5YzYyKCn5pbRIY7VqM58
  uUjI231nsAjTbp5SuDPo8BmEt+ES/E/AGVvko=
Received: by 10.141.79.12 with SMTP id
  g12mr3018173rvl.182.1222206641870; Tue, 23 Sep 2008 14:50:41 -0700
  (PDT)
Received: by 10.141.153.11 with HTTP; Tue, 23 Sep 2008 14:50:41 -0700
  (PDT)
Message-ID: <259c924f0809231450m1af9fb0xda749ff8af72f1a8@xxxxxxxxxxxxxx>
Date: Tue, 23 Sep 2008 22:50:41 +0100
From: Steve <threeseashells@xxxxxxxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Re: CCIE rack setup
In-Reply-To: <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
  <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx>
X-ASK-Info: Whitelist match [from threeseashells@xxxxx\.com] (2008/09/23 17:50:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Steve <threeseashells@xxxxxxxxxxxxxx>

>From what has been said, it looks like Cisco will be using the 6.x IPS
code and the 4240 has been mentioned. This is way out of my financial
grasp, but I have a 4215 with 4 port upgrade card, and though it has
just gone EOS, it's still supported for sig updates etc until 2011,
and it can run the 6.x code.

With the added card, the only functional difference looks like the
throughput capability, and I wouldn't think that would matter too much
in a lab. So would that be suitable if 6.x IPS comes into the 3.0
blueprint?


2008/9/23 Brandon Carroll <brandon.carroll@xxxxxxxxxxx>:
> BTW- Yusuf Bhaiji told me directly at Cisco Live in Orlando that you will
> have 6 months from the announcement before the change takes place.  Now, who
> knows how true that information is seeing as how it isn't an official
> announcement but he is probably one of the more "trusted" sources out there.
>
> He also told me that the new blueprint, 3.0, will include the obvious 8.x
> asa with the PIX being removed, the 6.x IPS code and 12.4 IOS.  He also said
> that there are spots in the topology available so you may see a MARS and/or
> a NAC appliance.
>
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 23, 2008, at 3:45 PM, Piotr Kaluzny wrote:
>
>> Hi,
>>
>> What I heard a week ago from a very valuable source is that changes are
>> going to come into play somewhere in between few weeks up to two months from
>> that time. This is what MAY appear on 3.0 lab blueprint :
>>
>> End-of-Life devices will be removed:
>> -PIX500 and VPN3000 will be removed
>> -Routers will be replaced with new ISR series
>> -3550 Switches will be replaced with new 3560
>>
>> Security Lab Exam: Equipment and Software Versions:
>> -Cisco ISR series running Cisco IOS version 12.4T
>> -Cisco Catalyst 3560 series switches running 12.2(x)SE
>> -Cisco ASA 5500 series Firewalls running version 8.x
>> -Cisco IPS 4240 Appliance Sensor running version 6.x
>> -Cisco Secure ACS version 4.1
>>
>> I decided to wait because I don't want to spend money for current WBs. I'd
>> bet 6 months in my situation is a minimum period of time for collecting
>> money for my first attempt and flight, don't even mentioning about Rack
>> Rental.
>>
>> Regards,
>> Piotr Kaluzny
>>
>>
>> "Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a):
>>>
>>> Actually, I've seen some changes announced and then implemented much
>>> quicker than 6 months. I've also seen some changes that weren't
>>> announced implemented in the past (ie, going from 2 to 4 switches!)
>>> Removing a piece of equipment is something that could happen pretty
>>> easily - especially the VPN concentrator. What will be more interesting
>>> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms) in a
>>> lot of their security racks. They will need to go to XM or ISRs. I
>>> believe they are heading towards ISRs. I'll try and get confirmation on
>>> this as well.
>>>
>>>
>>>
>>> thanks,
>>>
>>> Brad Ellis
>>>
>>> CCIE#5796 (R&S / Security)
>>>
>>> CCSI# 30482
>>>
>>> CEO / President
>>>
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>
>>> Email: brad@xxxxxxxxxxxxxx
>>>
>>> Toll Free: 877-654-2243
>>>
>>> Direct: +1-702-968-5100 = Outside the USA
>>>
>>> FAX: +1-702-446-8012
>>>
>>> YES! We take Cisco Learning Credits!
>>>
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>
>>>
>>>
>>> ________________________________
>>>
>>> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
>>> Sent: Tuesday, September 23, 2008 8:58 AM
>>> To: Brad Ellis
>>> Cc: Todd Richards; security@xxxxxxxxxxxxxx
>>> Subject: Re: CCIE rack setup
>>>
>>>
>>>
>>> They only mentioned that it would be coming with no date for
>>> announcement set as they are still ironing out the details and concerns
>>> from the other BU's as well as internal to the lab BU. It was also noted
>>> that per the current policy when they do officially announce it there
>>> would be the typical 6 month "grace" period for this to take affect for
>>> future test takers. If they were to annouce it today all canidates would
>>> have 6 months to study and sit for the lab prior to having the new
>>> requirements in the lab.
>>>
>>>
>>>
>>> While I believe you were just mentioning that if a candiate is to just
>>> now look at purchasing equipment and taking the lab exam later in 2009
>>> that it would be wise to posture yourself for the known equipment update
>>> instead of having to shift your focus's and costs down the road.
>>>
>>>
>>>
>>>
>>>
>>> Jay
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
>>> wrote:
>>>
>>> This was said at networkers (cisco live) this year in Orlando. I'll see
>>> if I can get an official response from Cisco.
>>>
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>>>
>>> Todd Richards
>>> Sent: Tuesday, September 23, 2008 7:20 AM
>>> To: Brad Ellis; security@xxxxxxxxxxxxxx
>>> Subject: RE: CCIE rack setup
>>>
>>> Is this confirmed?
>>>
>>>>>> However, you wont need a VPN concentrator if you are planning on
>>>
>>> taking
>>> your lab after Jan 1, 2009.
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>>> Brad
>>> Ellis
>>> Sent: Tuesday, September 23, 2008 6:34 AM
>>> To: Haloween Boy; Cisco certification
>>> Subject: RE: CCIE rack setup
>>> You'll want something similar to the following:
>>> 8-10 Cisco Routers (26xx or 28xx)
>>> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005 Concentrator
>>> 4.7.x
>>> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
>>> Frame-relay
>>> switch Terminal Server
>>> 2 Cisco ASA-5510s 7.x
>>> However, you wont need a VPN concentrator if you are planning on taking
>>> your
>>> lab after Jan 1, 2009.
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
>>> Haloween Boy
>>> Sent: Monday, September 22, 2008 1:01 PM
>>> To: Cisco certification
>>> Subject: CCIE rack setup
>>> Hi Experts,
>>> Can you guide me for setting up a home lab as I am planning to setup
>>> after
>>> 30-40 days.
>>> Regards,
>>> Cisco Boy
>>> _________________________________________________________________
>>> See how Windows connects the people, information, and fun that are part
>>> of
>>> your life.
>>> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>>>
>>>
>>>
>>>
>>> --
>>> Jason W. Miller
>>> Fred Allen  - "What's on your mind, if you will allow the
>>> overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 19:12:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8NNC4ps013200
	GroupStudy Mailer; Tue, 23 Sep 2008 19:12:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8NNC40s013198
	for securityxhiddenx; Tue, 23 Sep 2008 19:12:04 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8NNA3hS013098 GroupStudy Mailer; Tue, 23 Sep 2008 19:10:05 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 16:09:51 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C3663013DFFA6@xxxxxxxxxxxxxxxxx>
In-Reply-To: <259c924f0809231450m1af9fb0xda749ff8af72f1a8@xxxxxxxxxxxxxx>
Thread-Topic: CCIE rack setup
thread-index: Ackdy0bKOcYtU+ZQTty/YFN9crsJhAABihrw
References: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
   <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx>
  <259c924f0809231450m1af9fb0xda749ff8af72f1a8@xxxxxxxxxxxxxx>
From: "Keith Barker" <kbarker@xxxxxxxxxxxxxx>
To: "Steve" <threeseashells@xxxxxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8NNA3hS013098
X-ASK-Info: Message Queued (2008/09/23 19:10:07)
X-ASK-Info: Confirmed by User (2008/09/23 19:12:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Keith Barker" <kbarker@xxxxxxxxxxxxxx>

Steve-

Version 6 of IPS is version 6, regardless of the 4200 platform (as long
as it has multiple sensing interfaces like yours does).   

*** HOWEVER ***  the 4215 does NOT support the 6.0 feature of multiple
virtual sensors.    This is the feature that allows you to use one set
of signature definitions and/or rules in one part of the network, and a
different set of signatures and/or rules in another by assigning
sigs/rules/interfaces to different virtual sensors.     The virtual
sensor will be the only limiting step of using the 4215 for practice.

Here is a link that specifies which models support virtualization:

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli
/cliAnEng.html


Best wishes-
 
Keith Barker
CCIE R&S / Security
Instructor / CCSI
CCBOOTCAMP - A Cisco Sponsored Organization (SO)

702.968.5100 Office 
877.654.2243 Toll Free
702.446.0357 Fax
KBarker@xxxxxxxxxxxxxx
 

www.ccbootcamp.com (Cisco Training and Advanced Technology Rental Racks)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Steve
Sent: Tuesday, September 23, 2008 2:51 PM
To: Cisco certification
Subject: Re: CCIE rack setup

>From what has been said, it looks like Cisco will be using the 6.x IPS
code and the 4240 has been mentioned. This is way out of my financial
grasp, but I have a 4215 with 4 port upgrade card, and though it has
just gone EOS, it's still supported for sig updates etc until 2011,
and it can run the 6.x code.

With the added card, the only functional difference looks like the
throughput capability, and I wouldn't think that would matter too much
in a lab. So would that be suitable if 6.x IPS comes into the 3.0
blueprint?


2008/9/23 Brandon Carroll <brandon.carroll@xxxxxxxxxxx>:
> BTW- Yusuf Bhaiji told me directly at Cisco Live in Orlando that you
will
> have 6 months from the announcement before the change takes place.
Now, who
> knows how true that information is seeing as how it isn't an official
> announcement but he is probably one of the more "trusted" sources out
there.
>
> He also told me that the new blueprint, 3.0, will include the obvious
8.x
> asa with the PIX being removed, the 6.x IPS code and 12.4 IOS.  He
also said
> that there are spots in the topology available so you may see a MARS
and/or
> a NAC appliance.
>
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 23, 2008, at 3:45 PM, Piotr Kaluzny wrote:
>
>> Hi,
>>
>> What I heard a week ago from a very valuable source is that changes
are
>> going to come into play somewhere in between few weeks up to two
months from
>> that time. This is what MAY appear on 3.0 lab blueprint :
>>
>> End-of-Life devices will be removed:
>> -PIX500 and VPN3000 will be removed
>> -Routers will be replaced with new ISR series
>> -3550 Switches will be replaced with new 3560
>>
>> Security Lab Exam: Equipment and Software Versions:
>> -Cisco ISR series running Cisco IOS version 12.4T
>> -Cisco Catalyst 3560 series switches running 12.2(x)SE
>> -Cisco ASA 5500 series Firewalls running version 8.x
>> -Cisco IPS 4240 Appliance Sensor running version 6.x
>> -Cisco Secure ACS version 4.1
>>
>> I decided to wait because I don't want to spend money for current
WBs. I'd
>> bet 6 months in my situation is a minimum period of time for
collecting
>> money for my first attempt and flight, don't even mentioning about
Rack
>> Rental.
>>
>> Regards,
>> Piotr Kaluzny
>>
>>
>> "Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a):
>>>
>>> Actually, I've seen some changes announced and then implemented much
>>> quicker than 6 months. I've also seen some changes that weren't
>>> announced implemented in the past (ie, going from 2 to 4 switches!)
>>> Removing a piece of equipment is something that could happen pretty
>>> easily - especially the VPN concentrator. What will be more
interesting
>>> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms)
in a
>>> lot of their security racks. They will need to go to XM or ISRs. I
>>> believe they are heading towards ISRs. I'll try and get confirmation
on
>>> this as well.
>>>
>>>
>>>
>>> thanks,
>>>
>>> Brad Ellis
>>>
>>> CCIE#5796 (R&S / Security)
>>>
>>> CCSI# 30482
>>>
>>> CEO / President
>>>
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>
>>> Email: brad@xxxxxxxxxxxxxx
>>>
>>> Toll Free: 877-654-2243
>>>
>>> Direct: +1-702-968-5100 = Outside the USA
>>>
>>> FAX: +1-702-446-8012
>>>
>>> YES! We take Cisco Learning Credits!
>>>
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>
>>>
>>>
>>> ________________________________
>>>
>>> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
>>> Sent: Tuesday, September 23, 2008 8:58 AM
>>> To: Brad Ellis
>>> Cc: Todd Richards; security@xxxxxxxxxxxxxx
>>> Subject: Re: CCIE rack setup
>>>
>>>
>>>
>>> They only mentioned that it would be coming with no date for
>>> announcement set as they are still ironing out the details and
concerns
>>> from the other BU's as well as internal to the lab BU. It was also
noted
>>> that per the current policy when they do officially announce it
there
>>> would be the typical 6 month "grace" period for this to take affect
for
>>> future test takers. If they were to annouce it today all canidates
would
>>> have 6 months to study and sit for the lab prior to having the new
>>> requirements in the lab.
>>>
>>>
>>>
>>> While I believe you were just mentioning that if a candiate is to
just
>>> now look at purchasing equipment and taking the lab exam later in
2009
>>> that it would be wise to posture yourself for the known equipment
update
>>> instead of having to shift your focus's and costs down the road.
>>>
>>>
>>>
>>>
>>>
>>> Jay
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
>>> wrote:
>>>
>>> This was said at networkers (cisco live) this year in Orlando. I'll
see
>>> if I can get an official response from Cisco.
>>>
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>>
>>> Todd Richards
>>> Sent: Tuesday, September 23, 2008 7:20 AM
>>> To: Brad Ellis; security@xxxxxxxxxxxxxx
>>> Subject: RE: CCIE rack setup
>>>
>>> Is this confirmed?
>>>
>>>>>> However, you wont need a VPN concentrator if you are planning on
>>>
>>> taking
>>> your lab after Jan 1, 2009.
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>> Brad
>>> Ellis
>>> Sent: Tuesday, September 23, 2008 6:34 AM
>>> To: Haloween Boy; Cisco certification
>>> Subject: RE: CCIE rack setup
>>> You'll want something similar to the following:
>>> 8-10 Cisco Routers (26xx or 28xx)
>>> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005
Concentrator
>>> 4.7.x
>>> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
>>> Frame-relay
>>> switch Terminal Server
>>> 2 Cisco ASA-5510s 7.x
>>> However, you wont need a VPN concentrator if you are planning on
taking
>>> your
>>> lab after Jan 1, 2009.
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>> Haloween Boy
>>> Sent: Monday, September 22, 2008 1:01 PM
>>> To: Cisco certification
>>> Subject: CCIE rack setup
>>> Hi Experts,
>>> Can you guide me for setting up a home lab as I am planning to setup
>>> after
>>> 30-40 days.
>>> Regards,
>>> Cisco Boy
>>> _________________________________________________________________
>>> See how Windows connects the people, information, and fun that are
part
>>> of
>>> your life.
>>> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>>>
>>>
>>>
>>>
>>> --
>>> Jason W. Miller
>>> Fred Allen  - "What's on your mind, if you will allow the
>>> overstatement?"


From security-owner@xxxxxxxxxxxxxx Tue Sep 23 20:51:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8O0plDT021485
	GroupStudy Mailer; Tue, 23 Sep 2008 20:51:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8O0plCk021483
	for securityxhiddenx; Tue, 23 Sep 2008 20:51:47 -0400
Received: from qb-out-1314.google.com (qb-out-1314.google.com
  [72.14.204.171]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8O0pjTa021462 GroupStudy Mailer; Tue, 23 Sep 2008 20:51:46
  -0400
Received: by qb-out-1314.google.com with SMTP id q17so1591248qbq.38 for
  <security@xxxxxxxxxxxxxx>; Tue, 23 Sep 2008 17:51:41 -0700 (PDT)
Received: by 10.114.192.17 with SMTP id
  p17mr7279386waf.29.1222217501002; Tue, 23 Sep 2008 17:51:41 -0700
  (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id z15sm2192890pod.2.2008.09.23.17.51.37
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Tue, 23 Sep 2008 17:51:39 -0700
  (PDT)
To: "'Keith Barker'" <kbarker@xxxxxxxxxxxxxx>,
        "'Steve'"
  <threeseashells@xxxxxxxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
References: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
    <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx> 
  <259c924f0809231450m1af9fb0xda749ff8af72f1a8@xxxxxxxxxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFFA6@xxxxxxxxxxxxxxxxx>
In-Reply-To: <E76ACA8C13EF1847BC69538B522C3663013DFFA6@xxxxxxxxxxxxxxxxx>
Subject: RE: CCIE rack setup
Date: Tue, 23 Sep 2008 17:51:29 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAAknIBYkxZhEsA2d5QyVdfABAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
thread-index: Ackdy0bKOcYtU+ZQTty/YFN9crsJhAABihrwAAN9JOA=
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8O0pjTa021462
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/23 20:51:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Thanks Keith for the valuable information :)
I'd like to welcome you in Security GS as well


BEST REGARDS,

RAMY SISY 



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Keith Barker
Sent: Tuesday, September 23, 2008 4:10 PM
To: Steve; Cisco certification
Subject: RE: CCIE rack setup

Steve-

Version 6 of IPS is version 6, regardless of the 4200 platform (as long
as it has multiple sensing interfaces like yours does).   

*** HOWEVER ***  the 4215 does NOT support the 6.0 feature of multiple
virtual sensors.    This is the feature that allows you to use one set
of signature definitions and/or rules in one part of the network, and a
different set of signatures and/or rules in another by assigning
sigs/rules/interfaces to different virtual sensors.     The virtual
sensor will be the only limiting step of using the 4215 for practice.

Here is a link that specifies which models support virtualization:

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli
/cliAnEng.html


Best wishes-
 
Keith Barker
CCIE R&S / Security
Instructor / CCSI
CCBOOTCAMP - A Cisco Sponsored Organization (SO)

702.968.5100 Office 
877.654.2243 Toll Free
702.446.0357 Fax
KBarker@xxxxxxxxxxxxxx
 

www.ccbootcamp.com (Cisco Training and Advanced Technology Rental Racks)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Steve
Sent: Tuesday, September 23, 2008 2:51 PM
To: Cisco certification
Subject: Re: CCIE rack setup

>From what has been said, it looks like Cisco will be using the 6.x IPS
code and the 4240 has been mentioned. This is way out of my financial
grasp, but I have a 4215 with 4 port upgrade card, and though it has
just gone EOS, it's still supported for sig updates etc until 2011,
and it can run the 6.x code.

With the added card, the only functional difference looks like the
throughput capability, and I wouldn't think that would matter too much
in a lab. So would that be suitable if 6.x IPS comes into the 3.0
blueprint?


2008/9/23 Brandon Carroll <brandon.carroll@xxxxxxxxxxx>:
> BTW- Yusuf Bhaiji told me directly at Cisco Live in Orlando that you
will
> have 6 months from the announcement before the change takes place.
Now, who
> knows how true that information is seeing as how it isn't an official
> announcement but he is probably one of the more "trusted" sources out
there.
>
> He also told me that the new blueprint, 3.0, will include the obvious
8.x
> asa with the PIX being removed, the 6.x IPS code and 12.4 IOS.  He
also said
> that there are spots in the topology available so you may see a MARS
and/or
> a NAC appliance.
>
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 23, 2008, at 3:45 PM, Piotr Kaluzny wrote:
>
>> Hi,
>>
>> What I heard a week ago from a very valuable source is that changes
are
>> going to come into play somewhere in between few weeks up to two
months from
>> that time. This is what MAY appear on 3.0 lab blueprint :
>>
>> End-of-Life devices will be removed:
>> -PIX500 and VPN3000 will be removed
>> -Routers will be replaced with new ISR series
>> -3550 Switches will be replaced with new 3560
>>
>> Security Lab Exam: Equipment and Software Versions:
>> -Cisco ISR series running Cisco IOS version 12.4T
>> -Cisco Catalyst 3560 series switches running 12.2(x)SE
>> -Cisco ASA 5500 series Firewalls running version 8.x
>> -Cisco IPS 4240 Appliance Sensor running version 6.x
>> -Cisco Secure ACS version 4.1
>>
>> I decided to wait because I don't want to spend money for current
WBs. I'd
>> bet 6 months in my situation is a minimum period of time for
collecting
>> money for my first attempt and flight, don't even mentioning about
Rack
>> Rental.
>>
>> Regards,
>> Piotr Kaluzny
>>
>>
>> "Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a):
>>>
>>> Actually, I've seen some changes announced and then implemented much
>>> quicker than 6 months. I've also seen some changes that weren't
>>> announced implemented in the past (ie, going from 2 to 4 switches!)
>>> Removing a piece of equipment is something that could happen pretty
>>> easily - especially the VPN concentrator. What will be more
interesting
>>> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms)
in a
>>> lot of their security racks. They will need to go to XM or ISRs. I
>>> believe they are heading towards ISRs. I'll try and get confirmation
on
>>> this as well.
>>>
>>>
>>>
>>> thanks,
>>>
>>> Brad Ellis
>>>
>>> CCIE#5796 (R&S / Security)
>>>
>>> CCSI# 30482
>>>
>>> CEO / President
>>>
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>
>>> Email: brad@xxxxxxxxxxxxxx
>>>
>>> Toll Free: 877-654-2243
>>>
>>> Direct: +1-702-968-5100 = Outside the USA
>>>
>>> FAX: +1-702-446-8012
>>>
>>> YES! We take Cisco Learning Credits!
>>>
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>
>>>
>>>
>>> ________________________________
>>>
>>> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
>>> Sent: Tuesday, September 23, 2008 8:58 AM
>>> To: Brad Ellis
>>> Cc: Todd Richards; security@xxxxxxxxxxxxxx
>>> Subject: Re: CCIE rack setup
>>>
>>>
>>>
>>> They only mentioned that it would be coming with no date for
>>> announcement set as they are still ironing out the details and
concerns
>>> from the other BU's as well as internal to the lab BU. It was also
noted
>>> that per the current policy when they do officially announce it
there
>>> would be the typical 6 month "grace" period for this to take affect
for
>>> future test takers. If they were to annouce it today all canidates
would
>>> have 6 months to study and sit for the lab prior to having the new
>>> requirements in the lab.
>>>
>>>
>>>
>>> While I believe you were just mentioning that if a candiate is to
just
>>> now look at purchasing equipment and taking the lab exam later in
2009
>>> that it would be wise to posture yourself for the known equipment
update
>>> instead of having to shift your focus's and costs down the road.
>>>
>>>
>>>
>>>
>>>
>>> Jay
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
>>> wrote:
>>>
>>> This was said at networkers (cisco live) this year in Orlando. I'll
see
>>> if I can get an official response from Cisco.
>>>
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>>
>>> Todd Richards
>>> Sent: Tuesday, September 23, 2008 7:20 AM
>>> To: Brad Ellis; security@xxxxxxxxxxxxxx
>>> Subject: RE: CCIE rack setup
>>>
>>> Is this confirmed?
>>>
>>>>>> However, you wont need a VPN concentrator if you are planning on
>>>
>>> taking
>>> your lab after Jan 1, 2009.
>>>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>> Brad
>>> Ellis
>>> Sent: Tuesday, September 23, 2008 6:34 AM
>>> To: Haloween Boy; Cisco certification
>>> Subject: RE: CCIE rack setup
>>> You'll want something similar to the following:
>>> 8-10 Cisco Routers (26xx or 28xx)
>>> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005
Concentrator
>>> 4.7.x
>>> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
>>> Frame-relay
>>> switch Terminal Server
>>> 2 Cisco ASA-5510s 7.x
>>> However, you wont need a VPN concentrator if you are planning on
taking
>>> your
>>> lab after Jan 1, 2009.
>>>
>>> thanks,
>>> Brad Ellis
>>> CCIE#5796 (R&S / Security)
>>> CCSI# 30482
>>> CEO / President
>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>> Email: brad@xxxxxxxxxxxxxx
>>> Toll Free: 877-654-2243
>>> Direct: +1-702-968-5100 = Outside the USA
>>> FAX: +1-702-446-8012
>>> YES! We take Cisco Learning Credits!
>>> Training And Remote Racks: http://www.ccbootcamp.com
>>> <http://www.ccbootcamp.com/>
>>> -----Original Message-----
>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
Of
>>> Haloween Boy
>>> Sent: Monday, September 22, 2008 1:01 PM
>>> To: Cisco certification
>>> Subject: CCIE rack setup
>>> Hi Experts,
>>> Can you guide me for setting up a home lab as I am planning to setup
>>> after
>>> 30-40 days.
>>> Regards,
>>> Cisco Boy
>>> _________________________________________________________________
>>> See how Windows connects the people, information, and fun that are
part
>>> of
>>> your life.
>>> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>>>
>>>
>>>
>>>
>>> --
>>> Jason W. Miller
>>> Fred Allen  - "What's on your mind, if you will allow the
>>> overstatement?"


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 02:15:31 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8O6FVa2010073
	GroupStudy Mailer; Wed, 24 Sep 2008 02:15:31 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8O6FVof010071
	for securityxhiddenx; Wed, 24 Sep 2008 02:15:31 -0400
Received: from ppp-vpdn-56.220.77.130.yarnet.ru
  (ppp-vpdn-56.220.77.130.yarnet.ru [77.220.56.130] (may be forged)) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8O6FTo7010018
  GroupStudy Mailer; Wed, 24 Sep 2008 02:15:30 -0400
Message-ID: <1209999733.548=15=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "cesar sydney" <dnevnik@xxxxxxxxxxxxxxx>
Subject: Your intimate condition is our specialization.
Date: Wed, 24 Sep 2008 04:28:03 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/24 02:15:31)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "cesar sydney" <dnevnik@xxxxxxxxxxxxxxx>

CanadianRX auto refill program.We will refill your recipe for you. Never
reorder never go without your medications. Our system automatically
reorders your goods at regular intervals. Completely free service that
you can cancel anytime.We also have a a variety of money -saving offers
for customers. Some of these are coupons, seasonal promotions, and others
take the form of gift with purchase.Other special offers can be found
throughout the store occurcost.com


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 03:32:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8O7WhqL014282
	GroupStudy Mailer; Wed, 24 Sep 2008 03:32:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8O7Whhm014280
	for securityxhiddenx; Wed, 24 Sep 2008 03:32:43 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.245]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8O7Wglw014260 GroupStudy Mailer; Wed, 24 Sep 2008 03:32:42
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2556335rvb.54 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 00:32:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:reply-to
  :to:subject:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=+sBDeXIatBq24EPDiQUGKNZeU6lIf4W4EsTPdPiBqAY=;
  b=flj7O5o5apAqdQE94SW5eqDkvC9MIa4s32ZaJ1qsEcIZls5rU76so0YLESg92DofeA
  FQV/NWsRO0PSUZfPkwWk9rpy3DD8wkBPoKzuIB1/pR/7AqCaVGAln1zrP8Hd1rPN41rD
  hGB2F5vgLguvThSiwlw+RyPL1od1Ag8AHSTGo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma;
  h=message-id:date:from:reply-to:to:subject:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=GndbrxrtuTBxakz0FsqN0GMmeB1M1I3ymBw3bbmCxb+vPRnb4QK772nZ8H18l0rsXm
  geSCsk4QKtILaw2nXPBU/4Y+k79jtWOm89PxkUfnzlTdHKQW/D9Lb1jb32luP9T+NoRc
  1r0TQh4I7LHeGBRV5W2fxjTZrD/q0oH2OD+Mw=
Received: by 10.141.123.4 with SMTP id a4mr3248395rvn.294.1222241557332;
  Wed, 24 Sep 2008 00:32:37 -0700 (PDT)
Received: by 10.141.153.11 with HTTP; Wed, 24 Sep 2008 00:32:37 -0700
  (PDT)
Message-ID: <259c924f0809240032m591b1604mf293b30500c1e7ef@xxxxxxxxxxxxxx>
Date: Wed, 24 Sep 2008 08:32:37 +0100
From: Steve <threeseashells@xxxxxxxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Re: CCIE rack setup
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAAknIBYkxZhEsA2d5QyVdfABAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <Q153043167-1c95beef1473cf3c11eece2ae4d59c7e@xxxxxxxxxxxxxxxxx>
  <AFB4626A-6D22-46E6-843F-75320FC8FB75@xxxxxxxxxxx>
  <259c924f0809231450m1af9fb0xda749ff8af72f1a8@xxxxxxxxxxxxxx>
  <E76ACA8C13EF1847BC69538B522C3663013DFFA6@xxxxxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAAknIBYkxZhEsA2d5QyVdfABAAAAAA==@xxxxxxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from threeseashells@xxxxx\.com] (2008/09/24 03:32:43)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Steve <threeseashells@xxxxxxxxxxxxxx>

Thanks for the info. I'll hope that doesn't come up too often then
(and use rack rental when it does!) :)



> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Keith Barker
> Sent: Tuesday, September 23, 2008 4:10 PM
> To: Steve; Cisco certification
> Subject: RE: CCIE rack setup
>
> Steve-
>
> Version 6 of IPS is version 6, regardless of the 4200 platform (as long
> as it has multiple sensing interfaces like yours does).
>
> *** HOWEVER ***  the 4215 does NOT support the 6.0 feature of multiple
> virtual sensors.    This is the feature that allows you to use one set
> of signature definitions and/or rules in one part of the network, and a
> different set of signatures and/or rules in another by assigning
> sigs/rules/interfaces to different virtual sensors.     The virtual
> sensor will be the only limiting step of using the 4215 for practice.
>
> Here is a link that specifies which models support virtualization:
>
> http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli
> /cliAnEng.html
>
>
> Best wishes-
>
> Keith Barker
> CCIE R&S / Security
> Instructor / CCSI
> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>
> 702.968.5100 Office
> 877.654.2243 Toll Free
> 702.446.0357 Fax
> KBarker@xxxxxxxxxxxxxx
>
>
> www.ccbootcamp.com (Cisco Training and Advanced Technology Rental Racks)
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Steve
> Sent: Tuesday, September 23, 2008 2:51 PM
> To: Cisco certification
> Subject: Re: CCIE rack setup
>
> From what has been said, it looks like Cisco will be using the 6.x IPS
> code and the 4240 has been mentioned. This is way out of my financial
> grasp, but I have a 4215 with 4 port upgrade card, and though it has
> just gone EOS, it's still supported for sig updates etc until 2011,
> and it can run the 6.x code.
>
> With the added card, the only functional difference looks like the
> throughput capability, and I wouldn't think that would matter too much
> in a lab. So would that be suitable if 6.x IPS comes into the 3.0
> blueprint?
>
>
> 2008/9/23 Brandon Carroll <brandon.carroll@xxxxxxxxxxx>:
>> BTW- Yusuf Bhaiji told me directly at Cisco Live in Orlando that you
> will
>> have 6 months from the announcement before the change takes place.
> Now, who
>> knows how true that information is seeing as how it isn't an official
>> announcement but he is probably one of the more "trusted" sources out
> there.
>>
>> He also told me that the new blueprint, 3.0, will include the obvious
> 8.x
>> asa with the PIX being removed, the 6.x IPS code and 12.4 IOS.  He
> also said
>> that there are spots in the topology available so you may see a MARS
> and/or
>> a NAC appliance.
>>
>>
>>
>> Brandon Carroll
>> Senior Instructor
>> Ascolta
>> 606 120th Ave NE
>> D-201
>> Bellevue, Wa. 98056
>>
>> ph.206-850-2384
>>
>> brandon.carroll@xxxxxxxxxxx
>> http://www.ascolta.com
>> http://www.globalconfig.net
>> http://ccieprep.me
>>
>>
>>
>>
>>
>> On Sep 23, 2008, at 3:45 PM, Piotr Kaluzny wrote:
>>
>>> Hi,
>>>
>>> What I heard a week ago from a very valuable source is that changes
> are
>>> going to come into play somewhere in between few weeks up to two
> months from
>>> that time. This is what MAY appear on 3.0 lab blueprint :
>>>
>>> End-of-Life devices will be removed:
>>> -PIX500 and VPN3000 will be removed
>>> -Routers will be replaced with new ISR series
>>> -3550 Switches will be replaced with new 3560
>>>
>>> Security Lab Exam: Equipment and Software Versions:
>>> -Cisco ISR series running Cisco IOS version 12.4T
>>> -Cisco Catalyst 3560 series switches running 12.2(x)SE
>>> -Cisco ASA 5500 series Firewalls running version 8.x
>>> -Cisco IPS 4240 Appliance Sensor running version 6.x
>>> -Cisco Secure ACS version 4.1
>>>
>>> I decided to wait because I don't want to spend money for current
> WBs. I'd
>>> bet 6 months in my situation is a minimum period of time for
> collecting
>>> money for my first attempt and flight, don't even mentioning about
> Rack
>>> Rental.
>>>
>>> Regards,
>>> Piotr Kaluzny
>>>
>>>
>>> "Brad Ellis" <brad@xxxxxxxxxxxxxx> napisa3(a):
>>>>
>>>> Actually, I've seen some changes announced and then implemented much
>>>> quicker than 6 months. I've also seen some changes that weren't
>>>> announced implemented in the past (ie, going from 2 to 4 switches!)
>>>> Removing a piece of equipment is something that could happen pretty
>>>> easily - especially the VPN concentrator. What will be more
> interesting
>>>> is the upgrade from 12.2 IOS to 12.4 IOS. Cisco has 2600s (non-xms)
> in a
>>>> lot of their security racks. They will need to go to XM or ISRs. I
>>>> believe they are heading towards ISRs. I'll try and get confirmation
> on
>>>> this as well.
>>>>
>>>>
>>>>
>>>> thanks,
>>>>
>>>> Brad Ellis
>>>>
>>>> CCIE#5796 (R&S / Security)
>>>>
>>>> CCSI# 30482
>>>>
>>>> CEO / President
>>>>
>>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>>
>>>> Email: brad@xxxxxxxxxxxxxx
>>>>
>>>> Toll Free: 877-654-2243
>>>>
>>>> Direct: +1-702-968-5100 = Outside the USA
>>>>
>>>> FAX: +1-702-446-8012
>>>>
>>>> YES! We take Cisco Learning Credits!
>>>>
>>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>>
>>>>
>>>>
>>>> ________________________________
>>>>
>>>> From: Jason W. Miller [mailto:jaymiller5@xxxxxxxxx]
>>>> Sent: Tuesday, September 23, 2008 8:58 AM
>>>> To: Brad Ellis
>>>> Cc: Todd Richards; security@xxxxxxxxxxxxxx
>>>> Subject: Re: CCIE rack setup
>>>>
>>>>
>>>>
>>>> They only mentioned that it would be coming with no date for
>>>> announcement set as they are still ironing out the details and
> concerns
>>>> from the other BU's as well as internal to the lab BU. It was also
> noted
>>>> that per the current policy when they do officially announce it
> there
>>>> would be the typical 6 month "grace" period for this to take affect
> for
>>>> future test takers. If they were to annouce it today all canidates
> would
>>>> have 6 months to study and sit for the lab prior to having the new
>>>> requirements in the lab.
>>>>
>>>>
>>>>
>>>> While I believe you were just mentioning that if a candiate is to
> just
>>>> now look at purchasing equipment and taking the lab exam later in
> 2009
>>>> that it would be wise to posture yourself for the known equipment
> update
>>>> instead of having to shift your focus's and costs down the road.
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> Jay
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On Tue, Sep 23, 2008 at 11:37 AM, Brad Ellis <brad@xxxxxxxxxxxxxx>
>>>> wrote:
>>>>
>>>> This was said at networkers (cisco live) this year in Orlando. I'll
> see
>>>> if I can get an official response from Cisco.
>>>>
>>>>
>>>> thanks,
>>>> Brad Ellis
>>>> CCIE#5796 (R&S / Security)
>>>> CCSI# 30482
>>>> CEO / President
>>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>> Email: brad@xxxxxxxxxxxxxx
>>>> Toll Free: 877-654-2243
>>>> Direct: +1-702-968-5100 = Outside the USA
>>>> FAX: +1-702-446-8012
>>>> YES! We take Cisco Learning Credits!
>>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>> <http://www.ccbootcamp.com/>
>>>>
>>>> -----Original Message-----
>>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> Of
>>>>
>>>> Todd Richards
>>>> Sent: Tuesday, September 23, 2008 7:20 AM
>>>> To: Brad Ellis; security@xxxxxxxxxxxxxx
>>>> Subject: RE: CCIE rack setup
>>>>
>>>> Is this confirmed?
>>>>
>>>>>>> However, you wont need a VPN concentrator if you are planning on
>>>>
>>>> taking
>>>> your lab after Jan 1, 2009.
>>>>
>>>> -----Original Message-----
>>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> Of
>>>> Brad
>>>> Ellis
>>>> Sent: Tuesday, September 23, 2008 6:34 AM
>>>> To: Haloween Boy; Cisco certification
>>>> Subject: RE: CCIE rack setup
>>>> You'll want something similar to the following:
>>>> 8-10 Cisco Routers (26xx or 28xx)
>>>> Cisco Catalyst 3560s or 3550s (1-2 of them) Cisco VPN 3005
> Concentrator
>>>> 4.7.x
>>>> Cisco Pix 515 7.x Cisco 4235 IPS 5.x Sensor ACS/CA Server 4.x
>>>> Frame-relay
>>>> switch Terminal Server
>>>> 2 Cisco ASA-5510s 7.x
>>>> However, you wont need a VPN concentrator if you are planning on
> taking
>>>> your
>>>> lab after Jan 1, 2009.
>>>>
>>>> thanks,
>>>> Brad Ellis
>>>> CCIE#5796 (R&S / Security)
>>>> CCSI# 30482
>>>> CEO / President
>>>> CCBOOTCAMP - A Cisco Sponsored Organization (SO)
>>>> Email: brad@xxxxxxxxxxxxxx
>>>> Toll Free: 877-654-2243
>>>> Direct: +1-702-968-5100 = Outside the USA
>>>> FAX: +1-702-446-8012
>>>> YES! We take Cisco Learning Credits!
>>>> Training And Remote Racks: http://www.ccbootcamp.com
>>>> <http://www.ccbootcamp.com/>
>>>> -----Original Message-----
>>>> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> Of
>>>> Haloween Boy
>>>> Sent: Monday, September 22, 2008 1:01 PM
>>>> To: Cisco certification
>>>> Subject: CCIE rack setup
>>>> Hi Experts,
>>>> Can you guide me for setting up a home lab as I am planning to setup
>>>> after
>>>> 30-40 days.
>>>> Regards,
>>>> Cisco Boy
>>>> _________________________________________________________________
>>>> See how Windows connects the people, information, and fun that are
> part
>>>> of
>>>> your life.
>>>> http://clk.atdmt.com/MRT/go/msnnkwxp1020093175mrt/direct/01/
>>>>
>>>>
>>>>
>>>>
>>>> --
>>>> Jason W. Miller
>>>> Fred Allen  - "What's on your mind, if you will allow the
>>>> overstatement?"


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 07:19:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8OBJ18r001024
	GroupStudy Mailer; Wed, 24 Sep 2008 07:19:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8OBJ19G001022
	for securityxhiddenx; Wed, 24 Sep 2008 07:19:01 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.175]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8OBJ0fW001002 GroupStudy Mailer; Wed, 24 Sep 2008 07:19:00
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so3378846wfc.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 04:18:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:reply-to:from:to
  :subject:date:mime-version:content-type:x-priority:x-msmail-priority
  :x-mailer:x-mimeole; bh=9/CZ1cuFilG4PtlrZJHpUozwpuZt4zrPZO9tSBify1w=;
  b=d8Tko4hhMdrj9BvHqjkRL3CIijGCW00tHzwebuy0snyxCdZs8bW6ta6zVWapfkz1DT
  vv6n0ryLXBCrVTacHek6aVyOyx30J+6EHlpg85+eHo5X38vBmH1E+4PsDtUoT9ne+BQG
  lRSdOW8pJyNkt9w0xWs20TqGxvn9ko4NWapbU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:reply-to:from:to:subject:date:mime-version:content-type
  :x-priority:x-msmail-priority:x-mailer:x-mimeole;
  b=kpC7kUZTwtwTmMmSyBssjvrl96G+yCUgZF6md0VABu6sjTNCTpnWBIYm3a03GKuFLG
  ypiekGzB+Y36DYWGpxbJ1WAIKXD7oXDIN38x6GoOljz56ZEpxeigzsaB/mPzWsdsQo9E
  TrNevM4c5P17u8+tJuVxm001O+UbQbJAGmVhk=
Received: by 10.142.50.5 with SMTP id x5mr2488426wfx.68.1222255139066;
  Wed, 24 Sep 2008 04:18:59 -0700 (PDT)
Received: from Slinky ( [125.239.134.194]) by mx.google.com with ESMTPS
  id 24sm11909674wfc.6.2008.09.24.04.18.57 (version=SSLv3
  cipher=RC4-MD5); Wed, 24 Sep 2008 04:18:58 -0700 (PDT)
Message-ID: <001001c91e37$5466fd40$04011fac@xxxxxx>
From: "Sean" <seansational@xxxxxxxxx>
To: "CCIE" <security@xxxxxxxxxxxxxx>
Subject: VPN Conc
Date: Wed, 24 Sep 2008 23:18:51 +1200
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from seansational@xxxxx\.com] (2008/09/24 07:19:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sean" <seansational@xxxxxxxxx>

Hi

I am trying to add an additional group under Configuration/User
Management/Groups and keep on getting the following error:

40 09/24/2008 04:34:57.600 SEV=3 CONFIG/33 RPT=1
Unable to acquire config lock for SET.

41 09/24/2008 04:35:14.190 SEV=3 CONFIG/33 RPT=2
Unable to acquire config lock for SET.

42 09/24/2008 04:35:56.920 SEV=3 CONFIG/33 RPT=3
Unable to acquire config lock for SET.

43 09/24/2008 04:36:09.420 SEV=3 CONFIG/33 RPT=4
Unable to acquire config lock for SET.

I have deleted all the existing groups and was able to edit existing groups
before deleting them.

Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 08:36:53 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8OCarcA007819
	GroupStudy Mailer; Wed, 24 Sep 2008 08:36:53 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8OCarX7007817
	for securityxhiddenx; Wed, 24 Sep 2008 08:36:53 -0400
Received: from qw-out-1920.google.com (qw-out-1920.google.com
  [74.125.92.146]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8OCaqdT007796 GroupStudy Mailer; Wed, 24 Sep 2008 08:36:52
  -0400
Received: by qw-out-1920.google.com with SMTP id 4so337976qwk.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 05:36:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:content-transfer-encoding:mime-version
  :subject:date:references:x-mailer:sender;
  bh=O7G/ggg0p7lqFMqpLp7szicIk9f2JvVjvgZ93XEHe28=;
  b=WYxwVXU9KdqbAAxZg0miPc7HKQj6EztFd80JIS1Th3pgCy1LFXJTP2qtD3cT+J0dyW
  Nn9w44/cFSldx9oX0GhPAipcv0bHZPZF/r8MI4j4DJgcPSY63KHqXzRgza3h2MOwQ/xi
  U8gyL14Gk3siaDjP3FdfsG+qUEES7hpi6IjLw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type
  :content-transfer-encoding:mime-version:subject:date:references
  :x-mailer:sender;
  b=GQUT2rmHRMhra4gCO+LX7JByA5PBUnW8wM0HHNs9ztORoBsHgu8HUcoDLpUdn3q4ZQ
  DHFY1/o3D+1zRjt1JAiD59gfV7O+7Lw54r76Idn1cm4LjV9M5rJyx8NpxthIUhJp4oyd
  YMMAR0W0Los0Rz8y1RMWpfKOSbqhLUzVWhX0Y=
Received: by 10.215.100.19 with SMTP id
  c19mr5377425qam.84.1222259811292; Wed, 24 Sep 2008 05:36:51 -0700
  (PDT)
Received: from dhcp-guest-req01-64-102-168-209.cisco.com (
  [64.102.168.209]) by mx.google.com with ESMTPS id
  2sm6814632qwi.5.2008.09.24.05.36.48 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Wed, 24 Sep 2008 05:36:50 -0700 (PDT)
Cc: "CCIE" <security@xxxxxxxxxxxxxx>
Message-Id: <4A27F185-1F7F-42C8-B734-D2A40836A361@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "Sean" <seansational@xxxxxxxxx>
In-Reply-To: <001001c91e37$5466fd40$04011fac@xxxxxx>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v929.2)
Subject: Re: VPN Conc
Date: Wed, 24 Sep 2008 08:36:46 -0400
References: <001001c91e37$5466fd40$04011fac@xxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/24 08:36:52)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

Are you doing this from the CLI or the GUI?  If you have the CLI open  
to that configuration page and then try to change the config from the  
GUI the GUI cant get a lock because the CLI is there.  Log off the CLI  
and try again.  Just something I have experienced in the past.

HTH


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 24, 2008, at 7:18 AM, Sean wrote:

> Hi
>
> I am trying to add an additional group under Configuration/User
> Management/Groups and keep on getting the following error:
>
> 40 09/24/2008 04:34:57.600 SEV=3 CONFIG/33 RPT=1
> Unable to acquire config lock for SET.
>
> 41 09/24/2008 04:35:14.190 SEV=3 CONFIG/33 RPT=2
> Unable to acquire config lock for SET.
>
> 42 09/24/2008 04:35:56.920 SEV=3 CONFIG/33 RPT=3
> Unable to acquire config lock for SET.
>
> 43 09/24/2008 04:36:09.420 SEV=3 CONFIG/33 RPT=4
> Unable to acquire config lock for SET.
>
> I have deleted all the existing groups and was able to edit existing  
> groups
> before deleting them.
>
> Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 13:58:35 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8OHwZLG010330
	GroupStudy Mailer; Wed, 24 Sep 2008 13:58:35 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8OHwZie010328
	for securityxhiddenx; Wed, 24 Sep 2008 13:58:35 -0400
Received: from 66-42-195-231.ubr1.dyn.lebanon-oh.fuse.net
  (66-42-195-231.ubr1.dyn.lebanon-oh.fuse.net [66.42.195.231]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8OHwYtv010302
  GroupStudy Mailer; Wed, 24 Sep 2008 13:58:34 -0400
Message-ID: <1247071860.731=23=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "base dunbar" <dnevnik@xxxxxxxxxxxxxxx>
Subject: We are the first who made quality medications affordble.
Date: Wed, 24 Sep 2008 16:11:09 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/24 13:58:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "base dunbar" <dnevnik@xxxxxxxxxxxxxxx>

CanadianRX auto refill program.We will refill your recipe for you. Never
reorder never go without your medications. Our system automatically
reorders your goods at regular intervals. Completely free service that
you can cancel anytime.We also have a a variety of money ~saving offers
for customers. Some of these are coupons, seasonal promotions, and others
take the form of gift with purchase.Other special offers can be found
throughout the store loudhunt.com


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 16:47:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8OKlOuw025828
	GroupStudy Mailer; Wed, 24 Sep 2008 16:47:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8OKlObq025826
	for securityxhiddenx; Wed, 24 Sep 2008 16:47:24 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8OKlMR0025803 GroupStudy Mailer; Wed, 24 Sep 2008 16:47:23
  -0400
Received: by gxk13 with SMTP id 13so8741736gxk.6 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 13:47:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=+nD/mMfhs2nk6j6IYyJrJHw3YgRPRI6J8M1FAVaCl18=;
  b=tXz6n/+vTNfZhHskavQi22HQ1KuduxRDFaIEFOmOVMW/ZERMi8ObMCd6UOyx899+mF
  A/Xw+YUe5VUCWBeHctfg0t2cUWq5+f6FXzNumBD9t00bbyoIoY4a1qXZHYYmtqjI1kjN
  hLmwpTq/k3KthIkE4h1wFKd8ExJP7jR3SyHY8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=nSjOJWU0+ndB5RO6ueBAP8qiZK7eEDRZaeHw57hXwsF7Ranyhtp0jEUry03APMfJMh
  MCG9DIvOnvQig5Agv3CzleitjEqoCOZee3Ica5SquBRXjtsefAgpY023qT1FW20Eo2Xu
  LerNkTVM7KSc+e1TqjSCcUr/LWt9pOhd0ePFo=
Received: by 10.142.221.19 with SMTP id
  t19mr2743899wfg.186.1222289233939; Wed, 24 Sep 2008 13:47:13 -0700
  (PDT)
Received: by 10.142.141.9 with HTTP; Wed, 24 Sep 2008 13:47:13 -0700
  (PDT)
Message-ID: <5869b3fd0809241347l3afd9216v90e4154a8e96b0b1@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 08:47:13 +1200
From: "Sean Millar" <seansational@xxxxxxxxx>
To: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>
Subject: Re: VPN Conc
Cc: CCIE <security@xxxxxxxxxxxxxx>
In-Reply-To: <4A27F185-1F7F-42C8-B734-D2A40836A361@xxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c91e37$5466fd40$04011fac@xxxxxx>
  <4A27F185-1F7F-42C8-B734-D2A40836A361@xxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from seansational@xxxxx\.com] (2008/09/24 16:47:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Sean Millar" <seansational@xxxxxxxxx>

Hi Brandon

I was doing this from the GUI. I have tried rebooting the concentrator but
it seems like it is only the Group and Base Group Tabs that i am not able to
access. The concentrator happily lets me add a group via the cli and save it
from there.

I have managed to edit various other sub-menus successfully.

Sean


On Thu, Sep 25, 2008 at 12:36 AM, Brandon Carroll <
brandon.carroll@xxxxxxxxxxx> wrote:

> Are you doing this from the CLI or the GUI?  If you have the CLI open to
> that configuration page and then try to change the config from the GUI the
> GUI cant get a lock because the CLI is there.  Log off the CLI and try
> again.  Just something I have experienced in the past.
>
> HTH
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
>
> On Sep 24, 2008, at 7:18 AM, Sean wrote:
>
>  Hi
>>
>> I am trying to add an additional group under Configuration/User
>> Management/Groups and keep on getting the following error:
>>
>> 40 09/24/2008 04:34:57.600 SEV=3 CONFIG/33 RPT=1
>> Unable to acquire config lock for SET.
>>
>> 41 09/24/2008 04:35:14.190 SEV=3 CONFIG/33 RPT=2
>> Unable to acquire config lock for SET.
>>
>> 42 09/24/2008 04:35:56.920 SEV=3 CONFIG/33 RPT=3
>> Unable to acquire config lock for SET.
>>
>> 43 09/24/2008 04:36:09.420 SEV=3 CONFIG/33 RPT=4
>> Unable to acquire config lock for SET.
>>
>> I have deleted all the existing groups and was able to edit existing
>> groups
>> before deleting them.
>>
>> Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 20:32:47 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P0WlwV011077
	GroupStudy Mailer; Wed, 24 Sep 2008 20:32:47 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P0Wlxj011075
	for securityxhiddenx; Wed, 24 Sep 2008 20:32:47 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.173]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P0WkuD011055 GroupStudy Mailer; Wed, 24 Sep 2008 20:32:46
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so207238wfc.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 17:32:42 -0700 (PDT)
Received: by 10.142.238.9 with SMTP id l9mr2839461wfh.20.1222302762553;
  Wed, 24 Sep 2008 17:32:42 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id 32sm13299432wfa.8.2008.09.24.17.32.40 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Wed, 24 Sep 2008 17:32:41 -0700 (PDT)
To: "'Sean'" <seansational@xxxxxxxxx>, "'CCIE'"
  <security@xxxxxxxxxxxxxx>
References: <001001c91e37$5466fd40$04011fac@xxxxxx>
In-Reply-To: <001001c91e37$5466fd40$04011fac@xxxxxx>
Subject: RE: VPN Conc
Date: Wed, 24 Sep 2008 17:32:33 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAABTQH1tKwFJLothZhocrUd0BAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckeO/6XOqLjRJz6SOKladfthLSnQAAagVgA
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8P0WkuD011055
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/24 20:32:47)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

hi Sean,
sometimes it does not hurt to save your config and reload the concentrator.


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Sean
Sent: Wednesday, September 24, 2008 4:19 AM
To: CCIE
Subject: VPN Conc

Hi

I am trying to add an additional group under Configuration/User
Management/Groups and keep on getting the following error:

40 09/24/2008 04:34:57.600 SEV=3 CONFIG/33 RPT=1
Unable to acquire config lock for SET.

41 09/24/2008 04:35:14.190 SEV=3 CONFIG/33 RPT=2
Unable to acquire config lock for SET.

42 09/24/2008 04:35:56.920 SEV=3 CONFIG/33 RPT=3
Unable to acquire config lock for SET.

43 09/24/2008 04:36:09.420 SEV=3 CONFIG/33 RPT=4
Unable to acquire config lock for SET.

I have deleted all the existing groups and was able to edit existing groups
before deleting them.

Sean


From security-owner@xxxxxxxxxxxxxx Wed Sep 24 20:37:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P0bCpT011463
	GroupStudy Mailer; Wed, 24 Sep 2008 20:37:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P0bC0D011461
	for securityxhiddenx; Wed, 24 Sep 2008 20:37:12 -0400
Received: from ag-out-0708.google.com (ag-out-0708.google.com
  [72.14.246.249]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P0bBZG011440 GroupStudy Mailer; Wed, 24 Sep 2008 20:37:11
  -0400
Received: by ag-out-0708.google.com with SMTP id 23so158677agd.11 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 17:37:08 -0700 (PDT)
Received: by 10.70.92.8 with SMTP id p8mr8793488wxb.70.1222303028252;
  Wed, 24 Sep 2008 17:37:08 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id i17sm11627091wxd.12.2008.09.24.17.37.06 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Wed, 24 Sep 2008 17:37:07 -0700 (PDT)
To: "'Bryan Morrow'" <alltimed@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
References: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
In-Reply-To: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
Subject: RE: EZVPN client with a router-on-a-stick
Date: Wed, 24 Sep 2008 17:36:58 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAI4j3tej87VHo/738p+dlQIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckdnKgmjHZCwidxSEGg1MvTs0E8XgBCbL6w
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8P0bBZG011440
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/24 20:37:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Bryan,
To setup an EZVPN client over a router you have to assign an inside
interface and an outside interface.
Loopback is solution as mentioned earlier. Another solution is to use sub
interfaces over the single Ethernet interface that you have.

Connect your router with a switch and support dot1q. now you can create as
many virtual interfaces as you need

HTH


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 





-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Bryan Morrow
Sent: Tuesday, September 23, 2008 9:08 AM
To: security@xxxxxxxxxxxxxx
Subject: EZVPN client with a router-on-a-stick

Does anyone know if it is possible to use a Cisco 1811 as an EZVPN client
while the router is setup with only one interface? I have a customer that
requested their VPN router to us be setup in their DMZ with no public facing
interface on the 1811 (VPN device). I usually configure our VPN
configurations with an internet facing interface and a DMZ facing interface.

Thanks,

Bryan


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 00:05:05 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P4554D029790
	GroupStudy Mailer; Thu, 25 Sep 2008 00:05:05 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P455CC029788
	for securityxhiddenx; Thu, 25 Sep 2008 00:05:05 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.240]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P4531n029750 GroupStudy Mailer; Thu, 25 Sep 2008 00:05:04
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so261328rvb.54 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 21:04:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=MbLORTREQB9/wCIdsYfksKpXOBXpGg0bSJQ7dEozhYA=;
  b=hgq50ir/eRXbLXEQWNKmd7Fx6Z0+uhplHKJWhCvjUGn6+p7zuujgdVVRqyWsS9s42V
  hufwJFgNdULXnaH7/Bg3+7m8rkjSA7D26L0OZgq1cT97jtdiAXd/C3aEY3sK88OsRo4U
  GvNcEnJwJl1H2/5A6Xn+q0iu3Da8HoBaQ/Ct4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=P1MXTYa228g5rlbeU8ZLyoxDzWoOe+OIuLvVLESnhc8CtOXB1nLhdBPGbxHjBsjyA1
  sxq7D/hvSsxfaLJH3TY44UOn4YeiGcS551v4lxDyM9l69pg/MAuFAaEIShVv5LYivNP1
  8SRUqgG+J8q3YI0d0Njon7Ud3Co0F1ztexMz4=
Received: by 10.115.16.1 with SMTP id t1mr8996932wai.19.1222315499579;
  Wed, 24 Sep 2008 21:04:59 -0700 (PDT)
Received: by 10.115.17.15 with HTTP; Wed, 24 Sep 2008 21:04:59 -0700
  (PDT)
Message-ID: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 09:04:59 +0500
From: "hamid mahmood" <hamidnow@xxxxxxxxx>
To: security@xxxxxxxxxxxxxx, ccielab@xxxxxxxxxxxxxx
Subject: CCIE Security Changes (Video)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from hamidnow@xxxxx\.com] (2008/09/25 00:05:05)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "hamid mahmood" <hamidnow@xxxxxxxxx>

Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
CCIE certification. Learn about the hardware and software changes and which
exam blueprint you should be following.
(Quicktime player required)
http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 00:53:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P4rFrD002630
	GroupStudy Mailer; Thu, 25 Sep 2008 00:53:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P4rFb1002628
	for securityxhiddenx; Thu, 25 Sep 2008 00:53:15 -0400
Received: from ey-out-1920.google.com (ey-out-1920.google.com
  [74.125.78.150]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P4rDwd002588 GroupStudy Mailer; Thu, 25 Sep 2008 00:53:13
  -0400
Received: by ey-out-1920.google.com with SMTP id 4so81157eyg.24 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 21:53:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=bvVdJddoh4YwxvCIO+kM/3Hg3RSUgOXpdrsFzJOf3So=;
  b=og1kbMEvvx1hBtz95tTYoooTEEhlntuCwWHqNrC9ep+pNvldaO7SwACZUw7e7+IWh/
  DL9RwpbCK1tsnVaOI3Ac6fh4VZgYALCegPMfBNCyJPCK+muZ8CEIq6PnmGl8MYurW6ja
  WZTDtHB7xZzSt7fdHzsgZvDl01VWWyMqOsEkU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=GCPEq1VqY+jETzbkej433P09TmALuxfkKTmyOgdghUUj6PB3rSMSCKGZRaTg+txAfW
  i5dG1Hb/Z+tFby2e78iPsk1UOKIWsWjxC/ChgJR2JlD/RTeTMwsbGkBXFLbH7cVGHGkf
  rRKqNkaSYkBtz/0tD//c00akyOQUZD8Ks/gFU=
Received: by 10.210.43.11 with SMTP id
  q11mr9536205ebq.199.1222318389015; Wed, 24 Sep 2008 21:53:09 -0700
  (PDT)
Received: by 10.210.142.8 with HTTP; Wed, 24 Sep 2008 21:53:08 -0700
  (PDT)
Message-ID: <491cc1330809242153y5f72c7e4q520c4faed191af46@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 14:53:08 +1000
From: "Radioactive Frog" <pbhatkoti@xxxxxxxxx>
To: "hamid mahmood" <hamidnow@xxxxxxxxx>
Subject: Re: CCIE Security Changes (Video)
Cc: security@xxxxxxxxxxxxxx, ccielab@xxxxxxxxxxxxxx
In-Reply-To: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from pbhatkoti@xxxxx\.com] (2008/09/25 00:53:15)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Radioactive Frog" <pbhatkoti@xxxxxxxxx>

good stuffs  mate..
thanks for sharing


On Thu, Sep 25, 2008 at 2:04 PM, hamid mahmood <hamidnow@xxxxxxxxx> wrote:

> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
> CCIE certification. Learn about the hardware and software changes and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 01:00:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P501hE003389
	GroupStudy Mailer; Thu, 25 Sep 2008 01:00:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P501xN003387
	for securityxhiddenx; Thu, 25 Sep 2008 01:00:01 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.244]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P500da003360 GroupStudy Mailer; Thu, 25 Sep 2008 01:00:00
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so281627rvb.54 for
  <security@xxxxxxxxxxxxxx>; Wed, 24 Sep 2008 21:59:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=etJ+5lGvsHnmiLYxGTUnwLFpeYycCCZvl1j5UeAEIZw=;
  b=GI8q/PGCd2OVdxY/o81w+MNgUJkw58sPMfpsnm9js8YzVMh8P04LrFcsRutacQ6UAU
  eeLwz7xztGab8SMO8ITwfQWXY4mldnsgrycDw0COCd3dCMoufdXwW7ZmB6aYjr9jt/oo
  zkju0gX1SsG+mtuP5NAFPXEnwKcb+Ihjuu56w=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=mbZNSHi+q/WxhS80Z5yCtUaoxHzMQMT6fCYmoCI9T4mk2zqowHq+ymtrodgoFSe5xG
  qGYxgZacsqX2LlrfERn9Ptw2HisR4xVw5A9JNaBho8lMLk8E6KIbDftlaPx04vN4AEUf
  NboctBuKuMNSX/Lz8onvV8pBG+fbx9YUY2cQo=
Received: by 10.141.172.6 with SMTP id z6mr3910714rvo.47.1222318796416;
  Wed, 24 Sep 2008 21:59:56 -0700 (PDT)
Received: by 10.141.202.5 with HTTP; Wed, 24 Sep 2008 21:59:56 -0700
  (PDT)
Message-ID: <12afc7a70809242159p34604e8cha8f6a059fe07f965@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 12:59:56 +0800
From: KokYong <cheongky@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: CCIE Security Lab date change in Tokyo
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from cheongky@xxxxx\.com] (2008/09/25 01:00:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: KokYong <cheongky@xxxxxxxxx>

Hi,  I'm holding a date of ccie Lab exam in tokyo on 28oct, as i have
errands to handle during that period, anyone holding a date around middle of
Nov in Tokyo that can help to swap will be appreciated.

Thanks in advance

Regards
KokYong


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 03:27:09 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8P7R9U1013658
	GroupStudy Mailer; Thu, 25 Sep 2008 03:27:09 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8P7R9sY013656
	for securityxhiddenx; Thu, 25 Sep 2008 03:27:09 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8P7R88P013635 GroupStudy Mailer; Thu, 25 Sep 2008 03:27:08
  -0400
Received: by gxk13 with SMTP id 13so9375786gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 00:26:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=BRLmwIkXqBMhr6o+vxnY+2KXnC/npTTbWsvvcBZhgzY=;
  b=fPjgcbqHxPOfesenHQ/vpMxIrp6WoUB1INtPWqzFVwmRC9Ef0c+r8FaLcUCKH/68kC
  XS992Jx9lKV2hXYmaEQtXkhuZHa0DqvFIQlld6rnzQ/bNmoTomxBPh2towWA8kWQLj2o
  Qit+FCvWDLrT5JkYaE2RUomybdYFr4wYzr/9I=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=X1tpquYiH+Q16UHKReue7HC5mThCIjmRUKF656R2RD57Lr94Kn49Oa3UIBIiTL+aPO
  Ke0zHVAbSzTY/BmyAgefW5poQwsaBYmF9hTrunV3SZ+nfOVMsoGTeR60UXvbFjKFpEPP
  uJdag6SQJgZrWAmZznHyazwZyoe62gmWWxEp4=
Received: by 10.150.133.18 with SMTP id
  g18mr12466063ybd.137.1222327619309; Thu, 25 Sep 2008 00:26:59 -0700
  (PDT)
Received: by 10.151.109.18 with HTTP; Thu, 25 Sep 2008 00:26:59 -0700
  (PDT)
Message-ID: <eff3217d0809250026x3c0d4a1xd4d377d7eadca0f5@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 10:26:59 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Sean Millar" <seansational@xxxxxxxxx>
Subject: Re: VPN Conc
Cc: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>,
        CCIE
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <5869b3fd0809241347l3afd9216v90e4154a8e96b0b1@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <001001c91e37$5466fd40$04011fac@xxxxxx>
  <4A27F185-1F7F-42C8-B734-D2A40836A361@xxxxxxxxxxx>
  <5869b3fd0809241347l3afd9216v90e4154a8e96b0b1@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/25 03:27:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Reload and save as Ramy said. Also please clear the browser's cache etc.

Regards

Farrukh

On Wed, Sep 24, 2008 at 11:47 PM, Sean Millar <seansational@xxxxxxxxx>wrote:

> Hi Brandon
>
> I was doing this from the GUI. I have tried rebooting the concentrator but
> it seems like it is only the Group and Base Group Tabs that i am not able
> to
> access. The concentrator happily lets me add a group via the cli and save
> it
> from there.
>
> I have managed to edit various other sub-menus successfully.
>
> Sean
>
>
> On Thu, Sep 25, 2008 at 12:36 AM, Brandon Carroll <
> brandon.carroll@xxxxxxxxxxx> wrote:
>
> > Are you doing this from the CLI or the GUI?  If you have the CLI open to
> > that configuration page and then try to change the config from the GUI
> the
> > GUI cant get a lock because the CLI is there.  Log off the CLI and try
> > again.  Just something I have experienced in the past.
> >
> > HTH
> >
> >
> > Brandon Carroll
> > Senior Instructor
> > Ascolta
> > 606 120th Ave NE
> > D-201
> > Bellevue, Wa. 98056
> >
> > ph.206-850-2384
> >
> > brandon.carroll@xxxxxxxxxxx
> > http://www.ascolta.com
> > http://www.globalconfig.net
> > http://ccieprep.me
> >
> >
> >
> >
> >
> >
> > On Sep 24, 2008, at 7:18 AM, Sean wrote:
> >
> >  Hi
> >>
> >> I am trying to add an additional group under Configuration/User
> >> Management/Groups and keep on getting the following error:
> >>
> >> 40 09/24/2008 04:34:57.600 SEV=3 CONFIG/33 RPT=1
> >> Unable to acquire config lock for SET.
> >>
> >> 41 09/24/2008 04:35:14.190 SEV=3 CONFIG/33 RPT=2
> >> Unable to acquire config lock for SET.
> >>
> >> 42 09/24/2008 04:35:56.920 SEV=3 CONFIG/33 RPT=3
> >> Unable to acquire config lock for SET.
> >>
> >> 43 09/24/2008 04:36:09.420 SEV=3 CONFIG/33 RPT=4
> >> Unable to acquire config lock for SET.
> >>
> >> I have deleted all the existing groups and was able to edit existing
> >> groups
> >> before deleting them.
> >>
> >> Sean


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 07:16:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PBGBEb002869
	GroupStudy Mailer; Thu, 25 Sep 2008 07:16:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PBGBDH002867
	for securityxhiddenx; Thu, 25 Sep 2008 07:16:11 -0400
Received: from qw-out-1920.google.com (qw-out-1920.google.com
  [74.125.92.150]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PBG7m5002824 GroupStudy Mailer; Thu, 25 Sep 2008 07:16:07
  -0400
Received: by qw-out-1920.google.com with SMTP id 4so51586qwk.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 04:16:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=8iOIbaKPXfVoL5Oee7jYRXVdP7dacikYy1e7c17jE1M=;
  b=H2pXl06yqXQXBXuKEO2P3hMFSwhMpVxwYkxCBqKzyhTyumJ25VbSSEVFVZDEACv9yi
  yJuKmmbF3fHdMKUZ/UA1lIR4FNgKbxmUhN7NIV3f4ehniKzfMKG8mL5oioxWN2GxxApR
  txrgnU/7wV9hd8GjMCmWYsLEwRTFNJXMxzjFo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=ODdfgAtJws7v/KotXDMhMBIYqrWHWhbMXEwmJZ0DP9i3gEhgtKIHhfH/5qkNwLNocw
  yEajOprSWWg+hxD4FPqN5pma8O+Sbo18ijCxVJ4v6OSxfxan8HG54JLJm/nNqRN2wsDG
  Q4E/C2wJMf9fYp10SyLO0twKurZQ/NfZ07DgE=
Received: by 10.215.38.2 with SMTP id q2mr6719903qaj.88.1222341367138;
  Thu, 25 Sep 2008 04:16:07 -0700 (PDT)
Received: by 10.214.148.9 with HTTP; Thu, 25 Sep 2008 04:16:07 -0700
  (PDT)
Message-ID: <a2a417de0809250416u2a54a7d4h6af5afccc8bfcfe8@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 16:46:07 +0530
From: theKonqueror <thekonqueror@xxxxxxxxx>
To: "hamid mahmood" <hamidnow@xxxxxxxxx>
Subject: Re: CCIE Security Changes (Video)
Cc: security@xxxxxxxxxxxxxx, ccielab@xxxxxxxxxxxxxx
In-Reply-To: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Our key was found in the mail (2008/09/25 07:16:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: theKonqueror <thekonqueror@xxxxxxxxx>

Can you please post this on youtube? Stream dies halfway due to low speed...

On Thu, Sep 25, 2008 at 9:34 AM, hamid mahmood <hamidnow@xxxxxxxxx> wrote:

> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
> CCIE certification. Learn about the hardware and software changes and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>


-- 
Rahul Nagare
RHCE, CCIE#20863 R&S


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 08:56:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PCujhE013441
	GroupStudy Mailer; Thu, 25 Sep 2008 08:56:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PCujLp013439
	for securityxhiddenx; Thu, 25 Sep 2008 08:56:45 -0400
Received: from wx-out-0506.google.com (wx-out-0506.google.com
  [66.249.82.236]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PCuipC013401 GroupStudy Mailer; Thu, 25 Sep 2008 08:56:44
  -0400
Received: by wx-out-0506.google.com with SMTP id s15so93775wxc.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 05:56:43 -0700 (PDT)
Received: by 10.70.57.5 with SMTP id f5mr9627885wxa.51.1222347403015;
  Thu, 25 Sep 2008 05:56:43 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id h14sm1070794wxd.0.2008.09.25.05.56.40 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 25 Sep 2008 05:56:42 -0700 (PDT)
To: "'hamid mahmood'" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
In-Reply-To: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 05:56:28 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckeynasA69vWd7dSCWSV+2UONiKUQAQ34eA
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8PCuipC013401
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/25 08:56:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Interesting 
People are waiting for the changes..


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
hamid mahmood
Sent: Wednesday, September 24, 2008 9:05 PM
To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: CCIE Security Changes (Video)

Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
CCIE certification. Learn about the hardware and software changes and which
exam blueprint you should be following.
(Quicktime player required)
http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 09:14:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PDE3so014899
	GroupStudy Mailer; Thu, 25 Sep 2008 09:14:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PDE3vd014897
	for securityxhiddenx; Thu, 25 Sep 2008 09:14:03 -0400
Received: from mail-svr.cconlinelabs.com (mail-svr.cconlinelabs.com
  [71.182.86.26]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PDDuE4014828; Thu, 25 Sep 2008 09:13:57 -0400
DKIM-Signature: v=1; t=1222348435; a=rsa-sha1; q=dns/txt; s=myselector;
  d=cconlinelabs.com; i=groupstudy@xxxxxxxxxxxxxxxx; c=relaxed/simple;
  bh=H24PRqmTUrXiquhhZfOAQipCujo=;
  h=DomainKey-Signature:Reply-To:From:To:
  References:Subject:Date:Organization:Message-ID:MIME-Version:
  Content-Type:Content-Transfer-Encoding:X-Mailer:In-Reply-To:Thread-Index:
  X-MimeOLE;
  b=xCcAKftSohM2vvq3PjBd+JovY0nyJIGQt2fcmRlzL6+6BxoRjV3GFSrvqnAc
  TpgE0VpPppW/pEXMjvlKmFxOAd0F2oNNRmjyBGmZrliYfr8tCe1hkIXQA0djE9c03Ima
DomainKey-Signature: a=rsa-sha1; q=dns; s=myselector;
  d=cconlinelabs.com; c=nofws;
  h=Received:Reply-To:From:To:References:Subject:Date:Organization
  :Message-ID:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Mailer:
  In-Reply-To:Thread-Index:X-MimeOLE;
  b=wp82V8npboPhQpJusVfOKXQEDjBZ48yWWAH
  vAb0x5rmIKB8oLEenbfSiig/i0j58RPLJ3DMwCv5jBJBBMNHjtfxANyXGv1P0r6g1c00YG2rI
  WViJusAn3rk6ozZ1yyB8;
Received: from Grandpa ([192.168.0.219]) by cconlinelabs.com with
  MailEnable ESMTP; Thu, 25 Sep 2008 06:13:53 -0700
From: "Tony Schaffran \(GS\)" <groupstudy@xxxxxxxxxxxxxxxx>
To: "'Ramy Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 06:13:36 -0700
Organization: CConlinelabs.com
Message-ID: <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Thread-Index: AckeynasA69vWd7dSCWSV+2UONiKUQAQ34eAAACVd5A=
X-ASK-Info: Whitelist match [from groupstudy@xxxxxxxxxxxx\.com] (2008/09/25 09:14:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Tony Schaffran \(GS\)" <groupstudy@xxxxxxxxxxxxxxxx>

I have been waiting for the changes for the past two years.

It is about time they caught up with the rest of the world.

I was expecting the official anouncement on the cisco web site by now.
Anybody have any information on why this has not happened yet? 


Tony Schaffran
Sr. Network Consultant
CCIE #11071
CCNP, CCNA, CCDA, 
NNCDS, NNCSS, CNE, MCSE
 
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals. 
 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Ramy
Sisy
Sent: Thursday, September 25, 2008 5:56 AM
To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Interesting 
People are waiting for the changes..


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
hamid mahmood
Sent: Wednesday, September 24, 2008 9:05 PM
To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: CCIE Security Changes (Video)

Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
CCIE certification. Learn about the hardware and software changes and which
exam blueprint you should be following.
(Quicktime player required)
http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 09:51:41 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PDpfeD019245
	GroupStudy Mailer; Thu, 25 Sep 2008 09:51:41 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PDpfmg019242
	for securityxhiddenx; Thu, 25 Sep 2008 09:51:41 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PDpdDh019183 GroupStudy Mailer; Thu, 25 Sep 2008 09:51:39
  -0400
Received: by gxk13 with SMTP id 13so9772129gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 06:51:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:mime-version:subject:date:references
  :x-mailer:sender; bh=054/PVrSab+4fgQV4jbWw7b5pLYnXrK4JeCOJQn3WE0=;
  b=aHnRAXKO+beDfcXreiGt0gLSIbHXiifuYrURliSklRpSUXMKIRwl+rFSwqpXPhjeMK
  FkkECMULwI3Axv6FGhyvUfJlleRe9llLZr2yfJR9njvaNtu9SqEf7EBm+gijQjpk9SaG
  zljxYNKpplVS1xFWuaz+ncVZUU/WoB771PLh0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type:mime-version:subject
  :date:references:x-mailer:sender;
  b=CAzCQ+7y/LmvHd260w6UaChAjq8/37v0+caw1MLzh1YB9F1o4rBK4ja3U9Sxxk/ivA
  1s3/ZzuTMYHbLnEc5jmSUmP3Tgqd5bQyGh/KDKdRJ4ahX0I+ZXiLBb7bJEVopds7AqhN
  eWD9LK9DOXgz1dph/k5eE6AznwE04sLZurKrI=
Received: by 10.90.68.20 with SMTP id q20mr10011892aga.96.1222350693266;
  Thu, 25 Sep 2008 06:51:33 -0700 (PDT)
Received: from dhcp-guest-req01-64-102-168-216.cisco.com (
  [64.102.168.216]) by mx.google.com with ESMTPS id
  29sm708618wrl.9.2008.09.25.06.51.30 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 25 Sep 2008 06:51:31 -0700 (PDT)
Cc: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "hamid mahmood"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
Message-Id: <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: "Tony Schaffran \(GS\)" <groupstudy@xxxxxxxxxxxxxxxx>
In-Reply-To: <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Apple Message framework v929.2)
Subject: Re: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 09:51:29 -0400
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/25 09:51:41)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

My guess is politics.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:

> I have been waiting for the changes for the past two years.
>
> It is about time they caught up with the rest of the world.
>
> I was expecting the official anouncement on the cisco web site by now.
> Anybody have any information on why this has not happened yet?
>
>
> Tony Schaffran
> Sr. Network Consultant
> CCIE #11071
> CCNP, CCNA, CCDA,
> NNCDS, NNCSS, CNE, MCSE
>
> www.cconlinelabs.com
> Your #1 choice for online Cisco rack rentals.
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of Ramy
> Sisy
> Sent: Thursday, September 25, 2008 5:56 AM
> To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: RE: CCIE Security Changes (Video)
>
> Interesting
> People are waiting for the changes..
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> hamid mahmood
> Sent: Wednesday, September 24, 2008 9:05 PM
> To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: CCIE Security Changes (Video)
>
> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> future of
> CCIE certification. Learn about the hardware and software changes  
> and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 09:47:15 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PDlF6t018000
	GroupStudy Mailer; Thu, 25 Sep 2008 09:47:15 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PDlFvA017997
	for securityxhiddenx; Thu, 25 Sep 2008 09:47:15 -0400
Received: from affirmedsystems.com (affirmedsystems.com
  [216.169.146.182]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8PDlDfk017950 GroupStudy Mailer; Thu, 25 Sep 2008 09:47:13
  -0400
Received: (qmail 22842 invoked from network); 25 Sep 2008 13:46:25 -0000
Received: from [12.196.12.203] (LOCAL [216.169.146.182]) (HELO
  dfaremote) (joe@xxxxxxxxxxxxxxx:com) by juvestra with SMTP; 25 Sep
  2008 13:46:25 -0000 (1222350385.471762)
From: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>
To: "'Ramy Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>, <groupstudy@xxxxxxxxxxxxxxxx>,
        "'hamid mahmood'" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAABW/DkTXScFMtcNGpPTb9toBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 09:45:56 -0400
Message-ID: <83F48AFD53594406989F342C13F99F6A@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAABW/DkTXScFMtcNGpPTb9toBAAAAAA==@xxxxxxxxxxxxxxxxxx>
thread-index: AckeynasA69vWd7dSCWSV+2UONiKUQAQ34eAAACVd5AAANKd4AAAV8wQ
X-ASK-Info: Whitelist match [from joe@xxxxxxxxxxxxxxx\.com] (2008/09/25 09:47:14)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>

The answer is even simplier;

Cisco cant afford to release mars and nac licenses to the lab dept.
They need to sell every damn one, to try and make their little numbers for
the street!

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Ramy
Sisy
Sent: Thursday, September 25, 2008 9:37 AM
To: groupstudy@xxxxxxxxxxxxxxxx; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

The answer is very simple.
Because they are not ready yet :)

BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 



-----Original Message-----
From: Tony Schaffran (GS) [mailto:groupstudy@xxxxxxxxxxxxxxxx] 
Sent: Thursday, September 25, 2008 6:14 AM
To: 'Ramy Sisy'; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

I have been waiting for the changes for the past two years.

It is about time they caught up with the rest of the world.

I was expecting the official anouncement on the cisco web site by now.
Anybody have any information on why this has not happened yet? 


Tony Schaffran
Sr. Network Consultant
CCIE #11071
CCNP, CCNA, CCDA, 
NNCDS, NNCSS, CNE, MCSE
 
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals. 
 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Ramy
Sisy
Sent: Thursday, September 25, 2008 5:56 AM
To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Interesting 
People are waiting for the changes..


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
hamid mahmood
Sent: Wednesday, September 24, 2008 9:05 PM
To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: CCIE Security Changes (Video)

Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
CCIE certification. Learn about the hardware and software changes and which
exam blueprint you should be following.
(Quicktime player required)
http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 09:37:27 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PDbR4T017318
	GroupStudy Mailer; Thu, 25 Sep 2008 09:37:27 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PDbRo8017316
	for securityxhiddenx; Thu, 25 Sep 2008 09:37:27 -0400
Received: from wx-out-0506.google.com (wx-out-0506.google.com
  [66.249.82.224]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PDbP3C017278 GroupStudy Mailer; Thu, 25 Sep 2008 09:37:25
  -0400
Received: by wx-out-0506.google.com with SMTP id s15so98789wxc.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 06:37:24 -0700 (PDT)
Received: by 10.70.38.16 with SMTP id l16mr9679267wxl.50.1222349844695;
  Thu, 25 Sep 2008 06:37:24 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id h37sm2850415wxd.6.2008.09.25.06.37.21 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 25 Sep 2008 06:37:23 -0700 (PDT)
To: <groupstudy@xxxxxxxxxxxxxxxx>, "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>,
        <security@xxxxxxxxxxxxxx>, <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
In-Reply-To: <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 06:37:10 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAABW/DkTXScFMtcNGpPTb9toBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckeynasA69vWd7dSCWSV+2UONiKUQAQ34eAAACVd5AAANKd4A==
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8PDbP3C017278
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/25 09:37:27)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

The answer is very simple.
Because they are not ready yet :)

BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 



-----Original Message-----
From: Tony Schaffran (GS) [mailto:groupstudy@xxxxxxxxxxxxxxxx] 
Sent: Thursday, September 25, 2008 6:14 AM
To: 'Ramy Sisy'; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

I have been waiting for the changes for the past two years.

It is about time they caught up with the rest of the world.

I was expecting the official anouncement on the cisco web site by now.
Anybody have any information on why this has not happened yet? 


Tony Schaffran
Sr. Network Consultant
CCIE #11071
CCNP, CCNA, CCDA, 
NNCDS, NNCSS, CNE, MCSE
 
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals. 
 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of Ramy
Sisy
Sent: Thursday, September 25, 2008 5:56 AM
To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Interesting 
People are waiting for the changes..


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
hamid mahmood
Sent: Wednesday, September 24, 2008 9:05 PM
To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: CCIE Security Changes (Video)

Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
CCIE certification. Learn about the hardware and software changes and which
exam blueprint you should be following.
(Quicktime player required)
http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 11:47:14 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PFlELe031509
	GroupStudy Mailer; Thu, 25 Sep 2008 11:47:14 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PFlEig031507
	for securityxhiddenx; Thu, 25 Sep 2008 11:47:14 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.154]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PFlDq9031487 GroupStudy Mailer; Thu, 25 Sep 2008 11:47:13
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so91038yxi.84 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 08:47:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:in-reply-to:mime-version:content-type:references;
  bh=T0rPuKMjUKytIO4Esr4v1nPcWWDUR1k/SpJVAPjH4lI=;
  b=Z9QicYo7eRSD61JAm2QvEQVBaSkcNYHUNxBclJLM1A7GCrOhuI2UW8dQ9Gt4zP2Lwz
  htBG4o8Mxx4ZOzzKqLCf5CV2te/LieZgiPuObNvSRWfBhYwzzX/iOH9UxQ2YAWKNAw7Q
  eGAnT5bYAiNep3GGJPH2S8QAbSU6GaMshg79Q=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:in-reply-to:mime-version
  :content-type:references;
  b=NCVchfJOMVxHOaGIzNumJ5/bgONVQMdqo/RcC+mWfnjBXvfKhr0DnKefX1kG3jP0Ca
  g066oOU8I3Xs3QCGAVMxbLFNVcS61jzAtiuqnFsfCePILxD+uL/xDafu9R+F6QV4EM18
  1542ZFG4MP92GaZW+3iZfzgJLYPUEgOTJelnw=
Received: by 10.100.171.16 with SMTP id
  t16mr7235453ane.158.1222357631928; Thu, 25 Sep 2008 08:47:11 -0700
  (PDT)
Received: by 10.100.45.13 with HTTP; Thu, 25 Sep 2008 08:47:11 -0700
  (PDT)
Message-ID: <814a4ca70809250847o87304v2bef0f321e581104@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 10:47:11 -0500
From: "Bryan Morrow" <alltimed@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: Re: EZVPN client with a router-on-a-stick
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAI4j3tej87VHo/738p+dlQIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAI4j3tej87VHo/738p+dlQIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from alltimed@xxxxx\.com] (2008/09/25 11:47:14)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Bryan Morrow" <alltimed@xxxxxxxxx>

> Ok, this is my configuration on the router in the DMZ so far. From my ASA I
> can ping the ip address of the loopback address (this is in a test
> environment currently and I do not have any devices behind the other
> network). From this configuration will I be able to access the remote
> network behind my ASA (EZVPN Server) ?


Also, anyway to get around the XAUTH? Having to put a username and password
throws a wrench into what I need to do.

Thanks,

Bryan


Current configuration : 2100 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname DMZ_ROUTER
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 informational
no logging console
enable secret 5 $1$nwoP$6ITz4afoeFlkajdf123mbdz1
!
aaa new-model
!
!
!
aaa session-id common
!
resource policy
!
!
!
ip cef
!
!
!
!
!
username cisco password 7 00540151560C1F0E1C
!
!
!
!
!
!
!
crypto ipsec client ezvpn ASA
 connect auto
 group DefaultRAGroup key Password
 mode network-extension
 peer 1.2.3.4
 xauth userid mode interactive
!
!
!
!
!
interface Loopback0
 ip address 10.2.1.100 255.255.255.0
 ip access-group 100 out
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip virtual-reassembly
 ip tcp adjust-mss 1452
 crypto ipsec client ezvpn ASA inside
!
interface FastEthernet0
 ip address 10.1.1.100 255.255.255.0
 ip access-group 101 in
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip virtual-reassembly
 ip route-cache flow
 duplex auto
 speed auto
 crypto ipsec client ezvpn ASA
!
interface FastEthernet1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
!
interface FastEthernet5
!
interface FastEthernet6
!
interface FastEthernet7
!
interface FastEthernet8
!
interface FastEthernet9
!
interface Vlan1
 no ip address
!
interface Async1
 no ip address
 encapsulation slip
!
ip route 0.0.0.0 0.0.0.0 10.1.1.1
!
!
no ip http server
no ip http secure-server
ip nat inside source route-map EZVPN interface FastEthernet0 overload
!
access-list 100 permit ip any any
access-list 101 permit ip any any
access-list 103 permit ip 10.2.1.0 0.0.0.255 any
!
!
!
route-map EZVPN permit 1
 match ip address 103
!
!
!
!
control-plane
!
!
line con 0
line 1
 modem InOut
 stopbits 1
 speed 115200
 flowcontrol hardware
line aux 0
line vty 0 4
 transport input ssh
line vty 5 15
 transport input ssh
!
!
webvpn context Default_context
 ssl authenticate verify all
 !
 no inservice
!
end

>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Bryan Morrow
> Sent: Tuesday, September 23, 2008 9:08 AM
> To: security@xxxxxxxxxxxxxx
> Subject: EZVPN client with a router-on-a-stick
>
> Does anyone know if it is possible to use a Cisco 1811 as an EZVPN client
> while the router is setup with only one interface? I have a customer that
> requested their VPN router to us be setup in their DMZ with no public
> facing
> interface on the 1811 (VPN device). I usually configure our VPN
> configurations with an internet facing interface and a DMZ facing
> interface.
>
> Thanks,
>
> Bryan


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 12:00:29 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PG0Tdp000902
	GroupStudy Mailer; Thu, 25 Sep 2008 12:00:29 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PG0TvY000900
	for securityxhiddenx; Thu, 25 Sep 2008 12:00:29 -0400
Received: from el-out-1112.google.com (el-out-1112.google.com
  [209.85.162.181]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PG0SDE000837 GroupStudy Mailer; Thu, 25 Sep 2008 12:00:28
  -0400
Received: by el-out-1112.google.com with SMTP id n30so124033elf.12 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 09:00:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=vweieDkigNlmG51xBWuEnkn8pZbJeRIYig4jyxeRyw4=;
  b=ULLMmTMgWF8CiGoGvXn5pWGTDI73ivFlWl1Vlf1cTQxIBzNR/WOmGNwxWUHsTG6HIt
  46uJO9dsD6coLd0n9tXyV+Uk+4tDAqUMqLOSURir6hb+ZaUadeOqGzDPUcyI/vONwQCm
  JFP65CQh4JsRPf0UMTvyw1QtHjZz4uD/Khuk8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=gzcMMvFFUhgzfKGJdBMzRnplXDsV54T3IU16pXzzndwlw+nTpjdGDSA31x26X5ccD6
  KZNsGX0rV//GD5UTDW8WEfRXxKWk4l/ncSuq3mP1A/SM2wktsD750Mn0lF95dpavrg3c
  2hxv4SjkAHykskMAmUHoHhClfXD3UjpbWy+W8=
Received: by 10.151.51.18 with SMTP id d18mr131791ybk.104.1222358426480;
  Thu, 25 Sep 2008 09:00:26 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Thu, 25 Sep 2008 09:00:26 -0700
  (PDT)
Message-ID: <eff3217d0809250900g574fb1aay1908759e1d0b9186@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 19:00:26 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>
Subject: Re: CCIE Security Changes (Video)
Cc: "Tony Schaffran (GS)" <groupstudy@xxxxxxxxxxxxxxxx>,
        "Ramy Sisy"
  <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "hamid mahmood" <hamidnow@xxxxxxxxx>, security@xxxxxxxxxxxxxx,
        ccielab@xxxxxxxxxxxxxx
In-Reply-To: <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/25 12:00:29)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Actually I think the Cisco CCIE Team is catching up on the technology
themselves After all the 'Panel' crap, its basically one guy who writes most
of the 'security' labs :). Same is true for Voice. They really don't invest
enough on the CCIE team it seems.

In Jan 2008 one of my friends were told by the CCIE Sec. Program Manager
himself that 'we are in the process of installing equipment these days'.  So
I would expect an announcement 'very soon'. As per one Cisco Official CCIE
Forum I attended years ago, they get the stuff at 10% of the list price,
that is basically 'nothing'.

Regards

Farrukh


On Thu, Sep 25, 2008 at 4:51 PM, Brandon Carroll <
brandon.carroll@xxxxxxxxxxx> wrote:

> My guess is politics.
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
>
> > I have been waiting for the changes for the past two years.
> >
> > It is about time they caught up with the rest of the world.
> >
> > I was expecting the official anouncement on the cisco web site by now.
> > Anybody have any information on why this has not happened yet?
> >
> >
> > Tony Schaffran
> > Sr. Network Consultant
> > CCIE #11071
> > CCNP, CCNA, CCDA,
> > NNCDS, NNCSS, CNE, MCSE
> >
> > www.cconlinelabs.com
> > Your #1 choice for online Cisco rack rentals.
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> > Of Ramy
> > Sisy
> > Sent: Thursday, September 25, 2008 5:56 AM
> > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: RE: CCIE Security Changes (Video)
> >
> > Interesting
> > People are waiting for the changes..
> >
> >
> > BEST REGARDS,
> >
> > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> > CCIE PROGRAM MANAGER
> >
> > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > WWW.INSPIREDMASTER.COM
> > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> >
> >
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> > Of
> > hamid mahmood
> > Sent: Wednesday, September 24, 2008 9:05 PM
> > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: CCIE Security Changes (Video)
> >
> > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > future of
> > CCIE certification. Learn about the hardware and software changes
> > and which
> > exam blueprint you should be following.
> > (Quicktime player required)
> > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 12:13:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PGDjch002879
	GroupStudy Mailer; Thu, 25 Sep 2008 12:13:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PGDjmd002877
	for securityxhiddenx; Thu, 25 Sep 2008 12:13:45 -0400
Received: from affirmedsystems.com (affirmedsystems.com
  [216.169.146.182]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8PGDiEt002851 GroupStudy Mailer; Thu, 25 Sep 2008 12:13:44
  -0400
Received: (qmail 19864 invoked from network); 25 Sep 2008 16:12:21 -0000
Received: from [12.196.12.203] (LOCAL [216.169.146.182]) (HELO
  dfaremote) (joe@xxxxxxxxxxxxxxx:com) by juvestra with SMTP; 25 Sep
  2008 16:12:21 -0000 (1222359141.711665)
From: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>
To: "'Farrukh Haroon'" <farrukhharoon@xxxxxxxxx>,
        "'Brandon Carroll'"
  <brandon.carroll@xxxxxxxxxxx>
Cc: "'Tony Schaffran \(GS\)'" <groupstudy@xxxxxxxxxxxxxxxx>,
        "'Ramy
  Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx> 
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
  <eff3217d0809250900g574fb1aay1908759e1d0b9186@xxxxxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 12:11:54 -0400
Message-ID: <5403A6B992D64E239B2A3E393AEAC36D@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <eff3217d0809250900g574fb1aay1908759e1d0b9186@xxxxxxxxxxxxxx>
Thread-Index: AckfKDxxD18ZFRTcSYmqEcJnj+A+NAAAKmHA
X-ASK-Info: Whitelist match [from joe@xxxxxxxxxxxxxxx\.com] (2008/09/25 12:13:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joseph Brunner" <joe@xxxxxxxxxxxxxxxxxxx>

I knew they charged the lab dept (even internally)... 

That's how much a company run by a salesman values the "experts" that often
are the backstop to a situation where a customer is considering if they made
the right choice going with Cisco...

Next time I'm down there it will be $48 like in Manhattan for parking...

The CCIE lab should have the latest stuff even before the "sales people" are
told it's invented... Muaah ha!


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Farrukh Haroon
Sent: Thursday, September 25, 2008 12:00 PM
To: Brandon Carroll
Cc: Tony Schaffran (GS); Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

Actually I think the Cisco CCIE Team is catching up on the technology
themselves After all the 'Panel' crap, its basically one guy who writes most
of the 'security' labs :). Same is true for Voice. They really don't invest
enough on the CCIE team it seems.

In Jan 2008 one of my friends were told by the CCIE Sec. Program Manager
himself that 'we are in the process of installing equipment these days'.  So
I would expect an announcement 'very soon'. As per one Cisco Official CCIE
Forum I attended years ago, they get the stuff at 10% of the list price,
that is basically 'nothing'.

Regards

Farrukh


On Thu, Sep 25, 2008 at 4:51 PM, Brandon Carroll <
brandon.carroll@xxxxxxxxxxx> wrote:

> My guess is politics.
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
>
> > I have been waiting for the changes for the past two years.
> >
> > It is about time they caught up with the rest of the world.
> >
> > I was expecting the official anouncement on the cisco web site by now.
> > Anybody have any information on why this has not happened yet?
> >
> >
> > Tony Schaffran
> > Sr. Network Consultant
> > CCIE #11071
> > CCNP, CCNA, CCDA,
> > NNCDS, NNCSS, CNE, MCSE
> >
> > www.cconlinelabs.com
> > Your #1 choice for online Cisco rack rentals.
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> > Of Ramy
> > Sisy
> > Sent: Thursday, September 25, 2008 5:56 AM
> > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: RE: CCIE Security Changes (Video)
> >
> > Interesting
> > People are waiting for the changes..
> >
> >
> > BEST REGARDS,
> >
> > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> > CCIE PROGRAM MANAGER
> >
> > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > WWW.INSPIREDMASTER.COM
> > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> >
> >
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf
> > Of
> > hamid mahmood
> > Sent: Wednesday, September 24, 2008 9:05 PM
> > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: CCIE Security Changes (Video)
> >
> > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > future of
> > CCIE certification. Learn about the hardware and software changes
> > and which
> > exam blueprint you should be following.
> > (Quicktime player required)
> > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 13:44:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PHiBMf012448
	GroupStudy Mailer; Thu, 25 Sep 2008 13:44:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PHiB8X012446
	for securityxhiddenx; Thu, 25 Sep 2008 13:44:11 -0400
Received: from mail3.cdw.com (mail3.cdw.com [12.32.91.180]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8PHiArb012411; Thu, 25 Sep 2008 13:44:10 -0400
X-IronPort-AV: E=McAfee;i="5200,2160,5391"; a="7289570"
X-CSIP: YES
Subject: Re: CCIE Security Changes (Video)
From: Stan Buskus <stan.buskus@xxxxxxx>
To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
Cc: "Tony Schaffran (GS)" <groupstudy@xxxxxxxxxxxxxxxx>,
        Ramy Sisy
  <ramysisy@xxxxxxxxxxxxxxxxxx>,
        hamid mahmood <hamidnow@xxxxxxxxx>, security@xxxxxxxxxxxxxx,
        ccielab@xxxxxxxxxxxxxx
In-Reply-To: <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
Date: Thu, 25 Sep 2008 12:43:59 -0500
Message-Id: <1222364639.29907.2.camel@xxxxxxxxx>
Mime-Version: 1.0
X-Mailer: Evolution 2.22.3.1 (2.22.3.1-1.fc9) 
X-OriginalArrivalTime: 25 Sep 2008 17:44:03.0353 (UTC)
  FILETIME=[4CC65090:01C91F36]
X-ASK-Info: Whitelist match [from stan\.buskus@xxx\.com] (2008/09/25 13:44:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Stan Buskus <stan.buskus@xxxxxxx>

More likely it is the training/certification industry. Imagine all the
new guides and classes that would need to retool for the new test. 

Stan





On Thu, 2008-09-25 at 09:51 -0400, Brandon Carroll wrote:
> My guess is politics.
> 
> 
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
> 
> ph.206-850-2384
> 
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
> 
> 
> 
> 
> 
> On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
> 
> > I have been waiting for the changes for the past two years.
> >
> > It is about time they caught up with the rest of the world.
> >
> > I was expecting the official anouncement on the cisco web site by now.
> > Anybody have any information on why this has not happened yet?
> >
> >
> > Tony Schaffran
> > Sr. Network Consultant
> > CCIE #11071
> > CCNP, CCNA, CCDA,
> > NNCDS, NNCSS, CNE, MCSE
> >
> > www.cconlinelabs.com
> > Your #1 choice for online Cisco rack rentals.
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> > Of Ramy
> > Sisy
> > Sent: Thursday, September 25, 2008 5:56 AM
> > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: RE: CCIE Security Changes (Video)
> >
> > Interesting
> > People are waiting for the changes..
> >
> >
> > BEST REGARDS,
> >
> > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> > CCIE PROGRAM MANAGER
> >
> > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> > WWW.INSPIREDMASTER.COM
> > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> >
> >
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> > Of
> > hamid mahmood
> > Sent: Wednesday, September 24, 2008 9:05 PM
> > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > Subject: CCIE Security Changes (Video)
> >
> > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> > future of
> > CCIE certification. Learn about the hardware and software changes  
> > and which
> > exam blueprint you should be following.
> > (Quicktime player required)
> > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 13:56:25 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PHuPtj014492
	GroupStudy Mailer; Thu, 25 Sep 2008 13:56:25 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PHuPgZ014490
	for securityxhiddenx; Thu, 25 Sep 2008 13:56:25 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.189]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PHuN8u014452 GroupStudy Mailer; Thu, 25 Sep 2008 13:56:23
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so207112rnd.15 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 10:56:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to
  :in-reply-to:content-type:mime-version:subject:date:references
  :x-mailer:sender; bh=DceRy0SQVysYgphfLs++Em9memr61s1BbJc7evmVMF0=;
  b=fbexhZnIGyu1pz7D5PW5ZnerJoJTJIa3paiD21JgpdP/efy1k64Q3uWQAccWtmFsQq
  V+mc1R7jfDoUe4Cf9/n0UtCWEFALztkYwTDULPrz/4HOZC6+pvaysykPMTvRbKJHGa7l
  9J4l3bob0IyPjGVkwfPlq+wF3oaZoffl1EvHU=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=cc:message-id:from:to:in-reply-to:content-type:mime-version:subject
  :date:references:x-mailer:sender;
  b=eRl0e9ugaYznbBCGAaIBcuJ4d1O2PvHKpqi56oOEfGLRpkXLNFh65EBJZA/kyagrT/
  GihvbbR1xo8TVgE92FGaqMylr/NzeY58tMqMfnOfGXzeXI6tMXOk6f5l+oFYYzHpQn1a
  hTKShmGpCFcPDvfqKBJe5Gm0RFiv0Vw+j/qig=
Received: by 10.100.96.9 with SMTP id t9mr63927anb.66.1222365381565;
  Thu, 25 Sep 2008 10:56:21 -0700 (PDT)
Received: from dhcp-guest-req01-64-102-168-216.cisco.com (
  [64.102.168.216]) by mx.google.com with ESMTPS id
  h38sm911407wxd.33.2008.09.25.10.56.13 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 25 Sep 2008 10:56:18 -0700 (PDT)
Cc: "Tony Schaffran \(GS\)" <groupstudy@xxxxxxxxxxxxxxxx>,
        "Ramy Sisy"
  <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "hamid mahmood" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
Message-Id: <D846C933-17F1-4C6F-B7FC-DA6E4C85F41E@xxxxxxxxxxx>
From: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>
To: Stan Buskus <Stan.Buskus@xxxxxxx>
In-Reply-To: <1222364639.29907.2.camel@xxxxxxxxx>
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Apple Message framework v929.2)
Subject: Re: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 13:56:09 -0400
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
  <1222364639.29907.2.camel@xxxxxxxxx>
X-Mailer: Apple Mail (2.929.2)
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/25 13:56:25)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Brandon Carroll <brandon.carroll@xxxxxxxxxxx>

since the ccie training is not cisco "certified" training i doubt they  
care about the training industry being ready.  the CCSP cert is  
already ahead of the IE security.  It has MARS, ASA 8,  IOS 12.4 and  
so on.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 1:43 PM, Stan Buskus wrote:

> More likely it is the training/certification industry. Imagine all the
> new guides and classes that would need to retool for the new test.
>
> Stan
>
>
>
>
>
> On Thu, 2008-09-25 at 09:51 -0400, Brandon Carroll wrote:
> > My guess is politics.
> >
> >
> > Brandon Carroll
> > Senior Instructor
> > Ascolta
> > 606 120th Ave NE
> > D-201
> > Bellevue, Wa. 98056
> >
> > ph.206-850-2384
> >
> > brandon.carroll@xxxxxxxxxxx
> > http://www.ascolta.com
> > http://www.globalconfig.net
> > http://ccieprep.me
> >
> >
> >
> >
> >
> > On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
> >
> > > I have been waiting for the changes for the past two years.
> > >
> > > It is about time they caught up with the rest of the world.
> > >
> > > I was expecting the official anouncement on the cisco web site  
> by now.
> > > Anybody have any information on why this has not happened yet?
> > >
> > >
> > > Tony Schaffran
> > > Sr. Network Consultant
> > > CCIE #11071
> > > CCNP, CCNA, CCDA,
> > > NNCDS, NNCSS, CNE, MCSE
> > >
> > > www.cconlinelabs.com
> > > Your #1 choice for online Cisco rack rentals.
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of Ramy
> > > Sisy
> > > Sent: Thursday, September 25, 2008 5:56 AM
> > > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: RE: CCIE Security Changes (Video)
> > >
> > > Interesting
> > > People are waiting for the changes..
> > >
> > >
> > > BEST REGARDS,
> > >
> > > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321,  
> CCSI#30417
> > > CCIE PROGRAM MANAGER
> > >
> > > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > > WWW.INSPIREDMASTER.COM
> > > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> > >
> > >
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of
> > > hamid mahmood
> > > Sent: Wednesday, September 24, 2008 9:05 PM
> > > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: CCIE Security Changes (Video)
> > >
> > > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > > future of
> > > CCIE certification. Learn about the hardware and software changes
> > > and which
> > > exam blueprint you should be following.
> > > (Quicktime player required)
> > > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > >  
> _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 14:21:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PILQ9x017804
	GroupStudy Mailer; Thu, 25 Sep 2008 14:21:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PILQmi017802
	for securityxhiddenx; Thu, 25 Sep 2008 14:21:26 -0400
Received: from mail.netcraftsmen.net (mail.netcraftsmen.net
  [208.72.84.57]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PILN4a017751; Thu, 25 Sep 2008 14:21:23 -0400
Received: from DFL7GWG1 (mail.netcraftsmen.net [127.0.0.1]) by
  mail.netcraftsmen.net (Postfix) with ESMTP id 6F8D96009D; Thu, 25 Sep
  2008 14:19:16 -0400 (EDT)
From: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>
To: "'Luan Nguyen'" <luan@xxxxxxxxxxxxxxxx>,
        "'Brandon Carroll'"
  <brandon.carroll@xxxxxxxxxxx>,
        "'Stan Buskus'" <Stan.Buskus@xxxxxxx>
Cc: "'Tony Schaffran \(GS\)'" <groupstudy@xxxxxxxxxxxxxxxx>,
        "'Ramy
  Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx> 
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx> 
  <1222364639.29907.2.camel@xxxxxxxxx>
  <D846C933-17F1-4C6F-B7FC-DA6E4C85F41E@xxxxxxxxxxx> 
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 14:21:16 -0400
Message-ID: <013201c91f3b$7faf5ba0$7f0e12e0$@net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckfOFFWIlynt0LlQBaTTGnv/qPrHQAAihGwAAAx0/A=
Content-Language: en-us
X-ASK-Info: Whitelist match [from luan@xxxxxxxxxxxx\.net] (2008/09/25 14:21:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>

I was trying to say:  And then make CCSP a prerequisite for CCIE...sort of
like JNCIP-M and JNCIE-M.	


-----Original Message-----
From: Luan Nguyen [mailto:luan@xxxxxxxxxxxxxxxx] 
Sent: Thursday, September 25, 2008 2:19 PM
To: 'Brandon Carroll'; 'Stan Buskus'
Cc: 'Tony Schaffran (GS)'; 'Ramy Sisy'; 'hamid mahmood';
'security@xxxxxxxxxxxxxx'; 'ccielab@xxxxxxxxxxxxxx'
Subject: RE: CCIE Security Changes (Video)

They should give an add-on lab to CCSP.  After you pass all your CCSP
writtens, you should do a 4 hours mini lab :)
And this could be taken in any testing center using Labgear.  And te

Luan



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 1:56 PM
To: Stan Buskus
Cc: Tony Schaffran (GS); Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

since the ccie training is not cisco "certified" training i doubt they  
care about the training industry being ready.  the CCSP cert is  
already ahead of the IE security.  It has MARS, ASA 8,  IOS 12.4 and  
so on.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 1:43 PM, Stan Buskus wrote:

> More likely it is the training/certification industry. Imagine all the
> new guides and classes that would need to retool for the new test.
>
> Stan
>
>
>
>
>
> On Thu, 2008-09-25 at 09:51 -0400, Brandon Carroll wrote:
> > My guess is politics.
> >
> >
> > Brandon Carroll
> > Senior Instructor
> > Ascolta
> > 606 120th Ave NE
> > D-201
> > Bellevue, Wa. 98056
> >
> > ph.206-850-2384
> >
> > brandon.carroll@xxxxxxxxxxx
> > http://www.ascolta.com
> > http://www.globalconfig.net
> > http://ccieprep.me
> >
> >
> >
> >
> >
> > On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
> >
> > > I have been waiting for the changes for the past two years.
> > >
> > > It is about time they caught up with the rest of the world.
> > >
> > > I was expecting the official anouncement on the cisco web site  
> by now.
> > > Anybody have any information on why this has not happened yet?
> > >
> > >
> > > Tony Schaffran
> > > Sr. Network Consultant
> > > CCIE #11071
> > > CCNP, CCNA, CCDA,
> > > NNCDS, NNCSS, CNE, MCSE
> > >
> > > www.cconlinelabs.com
> > > Your #1 choice for online Cisco rack rentals.
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of Ramy
> > > Sisy
> > > Sent: Thursday, September 25, 2008 5:56 AM
> > > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: RE: CCIE Security Changes (Video)
> > >
> > > Interesting
> > > People are waiting for the changes..
> > >
> > >
> > > BEST REGARDS,
> > >
> > > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321,  
> CCSI#30417
> > > CCIE PROGRAM MANAGER
> > >
> > > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > > WWW.INSPIREDMASTER.COM
> > > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> > >
> > >
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of
> > > hamid mahmood
> > > Sent: Wednesday, September 24, 2008 9:05 PM
> > > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: CCIE Security Changes (Video)
> > >
> > > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > > future of
> > > CCIE certification. Learn about the hardware and software changes
> > > and which
> > > exam blueprint you should be following.
> > > (Quicktime player required)
> > > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > >  
> _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 14:19:24 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PIJOn2017601
	GroupStudy Mailer; Thu, 25 Sep 2008 14:19:24 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PIJOKj017599
	for securityxhiddenx; Thu, 25 Sep 2008 14:19:24 -0400
Received: from mail.netcraftsmen.net (mail.netcraftsmen.net
  [208.72.84.57]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PIJJDG017546; Thu, 25 Sep 2008 14:19:20 -0400
Received: from DFL7GWG1 (mail.netcraftsmen.net [127.0.0.1]) by
  mail.netcraftsmen.net (Postfix) with ESMTP id 24C106009B; Thu, 25 Sep
  2008 14:17:12 -0400 (EDT)
From: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>
To: "'Brandon Carroll'" <brandon.carroll@xxxxxxxxxxx>,
        "'Stan Buskus'"
  <Stan.Buskus@xxxxxxx>
Cc: "'Tony Schaffran \(GS\)'" <groupstudy@xxxxxxxxxxxxxxxx>,
        "'Ramy
  Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx> 
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx> 
  <1222364639.29907.2.camel@xxxxxxxxx>
  <D846C933-17F1-4C6F-B7FC-DA6E4C85F41E@xxxxxxxxxxx>
In-Reply-To: <D846C933-17F1-4C6F-B7FC-DA6E4C85F41E@xxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 14:19:11 -0400
Message-ID: <012e01c91f3b$35992410$a0cb6c30$@net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckfOFFWIlynt0LlQBaTTGnv/qPrHQAAihGw
Content-Language: en-us
X-ASK-Info: Our key was found in the mail (2008/09/25 14:19:24)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>

They should give an add-on lab to CCSP.  After you pass all your CCSP
writtens, you should do a 4 hours mini lab :)
And this could be taken in any testing center using Labgear.  And te

Luan



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 1:56 PM
To: Stan Buskus
Cc: Tony Schaffran (GS); Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

since the ccie training is not cisco "certified" training i doubt they  
care about the training industry being ready.  the CCSP cert is  
already ahead of the IE security.  It has MARS, ASA 8,  IOS 12.4 and  
so on.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 1:43 PM, Stan Buskus wrote:

> More likely it is the training/certification industry. Imagine all the
> new guides and classes that would need to retool for the new test.
>
> Stan
>
>
>
>
>
> On Thu, 2008-09-25 at 09:51 -0400, Brandon Carroll wrote:
> > My guess is politics.
> >
> >
> > Brandon Carroll
> > Senior Instructor
> > Ascolta
> > 606 120th Ave NE
> > D-201
> > Bellevue, Wa. 98056
> >
> > ph.206-850-2384
> >
> > brandon.carroll@xxxxxxxxxxx
> > http://www.ascolta.com
> > http://www.globalconfig.net
> > http://ccieprep.me
> >
> >
> >
> >
> >
> > On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
> >
> > > I have been waiting for the changes for the past two years.
> > >
> > > It is about time they caught up with the rest of the world.
> > >
> > > I was expecting the official anouncement on the cisco web site  
> by now.
> > > Anybody have any information on why this has not happened yet?
> > >
> > >
> > > Tony Schaffran
> > > Sr. Network Consultant
> > > CCIE #11071
> > > CCNP, CCNA, CCDA,
> > > NNCDS, NNCSS, CNE, MCSE
> > >
> > > www.cconlinelabs.com
> > > Your #1 choice for online Cisco rack rentals.
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of Ramy
> > > Sisy
> > > Sent: Thursday, September 25, 2008 5:56 AM
> > > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: RE: CCIE Security Changes (Video)
> > >
> > > Interesting
> > > People are waiting for the changes..
> > >
> > >
> > > BEST REGARDS,
> > >
> > > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321,  
> CCSI#30417
> > > CCIE PROGRAM MANAGER
> > >
> > > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > > WWW.INSPIREDMASTER.COM
> > > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> > >
> > >
> > >
> > >
> > > -----Original Message-----
> > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On  
> Behalf
> > > Of
> > > hamid mahmood
> > > Sent: Wednesday, September 24, 2008 9:05 PM
> > > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > Subject: CCIE Security Changes (Video)
> > >
> > > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > > future of
> > > CCIE certification. Learn about the hardware and software changes
> > > and which
> > > exam blueprint you should be following.
> > > (Quicktime player required)
> > > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > >  
> _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 14:47:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PIls54021072
	GroupStudy Mailer; Thu, 25 Sep 2008 14:47:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PIlsuW021070
	for securityxhiddenx; Thu, 25 Sep 2008 14:47:54 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.189]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PIlrW7021032 GroupStudy Mailer; Thu, 25 Sep 2008 14:47:53
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so217210rnd.15 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 11:47:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=WHkYhsXh2wfnms7L5qJ1d2//iZrcj5/JVZVZgiX+PMo=;
  b=QWl0ZGuPy64I2DvmmlLa88SU4EEdhHraVHf+qeGg1yE8MRR0oNHf7WtHURfpsKO2SG
  0TtzHTFbfDH9ZioUI6t+q7yR6q4w4a41ccwt8RjOtfeNICGvQnnoeJUekljZixgE+FIp
  KCalrq4wU4lIWzn0zVKlMSoT9CEG4jsckZPAg=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=JzmospNUwfPFcd3FbV0heuc/bC15zUt81/eRefBvDP9YXdGrtIYemmLUocqerYdL0g
  A689ZYrbRMCMVZt6F32cPxaQPNQOJNFg32tU/IQhw/h62kso6+Xxe8RXMyEOCy+zQ4uA
  PLaVZb1HSHLk75GhOOeq8P2zS1b+/tR5zYSVA=
Received: by 10.151.13.7 with SMTP id q7mr373402ybi.123.1222368471632;
  Thu, 25 Sep 2008 11:47:51 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Thu, 25 Sep 2008 11:47:51 -0700
  (PDT)
Message-ID: <eff3217d0809251147m5fd4cfc6ned948d94f5ca6d9b@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 21:47:51 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>
Subject: Re: CCIE Security Changes (Video)
Cc: "Brandon Carroll" <brandon.carroll@xxxxxxxxxxx>,
        "Stan Buskus"
  <Stan.Buskus@xxxxxxx>,
        "Tony Schaffran (GS)"
  <groupstudy@xxxxxxxxxxxxxxxx>,
        "Ramy Sisy"
  <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "hamid mahmood" <hamidnow@xxxxxxxxx>, security@xxxxxxxxxxxxxx,
        ccielab@xxxxxxxxxxxxxx
In-Reply-To: <013201c91f3b$7faf5ba0$7f0e12e0$@net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
  <1222364639.29907.2.camel@xxxxxxxxx>
  <D846C933-17F1-4C6F-B7FC-DA6E4C85F41E@xxxxxxxxxxx>
  <013201c91f3b$7faf5ba0$7f0e12e0$@net>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/25 14:47:54)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Nice interview there. The most interesting part for me was that its going to
be 12.4T and *not* 12.4. :)

On Thu, Sep 25, 2008 at 9:21 PM, Luan Nguyen <luan@xxxxxxxxxxxxxxxx> wrote:

> I was trying to say:  And then make CCSP a prerequisite for CCIE...sort of
> like JNCIP-M and JNCIE-M.
>
>
> -----Original Message-----
> From: Luan Nguyen [mailto:luan@xxxxxxxxxxxxxxxx]
> Sent: Thursday, September 25, 2008 2:19 PM
> To: 'Brandon Carroll'; 'Stan Buskus'
> Cc: 'Tony Schaffran (GS)'; 'Ramy Sisy'; 'hamid mahmood';
> 'security@xxxxxxxxxxxxxx'; 'ccielab@xxxxxxxxxxxxxx'
> Subject: RE: CCIE Security Changes (Video)
>
> They should give an add-on lab to CCSP.  After you pass all your CCSP
> writtens, you should do a 4 hours mini lab :)
> And this could be taken in any testing center using Labgear.  And te
>
> Luan
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Brandon Carroll
> Sent: Thursday, September 25, 2008 1:56 PM
> To: Stan Buskus
> Cc: Tony Schaffran (GS); Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx
> ;
> ccielab@xxxxxxxxxxxxxx
> Subject: Re: CCIE Security Changes (Video)
>
> since the ccie training is not cisco "certified" training i doubt they
> care about the training industry being ready.  the CCSP cert is
> already ahead of the IE security.  It has MARS, ASA 8,  IOS 12.4 and
> so on.
>
>
> Brandon Carroll
> Senior Instructor
> Ascolta
> 606 120th Ave NE
> D-201
> Bellevue, Wa. 98056
>
> ph.206-850-2384
>
> brandon.carroll@xxxxxxxxxxx
> http://www.ascolta.com
> http://www.globalconfig.net
> http://ccieprep.me
>
>
>
>
>
> On Sep 25, 2008, at 1:43 PM, Stan Buskus wrote:
>
> > More likely it is the training/certification industry. Imagine all the
> > new guides and classes that would need to retool for the new test.
> >
> > Stan
> >
> >
> >
> >
> >
> > On Thu, 2008-09-25 at 09:51 -0400, Brandon Carroll wrote:
> > > My guess is politics.
> > >
> > >
> > > Brandon Carroll
> > > Senior Instructor
> > > Ascolta
> > > 606 120th Ave NE
> > > D-201
> > > Bellevue, Wa. 98056
> > >
> > > ph.206-850-2384
> > >
> > > brandon.carroll@xxxxxxxxxxx
> > > http://www.ascolta.com
> > > http://www.globalconfig.net
> > > http://ccieprep.me
> > >
> > >
> > >
> > >
> > >
> > > On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:
> > >
> > > > I have been waiting for the changes for the past two years.
> > > >
> > > > It is about time they caught up with the rest of the world.
> > > >
> > > > I was expecting the official anouncement on the cisco web site
> > by now.
> > > > Anybody have any information on why this has not happened yet?
> > > >
> > > >
> > > > Tony Schaffran
> > > > Sr. Network Consultant
> > > > CCIE #11071
> > > > CCNP, CCNA, CCDA,
> > > > NNCDS, NNCSS, CNE, MCSE
> > > >
> > > > www.cconlinelabs.com
> > > > Your #1 choice for online Cisco rack rentals.
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On
> > Behalf
> > > > Of Ramy
> > > > Sisy
> > > > Sent: Thursday, September 25, 2008 5:56 AM
> > > > To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > > Subject: RE: CCIE Security Changes (Video)
> > > >
> > > > Interesting
> > > > People are waiting for the changes..
> > > >
> > > >
> > > > BEST REGARDS,
> > > >
> > > > RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321,
> > CCSI#30417
> > > > CCIE PROGRAM MANAGER
> > > >
> > > > INSPIRED MASTER | INSPIRING CREATIVE THINKING... |
> > > > WWW.INSPIREDMASTER.COM
> > > > INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> > > > E. RAMYSISY@xxxxxxxxxxxxxxxxxx
> > > >
> > > >
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On
> > Behalf
> > > > Of
> > > > hamid mahmood
> > > > Sent: Wednesday, September 24, 2008 9:05 PM
> > > > To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> > > > Subject: CCIE Security Changes (Video)
> > > >
> > > > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the
> > > > future of
> > > > CCIE certification. Learn about the hardware and software changes
> > > > and which
> > > > exam blueprint you should be following.
> > > > (Quicktime player required)
> > > > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
> > > >
> > > >
> > > > Blogs and organic groups at http://www.ccie.net
> > > >
> > > >
> > _______________________________________________________________________
> > > > Subscription information may be found at:
> > > > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 15:43:31 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PJhVau029274
	GroupStudy Mailer; Thu, 25 Sep 2008 15:43:31 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PJhVNM029272
	for securityxhiddenx; Thu, 25 Sep 2008 15:43:31 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PJhV0N029251 GroupStudy Mailer; Thu, 25 Sep 2008 15:43:31
  -0400
Received: by gxk13 with SMTP id 13so10459241gxk.6 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 12:43:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=atjttTO7M9VD7wBmfGpMpky909k8B2kzNLIvdipS2EY=;
  b=Ei2Hf+GAuwvOzICP06BFfgbQN8RBVVVb0aomDPx1K4tRMpHaUGqOxMW+tpMiOqJ0Oa
  n9/MfnV+gSyI3M8JNXfX5DIX4KBwIX2BMN2JTHcq+uVBaCls1HSX5pEcFXfZG8C+fIj8
  Yc7CzlWmk5twAiOkaWmI+8E9Wy7qB5PE/RUdk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=t865NVOAHVQXGbU+jvlsTscP5keUdOYN40F5SEJ48tozAa0KfBXThhRVxqwhqEQAuG
  X30e2Z0LZo6ak7YhL0GCh3Ta8+kox5Y7Fpuc2iQAT2dnIiTpo1DbhgQR3Ak//kUQgibB
  cGuE2+J2q/6MOgeQdE8gCWA74O6KOi84yDy2M=
Received: by 10.151.39.2 with SMTP id r2mr454501ybj.129.1222371803746;
  Thu, 25 Sep 2008 12:43:23 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Thu, 25 Sep 2008 12:43:23 -0700
  (PDT)
Message-ID: <eff3217d0809251243o467bd2c9l38d20ff14176ed18@xxxxxxxxxxxxxx>
Date: Thu, 25 Sep 2008 22:43:23 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Bryan Morrow" <alltimed@xxxxxxxxx>
Subject: Re: EZVPN client with a router-on-a-stick
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <814a4ca70809250847o87304v2bef0f321e581104@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <814a4ca70809230908i1b6d4449g46dbfe742078a7e1@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAI4j3tej87VHo/738p+dlQIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <814a4ca70809250847o87304v2bef0f321e581104@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/25 15:43:31)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

You can disable xauth by using the following command:

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/i3_72.html#wp1731892

Yes you should be able to ping, just make sure you source your pings from
the loopback (on the client).

Regards

Farrukh

On Thu, Sep 25, 2008 at 6:47 PM, Bryan Morrow <alltimed@xxxxxxxxx> wrote:

> > Ok, this is my configuration on the router in the DMZ so far. From my ASA
> I
> > can ping the ip address of the loopback address (this is in a test
> > environment currently and I do not have any devices behind the other
> > network). From this configuration will I be able to access the remote
> > network behind my ASA (EZVPN Server) ?
>
>
> Also, anyway to get around the XAUTH? Having to put a username and password
> throws a wrench into what I need to do.
>
> Thanks,
>
> Bryan
>
>
> Current configuration : 2100 bytes
> !
> version 12.4
> service timestamps debug datetime msec
> service timestamps log datetime msec
> service password-encryption
> !
> hostname DMZ_ROUTER
> !
> boot-start-marker
> boot-end-marker
> !
> logging buffered 4096 informational
> no logging console
> enable secret 5 $1$nwoP$6ITz4afoeFlkajdf123mbdz1
> !
> aaa new-model
> !
> !
> !
> aaa session-id common
> !
> resource policy
> !
> !
> !
> ip cef
> !
> !
> !
> !
> !
> username cisco password 7 00540151560C1F0E1C
> !
> !
> !
> !
> !
> !
> !
> crypto ipsec client ezvpn ASA
>  connect auto
>  group DefaultRAGroup key Password
>  mode network-extension
>  peer 1.2.3.4
>  xauth userid mode interactive
> !
> !
> !
> !
> !
> interface Loopback0
>  ip address 10.2.1.100 255.255.255.0
>  ip access-group 100 out
>  no ip redirects
>  no ip unreachables
>  no ip proxy-arp
>  ip virtual-reassembly
>  ip tcp adjust-mss 1452
>  crypto ipsec client ezvpn ASA inside
> !
> interface FastEthernet0
>  ip address 10.1.1.100 255.255.255.0
>  ip access-group 101 in
>  no ip redirects
>  no ip unreachables
>  no ip proxy-arp
>  ip virtual-reassembly
>  ip route-cache flow
>  duplex auto
>  speed auto
>  crypto ipsec client ezvpn ASA
> !
> interface FastEthernet1
>  no ip address
>  shutdown
>  duplex auto
>  speed auto
> !
> interface FastEthernet2
> !
> interface FastEthernet3
> !
> interface FastEthernet4
> !
> interface FastEthernet5
> !
> interface FastEthernet6
> !
> interface FastEthernet7
> !
> interface FastEthernet8
> !
> interface FastEthernet9
> !
> interface Vlan1
>  no ip address
> !
> interface Async1
>  no ip address
>  encapsulation slip
> !
> ip route 0.0.0.0 0.0.0.0 10.1.1.1
> !
> !
> no ip http server
> no ip http secure-server
> ip nat inside source route-map EZVPN interface FastEthernet0 overload
> !
> access-list 100 permit ip any any
> access-list 101 permit ip any any
> access-list 103 permit ip 10.2.1.0 0.0.0.255 any
> !
> !
> !
> route-map EZVPN permit 1
>  match ip address 103
> !
> !
> !
> !
> control-plane
> !
> !
> line con 0
> line 1
>  modem InOut
>  stopbits 1
>  speed 115200
>  flowcontrol hardware
> line aux 0
> line vty 0 4
>  transport input ssh
> line vty 5 15
>  transport input ssh
> !
> !
> webvpn context Default_context
>  ssl authenticate verify all
>  !
>  no inservice
> !
> end
>
> >
> >
> > -----Original Message-----
> > From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> > Bryan Morrow
> > Sent: Tuesday, September 23, 2008 9:08 AM
> > To: security@xxxxxxxxxxxxxx
> > Subject: EZVPN client with a router-on-a-stick
> >
> > Does anyone know if it is possible to use a Cisco 1811 as an EZVPN client
> > while the router is setup with only one interface? I have a customer that
> > requested their VPN router to us be setup in their DMZ with no public
> > facing
> > interface on the 1811 (VPN device). I usually configure our VPN
> > configurations with an internet facing interface and a DMZ facing
> > interface.
> >
> > Thanks,
> >
> > Bryan


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 17:52:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PLq35j010397
	GroupStudy Mailer; Thu, 25 Sep 2008 17:52:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PLq3S5010395
	for securityxhiddenx; Thu, 25 Sep 2008 17:52:03 -0400
Received: from qw-out-1920.google.com (qw-out-1920.google.com
  [74.125.92.149]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PLq2GD010356 GroupStudy Mailer; Thu, 25 Sep 2008 17:52:02
  -0400
Received: by qw-out-1920.google.com with SMTP id 4so110641qwk.24 for
  <security@xxxxxxxxxxxxxx>; Thu, 25 Sep 2008 14:51:59 -0700 (PDT)
Received: by 10.214.10.15 with SMTP id 15mr531167qaj.9.1222379519350;
  Thu, 25 Sep 2008 14:51:59 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id 6sm1077271ywi.1.2008.09.25.14.51.55 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Thu, 25 Sep 2008 14:51:58 -0700 (PDT)
To: "'Brandon Carroll'" <brandon.carroll@xxxxxxxxxxx>,
        "'Tony Schaffran
  \(GS\)'" <groupstudy@xxxxxxxxxxxxxxxx>
Cc: "'Ramy Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'hamid mahmood'"
  <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/25 17:52:03)
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAJW+QfDahyRItsRVjplSBCMBAAAAAA==@xxxxxxxxxxxxxxxxxx>
   <399FC2F9D6F744A1979C2E77F7A8C6A4@xxxxxxx>
  <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
In-Reply-To: <FD19A89B-1A67-4F7B-85AA-DD0301F7FAFA@xxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 14:51:42 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckfHj7OftiG8WV4RZ6XuS1asU2PugAOk5+g
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Brandon,
So you are saying that CCIE Security change has a relationship with Obama
and McCain elections !!
It is really interesting :)

-Ramy

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 6:51 AM
To: Tony Schaffran (GS)
Cc: Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

My guess is politics.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:

> I have been waiting for the changes for the past two years.
>
> It is about time they caught up with the rest of the world.
>
> I was expecting the official anouncement on the cisco web site by now.
> Anybody have any information on why this has not happened yet?
>
>
> Tony Schaffran
> Sr. Network Consultant
> CCIE #11071
> CCNP, CCNA, CCDA,
> NNCDS, NNCSS, CNE, MCSE
>
> www.cconlinelabs.com
> Your #1 choice for online Cisco rack rentals.
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of Ramy
> Sisy
> Sent: Thursday, September 25, 2008 5:56 AM
> To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: RE: CCIE Security Changes (Video)
>
> Interesting
> People are waiting for the changes..
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> hamid mahmood
> Sent: Wednesday, September 24, 2008 9:05 PM
> To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: CCIE Security Changes (Video)
>
> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> future of
> CCIE certification. Learn about the hardware and software changes  
> and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 18:31:09 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8PMV9KU012400
	GroupStudy Mailer; Thu, 25 Sep 2008 18:31:09 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8PMV9vM012398
	for securityxhiddenx; Thu, 25 Sep 2008 18:31:09 -0400
Received: from smtp2.poczta.onet.pl (smtp2.poczta.onet.pl
  [213.180.130.30]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8PMV8m4012374 GroupStudy Mailer; Thu, 25 Sep 2008 18:31:08
  -0400
Received: from pmq2.test.onet.pl ([192.168.246.2]:44350 "EHLO pmq2"
  rhost-flags-OK-OK-OK-OK) by ps2.test.onet.pl with ESMTP id
  S251688072AbYIYWa5W727A convert rfc822-to-8bit (ORCPT
  <rfc822;security@xxxxxxxxxxxxxx>); Fri, 26 Sep 2008 00:30:57 +0200
Received: from 89.77.113.244 by 10.174.16.52 with HTTP; Fri, 26 Sep 2008
  0:30:57 +0200
Date: Fri, 26 Sep 2008 00:30:57 +0200
From: Piotr Kaluzny <stefaan@xxxxx>
To: security@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)
X-Mailer: onet.poczta
Message-Id: <Q153905300-96834356450553c46a17668a0682d7d0@xxxxxxxxxxxxxxxxx>
In-Reply-To: 4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2
Content-Transfer-Encoding: 7bit
X-ASK-Info: Whitelist match [from stefaan@xx\.pl] (2008/09/25 18:31:09)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Piotr Kaluzny <stefaan@xxxxx>

I'm just wondering what is that fourth phase Yusuf was talking about...

Regards,
Piotr Kaluzny
"hamid mahmood" <hamidnow@xxxxxxxxx> napisa3(a): 
 > Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the future of
 > CCIE certification. Learn about the hardware and software changes and which
 > exam blueprint you should be following.
 > (Quicktime player required)
 > http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4


From security-owner@xxxxxxxxxxxxxx Thu Sep 25 23:54:01 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8Q3s16I003135
	GroupStudy Mailer; Thu, 25 Sep 2008 23:54:01 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8Q3s19k003133
	for securityxhiddenx; Thu, 25 Sep 2008 23:54:01 -0400
Received: from web35505.mail.mud.yahoo.com (web35505.mail.mud.yahoo.com
  [66.163.179.129]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  SMTP id m8Q3s0If003111 GroupStudy Mailer; Thu, 25 Sep 2008 23:54:00
  -0400
Received: (qmail 69748 invoked by uid 60001); 26 Sep 2008 03:53:51 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
  b=l0gDaI1GtSchSbQjAHhH3j0/klZzPpYzfdxQFbw9JaxuR78Secc2hBTvQoFCWIizS2mMQgox4ciOBcmx3EJ0fK5BP/vs4zpejWy5JSh5POBitHbqDyeYmv3UE4NS50yff9ZB/c4lMEuOWvWrUQrq9wmcQfHzDmnruGGLPY6Z3T4=;
X-YMail-OSG: rwW3g3sVM1mE_VhN8.VJiYV4_aSZarCjM6SjVMAFeZ6Xtw.hIGjq0zigqEIx_.N5soXBJW_4Yf7TaChOrppP.PUZD_OfSoY1O.5HrXN.Olm0k5urOkvVQbBKATWvDTsnGTg2r0r.Sqw.JX8iy5FiS.mREg8bRC245NuyaYxPXpHMLq1bNGk-
Received: from [202.46.131.33] by web35505.mail.mud.yahoo.com via HTTP;
  Thu, 25 Sep 2008 20:53:51 PDT
X-Mailer: YahooMailRC/1096.28 YahooMailWebService/0.7.218.2
Date: Thu, 25 Sep 2008 20:53:51 -0700 (PDT)
From: CSA <penembakjitu@xxxxxxxxx>
Subject: About IDSM2 Memory Upgrade
To: security@xxxxxxxxxxxxxx
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-ID: <403917.68055.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from penembakjitu@xxxxx\.com] (2008/09/25 23:54:01)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: CSA <penembakjitu@xxxxxxxxx>

Hi Guys

Just want to ask all of you, can we upgrade the IDSM2 memory? Do all of you have experience for upgrade IDSM2? I try to browsing at cisco.com but not yet found any reference for IDSM2 memory upgrade. What I need is the release notes documentation for IDSM2 memory upgrade. Thanks ,any help will be appreciate.

Rgrd

Chris


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 01:04:55 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8Q54t1Y006593
	GroupStudy Mailer; Fri, 26 Sep 2008 01:04:55 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8Q54tDb006591
	for securityxhiddenx; Fri, 26 Sep 2008 01:04:55 -0400
Received: from cdptpa-omtalb.mail.rr.com (cdptpa-omtalb.mail.rr.com
  [75.180.132.121]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8Q54k36006524; Fri, 26 Sep 2008 01:04:46 -0400
Received: from D420 ([66.74.22.178]) by cdptpa-omta06.mail.rr.com with
  ESMTP id <20080926050436.MFDW28641.cdptpa-omta06.mail.rr.com@xxxx>;
  Fri, 26 Sep 2008 05:04:36 +0000
From: "Dean A. Demir" <ddemir@xxxxxxxxxxxxxxx>
To: "'Ramy Sisy'" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "'Brandon Carroll'"
  <brandon.carroll@xxxxxxxxxxx>,
        "'Tony Schaffran  \(GS\)'"
  <groupstudy@xxxxxxxxxxxxxxxx>
Cc: "'hamid mahmood'" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Subject: RE: CCIE Security Changes (Video)
Date: Thu, 25 Sep 2008 22:06:30 -0700
Message-ID: <004b01c91f95$a3a1d510$eae57f30$@com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
thread-index: AckfHj7OftiG8WV4RZ6XuS1asU2PugAOk5+gAA8s2dA=
Content-Language: en-us
X-ASK-Info: Our key was found in the mail (2008/09/26 01:04:55)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Dean A. Demir" <ddemir@xxxxxxxxxxxxxxx>

so you think CCIE needs bailout :-)

-----Original Message-----
From: Ramy Sisy [mailto:ramysisy@xxxxxxxxxxxxxxxxxx] 
Sent: Thursday, September 25, 2008 2:52 PM
To: 'Brandon Carroll'; 'Tony Schaffran (GS)'
Cc: 'Ramy Sisy'; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Brandon,
So you are saying that CCIE Security change has a relationship with Obama
and McCain elections !!
It is really interesting :)

-Ramy

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 6:51 AM
To: Tony Schaffran (GS)
Cc: Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

My guess is politics.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:

> I have been waiting for the changes for the past two years.
>
> It is about time they caught up with the rest of the world.
>
> I was expecting the official anouncement on the cisco web site by now.
> Anybody have any information on why this has not happened yet?
>
>
> Tony Schaffran
> Sr. Network Consultant
> CCIE #11071
> CCNP, CCNA, CCDA,
> NNCDS, NNCSS, CNE, MCSE
>
> www.cconlinelabs.com
> Your #1 choice for online Cisco rack rentals.
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of Ramy
> Sisy
> Sent: Thursday, September 25, 2008 5:56 AM
> To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: RE: CCIE Security Changes (Video)
>
> Interesting
> People are waiting for the changes..
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> hamid mahmood
> Sent: Wednesday, September 24, 2008 9:05 PM
> To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: CCIE Security Changes (Video)
>
> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> future of
> CCIE certification. Learn about the hardware and software changes  
> and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 08:03:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QC3k4B008248
	GroupStudy Mailer; Fri, 26 Sep 2008 08:03:46 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QC3k2b008246
	for securityxhiddenx; Fri, 26 Sep 2008 08:03:46 -0400
Received: from exhub003-1.exch003intermedia.net
  (exhub003-1.exch003intermedia.net [207.5.74.28]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8QC3jNN008226 GroupStudy
  Mailer; Fri, 26 Sep 2008 08:03:45 -0400
Received: from EXVMBX003-2.exch003intermedia.net ([207.5.74.42]) by
  exhub003-1.exch003intermedia.net ([207.5.74.28]) with mapi; Fri, 26
  Sep 2008 05:03:44 -0700
From: Garrett Skjelstad <garretts@xxxxxxxxxxxxxxx>
To: Cisco certification <security@xxxxxxxxxxxxxx>
Date: Fri, 26 Sep 2008 05:03:31 -0700
Subject: Poking around at AAA
Thread-Topic: Poking around at AAA
Thread-Index: Ackfz+UFW14668vZTyW4Q52/RXLRsQ==
Message-ID: <8CCF16ED6B99E04789F90258E2EE25D79BF51E9627@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from garretts@xxxxxxxxxxx\.com] (2008/09/26 08:03:46)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Garrett Skjelstad <garretts@xxxxxxxxxxxxxxx>

Does anyone have any good write-ups on AAA? Perhaps ones that might do a full
breakdown? I'm trying to keep it on the forefront of my brain.
-Garrett


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 09:20:05 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QDK50U015309
	GroupStudy Mailer; Fri, 26 Sep 2008 09:20:05 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QDK56L015307
	for securityxhiddenx; Fri, 26 Sep 2008 09:20:05 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8QDK478015282 GroupStudy Mailer; Fri, 26 Sep 2008 09:20:04
  -0400
Received: by gxk13 with SMTP id 13so11523199gxk.6 for
  <security@xxxxxxxxxxxxxx>; Fri, 26 Sep 2008 06:19:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=4NR4BVJzPWUv8F235OJzIg6pqbohz5mAXsflcPETOKM=;
  b=CEsDbPrhNgO2r4AmdkXKYzGmkVxHwKT9LH6+cci4yY2ypsPnARxniLHpqVpFFAP0m2
  OaFddwck+/CppoUdIeKHU/0Qr9nXsGOk2ULKRiCyiItlnOi+kSqQoC/EZ1XHr68N4squ
  lp+782L4MaTtxaCyOx4WWqzTvdrwcunKL2DUk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=UIwol/G2NBLqYANIxmSG8f//k2YMsGqLXAZ5+9tyZrCdipHe/YOxFEb5A8k4hyT8QE
  z2iffWTJt95qxlwQXT0AliQ9CDM961Kslz2S5TP8IUF4qJQoHE7gUID0ycD0JMpTa7ee
  PubuNMo7VHFI0rDtv2aNpzAMcKELJ1B64Htjw=
Received: by 10.151.10.7 with SMTP id n7mr1997365ybi.139.1222435198734;
  Fri, 26 Sep 2008 06:19:58 -0700 (PDT)
Received: by 10.151.109.18 with HTTP; Fri, 26 Sep 2008 06:19:58 -0700
  (PDT)
Message-ID: <eff3217d0809260619y41e5b1fdxf4f63d73f07124e9@xxxxxxxxxxxxxx>
Date: Fri, 26 Sep 2008 16:19:58 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Garrett Skjelstad" <garretts@xxxxxxxxxxxxxxx>
Subject: Re: Poking around at AAA
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <8CCF16ED6B99E04789F90258E2EE25D79BF51E9627@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <8CCF16ED6B99E04789F90258E2EE25D79BF51E9627@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/26 09:20:05)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

http://www.netcraftsmen.net/welcher/papers/aaabasics01.html

http://www.netcraftsmen.net/welcher/papers/aaabasics02.html

These are two good links.

Regards

Farrukh


On Fri, Sep 26, 2008 at 3:03 PM, Garrett Skjelstad <garretts@xxxxxxxxxxxxxxx
> wrote:

> Does anyone have any good write-ups on AAA? Perhaps ones that might do a
> full
> breakdown? I'm trying to keep it on the forefront of my brain.
> -Garrett


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 10:04:27 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QE4RMk020187
	GroupStudy Mailer; Fri, 26 Sep 2008 10:04:27 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QE4Rim020185
	for securityxhiddenx; Fri, 26 Sep 2008 10:04:27 -0400
Received: from hermes.ascolta.com
  (ip66-104-76-20.z76-104-66.customer.algx.net [66.104.76.20]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QE4P3w020164
  GroupStudy Mailer; Fri, 26 Sep 2008 10:04:26 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: Poking around at AAA
Date: Fri, 26 Sep 2008 07:02:19 -0700
Message-ID: <A9DDF25C84878F4FACF513B5410A3FE102D804E5@xxxxxxxxxxxxxxxxxx>
Thread-Topic: Poking around at AAA
Thread-Index: Ackf3XzgSAmuOb1TST2thUSzNf4JvAAAwCLp
References: <8CCF16ED6B99E04789F90258E2EE25D79BF51E9627@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  <eff3217d0809260619y41e5b1fdxf4f63d73f07124e9@xxxxxxxxxxxxxx>
From: "Brandon Carroll" <Brandon.carroll@xxxxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>,
        "Garrett Skjelstad"
  <garretts@xxxxxxxxxxxxxxx>
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from brandon\.carroll@xxxxxxx\.com] (2008/09/26 10:04:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Brandon Carroll" <Brandon.carroll@xxxxxxxxxxx>

The Welcher articles are great!  I would have recommended them as well.

Brandon Carroll, CCSI
Ascolta Training Company
606 120th AVE NE
Bellevue, Wa. 98005
ph. 425-646-0584
vm. 949-477-2000 x179
fx. 949-477-2162
Be sure to get a copy of my new CCNA Wireless book at:
http://www.ciscopress.com/bookstore/product.asp?isbn=1587056208
For Course information visit:
http://www.ascolta.com <http://www.ascolta.com/>




________________________________

From: nobody@xxxxxxxxxxxxxx on behalf of Farrukh Haroon
Sent: Fri 9/26/2008 6:19 AM
To: Garrett Skjelstad
Cc: Cisco certification
Subject: Re: Poking around at AAA



http://www.netcraftsmen.net/welcher/papers/aaabasics01.html

http://www.netcraftsmen.net/welcher/papers/aaabasics02.html

These are two good links.

Regards

Farrukh


On Fri, Sep 26, 2008 at 3:03 PM, Garrett Skjelstad <garretts@xxxxxxxxxxxxxxx
> wrote:

> Does anyone have any good write-ups on AAA? Perhaps ones that might do a
> full
> breakdown? I'm trying to keep it on the forefront of my brain.
> -Garrett


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 10:15:46 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QEFjZW021936
	GroupStudy Mailer; Fri, 26 Sep 2008 10:15:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QEFjf7021934
	for securityxhiddenx; Fri, 26 Sep 2008 10:15:45 -0400
Received: from mail191.messagelabs.com (mail191.messagelabs.com
  [216.82.245.131]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8QEFbsG021874; Fri, 26 Sep 2008 10:15:37 -0400
X-VirusChecked: Checked
X-Env-Sender: TTUnderwood@xxxxxxxx
X-Msg-Ref: server-2.tower-191.messagelabs.com!1222438532!48856168!1
X-StarScan-Version: 5.5.12.14.2; banners=-,-,-
X-Originating-IP: [216.57.102.106]
Received: (qmail 11314 invoked from network); 26 Sep 2008 14:15:32 -0000
Received: from unknown (HELO linux511.wic.west.com) (216.57.102.106) by
  server-2.tower-191.messagelabs.com with AES256-SHA encrypted SMTP; 26
  Sep 2008 14:15:32 -0000
Received: from oma100exbh02.corp.westworlds.com (oma-inet-pub2
  [216.57.102.249]) by linux511.wic.west.com (8.13.1/8.13.1) with ESMTP
  id m8QEFY0B013163; Fri, 26 Sep 2008 10:15:34 -0400
Received: from omaexmb06.corp.westworlds.com ([10.0.17.203]) by
  oma100exbh02.corp.westworlds.com with Microsoft
  SMTPSVC(6.0.3790.3959); Fri, 26 Sep 2008 09:15:34 -0500
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE Security Changes (Video)
Date: Fri, 26 Sep 2008 09:15:33 -0500
Message-ID: <9A8AE475F68A344A815A619D555A757903CF3402@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
Thread-Topic: CCIE Security Changes (Video)
Thread-Index: AckfHj7OftiG8WV4RZ6XuS1asU2PugAOk5+gACJl9sA=
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
From: "Underwood, Tony T." <TTUnderwood@xxxxxxxx>
To: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "Brandon Carroll"
  <brandon.carroll@xxxxxxxxxxx>,
        "Tony Schaffran  (GS)"
  <groupstudy@xxxxxxxxxxxxxxxx>
Cc: "hamid mahmood" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
X-OriginalArrivalTime: 26 Sep 2008 14:15:34.0122 (UTC)
  FILETIME=[571AE4A0:01C91FE2]
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8QEFbsG021874
X-ASK-Info: Whitelist match [from ttunderwood@xxxx\.com] (2008/09/26 10:15:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Underwood, Tony T." <TTUnderwood@xxxxxxxx>

They could be waiting for the US Bank bailout to fund the new lab... ;-)

Tony Underwood CCIE #7112


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ramy Sisy
Sent: Thursday, September 25, 2008 4:52 PM
To: 'Brandon Carroll'; 'Tony Schaffran (GS)'
Cc: 'Ramy Sisy'; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Brandon,
So you are saying that CCIE Security change has a relationship with
Obama
and McCain elections !!
It is really interesting :)

-Ramy

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 6:51 AM
To: Tony Schaffran (GS)
Cc: Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

My guess is politics.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:

> I have been waiting for the changes for the past two years.
>
> It is about time they caught up with the rest of the world.
>
> I was expecting the official anouncement on the cisco web site by now.
> Anybody have any information on why this has not happened yet?
>
>
> Tony Schaffran
> Sr. Network Consultant
> CCIE #11071
> CCNP, CCNA, CCDA,
> NNCDS, NNCSS, CNE, MCSE
>
> www.cconlinelabs.com
> Your #1 choice for online Cisco rack rentals.
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of Ramy
> Sisy
> Sent: Thursday, September 25, 2008 5:56 AM
> To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: RE: CCIE Security Changes (Video)
>
> Interesting
> People are waiting for the changes..
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> hamid mahmood
> Sent: Wednesday, September 24, 2008 9:05 PM
> To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: CCIE Security Changes (Video)
>
> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> future of
> CCIE certification. Learn about the hardware and software changes  
> and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
>
_______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 11:26:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QFQDXC030513
	GroupStudy Mailer; Fri, 26 Sep 2008 11:26:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QFQDTS030509
	for securityxhiddenx; Fri, 26 Sep 2008 11:26:13 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8QFQCLl030471; Fri, 26 Sep 2008 11:26:12 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: CCIE Security Changes (Video)
Date: Fri, 26 Sep 2008 08:26:05 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C3663013E0379@xxxxxxxxxxxxxxxxx>
In-Reply-To: <9A8AE475F68A344A815A619D555A757903CF3402@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Thread-Topic: CCIE Security Changes (Video)
thread-index: AckfHj7OftiG8WV4RZ6XuS1asU2PugAOk5+gACJl9sAAAn5OcA==
References: <4e370ef80809242104k36ada4a1lffa0a883c525ac3b@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKD1IS1HQ/dKrairhNv2mLEBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <9A8AE475F68A344A815A619D555A757903CF3402@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
From: "Brad Ellis" <brad@xxxxxxxxxxxxxx>
To: "Underwood, Tony T." <TTUnderwood@xxxxxxxx>,
        "Ramy Sisy"
  <ramysisy@xxxxxxxxxxxxxxxxxx>,
        "Brandon Carroll"
  <brandon.carroll@xxxxxxxxxxx>,
        "Tony Schaffran  (GS)"
  <groupstudy@xxxxxxxxxxxxxxxx>
Cc: "hamid mahmood" <hamidnow@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>,
        <ccielab@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8QFQCLl030471
X-ASK-Info: Whitelist match [from brad@xxxxxxxxxx\.com] (2008/09/26 11:26:13)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Brad Ellis" <brad@xxxxxxxxxxxxxx>

If that were the case, then we probably wouldn't see any changes in the
Security lab until 2011.

brad

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Underwood, Tony T.
Sent: Friday, September 26, 2008 7:16 AM
To: Ramy Sisy; Brandon Carroll; Tony Schaffran (GS)
Cc: hamid mahmood; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

They could be waiting for the US Bank bailout to fund the new lab... ;-)

Tony Underwood CCIE #7112


-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ramy Sisy
Sent: Thursday, September 25, 2008 4:52 PM
To: 'Brandon Carroll'; 'Tony Schaffran (GS)'
Cc: 'Ramy Sisy'; 'hamid mahmood'; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: RE: CCIE Security Changes (Video)

Brandon,
So you are saying that CCIE Security change has a relationship with
Obama
and McCain elections !!
It is really interesting :)

-Ramy

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Brandon Carroll
Sent: Thursday, September 25, 2008 6:51 AM
To: Tony Schaffran (GS)
Cc: Ramy Sisy; hamid mahmood; security@xxxxxxxxxxxxxx;
ccielab@xxxxxxxxxxxxxx
Subject: Re: CCIE Security Changes (Video)

My guess is politics.


Brandon Carroll
Senior Instructor
Ascolta
606 120th Ave NE
D-201
Bellevue, Wa. 98056

ph.206-850-2384

brandon.carroll@xxxxxxxxxxx
http://www.ascolta.com
http://www.globalconfig.net
http://ccieprep.me





On Sep 25, 2008, at 9:13 AM, Tony Schaffran (GS) wrote:

> I have been waiting for the changes for the past two years.
>
> It is about time they caught up with the rest of the world.
>
> I was expecting the official anouncement on the cisco web site by now.
> Anybody have any information on why this has not happened yet?
>
>
> Tony Schaffran
> Sr. Network Consultant
> CCIE #11071
> CCNP, CCNA, CCDA,
> NNCDS, NNCSS, CNE, MCSE
>
> www.cconlinelabs.com
> Your #1 choice for online Cisco rack rentals.
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of Ramy
> Sisy
> Sent: Thursday, September 25, 2008 5:56 AM
> To: 'hamid mahmood'; security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: RE: CCIE Security Changes (Video)
>
> Interesting
> People are waiting for the changes..
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |   
> WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf  
> Of
> hamid mahmood
> Sent: Wednesday, September 24, 2008 9:05 PM
> To: security@xxxxxxxxxxxxxx; ccielab@xxxxxxxxxxxxxx
> Subject: CCIE Security Changes (Video)
>
> Jeff Doyle and CCIE Program Manager, Yusuf Bhaiji, discuss the  
> future of
> CCIE certification. Learn about the hardware and software changes  
> and which
> exam blueprint you should be following.
> (Quicktime player required)
> http://www.informit.com/content/podcasts/10/NET_Yusuf_B_03.mp4
>
>
> Blogs and organic groups at http://www.ccie.net
>
>
_______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


Blogs and organic groups at http://www.ccie.net

_______________________________________________________________________
Subscription information may be found at: 
http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 11:48:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8QFm4rs032462
	GroupStudy Mailer; Fri, 26 Sep 2008 11:48:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8QFm4E4032460
	for securityxhiddenx; Fri, 26 Sep 2008 11:48:04 -0400
Received: from [89.121.208.162] ([89.121.208.162]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8QFm3G4032430 GroupStudy
  Mailer; Fri, 26 Sep 2008 11:48:03 -0400
Message-ID: <1245352282.657=67=security$groupstudy.com@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
From: "broddie hanspete" <dnevnik@xxxxxxxxxxxxxxx>
Subject: =?koi8-r?B?ws/WZdPU18XOztnFIMTF13nby3UgIM110mEg02XHbw==?=
Date: Fri, 26 Sep 2008 14:00:33 +0000
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Converted-To-Plain-Text: from text/html by GroupStudy
X-ASK-Info: Whitelist match [from dnevnik@xxxxxxxxxxxx\.ru] (2008/09/26 11:48:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "broddie hanspete" <dnevnik@xxxxxxxxxxxxxxx>

pRIVAW[ISX K TWOEJ SPINE GRUDX@ Q OBNIMA@ TWOI PLE^I I NA^INA@ GLUBVE,
KAK MOVNO GLUBVE PRONIKNUTX WO WLAGALI]E. tY yVe mAK rORQ^A, ^To Q mEpQ@
Ra3UM. i WSE SILXNEJ, WSE MO]NEJ WONZA@ W TEBQ SOWE ORUDIE STRASTI.. STON
WOZWRA]AET MENQ W REALXNOSTX. dA, TY STONE[X.. MOQ MALENXKAQ, DA, \TO Q,
Q W TEBE, Q S TOBOJ.. POMOGI MNE, Q HO^U TEBQ. q BUDU TWOIM ISKUSITELEM I
SDELA@ TWOE PROBUVDENIE NEZABYWAEMYM. tY DWIGAE[XSQ WMESTE SO MNOJ.
http://www.groupstudy.com.http://generalova1938.proboards101.com//b`k~u`.jpg


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 20:07:42 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8R07g7m014662
	GroupStudy Mailer; Fri, 26 Sep 2008 20:07:42 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8R07gE2014660
	for securityxhiddenx; Fri, 26 Sep 2008 20:07:42 -0400
Received: from yx-out-1718.google.com (yx-out-1718.google.com
  [74.125.44.158]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8R07fwa014640 GroupStudy Mailer; Fri, 26 Sep 2008 20:07:41
  -0400
Received: by yx-out-1718.google.com with SMTP id 3so218462yxi.84 for
  <security@xxxxxxxxxxxxxx>; Fri, 26 Sep 2008 17:07:38 -0700 (PDT)
Received: by 10.151.110.9 with SMTP id n9mr2916736ybm.239.1222474058127;
  Fri, 26 Sep 2008 17:07:38 -0700 (PDT)
Received: from BlackBox ( [72.193.213.28]) by mx.google.com with ESMTPS
  id 7sm2571053ywo.7.2008.09.26.17.07.36 (version=TLSv1/SSLv3
  cipher=RC4-MD5); Fri, 26 Sep 2008 17:07:37 -0700 (PDT)
To: "'CSA'" <penembakjitu@xxxxxxxxx>, <security@xxxxxxxxxxxxxx>
References: <403917.68055.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
In-Reply-To: <403917.68055.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: About IDSM2 Memory Upgrade
Date: Fri, 26 Sep 2008 17:07:25 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAFkV1ky0BuNKpxX8wPOCH5QBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Ackfk6VCQyuBMzZlQxS4fVMZTxF1+AAn96+w
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8R07fwa014640
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/26 20:07:42)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Chris,
I would check current installed memory and try to do it manually by getting
same memory type and clock speed but with more capacity.
I did that with my own lab when 2811 came across and upgraded mine with
512MB SD memory instead of 128MB and I did not again when I had a problem
with one of 2811's flash memory and replaced it with 10US$ same features
compact flash memory.

I am not recommending you to do that because you may lose your Cisco
warranty but it could be a last resort in certain cases


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 


 

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of CSA
Sent: Thursday, September 25, 2008 8:54 PM
To: security@xxxxxxxxxxxxxx
Subject: About IDSM2 Memory Upgrade

Hi Guys

Just want to ask all of you, can we upgrade the IDSM2 memory? Do all of you
have experience for upgrade IDSM2? I try to browsing at cisco.com but not
yet found any reference for IDSM2 memory upgrade. What I need is the release
notes documentation for IDSM2 memory upgrade. Thanks ,any help will be
appreciate.

Rgrd

Chris


From security-owner@xxxxxxxxxxxxxx Fri Sep 26 23:00:12 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8R30Cl6025036
	GroupStudy Mailer; Fri, 26 Sep 2008 23:00:12 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8R30C2a025034
	for securityxhiddenx; Fri, 26 Sep 2008 23:00:12 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8R30Arf024988; Fri, 26 Sep 2008 23:00:10 -0400
Received: from ezorrilla (unknown [200.106.6.141]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 457D71F718D; Fri, 26 Sep
  2008 22:07:05 -0400 (EDT)
Message-ID: <000b01c9204d$2602d420$2101a8c0@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Cc: "ccie forum" <ccielab@xxxxxxxxxxxxxx>
Subject: Generating a default route ospf on the pix
Date: Fri, 26 Sep 2008 22:00:07 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/26 23:00:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

It says :

"You can force an autonomous system boundary router to generate a default
route into an OSPF routing domain. Whenever you specifically configure
redistribution of routes into an OSPF routing domain, the router automatically
becomes an autonomous system boundary router. However, an autonomous system
boundary router does not by default generate a default route into the OSPF
routing domain."

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/ip.htm
l#wp1096119

I mean, I don't need to be an autonomous system boundary router to generate a
default route, isn't ? I mean, whatever device inside the ospf domain can do
this:

hostname(config)# router ospf 2
hostname(config-router)# default-information originate always
Am I all right ?Regards


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 13:08:33 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RH8XOn022880
	GroupStudy Mailer; Sat, 27 Sep 2008 13:08:33 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RH8X3l022878
	for securityxhiddenx; Sat, 27 Sep 2008 13:08:33 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.183]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RH8W7m022858 GroupStudy Mailer; Sat, 27 Sep 2008 13:08:32
  -0400
Received: by wa-out-1112.google.com with SMTP id m34so953822wag.30 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 10:08:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=7hzti3zetrmcy3meyWYh+y6+zizBsVUZeOTSulxNSDw=;
  b=Q3womvoapVh1krQUw5AdeXR+zurGyxp4La0DKs6wJ9L39wqhO349CvUjekJIDH92cm
  lBhP1TkdKDx74hr6Bo+I4o/i/psdDP+nDcVYKxtHruFUNMt+ATjzykkgu3xOo1MIbqpg
  gsG1FGx+KUg9iR5SjpsnzkQtS05gsjdsuCun4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=V5+CT4K2DEI1/6wVgdeeeqcZxo25UVRwVOhM+aj8vKZgPOR5s97YDVPWZbAVOkY9qz
  +tOAqql3SuhbSgBKx9feeRp6u1gqiT5ifqPziiO0SZPqJtCMtCa7jLfp/gC1//gParjM
  y3h4StTvphWfSHjV1nRpIO002qsT+ZouNBeEI=
Received: by 10.115.90.1 with SMTP id s1mr3210522wal.51.1222535309880;
  Sat, 27 Sep 2008 10:08:29 -0700 (PDT)
Received: by 10.114.192.6 with HTTP; Sat, 27 Sep 2008 10:08:29 -0700
  (PDT)
Message-ID: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
Date: Sat, 27 Sep 2008 22:38:29 +0530
From: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: PKI resources please
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ahamadali@xxxxx\.com] (2008/09/27 13:08:33)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>

Hi All,
please share any document related to PKI, I am facing problems in enrolling
ceritficates in VPN client, VPN3K, due to lack of deep knowledge,

many thanks in advance.

-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 15:36:31 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RJaVL0002272
	GroupStudy Mailer; Sat, 27 Sep 2008 15:36:31 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RJaVon002268
	for securityxhiddenx; Sat, 27 Sep 2008 15:36:31 -0400
Received: from bay0-omc3-s21.bay0.hotmail.com
  (bay0-omc3-s21.bay0.hotmail.com [65.54.246.221]) by groupstudy.com
  (8.12.11.20060308/8.12.11) with ESMTP id m8RJaUmk002241 GroupStudy
  Mailer; Sat, 27 Sep 2008 15:36:31 -0400
Received: from bay0-mc7-f11.bay0.hotmail.com ([65.54.244.211]) by
  bay0-omc3-s21.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
  Sat, 27 Sep 2008 12:36:23 -0700
From: postmaster@xxxxxxxxxxx
To: security@xxxxxxxxxxxxxx
Date: Sat, 27 Sep 2008 12:36:22 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-DSNContext: 335a7efd - 4480 - 00000001 - 80040546
Message-ID: <VaLgOYfHN0023eeda@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: Delivery Status Notification (Failure)
X-OriginalArrivalTime: 27 Sep 2008 19:36:23.0156 (UTC)
  FILETIME=[52D62340:01C920D8]
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/27 15:36:31)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: postmaster@xxxxxxxxxxx

This is an automatically generated Delivery Status Notification.

Delivery to the following recipients failed.

       koolkid@xxxxxxxxxxx
Reporting-MTA: dns;bay0-mc7-f11.bay0.hotmail.com
Received-From-MTA: dns;smtp19.orange.fr
Arrival-Date: Sat, 27 Sep 2008 12:36:22 -0700

Final-Recipient: rfc822;koolkid@xxxxxxxxxxx
Action: failed
Status: 5.5.0
Diagnostic-Code: smtp;550 Requested action not taken: mailbox unavailable (-753699883:3233:-2147467259)
Received: from smtp19.orange.fr ([80.12.242.17]) by
  bay0-mc7-f11.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668);
  Sat, 27 Sep 2008 12:36:22 -0700
Received: from smtp19.orange.fr (mwinf1916 [172.22.129.116]) by
  mwinf1910.orange.fr (SMTP Server) with ESMTP id 5FE7A5C0089B; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1916.orange.fr (SMTP Server) with ESMTP id 546551C00098; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf1916.orange.fr (SMTP Server) with SMTP id
  F3FEC1C00093; Sat, 27 Sep 2008 21:36:21 +0200 (CEST)
X-ME-UUID: 20080927193621999.F3FEC1C00093@xxxxxxxxxxxxxxxxxxx
Message-ID: <004401c9213c$eaee9fbf$74eb642e@xxxxx>
From: "=?windows-1251?B?T2x1c2lr?=" <security@xxxxxxxxxxxxxx>
To: <koolkid@xxxxxxxxxxx>, <koolkid_110@xxxxxxxxxxx>,
  <koolkid_514@xxxxxxxxxxx>
Subject: =?windows-1251?B?QW0gc2Vla2luZyB5b3U=?=
Date: Sat, 27 Sep 2008 21:36:18 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
Return-Path: security@xxxxxxxxxxxxxx
X-OriginalArrivalTime: 27 Sep 2008 19:36:22.0896 (UTC)
  FILETIME=[52AE7700:01C920D8]

Privet, my friend!

Life is very short, so break the rules, forgive quickly, believe slowly, 
love truly, laugh loudly and never regret anything that made you smile. 
Every little smile can touch somebody's heart. Can I touch yours? 
Can you touch mine? Let me know http://flirtylove.net/hilove

Waiting for your
Olly


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 15:48:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RJmBY3003194
	GroupStudy Mailer; Sat, 27 Sep 2008 15:48:11 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RJmBKf003192
	for securityxhiddenx; Sat, 27 Sep 2008 15:48:11 -0400
Received: from mail13-a-ab.linkedin.com (mail13-a-ab.linkedin.com
  [208.111.172.104]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RJm9qi003143 GroupStudy Mailer; Sat, 27 Sep 2008 15:48:10
  -0400
DomainKey-Signature: s=prod; d=linkedin.com; c=nofws; q=dns;
  h=Sender:Received:Date:From:To:Message-ID:Subject:
  MIME-Version:Content-Type;
  b=Mz8loUxuXaI48UR/QfegOwhwAK9/55SYFP91wns792KE6ha9UWWl6JrB
  vF0IfP7M0SZ4uhJP4Aj/rTsYaOFgdES1uHJq6inxnxIrCOLEXeii8h3Jx
  nfS8olG6XWC1gHU;
Received: from esv4-com09.prod.linkedin.com (HELO esv4-com09.prod)
  ([172.17.34.156]) by mail13-a-ab.linkedin.com with ESMTP; 27 Sep 2008
  19:48:01 +0000
Date: Sat, 27 Sep 2008 12:48:01 -0700 (PDT)
From: Mohammed Naviwala <monavy@xxxxxxxxx>
To: Cisco certification <security@xxxxxxxxxxxxxx>
Message-ID: <35410088.1610357.1222544881754.JavaMail.app@xxxxxxxxxxxxxxx>
Subject: Invitation to connect on LinkedIn
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from monavy@xxxxx\.com] (2008/09/27 15:48:11)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Mohammed Naviwala <monavy@xxxxxxxxx>

LinkedIn
------------



   
Cisco,

I'd like to add you to my professional network on LinkedIn.

- Mohammed

Learn more:
https://www.linkedin.com/e/isd/365911740/008Bi_jY/

------------------------------------------

What is LinkedIn and why should you join?
http://learn.linkedin.com/what-is-linkedin/

 
------
(c) 2008, LinkedIn Corporation


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 16:29:43 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKThsB007796
	GroupStudy Mailer; Sat, 27 Sep 2008 16:29:43 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RKThcQ007793
	for securityxhiddenx; Sat, 27 Sep 2008 16:29:43 -0400
Received: from smtp19.orange.fr (smtp19.orange.fr [80.12.242.17]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKTgj4007754
  GroupStudy Mailer; Sat, 27 Sep 2008 16:29:42 -0400
Received: by mwinf1910.orange.fr (SMTP Server) id 95BF35C0410F; Sat, 27
  Sep 2008 21:36:23 +0200 (CEST)
Date: Sat, 27 Sep 2008 21:36:23 +0200 (CEST)
X-ME-UUID: 20080927193621999.F3FEC1C00093@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080927193623.95BF35C0410F@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/27 16:29:43)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf1910.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<koolkid_110@xxxxxxxxxxx>: host mx3.hotmail.com[65.54.244.200] said: 550
    Requested action not taken: mailbox unavailable (in reply to RCPT TO
    command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 5FE7A5C0089B
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sat, 27 Sep 2008 21:36:22 +0200 (CEST)

Final-Recipient: rfc822; koolkid_110@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx3.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp19.orange.fr (mwinf1916 [172.22.129.116]) by
  mwinf1910.orange.fr (SMTP Server) with ESMTP id 5FE7A5C0089B; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1916.orange.fr (SMTP Server) with ESMTP id 546551C00098; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf1916.orange.fr (SMTP Server) with SMTP id
  F3FEC1C00093; Sat, 27 Sep 2008 21:36:21 +0200 (CEST)
X-ME-UUID: 20080927193621999.F3FEC1C00093@xxxxxxxxxxxxxxxxxxx
Message-ID: <004401c9213c$eaee9fbf$74eb642e@xxxxx>
From: "=?windows-1251?B?T2x1c2lr?=" <security@xxxxxxxxxxxxxx>
To: <koolkid@xxxxxxxxxxx>, <koolkid_110@xxxxxxxxxxx>,
  <koolkid_514@xxxxxxxxxxx>
Subject: =?windows-1251?B?QW0gc2Vla2luZyB5b3U=?=
Date: Sat, 27 Sep 2008 21:36:18 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

Privet, my friend!

Life is very short, so break the rules, forgive quickly, believe slowly, 
love truly, laugh loudly and never regret anything that made you smile. 
Every little smile can touch somebody's heart. Can I touch yours? 
Can you touch mine? Let me know http://flirtylove.net/hilove

Waiting for your
Olly


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 16:39:37 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKdbi9008677
	GroupStudy Mailer; Sat, 27 Sep 2008 16:39:37 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RKdbt0008675
	for securityxhiddenx; Sat, 27 Sep 2008 16:39:37 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.228]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RKdaXm008655 GroupStudy Mailer; Sat, 27 Sep 2008 16:39:36
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so838406wra.10 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: by 10.90.74.7 with SMTP id w7mr876032aga.51.1222547973834;
  Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id c53sm218073wrc.16.2008.09.27.13.39.27
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 27 Sep 2008 13:39:29 -0700
  (PDT)
To: "'Ahamad Ali Mohammed'" <ahamadali@xxxxxxxxx>,
        "'Cisco
  certification'" <security@xxxxxxxxxxxxxx>
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
In-Reply-To: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
Subject: RE: PKI resources please
Date: Sat, 27 Sep 2008 13:39:24 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckgyctpKZOzVFPCTAq7QZrBvXKCLQAFxK8A
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8RKdaXm008655
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/27 16:39:36)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Ali,
Do you need resources in PKI in general or how to use a router as CA or how
to use Windows server as a CA or how to configure VPN client and VPN Conc.
To get certificates?

Please be more specific as PKI is a HUGE subject


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 





-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ahamad Ali Mohammed
Sent: Saturday, September 27, 2008 10:08 AM
To: Cisco certification
Subject: PKI resources please

Hi All,
please share any document related to PKI, I am facing problems in enrolling
ceritficates in VPN client, VPN3K, due to lack of deep knowledge,

many thanks in advance.

-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 16:47:35 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKlZJd009121
	GroupStudy Mailer; Sat, 27 Sep 2008 16:47:35 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RKlZCa009119
	for securityxhiddenx; Sat, 27 Sep 2008 16:47:35 -0400
Received: from hs-out-0708.google.com (hs-out-0708.google.com
  [64.233.178.247]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RKlYLA009080 GroupStudy Mailer; Sat, 27 Sep 2008 16:47:34
  -0400
Received: by hs-out-0708.google.com with SMTP id 55so553382hsc.14 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 13:47:31 -0700 (PDT)
Received: by 10.151.110.14 with SMTP id
  n14mr4593147ybm.196.1222548451357; Sat, 27 Sep 2008 13:47:31 -0700
  (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id 34sm321731yxm.0.2008.09.27.13.47.29
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 27 Sep 2008 13:47:30 -0700
  (PDT)
To: "'Edouard Zorrilla'" <ezorrilla@xxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
Cc: "'ccie forum'" <ccielab@xxxxxxxxxxxxxx>
References: <000b01c9204d$2602d420$2101a8c0@xxxxxxxxx>
In-Reply-To: <000b01c9204d$2602d420$2101a8c0@xxxxxxxxx>
Subject: RE: Generating a default route ospf on the pix
Date: Sat, 27 Sep 2008 13:47:25 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAN8wZxuXqbhPto+7JEV1ou4BAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckgVGfxM6IpkaPYSXOTY5G4o1j6IQAjL6Tw
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8RKlYLA009080
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/27 16:47:35)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Ed,
Technically speaking, the router (or device) that will inject a default
route to the OSPF domain should act as ASBR. The statement you have sent is
saying that it is not mandatory for an ASBR to inject a default route to the
entire OSPF domain but it could inject it.
ASBR usually inject routes about networks that are coming from another OSPF
domain different than participant OSPF domain. So you can consider default
route is the default path towards unknown networks to allow participant OSPF
domain routers accessing different OSPF domains.

HTH


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Edouard Zorrilla
Sent: Friday, September 26, 2008 8:00 PM
To: security@xxxxxxxxxxxxxx
Cc: ccie forum
Subject: Generating a default route ospf on the pix

It says :

"You can force an autonomous system boundary router to generate a default
route into an OSPF routing domain. Whenever you specifically configure
redistribution of routes into an OSPF routing domain, the router
automatically
becomes an autonomous system boundary router. However, an autonomous system
boundary router does not by default generate a default route into the OSPF
routing domain."

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/ip.ht
m
l#wp1096119

I mean, I don't need to be an autonomous system boundary router to generate
a
default route, isn't ? I mean, whatever device inside the ospf domain can do
this:

hostname(config)# router ospf 2
hostname(config-router)# default-information originate always
Am I all right ?Regards


From security-owner@xxxxxxxxxxxxxx Sat Sep 27 16:54:06 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKs6dw010752
	GroupStudy Mailer; Sat, 27 Sep 2008 16:54:06 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8RKs6E7010749
	for securityxhiddenx; Sat, 27 Sep 2008 16:54:06 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.189]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RKs5qk010727 GroupStudy Mailer; Sat, 27 Sep 2008 16:54:05
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so500581rnd.15 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 13:54:02 -0700 (PDT)
Received: by 10.151.112.19 with SMTP id
  p19mr4667521ybm.30.1222548842654; Sat, 27 Sep 2008 13:54:02 -0700
  (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id 7sm255250ywo.7.2008.09.27.13.54.00
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 27 Sep 2008 13:54:01 -0700
  (PDT)
To: "'Mohammed Naviwala'" <monavy@xxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
References: <35410088.1610357.1222544881754.JavaMail.app@xxxxxxxxxxxxxxx>
In-Reply-To: <35410088.1610357.1222544881754.JavaMail.app@xxxxxxxxxxxxxxx>
Subject: RE: Invitation to connect on LinkedIn
Date: Sat, 27 Sep 2008 13:53:57 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAHj7Jm80I9pCv/tYwddX6EQBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Ackg4tl4rE59EdawSBCUmWkjG0tnxAAAB80Q
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8RKs5qk010727
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/27 16:54:05)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Mohamed,
It looks like you have sent your invitation to the wrong address. Or you are
using a wrong way to add connections.


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 




-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Mohammed Naviwala
Sent: Saturday, September 27, 2008 12:48 PM
To: Cisco certification
Subject: Invitation to connect on LinkedIn

LinkedIn
------------



   
Cisco,

I'd like to add you to my professional network on LinkedIn.

- Mohammed

Learn more:
https://www.linkedin.com/e/isd/365911740/008Bi_jY/

------------------------------------------

What is LinkedIn and why should you join?
http://learn.linkedin.com/what-is-linkedin/

 
------
(c) 2008, LinkedIn Corporation


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 01:15:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8S5FjmC013699
	GroupStudy Mailer; Sun, 28 Sep 2008 01:15:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8S5FjED013697
	for securityxhiddenx; Sun, 28 Sep 2008 01:15:45 -0400
Received: from smtp23.orange.fr (smtp23.orange.fr [193.252.22.126]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8S5FjxQ013677
  GroupStudy Mailer; Sun, 28 Sep 2008 01:15:45 -0400
Received: by mwinf2320.orange.fr (SMTP Server) id D9BA11C22562; Sun, 28
  Sep 2008 06:48:58 +0200 (CEST)
Date: Sun, 28 Sep 2008 06:48:58 +0200 (CEST)
X-ME-UUID: 20080928044857473.739377000083@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080928044858.D9BA11C22562@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/28 01:15:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf2320.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<minashatua@xxxxxxxxxxx>: host mx3.hotmail.com[65.54.244.200] said: 550
    Requested action not taken: mailbox unavailable (in reply to RCPT TO
    command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: D1EB21C22582
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sun, 28 Sep 2008 06:48:57 +0200 (CEST)

Final-Recipient: rfc822; minashatua@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx3.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp23.orange.fr (mwinf2326 [10.232.4.126]) by
  mwinf2320.orange.fr (SMTP Server) with ESMTP id D1EB21C22582; Sun, 28
  Sep 2008 06:48:57 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf2326.orange.fr (SMTP Server) with ESMTP id B91AB7000084; Sun, 28
  Sep 2008 06:48:57 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf2326.orange.fr (SMTP Server) with SMTP id
  739377000083; Sun, 28 Sep 2008 06:48:57 +0200 (CEST)
X-ME-UUID: 20080928044857473.739377000083@xxxxxxxxxxxxxxxxxxx
Message-ID: <004b01c92188$fe9f0bb6$994d046c@xxxxxxxxx>
From: "=?windows-1251?B?T2x5dXNpayBHLg==?=" <security@xxxxxxxxxxxxxx>
To: <minashaker@xxxxxxxxxxx>, <minashatua@xxxxxxxxxxx>
Subject: =?windows-1251?B?cm9tYW5jZSsrKysr?=
Date: Sun, 28 Sep 2008 06:48:54 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

Good day, my gentleman!

Life is very short, so break the rules, forgive quickly, believe slowly, 
love truly, laugh loudly and never regret anything that made you smile. 
Every little smile can touch somebody's heart. Can I touch yours? 
Can you touch mine? Let me know http://flirtylove.net/hilove

Waiting for your mail
Oly G


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 03:09:06 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8S7966J020177
	GroupStudy Mailer; Sun, 28 Sep 2008 03:09:06 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8S796xE020174
	for securityxhiddenx; Sun, 28 Sep 2008 03:09:06 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.179]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8S794Us020154 GroupStudy Mailer; Sun, 28 Sep 2008 03:09:04
  -0400
Received: by wa-out-1112.google.com with SMTP id m34so1087397wag.30 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 00:08:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=oTAjjHT0Jkknq29jRSgTzEJSUrj+e4ZfEr6ZLXiyO5o=;
  b=YyaxIZy48zqfkmJO4pWqpReVh4IFNxyN0nC5gepjPUW4Gs6wNT7KhxEQSjWYcbfAZl
  OPjghtrSMWM52J5RY1bdkOMlgXLQgHbAzSJmgv24n5xzAFE6qR6oB3GTLS0BbEqnoe4O
  quk7gY9tZ/YkO5zJgIEgncIr5mwb6G3nnrqYE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=C+zBjqSLV5jUtsJpdK5mRErC1bR+6dMucQkUJgtn6B9FsutyP5Y6hLhCOC+MCkBjrL
  E06S9bIW9MyhW32O3ICT+8Vm1BZXxQzn21VG7qQYdp7ql8Q/Llu8l5Rwr47h3REe3K3A
  EKnMBVIF4hxA5nPmpHZCxpvfA1NNeB9aYA2ys=
Received: by 10.115.47.13 with SMTP id
  z13mr3861507waj.197.1222585739829; Sun, 28 Sep 2008 00:08:59 -0700
  (PDT)
Received: by 10.114.192.6 with HTTP; Sun, 28 Sep 2008 00:08:59 -0700
  (PDT)
Message-ID: <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 12:38:59 +0530
From: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>
To: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>
Subject: Re: PKI resources please
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ahamadali@xxxxx\.com] (2008/09/28 03:09:05)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>

Hi Ramy,
I am looking for CA server basics, (on Win2k or Win2k3 as per blue print)
whenever I am trying to configure VPN Client, VPN Conc for getting
certificates, the CA install, enroll sequence is failing. So I feel my
concepts are not strong enough in PKI,

many thanks for the response,

Ali

On Sun, Sep 28, 2008 at 2:09 AM, Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>wrote:

> Hi Ali,
> Do you need resources in PKI in general or how to use a router as CA or how
> to use Windows server as a CA or how to configure VPN client and VPN Conc.
> To get certificates?
>
> Please be more specific as PKI is a HUGE subject
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Ahamad Ali Mohammed
> Sent: Saturday, September 27, 2008 10:08 AM
> To: Cisco certification
> Subject: PKI resources please
>
> Hi All,
> please share any document related to PKI, I am facing problems in enrolling
> ceritficates in VPN client, VPN3K, due to lack of deep knowledge,
>
> many thanks in advance.
>
> --
> Ali Ahamad
>
>


-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 07:05:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8SB5DGx027714
	GroupStudy Mailer; Sun, 28 Sep 2008 07:05:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8SB5DkJ027712
	for securityxhiddenx; Sun, 28 Sep 2008 07:05:13 -0400
Received: from ti-out-0910.google.com (ti-out-0910.google.com
  [209.85.142.186]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8SB5B3u027669 GroupStudy Mailer; Sun, 28 Sep 2008 07:05:11
  -0400
Received: by ti-out-0910.google.com with SMTP id a1so746100tib.24 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 04:05:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=JXNDepNwKWCSlp889rBGDfWeG+KUnU45W8HVaNtEWts=;
  b=HFLYDmgo09QvppubVikxBuDPQJbrOR/36ldHIgXzgFEPTIHs6W/G0zPKXVduFFPlPr
  MYhPkl/07QztPaSmZES2MnAItSiiV/IJfaalVD5KeRblks3Bc2zSP7Z8rQ/CiCBS1wDc
  KSOqON/E9h3wDxPto9nih6e20Lq39XPXG1yP4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=Uy6fmW5xsDnANhrc+Fym7XY4gY4C+W7m235Wb15r5qN+yVpv4+JpVPdMkV8lVZMEmk
  SP8yRQDS8gj6CiSczIrmcC/bAxQYB8Dqgn0G5Vt65hxK8omzHrH3WBxVNBAyKpuUkw3G
  wQDoAOSXRVSQUYkWwY0W31vtzUp2BuN5W9sX4=
Received: by 10.110.105.10 with SMTP id
  d10mr4984897tic.52.1222599910302; Sun, 28 Sep 2008 04:05:10 -0700
  (PDT)
Received: by 10.110.53.16 with HTTP; Sun, 28 Sep 2008 04:05:10 -0700
  (PDT)
Message-ID: <f589772b0809280405v75bc206fkadb10c8538350fd0@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 14:05:10 +0300
From: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
To: "Cisco certification" <ccielab@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <security@xxxxxxxxxxxxxx>
Subject: OT: 650-393 Cisco Lifecycle Services Express
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from muhammad\.nasim@xxxxx\.com] (2008/09/28 07:05:12)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>

Dear All,

I want to prepare for the mentioned lifecycle services express exam. I did
not find any training on PEC. Can anybody point from where I can learn or
get the training for this exam.

TIA

-- 
Muhammad Nasim
Network Engineer
Saudi Arabia


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 07:28:57 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8SBSv6W029576
	GroupStudy Mailer; Sun, 28 Sep 2008 07:28:57 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8SBSvlH029574
	for securityxhiddenx; Sun, 28 Sep 2008 07:28:57 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8SBSvZk029517 GroupStudy Mailer; Sun, 28 Sep 2008 07:28:57
  -0400
Received: by gxk13 with SMTP id 13so13887139gxk.6 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 04:28:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=kdyAHv+JyyaScybtD438+El1gDIoFy+4KZMRpK2GWHk=;
  b=Ma0OoOK7qyH9SEeOcj+F/MSQbkAZL08q0P1AJuDHw+az3elSvBUAabAjugkNU19Ku5
  nrumi4YcIdo2slz45jflzDnoQmoD5F98/Tz9Xydxm/ogdc5opJDnq4Fwr4SuDD9OfCVD
  un2jEN3xpjgNwK9/C6RP6uMgDrerRR0PfrdtY=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=oB3Wn5kHpnsWQAnKlkNmkswEMnpYCkuAtEi5zW3ugh6/rKRS/XmVzZSrkm6x197QVn
  2BKbc6NcgpDqGq8IQ+6/j1aPM/ZKXSXRiZ4soYdgxLFTp0gtN+7G2r06qN9oohvTywvv
  wCiroS+lcc4eyiwFCb6QKCHrcHEdvG8s0/loE=
Received: by 10.150.11.6 with SMTP id 6mr5666534ybk.9.1222601331791;
  Sun, 28 Sep 2008 04:28:51 -0700 (PDT)
Received: by 10.150.218.10 with HTTP; Sun, 28 Sep 2008 04:28:51 -0700
  (PDT)
Message-ID: <eff3217d0809280428r71a857d1nd8f136b4a0345903@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 14:28:51 +0300
From: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
To: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>
Subject: Re: OT: 650-393 Cisco Lifecycle Services Express
Cc: "Cisco certification" <ccielab@xxxxxxxxxxxxxx>,
        "Cisco
  certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <f589772b0809280405v75bc206fkadb10c8538350fd0@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <f589772b0809280405v75bc206fkadb10c8538350fd0@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from farrukhharoon@xxxxx\.com] (2008/09/28 07:28:57)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>

Please check the IE mock labs for this :)

On Sun, Sep 28, 2008 at 2:05 PM, Muhammad Nasim <muhammad.nasim@xxxxxxxxx>wrote:

> Dear All,
>
> I want to prepare for the mentioned lifecycle services express exam. I did
> not find any training on PEC. Can anybody point from where I can learn or
> get the training for this exam.
>
> TIA
>
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 22:50:19 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8T2oJp0007815
	GroupStudy Mailer; Sun, 28 Sep 2008 22:50:19 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8T2oJ0L007812
	for securityxhiddenx; Sun, 28 Sep 2008 22:50:19 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8T2oHPL007767; Sun, 28 Sep 2008 22:50:17 -0400
Received: from ezorrilla (unknown [201.230.242.96]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 9BCA91F7FC1; Sun, 28 Sep
  2008 21:57:17 -0400 (EDT)
Message-ID: <01c801c921de$1daa5bd0$2101a8c0@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "ccie forum" <ccielab@xxxxxxxxxxxxxx>
Cc: <security@xxxxxxxxxxxxxx>
Subject: command "no-alias" as cisco example question.
Date: Sun, 28 Sep 2008 21:50:21 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/28 22:50:19)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

Group :

I understand that static NAT IP can responde to arp-request, while "no-alias"
command forbidden such action. But I really do not know why in this example
they use "no-alias" in the nat command ?:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_exampl
e09186a00800b07ed.shtml

I lab it up with one static nat over a serial like this example and it works
with and without "no-alias" at the end.

Any ideas ?

Regards


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 23:39:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8T3d33O011259
	GroupStudy Mailer; Sun, 28 Sep 2008 23:39:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8T3d3Cw011257
	for securityxhiddenx; Sun, 28 Sep 2008 23:39:03 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.175]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8T3cxBC011214 GroupStudy Mailer; Sun, 28 Sep 2008 23:38:59
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so1902714wfc.24 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 20:38:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=N48NIfV3ZFresB0TihAcKny/NsDU5svC88vaDjB4PzE=;
  b=su8w1KeuCGvT6T9AZQN8KwWSXj5hjI3D/B5uJlE+BNyF2T7NELD0kwoSfSHWaXHDMD
  Z9HxMScc4txj2PB4arkS2JrIqqOzOvTDX7yg7Pzif6V3eTgpMFqXhmCxI5dj9reAXQf/
  2QFCGGiAIf3ve9CHXGTN21TxATZxn/iMwhDqs=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=Syn+7YmhULr89CnuveSBbw2hOA/A9mKUb4ejw17xa0rpLaxEYgz5yxy86ji81SRM5H
  V2FsWA3LSbIGrQ5BMJmY9SmJwpbHERWGDnCRk9Q51od9RBbU+ODqSTVsUaPJ8YMZ0pzW
  46N4G/N9q2N4TpeGHNRKSYYkWS+tqOig35pFM=
Received: by 10.142.192.11 with SMTP id
  p11mr1976531wff.111.1222659534883; Sun, 28 Sep 2008 20:38:54 -0700
  (PDT)
Received: by 10.143.2.5 with HTTP; Sun, 28 Sep 2008 20:38:54 -0700 (PDT)
Message-ID: <730ae8b00809282038yc8a2af1j16f5e6871d4eee34@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 23:38:54 -0400
From: Piotr <usaccie@xxxxxxxxx>
To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
Subject: Re: command "no-alias" as cisco example question.
Cc: "ccie forum" <ccielab@xxxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <01c801c921de$1daa5bd0$2101a8c0@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <01c801c921de$1daa5bd0$2101a8c0@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Our key was found in the mail (2008/09/28 23:39:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Piotr <usaccie@xxxxxxxxx>

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094c32.shtml

The no-alias option means that the router does not respond for the addresses
and does not install an ARP entry. If another router uses a NAT pool as an
inside global pool that consists of addresses on an attached subnet, an
alias is generated for that address so that the router can answer Address
Resolution Protocol (ARP) requests for those addresses. This causes the
router to have ARP entries for the fake addresses.


In the example you posted both routers have the 172.16.0.0 subnet.


Thanks



On Sun, Sep 28, 2008 at 10:50 PM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>wrote:

> Group :
>
> I understand that static NAT IP can responde to arp-request, while
> "no-alias"
> command forbidden such action. But I really do not know why in this example
> they use "no-alias" in the nat command ?:
>
>
> http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_exampl
> e09186a00800b07ed.shtml<http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800b07ed.shtml>
>
> I lab it up with one static nat over a serial like this example and it
> works
> with and without "no-alias" at the end.
>
> Any ideas ?
>
> Regards
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Sun Sep 28 23:56:08 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8T3u8bh013597
	GroupStudy Mailer; Sun, 28 Sep 2008 23:56:08 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8T3u84a013595
	for securityxhiddenx; Sun, 28 Sep 2008 23:56:08 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.239]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8T3u7Ol013575 GroupStudy Mailer; Sun, 28 Sep 2008 23:56:07
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so1164646wra.10 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 20:56:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:mime-version:content-type;
  bh=p9CSMh27TftmVHHybsYP3KL4ZRpS8WkUHUVGB+V+Vwc=;
  b=na+jo4K5EdH5Myo/EL4RZPDLLTQyZ2zpDWbWa0SfWJfgeK63uH/PTJxoW0BTv2duM9
  sVZQCFA+xcbLrDaWgsBAlXKYXLh1Ad+Z45D+IKUIp1ycpNURTkus1RjROWnnnSdLdIYo
  8MRdpDWcbflaVIvi7FNQ45XdwzSWTJ0lZRa78=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:mime-version:content-type;
  b=QPtF2EV5Fss+FUhhX4HNXrNaTlLnw+iNE5dUiYhmHNiJhc4JvNbiRtCbZD7soKeNWQ
  717qn2Zrua8/tQNvfHQgVrr/v9pOMrf/Ct8OG1HLVCDU+e/ipEvRu+O0IWgwpBzHTdtN
  uxAGoWAaQJtGRnJO7vGyUssqGStJzi+VgaJIc=
Received: by 10.100.9.2 with SMTP id 2mr566987ani.0.1222660563862; Sun,
  28 Sep 2008 20:56:03 -0700 (PDT)
Received: by 10.100.94.12 with HTTP; Sun, 28 Sep 2008 20:56:03 -0700
  (PDT)
Message-ID: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 20:56:03 -0700
From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Subject: TCP Syn launching tool
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from razarizvi83@xxxxx\.com] (2008/09/28 23:56:08)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Raza Rizvi" <razarizvi83@xxxxxxxxx>

Dear experts,

As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
verify after implementing that feature in the router.
Can any body tell some tool to launch "tcp syn" attack.

Regards
Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 04:09:54 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8T89s8V003821
	GroupStudy Mailer; Mon, 29 Sep 2008 04:09:54 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8T89scR003818
	for securityxhiddenx; Mon, 29 Sep 2008 04:09:54 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.231]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8T89q04003759 GroupStudy Mailer; Mon, 29 Sep 2008 04:09:52
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so1203104wra.10 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 01:09:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type
  :content-transfer-encoding:content-disposition:references;
  bh=ZCiHap25IpNeXTUC6rIZ58UzLQSW24fTGRK+8w7ubRU=;
  b=SPh3NBbiQaua4F0t4pqaTf7TqOPX8zBCTaObm+Lgb8dlfWZRJBHe+tDH5U29qFWFFF
  LvhI1RF1BeKcb3bkubrhK5hU6U1fpl6JB2sWC8678CxSoLHiutd66jDUfs9QCroKovqF
  nx8O76tMV/52kjpNU9JYo36a98Fv1EWvjby+I=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:content-transfer-encoding:content-disposition
  :references;
  b=n6XDaNFjoqUHxroYTKysE6MLd+mLwFV3o88kV+g2xSUY6mjfNOiX2bE398WDgLQW94
  auCl8G/Jd1jiRf1eb26XanSrQj3vAueHCnE7nKLty7qw+42RsG7W7WzlWAhp/Ks5bbE+
  ZjmXus9v+J9QkraeMVf/tJ07AiPipk3y7gZpA=
Received: by 10.100.31.10 with SMTP id e10mr3027350ane.73.1222675792049;
  Mon, 29 Sep 2008 01:09:52 -0700 (PDT)
Received: by 10.100.111.14 with HTTP; Mon, 29 Sep 2008 01:09:52 -0700
  (PDT)
Message-ID: <150f570d0809290109k76d1bfbcx163a137dfdb9be33@xxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2008 11:09:52 +0300
From: "George Murage" <gmurage@xxxxxxxxx>
To: "Farrukh Haroon" <farrukhharoon@xxxxxxxxx>
Subject: Re: OT: 650-393 Cisco Lifecycle Services Express
Cc: "Muhammad Nasim" <muhammad.nasim@xxxxxxxxx>,
        "Cisco certification"
  <ccielab@xxxxxxxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <eff3217d0809280428r71a857d1nd8f136b4a0345903@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
References: <f589772b0809280405v75bc206fkadb10c8538350fd0@xxxxxxxxxxxxxx>
  <eff3217d0809280428r71a857d1nd8f136b4a0345903@xxxxxxxxxxxxxx>
X-ASK-Info: Whitelist match [from gmurage@xxxxx\.com] (2008/09/29 04:09:53)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "George Murage" <gmurage@xxxxxxxxx>

Please ask your local Cisco AM, they should give you a link to the
course or a CD/DVD with the course material.

HTH

George

On Sun, Sep 28, 2008 at 2:28 PM, Farrukh Haroon <farrukhharoon@xxxxxxxxx> wrote:
> Please check the IE mock labs for this :)
>
> On Sun, Sep 28, 2008 at 2:05 PM, Muhammad Nasim <muhammad.nasim@xxxxxxxxx>wrote:
>
>> Dear All,
>>
>> I want to prepare for the mentioned lifecycle services express exam. I did
>> not find any training on PEC. Can anybody point from where I can learn or
>> get the training for this exam.
>>
>> TIA
>>
>> --
>> Muhammad Nasim
>> Network Engineer
>> Saudi Arabia
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 07:22:59 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TBMxsB024442
	GroupStudy Mailer; Mon, 29 Sep 2008 07:22:59 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TBMxAR024440
	for securityxhiddenx; Mon, 29 Sep 2008 07:22:59 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8TBMwhn024409 GroupStudy Mailer; Mon, 29 Sep 2008 07:22:58 -0400
Received: from ezorrilla (unknown [201.230.85.214]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id EA7CA1F7CF1; Mon, 29 Sep
  2008 06:28:06 -0400 (EDT)
Message-ID: <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
Subject: Re: TCP Syn launching tool
Date: Mon, 29 Sep 2008 06:21:09 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/29 07:22:58)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

A tool that we can use in the lab exam, anyone ?

Regards

----- Original Message ----- 
From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
To: "Cisco certification" <security@xxxxxxxxxxxxxx>
Sent: Sunday, September 28, 2008 10:56 PM
Subject: TCP Syn launching tool


> Dear experts,
> 
> As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
> verify after implementing that feature in the router.
> Can any body tell some tool to launch "tcp syn" attack.
> 
> Regards
> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 08:58:00 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TCw0OM001329
	GroupStudy Mailer; Mon, 29 Sep 2008 08:58:00 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TCw0if001326
	for securityxhiddenx; Mon, 29 Sep 2008 08:58:00 -0400
Received: from amrmr1001.accenture.com (amrmr1001.accenture.com
  [170.252.248.70]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TCvxIL001305 GroupStudy Mailer; Mon, 29 Sep 2008 08:57:59
  -0400
Received: from EMEXV1003.dir.svc.accenture.com
  (emexv1003.dir.svc.accenture.com [10.130.16.106]) by
  amrmr1001.accenture.com (8.13.8/8.13.8) with ESMTP id m8TCuiag009626;
  Mon, 29 Sep 2008 07:57:52 -0500 (CDT)
Received: from mail pickup service by EMEXV1003.dir.svc.accenture.com
  with Microsoft SMTPSVC; Mon, 29 Sep 2008 14:52:11 +0200
Received: from EMEXB1002.dir.svc.accenture.com ([10.130.16.109]) by
  EMEXV1003.dir.svc.accenture.com with Microsoft SMTPSVC(6.0.3790.1830);
  Sat, 27 Sep 2008 22:52:29 +0200
Received: from ememr1001.accenture.com ([170.252.72.93]) by
  EMEXB1002.dir.svc.accenture.com with Microsoft SMTPSVC(6.0.3790.1830);
  Sat, 27 Sep 2008 22:52:30 +0200
Received: from mail168-wa4-R.bigfish.com (mail-wa4.bigfish.com
  [216.32.181.114]) by ememr1001.accenture.com (8.13.8/8.13.8) with
  ESMTP id m8RKqStP024895 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA
  bits=256 verify=FAIL) for <luis.alloza.martinez@xxxxxxxxxxxxx>; Sat,
  27 Sep 2008 21:52:30 +0100 (WEST)
Received: from mail168-wa4 (localhost.localdomain [127.0.0.1]) by
  mail168-wa4-R.bigfish.com (Postfix) with ESMTP id 558D81CC877B for
  <luis.alloza.martinez@xxxxxxxxxxxxx>; Sat, 27 Sep 2008 20:52:28 +0000
  (UTC)
X-BigFish: vps-44(zz542N1a09M14ffO1443R936fO3117K9371Pzz10c0jzzz2fh6bh61h)
X-Spam-TCS-SCL: 0:0
X-MS-Exchange-Organization-Antispam-Report: OrigIP:
  208.73.222.90;Service: EHS
Received: by mail168-wa4 (MessageSwitch) id 1222548746769296_17024; Sat,
  27 Sep 2008 20:52:26 +0000 (UCT)
Received: from groupstudy.com (groupstudy.com [208.73.222.90]) (using
  TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client
  certificate requested) by mail168-wa4.bigfish.com (Postfix) with ESMTP
  id 97825980061 for <luis.alloza.martinez@xxxxxxxxxxxxx>; Sat, 27 Sep
  2008 20:52:26 +0000 (UTC)
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKdbi9008677
  GroupStudy Mailer; Sat, 27 Sep 2008 16:39:37 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m8RKdbt0008675 for
  securityxhiddenx; Sat, 27 Sep 2008 16:39:37 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.228]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RKdaXm008655 GroupStudy Mailer; Sat, 27 Sep 2008 16:39:36
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so838406wra.10 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: by 10.90.74.7 with SMTP id w7mr876032aga.51.1222547973834;
  Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id c53sm218073wrc.16.2008.09.27.13.39.27
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 27 Sep 2008 13:39:29 -0700
  (PDT)
To: "'Ahamad Ali Mohammed'" <ahamadali@xxxxxxxxx>,
        "'Cisco
  certification'" <security@xxxxxxxxxxxxxx>
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
In-Reply-To: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
Subject: RE: PKI resources please
Date: Sat, 27 Sep 2008 13:39:24 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckgyctpKZOzVFPCTAq7QZrBvXKCLQAFxK8A
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8RKdaXm008655
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com]
  (2008/09/27 16:39:36)
X-OriginalArrivalTime: 27 Sep 2008 20:52:30.0596 (UTC)
  FILETIME=[F53E2C40:01C920E2]
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/29 08:58:00)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Ali,
Do you need resources in PKI in general or how to use a router as CA or how
to use Windows server as a CA or how to configure VPN client and VPN Conc.
To get certificates?

Please be more specific as PKI is a HUGE subject


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 





-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ahamad Ali Mohammed
Sent: Saturday, September 27, 2008 10:08 AM
To: Cisco certification
Subject: PKI resources please

Hi All,
please share any document related to PKI, I am facing problems in enrolling
ceritficates in VPN client, VPN3K, due to lack of deep knowledge,

many thanks in advance.

-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 09:17:04 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TDH44S002684
	GroupStudy Mailer; Mon, 29 Sep 2008 09:17:04 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TDH47c002682
	for securityxhiddenx; Mon, 29 Sep 2008 09:17:04 -0400
Received: from mail-gx0-f20.google.com (mail-gx0-f20.google.com
  [209.85.217.20]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TDH3Uk002662 GroupStudy Mailer; Mon, 29 Sep 2008 09:17:03
  -0400
Received: by gxk13 with SMTP id 13so15091733gxk.6 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 06:16:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=JZS6T+9la0F1aJPXxYSYy5OxhiH71uT+WhsG+MQZoEU=;
  b=uxjSuYE9g7OdFX0ujlZRIk5payCYmE+EbZPjamkWTSbr1cv8urg6Ivfs0RjtbIryPc
  e68aYo76zI86yIKoKZ6uF0ajI+XCzmy4vxCqzRL0tRdlxw/MUwsdscy7ZJ5jChBynTjP
  aLY1Eij+lhqcPmBwrI6hzwim378u/EA90Q7oQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=ZfWd6PGlPPEec6kwy91OiKPIPZKRvfjInbihZvcqIaNrnccYGRyvD/DlonhkslHo/y
  D7uTJaDmzw0PTpnWJAiMhuH91q4WkbFQXqFHkLfyhBPM8KY22GbZ6vsodBWkWvmhttgV
  m3HlIhun8cIzk3viMKPxcCktsc24Prbq49fS4=
Received: by 10.100.205.15 with SMTP id
  c15mr4122877ang.67.1222694217573; Mon, 29 Sep 2008 06:16:57 -0700
  (PDT)
Received: by 10.100.94.20 with HTTP; Mon, 29 Sep 2008 06:16:57 -0700
  (PDT)
Message-ID: <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2008 09:16:57 -0400
From: "Mike Johnson" <harbor235@xxxxxxxxx>
To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
Subject: Re: TCP Syn launching tool
Cc: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from harbor235@xxxxx\.com] (2008/09/29 09:17:04)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Mike Johnson" <harbor235@xxxxxxxxx>

You can use TCP intercept.

harbor235 ;}

On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>wrote:

> A tool that we can use in the lab exam, anyone ?
>
> Regards
>
> ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
> Sent: Sunday, September 28, 2008 10:56 PM
> Subject: TCP Syn launching tool
>
>
>
> Dear experts,
>>
>> As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
>> verify after implementing that feature in the router.
>> Can any body tell some tool to launch "tcp syn" attack.
>>
>> Regards
>> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 09:56:32 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TDuWKF006202
	GroupStudy Mailer; Mon, 29 Sep 2008 09:56:32 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TDuWGO006200
	for securityxhiddenx; Mon, 29 Sep 2008 09:56:32 -0400
Received: from mgw.fpt.com.vn (mgw.fpt.com.vn [210.245.10.68]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m8TDuTIh006174
  GroupStudy Mailer; Mon, 29 Sep 2008 09:56:30 -0400
Received: (qmail 5498 invoked from network); 29 Sep 2008 13:55:12 -0000
Received: from unknown (HELO fe21-srv.HO.FPT.VN) (10.4.11.51) by
  mgw.fpt.com.vn with SMTP; 29 Sep 2008 13:55:12 -0000
Received: from fe21-srv.HO.FPT.VN ([10.65.96.52]
  helo=fe21-srv.HO.FPT.VN) by FPT.SpamMaster; 29 Sep 2008 20:55:12 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Mon, 29 Sep 2008 20:57:33 +0700
Received: from groupstudy.com ([208.73.222.90]) by fe21-srv.HO.FPT.VN
  over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Sun,
  28 Sep 2008 05:02:07 +0700
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKdbi9008677
  GroupStudy Mailer; Sat, 27 Sep 2008 16:39:37 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m8RKdbt0008675 for
  securityxhiddenx; Sat, 27 Sep 2008 16:39:37 -0400
Received: from wr-out-0506.google.com (wr-out-0506.google.com
  [64.233.184.228]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8RKdaXm008655 GroupStudy Mailer; Sat, 27 Sep 2008 16:39:36
  -0400
Received: by wr-out-0506.google.com with SMTP id c47so838406wra.10 for
  <security@xxxxxxxxxxxxxx>; Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: by 10.90.74.7 with SMTP id w7mr876032aga.51.1222547973834;
  Sat, 27 Sep 2008 13:39:33 -0700 (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id c53sm218073wrc.16.2008.09.27.13.39.27
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 27 Sep 2008 13:39:29 -0700
  (PDT)
To: "'Ahamad Ali Mohammed'" <ahamadali@xxxxxxxxx>,
        "'Cisco
  certification'" <security@xxxxxxxxxxxxxx>
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
In-Reply-To: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
Subject: RE: PKI resources please
Date: Sat, 27 Sep 2008 13:39:24 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckgyctpKZOzVFPCTAq7QZrBvXKCLQAFxK8A
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8RKdaXm008655
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com]
  (2008/09/27 16:39:36)
X-OriginalArrivalTime: 27 Sep 2008 22:02:08.0564 (UTC)
  FILETIME=[AF817F40:01C920EC]
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/29 09:56:32)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Ali,
Do you need resources in PKI in general or how to use a router as CA or how
to use Windows server as a CA or how to configure VPN client and VPN Conc.
To get certificates?

Please be more specific as PKI is a HUGE subject


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 





-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ahamad Ali Mohammed
Sent: Saturday, September 27, 2008 10:08 AM
To: Cisco certification
Subject: PKI resources please

Hi All,
please share any document related to PKI, I am facing problems in enrolling
ceritficates in VPN client, VPN3K, due to lack of deep knowledge,

many thanks in advance.

-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 10:38:51 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TEcpch010698
	GroupStudy Mailer; Mon, 29 Sep 2008 10:38:51 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TEcpTQ010696
	for securityxhiddenx; Mon, 29 Sep 2008 10:38:51 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8TEcodV010672 GroupStudy Mailer; Mon, 29 Sep 2008 10:38:50 -0400
Received: from ezorrilla (unknown [200.48.241.51]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 96ED01F8861; Mon, 29 Sep
  2008 09:39:54 -0400 (EDT)
Message-ID: <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "Mike Johnson" <harbor235@xxxxxxxxx>
Cc: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
Subject: Re: TCP Syn launching tool
Date: Mon, 29 Sep 2008 09:32:58 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/29 10:38:51)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

But how you can launch a test on the lab exam to see if that works ?

Regards

  ----- Original Message -----
  From: Mike Johnson
  To: Edouard Zorrilla
  Cc: Raza Rizvi ; Cisco certification
  Sent: Monday, September 29, 2008 8:16 AM
  Subject: Re: TCP Syn launching tool


  You can use TCP intercept.

  harbor235 ;}


  On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
wrote:

    A tool that we can use in the lab exam, anyone ?

    Regards

    ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
    To: "Cisco certification" <security@xxxxxxxxxxxxxx>
    Sent: Sunday, September 28, 2008 10:56 PM
    Subject: TCP Syn launching tool




      Dear experts,

      As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
      verify after implementing that feature in the router.
      Can any body tell some tool to launch "tcp syn" attack.

      Regards
      Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 10:54:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TEsiPX012694
	GroupStudy Mailer; Mon, 29 Sep 2008 10:54:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TEsiTc012692
	for securityxhiddenx; Mon, 29 Sep 2008 10:54:44 -0400
Received: from rn-out-0910.google.com (rn-out-0910.google.com
  [64.233.170.184]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TEsiLW012672 GroupStudy Mailer; Mon, 29 Sep 2008 10:54:44
  -0400
Received: by rn-out-0910.google.com with SMTP id m61so674223rnd.15 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 07:54:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=icE2ehP/lLbr0DgyWIJHAR+BrJJFzKyByg6qeQNURcw=;
  b=R9JUOTGNz4i5XiX/jg/OPf7ExOUDUAvYrKyXEncdLgAaLCsBph/GKJuV79XycafzMk
  zrN9YEq/kgsz5jlGWJZxHXbsVnALZOdAqi646LK9BATAQnkI3EnG1QgJSbOPLuyOXy5k
  60uD6JHrAx2yXMFkilYiCuCC4b+HAcRkh2Auc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=Z99Phrh+Ua71MzjL1C4puoNrRFs+CJGoyZU4v1r1CRyhTmz7DoG3nnOkpbKdfo26Eg
  R1zqtFHCdwQtiGbIi+6UUq+05fFtQIjLnPmKWoMWmsnk5kmsbFZYqQtEtfYB0BrVWFMQ
  +K9WXq1d/oz1WVxfMCgteJ7tMBS0VDGR54aFo=
Received: by 10.100.209.5 with SMTP id h5mr4314583ang.18.1222700082487;
  Mon, 29 Sep 2008 07:54:42 -0700 (PDT)
Received: by 10.100.94.20 with HTTP; Mon, 29 Sep 2008 07:54:42 -0700
  (PDT)
Message-ID: <836bf1f90809290754s7ef8fe1dn29635654a7ba9ab5@xxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2008 10:54:42 -0400
From: "Mike Johnson" <harbor235@xxxxxxxxx>
To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
Subject: Re: TCP Syn launching tool
Cc: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
  <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from harbor235@xxxxx\.com] (2008/09/29 10:54:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Mike Johnson" <harbor235@xxxxxxxxx>

I see now, the answer is that you cannot, however, your testing of the
technology in your study lab has
demostrated that this technology does in fact work. There are many tools for
generating SYN traffic for testing
of this technology, however, this should be done in your study lab not the
real lab because you do not have access
to the resouorces required.

There are many things in the lab that you cannot test and must rely on your
preparation
and testing that they do in fact work. For example you may be asked to
mitigate a certain
attack or worm propagation, etc ..... There is no way to test how certain
worms
propagate but you should be familiar how to mitigate the effects of some of
the well know
worms found on the blueprint

harbor235 ;}



On Mon, Sep 29, 2008 at 10:32 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>wrote:

>  But how you can launch a test on the lab exam to see if that works ?
>
> Regards
>
>
> ----- Original Message -----
> *From:* Mike Johnson <harbor235@xxxxxxxxx>
> *To:* Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
> *Cc:* Raza Rizvi <razarizvi83@xxxxxxxxx> ; Cisco certification<security@xxxxxxxxxxxxxx>
> *Sent:* Monday, September 29, 2008 8:16 AM
> *Subject:* Re: TCP Syn launching tool
>
>  You can use TCP intercept.
>
> harbor235 ;}
>
> On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>wrote:
>
>> A tool that we can use in the lab exam, anyone ?
>>
>> Regards
>>
>> ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
>> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
>> Sent: Sunday, September 28, 2008 10:56 PM
>> Subject: TCP Syn launching tool
>>
>>
>>
>> Dear experts,
>>>
>>> As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
>>> verify after implementing that feature in the router.
>>> Can any body tell some tool to launch "tcp syn" attack.
>>>
>>> Regards
>>> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 11:38:26 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TFcQnn015948
	GroupStudy Mailer; Mon, 29 Sep 2008 11:38:26 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TFcQXB015946
	for securityxhiddenx; Mon, 29 Sep 2008 11:38:26 -0400
Received: from hrndva-omtalb.mail.rr.com (hrndva-omtalb.mail.rr.com
  [71.74.56.125]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TFcPKr015925 GroupStudy Mailer; Mon, 29 Sep 2008 11:38:25
  -0400
Received: from JimPC ([72.227.160.68]) by hrndva-omta06.mail.rr.com with
  ESMTP id <20080929153733.MWHX17045.hrndva-omta06.mail.rr.com@xxxxx>
  for <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 15:37:33 +0000
From: "Tim" <ccie2be@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Subject: AAA with VPN 3000
Date: Mon, 29 Sep 2008 11:37:34 -0400
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
Thread-Index: AckiSUq+dKW4q07sQJiroWXnHjtPGg==
Message-Id: <20080929153733.MWHX17045.hrndva-omta06.mail.rr.com@xxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ccie2be@xxx\.rr\.com] (2008/09/29 11:38:26)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Tim" <ccie2be@xxxxxxxxxx>

Hi Guys,

 

My lab date is coming very soon so I'm trying to brush up in my weak areas
which definitely means the VPN 3000.

 

I've been going over the VPN 3000 documentation.  It's clear that you can
setup a Radius Server to authenticate IPSec Remote Access Users and

 

it's also clear that you setup a TACACS server to authenticate
administrative access to the VPN 3000 itself.

 

 

But, it seems that it's not possible to set up a Radius server to
authenticate Admin access to the VPN 3000 

 

and it's not possible to setup a TACACS server to authenticate IPSec Remote
Access users.

 

Am I missing something?

 

If it is possible to have Admin access to the VPN 3000 authenticated by a
Radius server instead of a TACACS server, how would I configure that?

 

Thanks, Tim


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 12:44:39 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TGid4G022003
	GroupStudy Mailer; Mon, 29 Sep 2008 12:44:39 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TGidiS022001
	for securityxhiddenx; Mon, 29 Sep 2008 12:44:39 -0400
Received: from mail.netcraftsmen.net (mail.netcraftsmen.net
  [208.72.84.57]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TGicCg021972 GroupStudy Mailer; Mon, 29 Sep 2008 12:44:38
  -0400
Received: from DFL7GWG1 (mail.netcraftsmen.net [127.0.0.1]) by
  mail.netcraftsmen.net (Postfix) with ESMTP id 635AC6009B; Mon, 29 Sep
  2008 12:42:30 -0400 (EDT)
From: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>
To: "'Edouard Zorrilla'" <ezorrilla@xxxxxxxxxx>,
        "'Mike Johnson'"
  <harbor235@xxxxxxxxx>
Cc: "'Raza Rizvi'" <razarizvi83@xxxxxxxxx>,
        "'Cisco certification'"
  <security@xxxxxxxxxxxxxx>
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
   <000501c92225$79be78b0$2101a8c0@xxxxxxxxx> 
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
  <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
In-Reply-To: <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
Subject: RE: TCP Syn launching tool
Date: Mon, 29 Sep 2008 12:44:28 -0400
Message-ID: <001e01c92252$a3e3fca0$ebabf5e0$@net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckiUI+t3Rq03MIGTAWm69Kt/AEa+gAAFvmw
Content-Language: en-us
X-ASK-Info: Whitelist match [from luan@xxxxxxxxxxxx\.net] (2008/09/29 12:44:39)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Luan Nguyen" <luan@xxxxxxxxxxxxxxxx>

You could try to use IP SLA tcp-connect option with a spoofed source-ip:
ip sla 1
 tcp-connect 1.1.1.1 80 source-ip 2.2.2.2 control disable
 timeout 100
 frequency 1
ip sla schedule 1 life forever start-time now
!
ip sla 2
 tcp-connect 1.1.1.1 80 source-ip 3.3.3.3 control disable
 timeout 100
 frequency 1
ip sla schedule 2 life forever start-time now
....

Create ten of these and you have 10 pps sync flood to 1.1.1.1.
If the router doesn't let you spoof, then create ACL inbound to block ACK
from 1.1.1.1.

-Luan



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Edouard Zorrilla
Sent: Monday, September 29, 2008 10:33 AM
To: Mike Johnson
Cc: Raza Rizvi; Cisco certification
Subject: Re: TCP Syn launching tool

But how you can launch a test on the lab exam to see if that works ?

Regards

  ----- Original Message -----
  From: Mike Johnson
  To: Edouard Zorrilla
  Cc: Raza Rizvi ; Cisco certification
  Sent: Monday, September 29, 2008 8:16 AM
  Subject: Re: TCP Syn launching tool


  You can use TCP intercept.

  harbor235 ;}


  On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
wrote:

    A tool that we can use in the lab exam, anyone ?

    Regards

    ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
    To: "Cisco certification" <security@xxxxxxxxxxxxxx>
    Sent: Sunday, September 28, 2008 10:56 PM
    Subject: TCP Syn launching tool




      Dear experts,

      As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
      verify after implementing that feature in the router.
      Can any body tell some tool to launch "tcp syn" attack.

      Regards
      Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 13:22:56 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8THMua4025780
	GroupStudy Mailer; Mon, 29 Sep 2008 13:22:56 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8THMuwQ025778
	for securityxhiddenx; Mon, 29 Sep 2008 13:22:56 -0400
Received: from exchange.ccbootcamp.com (exchange.ccbootcamp.com
  [24.234.58.3]) by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP
  id m8THMqAv025756 GroupStudy Mailer; Mon, 29 Sep 2008 13:22:54 -0400
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: RE: AAA with VPN 3000
Date: Mon, 29 Sep 2008 10:22:32 -0700
Message-ID: <E76ACA8C13EF1847BC69538B522C36630143E0BD@xxxxxxxxxxxxxxxxx>
In-Reply-To: <20080929153733.MWHX17045.hrndva-omta06.mail.rr.com@xxxxx>
Thread-Topic: AAA with VPN 3000
thread-index: AckiSUq+dKW4q07sQJiroWXnHjtPGgADpk3g
References: <20080929153733.MWHX17045.hrndva-omta06.mail.rr.com@xxxxx>
From: "Keith Barker" <kbarker@xxxxxxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8THMqAv025756
X-ASK-Info: Whitelist match [from kbarker@xxxxxxxxxx\.com] (2008/09/29 13:22:55)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Keith Barker" <kbarker@xxxxxxxxxxxxxx>

Tim- You are right on the money.

Administrator authentication - TACACS
User authentication - RADIUS
(these are not interchangeable)


That is just the way they roll.   :-)


Keith Barker
CCIE #6783 (R&S / Security)
CCSI #21763 

Instructor
CCBOOTCAMP - A Cisco Sponsored Organization (SO)

702.968.5100 Office
877.654.2243 Toll Free
702.446.0357 Fax
KBarker@xxxxxxxxxxxxxx

www.ccbootcamp.com (Cisco Training and Advanced Technology Rental Racks)

-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Tim
Sent: Monday, September 29, 2008 8:38 AM
To: security@xxxxxxxxxxxxxx
Subject: AAA with VPN 3000

Hi Guys,

 

My lab date is coming very soon so I'm trying to brush up in my weak
areas
which definitely means the VPN 3000.

 

I've been going over the VPN 3000 documentation.  It's clear that you
can
setup a Radius Server to authenticate IPSec Remote Access Users and

 

it's also clear that you setup a TACACS server to authenticate
administrative access to the VPN 3000 itself.

 

 

But, it seems that it's not possible to set up a Radius server to
authenticate Admin access to the VPN 3000 

 

and it's not possible to setup a TACACS server to authenticate IPSec
Remote
Access users.

 

Am I missing something?

 

If it is possible to have Admin access to the VPN 3000 authenticated by
a
Radius server instead of a TACACS server, how would I configure that?

 

Thanks, Tim


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 13:18:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8THIif7025467
	GroupStudy Mailer; Mon, 29 Sep 2008 13:18:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8THIiWr025465
	for securityxhiddenx; Mon, 29 Sep 2008 13:18:44 -0400
Received: from mgw.fpt.com.vn (mgw.fpt.com.vn [210.245.10.68]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m8THIemT025442
  GroupStudy Mailer; Mon, 29 Sep 2008 13:18:41 -0400
Received: (qmail 27676 invoked from network); 29 Sep 2008 17:17:11 -0000
Received: from unknown (HELO fe21-srv.HO.FPT.VN) (10.4.11.51) by
  mgw.fpt.com.vn with SMTP; 29 Sep 2008 17:17:11 -0000
Received: from fe21-srv.HO.FPT.VN ([10.65.96.52]
  helo=fe21-srv.HO.FPT.VN) by FPT.SpamMaster; 30 Sep 2008 00:17:10 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Tue, 30 Sep 2008 00:03:59 +0700
Received: from groupstudy.com ([208.73.222.90]) by fe21-srv.HO.FPT.VN
  over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Mon,
  29 Sep 2008 12:01:16 +0700
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8T3d33O011259
  GroupStudy Mailer; Sun, 28 Sep 2008 23:39:03 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m8T3d3Cw011257 for
  securityxhiddenx; Sun, 28 Sep 2008 23:39:03 -0400
Received: from wf-out-1314.google.com (wf-out-1314.google.com
  [209.85.200.175]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8T3cxBC011214 GroupStudy Mailer; Sun, 28 Sep 2008 23:38:59
  -0400
Received: by wf-out-1314.google.com with SMTP id 28so1902714wfc.24 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 20:38:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=N48NIfV3ZFresB0TihAcKny/NsDU5svC88vaDjB4PzE=;
  b=su8w1KeuCGvT6T9AZQN8KwWSXj5hjI3D/B5uJlE+BNyF2T7NELD0kwoSfSHWaXHDMD
  Z9HxMScc4txj2PB4arkS2JrIqqOzOvTDX7yg7Pzif6V3eTgpMFqXhmCxI5dj9reAXQf/
  2QFCGGiAIf3ve9CHXGTN21TxATZxn/iMwhDqs=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=Syn+7YmhULr89CnuveSBbw2hOA/A9mKUb4ejw17xa0rpLaxEYgz5yxy86ji81SRM5H
  V2FsWA3LSbIGrQ5BMJmY9SmJwpbHERWGDnCRk9Q51od9RBbU+ODqSTVsUaPJ8YMZ0pzW
  46N4G/N9q2N4TpeGHNRKSYYkWS+tqOig35pFM=
Received: by 10.142.192.11 with SMTP id
  p11mr1976531wff.111.1222659534883; Sun, 28 Sep 2008 20:38:54 -0700
  (PDT)
Received: by 10.143.2.5 with HTTP; Sun, 28 Sep 2008 20:38:54 -0700 (PDT)
Message-ID: <730ae8b00809282038yc8a2af1j16f5e6871d4eee34@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 23:38:54 -0400
From: Piotr <usaccie@xxxxxxxxx>
To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
Subject: Re: command "no-alias" as cisco example question.
Cc: "ccie forum" <ccielab@xxxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx
In-Reply-To: <01c801c921de$1daa5bd0$2101a8c0@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <01c801c921de$1daa5bd0$2101a8c0@xxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Our key was found in the mail (2008/09/28 23:39:03)
X-OriginalArrivalTime: 29 Sep 2008 05:01:17.0414 (UTC)
  FILETIME=[67CD3860:01C921F0]
X-ASK-Info: Whitelist match [from usaccie@xxxxx\.com] (2008/09/29 13:18:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Piotr <usaccie@xxxxxxxxx>

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094c32.shtml

The no-alias option means that the router does not respond for the addresses
and does not install an ARP entry. If another router uses a NAT pool as an
inside global pool that consists of addresses on an attached subnet, an
alias is generated for that address so that the router can answer Address
Resolution Protocol (ARP) requests for those addresses. This causes the
router to have ARP entries for the fake addresses.


In the example you posted both routers have the 172.16.0.0 subnet.


Thanks



On Sun, Sep 28, 2008 at 10:50 PM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx>wrote:

> Group :
>
> I understand that static NAT IP can responde to arp-request, while
> "no-alias"
> command forbidden such action. But I really do not know why in this example
> they use "no-alias" in the nat command ?:
>
>
> http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_exampl
> e09186a00800b07ed.shtml<http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800b07ed.shtml>
>
> I lab it up with one static nat over a serial like this example and it
> works
> with and without "no-alias" at the end.
>
> Any ideas ?
>
> Regards
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 13:39:34 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8THdYlm027104
	GroupStudy Mailer; Mon, 29 Sep 2008 13:39:34 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8THdYK1027102
	for securityxhiddenx; Mon, 29 Sep 2008 13:39:34 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.157]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8THd7sg027026 GroupStudy Mailer; Mon, 29 Sep 2008 13:39:33
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1721130fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 10:39:30 -0700 (PDT)
Received: by 10.180.225.16 with SMTP id
  x16mr2589458bkg.91.1222709970334; Mon, 29 Sep 2008 10:39:30 -0700
  (PDT)
Received: by 10.181.17.11 with HTTP; Mon, 29 Sep 2008 10:39:30 -0700
  (PDT)
Message-ID: <429141760809291039x191c7e8blca8d0537d754fb4e@xxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2008 13:39:30 -0400
From: "Joe Danford" <joe@xxxxxxxxxx>
To: "Mike Johnson" <harbor235@xxxxxxxxx>
Subject: Re: TCP Syn launching tool
Cc: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>,
        "Raza Rizvi"
  <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <429141760809291039i54224296l2266d65e72c52626@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
  <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
  <836bf1f90809290754s7ef8fe1dn29635654a7ba9ab5@xxxxxxxxxxxxxx>
  <429141760809291039i54224296l2266d65e72c52626@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from joe@xxxxxx\.com] (2008/09/29 13:39:34)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joe Danford" <joe@xxxxxxxxxx>

Just to add Ive read somewhere that XP has a built in connection limit to 10
tcp attempts per second when using SP2. This may cause you to have to tweak
the aggressive mode triggers for testing. You can tweak the limit on XP but
again this is time consuming also.

On Mon, Sep 29, 2008 at 1:39 PM, Joe Danford <joe@xxxxxxxxxx> wrote:

> Sorry, didnt reply to all:
>
> You could try to script it in VBS but Im not sure what type of limitations
> there are on the test PC in the lab. Maybe a looping script that calls
> random dest ports. This would probably not be worth the time in the lab
> although it may be fun to make outside of it.
>
> Here is a link for a example of a web connection in VBS:
>
> http://www.activexperts.com/activsocket/howto/telnet/vbscript/
>
> - Joe
> http://www.wr-mem.com
>
> On Mon, Sep 29, 2008 at 10:54 AM, Mike Johnson <harbor235@xxxxxxxxx>wrote:
>
>> I see now, the answer is that you cannot, however, your testing of the
>> technology in your study lab has
>> demostrated that this technology does in fact work. There are many tools
>> for
>> generating SYN traffic for testing
>> of this technology, however, this should be done in your study lab not the
>> real lab because you do not have access
>> to the resouorces required.
>>
>> There are many things in the lab that you cannot test and must rely on
>> your
>> preparation
>> and testing that they do in fact work. For example you may be asked to
>> mitigate a certain
>> attack or worm propagation, etc ..... There is no way to test how certain
>> worms
>> propagate but you should be familiar how to mitigate the effects of some
>> of
>> the well know
>> worms found on the blueprint
>>
>> harbor235 ;}
>>
>>
>>
>> On Mon, Sep 29, 2008 at 10:32 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx
>> >wrote:
>>
>> >  But how you can launch a test on the lab exam to see if that works ?
>> >
>> > Regards
>> >
>> >
>> > ----- Original Message -----
>> > *From:* Mike Johnson <harbor235@xxxxxxxxx>
>> > *To:* Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
>> > *Cc:* Raza Rizvi <razarizvi83@xxxxxxxxx> ; Cisco certification<
>> security@xxxxxxxxxxxxxx>
>> > *Sent:* Monday, September 29, 2008 8:16 AM
>> > *Subject:* Re: TCP Syn launching tool
>> >
>> >  You can use TCP intercept.
>> >
>> > harbor235 ;}
>> >
>> > On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx
>> >wrote:
>> >
>> >> A tool that we can use in the lab exam, anyone ?
>> >>
>> >> Regards
>> >>
>> >> ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx
>> >
>> >> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
>> >> Sent: Sunday, September 28, 2008 10:56 PM
>> >> Subject: TCP Syn launching tool
>> >>
>> >>
>> >>
>> >> Dear experts,
>> >>>
>> >>> As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
>> >>> verify after implementing that feature in the router.
>> >>> Can any body tell some tool to launch "tcp syn" attack.
>> >>>
>> >>> Regards
>> >>> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 13:39:11 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8THdA1u027048
	GroupStudy Mailer; Mon, 29 Sep 2008 13:39:10 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8THdAKr027046
	for securityxhiddenx; Mon, 29 Sep 2008 13:39:10 -0400
Received: from fg-out-1718.google.com (fg-out-1718.google.com
  [72.14.220.157]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8THd7sf027026 GroupStudy Mailer; Mon, 29 Sep 2008 13:39:09
  -0400
Received: by fg-out-1718.google.com with SMTP id l26so1721130fgb.38 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 10:39:05 -0700 (PDT)
Received: by 10.181.25.18 with SMTP id c18mr2614044bkj.61.1222709945054;
  Mon, 29 Sep 2008 10:39:05 -0700 (PDT)
Received: by 10.181.17.11 with HTTP; Mon, 29 Sep 2008 10:39:04 -0700
  (PDT)
Message-ID: <429141760809291039i54224296l2266d65e72c52626@xxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2008 13:39:04 -0400
From: "Joe Danford" <joe@xxxxxxxxxx>
To: "Mike Johnson" <harbor235@xxxxxxxxx>
Subject: Re: TCP Syn launching tool
Cc: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>,
        "Raza Rizvi"
  <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
In-Reply-To: <836bf1f90809290754s7ef8fe1dn29635654a7ba9ab5@xxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
  <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
  <836bf1f90809290754s7ef8fe1dn29635654a7ba9ab5@xxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from joe@xxxxxx\.com] (2008/09/29 13:39:10)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Joe Danford" <joe@xxxxxxxxxx>

Sorry, didnt reply to all:

You could try to script it in VBS but Im not sure what type of limitations
there are on the test PC in the lab. Maybe a looping script that calls
random dest ports. This would probably not be worth the time in the lab
although it may be fun to make outside of it.

Here is a link for a example of a web connection in VBS:

http://www.activexperts.com/activsocket/howto/telnet/vbscript/

- Joe
http://www.wr-mem.com

On Mon, Sep 29, 2008 at 10:54 AM, Mike Johnson <harbor235@xxxxxxxxx> wrote:

> I see now, the answer is that you cannot, however, your testing of the
> technology in your study lab has
> demostrated that this technology does in fact work. There are many tools
> for
> generating SYN traffic for testing
> of this technology, however, this should be done in your study lab not the
> real lab because you do not have access
> to the resouorces required.
>
> There are many things in the lab that you cannot test and must rely on your
> preparation
> and testing that they do in fact work. For example you may be asked to
> mitigate a certain
> attack or worm propagation, etc ..... There is no way to test how certain
> worms
> propagate but you should be familiar how to mitigate the effects of some of
> the well know
> worms found on the blueprint
>
> harbor235 ;}
>
>
>
> On Mon, Sep 29, 2008 at 10:32 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx
> >wrote:
>
> >  But how you can launch a test on the lab exam to see if that works ?
> >
> > Regards
> >
> >
> > ----- Original Message -----
> > *From:* Mike Johnson <harbor235@xxxxxxxxx>
> > *To:* Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
> > *Cc:* Raza Rizvi <razarizvi83@xxxxxxxxx> ; Cisco certification<
> security@xxxxxxxxxxxxxx>
> > *Sent:* Monday, September 29, 2008 8:16 AM
> > *Subject:* Re: TCP Syn launching tool
> >
> >  You can use TCP intercept.
> >
> > harbor235 ;}
> >
> > On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla <ezorrilla@xxxxxxxxxx
> >wrote:
> >
> >> A tool that we can use in the lab exam, anyone ?
> >>
> >> Regards
> >>
> >> ----- Original Message ----- From: "Raza Rizvi" <razarizvi83@xxxxxxxxx>
> >> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
> >> Sent: Sunday, September 28, 2008 10:56 PM
> >> Subject: TCP Syn launching tool
> >>
> >>
> >>
> >> Dear experts,
> >>>
> >>> As we aware that TCP Intercepts mitigate TCP Syn attack . How could we
> >>> verify after implementing that feature in the router.
> >>> Can any body tell some tool to launch "tcp syn" attack.
> >>>
> >>> Regards
> >>> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 14:05:03 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TI53HB030280
	GroupStudy Mailer; Mon, 29 Sep 2008 14:05:03 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TI53Cc030278
	for securityxhiddenx; Mon, 29 Sep 2008 14:05:03 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8TI52Zd030254 GroupStudy Mailer; Mon, 29 Sep 2008 14:05:03 -0400
Received: from ezorrilla (unknown [200.48.241.51]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 36D901F89EC; Mon, 29 Sep
  2008 13:08:36 -0400 (EDT)
Message-ID: <008801c9225d$6d5d3e20$33f130c8@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "Joe Danford" <joe@xxxxxxxxxx>, "Mike Johnson" <harbor235@xxxxxxxxx>
Cc: "Raza Rizvi" <razarizvi83@xxxxxxxxx>,
        "Cisco certification"
  <security@xxxxxxxxxxxxxx>
References: <238d626c0809282056t567dfa27w514908633dae2322@xxxxxxxxxxxxxx>
  <000501c92225$79be78b0$2101a8c0@xxxxxxxxx>
  <836bf1f90809290616l7030a5b1h947c6e6c02f5cddd@xxxxxxxxxxxxxx>
  <002d01c92240$45d1d2c0$33f130c8@xxxxxxxxx>
  <836bf1f90809290754s7ef8fe1dn29635654a7ba9ab5@xxxxxxxxxxxxxx>
  <429141760809291039i54224296l2266d65e72c52626@xxxxxxxxxxxxxx>
  <429141760809291039x191c7e8blca8d0537d754fb4e@xxxxxxxxxxxxxx>
Subject: Re: TCP Syn launching tool
Date: Mon, 29 Sep 2008 13:01:40 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/29 14:05:03)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

That link seems to be good, I will lab it up at home, tonight,

Regards
  ----- Original Message -----
  From: Joe Danford
  To: Mike Johnson
  Cc: Edouard Zorrilla ; Raza Rizvi ; Cisco certification
  Sent: Monday, September 29, 2008 12:39 PM
  Subject: Re: TCP Syn launching tool


  Just to add Ive read somewhere that XP has a built in connection limit to 10
tcp attempts per second when using SP2. This may cause you to have to tweak
the aggressive mode triggers for testing. You can tweak the limit on XP but
again this is time consuming also.


  On Mon, Sep 29, 2008 at 1:39 PM, Joe Danford <joe@xxxxxxxxxx> wrote:

    Sorry, didnt reply to all:


    You could try to script it in VBS but Im not sure what type of limitations
there are on the test PC in the lab. Maybe a looping script that calls random
dest ports. This would probably not be worth the time in the lab although it
may be fun to make outside of it.

    Here is a link for a example of a web connection in VBS:

    http://www.activexperts.com/activsocket/howto/telnet/vbscript/

    - Joe
    http://www.wr-mem.com


    On Mon, Sep 29, 2008 at 10:54 AM, Mike Johnson <harbor235@xxxxxxxxx>
wrote:

      I see now, the answer is that you cannot, however, your testing of the
      technology in your study lab has
      demostrated that this technology does in fact work. There are many tools
for
      generating SYN traffic for testing
      of this technology, however, this should be done in your study lab not
the
      real lab because you do not have access
      to the resouorces required.

      There are many things in the lab that you cannot test and must rely on
your
      preparation
      and testing that they do in fact work. For example you may be asked to
      mitigate a certain
      attack or worm propagation, etc ..... There is no way to test how
certain
      worms
      propagate but you should be familiar how to mitigate the effects of some
of
      the well know
      worms found on the blueprint

      harbor235 ;}



      On Mon, Sep 29, 2008 at 10:32 AM, Edouard Zorrilla
<ezorrilla@xxxxxxxxxx>wrote:


      >  But how you can launch a test on the lab exam to see if that works ?
      >
      > Regards
      >
      >
      > ----- Original Message -----

      > *From:* Mike Johnson <harbor235@xxxxxxxxx>
      > *To:* Edouard Zorrilla <ezorrilla@xxxxxxxxxx>
      > *Cc:* Raza Rizvi <razarizvi83@xxxxxxxxx> ; Cisco
certification<security@xxxxxxxxxxxxxx>
      > *Sent:* Monday, September 29, 2008 8:16 AM
      > *Subject:* Re: TCP Syn launching tool
      >
      >  You can use TCP intercept.
      >
      > harbor235 ;}
      >
      > On Mon, Sep 29, 2008 at 7:21 AM, Edouard Zorrilla
<ezorrilla@xxxxxxxxxx>wrote:
      >
      >> A tool that we can use in the lab exam, anyone ?
      >>
      >> Regards
      >>
      >> ----- Original Message ----- From: "Raza Rizvi"
<razarizvi83@xxxxxxxxx>
      >> To: "Cisco certification" <security@xxxxxxxxxxxxxx>
      >> Sent: Sunday, September 28, 2008 10:56 PM
      >> Subject: TCP Syn launching tool
      >>
      >>
      >>
      >> Dear experts,
      >>>
      >>> As we aware that TCP Intercepts mitigate TCP Syn attack . How could
we
      >>> verify after implementing that feature in the router.
      >>> Can any body tell some tool to launch "tcp syn" attack.
      >>>
      >>> Regards
      >>> Ali


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 14:10:27 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TIARec030866
	GroupStudy Mailer; Mon, 29 Sep 2008 14:10:27 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TIARqY030864
	for securityxhiddenx; Mon, 29 Sep 2008 14:10:27 -0400
Received: from mailhost.tsi.com.pe (smtpin1.tic.com.pe [200.37.28.32])
  by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id
  m8TIAQQn030841 GroupStudy Mailer; Mon, 29 Sep 2008 14:10:26 -0400
Received: from ezorrilla (unknown [200.48.241.51]) by
  mailhost.tsi.com.pe (Postfix) with ESMTP id 564DF1F8745; Mon, 29 Sep
  2008 13:07:11 -0400 (EDT)
Message-ID: <007201c9225d$3ab5b6a0$33f130c8@xxxxxxxxx>
From: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>
To: "Tim" <ccie2be@xxxxxxxxxx>, <security@xxxxxxxxxxxxxx>
References: <20080929153733.MWHX17045.hrndva-omta06.mail.rr.com@xxxxx>
Subject: Re: AAA with VPN 3000
Date: Mon, 29 Sep 2008 13:00:15 -0500
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-ASK-Info: Whitelist match [from ezorrilla@xxx\.com\.pe] (2008/09/29 14:10:27)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Edouard Zorrilla" <ezorrilla@xxxxxxxxxx>

For authenticate IPSec remote users, the only way is Radius.

For the admin itself, regarding the vpn3K, the authentication is just 
locally. Like the ACS,

Regards

----- Original Message ----- 
From: "Tim" <ccie2be@xxxxxxxxxx>
To: <security@xxxxxxxxxxxxxx>
Sent: Monday, September 29, 2008 10:37 AM
Subject: AAA with VPN 3000


> Hi Guys,
>
>
>
> My lab date is coming very soon so I'm trying to brush up in my weak areas
> which definitely means the VPN 3000.
>
>
>
> I've been going over the VPN 3000 documentation.  It's clear that you can
> setup a Radius Server to authenticate IPSec Remote Access Users and
>
>
>
> it's also clear that you setup a TACACS server to authenticate
> administrative access to the VPN 3000 itself.
>
>
>
>
>
> But, it seems that it's not possible to set up a Radius server to
> authenticate Admin access to the VPN 3000
>
>
>
> and it's not possible to setup a TACACS server to authenticate IPSec 
> Remote
> Access users.
>
>
>
> Am I missing something?
>
>
>
> If it is possible to have Admin access to the VPN 3000 authenticated by a
> Radius server instead of a TACACS server, how would I configure that?
>
>
>
> Thanks, Tim


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 15:04:22 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TJ4MZ4005090
	GroupStudy Mailer; Mon, 29 Sep 2008 15:04:22 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TJ4Mvc005088
	for securityxhiddenx; Mon, 29 Sep 2008 15:04:22 -0400
Received: from mgw.fpt.com.vn (mgw.fpt.com.vn [210.245.10.68]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m8TJ4J2t005037
  GroupStudy Mailer; Mon, 29 Sep 2008 15:04:20 -0400
Received: (qmail 12408 invoked from network); 29 Sep 2008 19:03:01 -0000
Received: from unknown (HELO fe21-srv.HO.FPT.VN) (10.4.11.51) by
  mgw.fpt.com.vn with SMTP; 29 Sep 2008 19:03:01 -0000
Received: from fe21-srv.HO.FPT.VN ([10.65.96.52]
  helo=fe21-srv.HO.FPT.VN) by FPT.SpamMaster; 30 Sep 2008 02:02:58 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Tue, 30 Sep 2008 01:57:17 +0700
Received: from groupstudy.com ([208.73.222.90]) by fe21-srv.HO.FPT.VN
  over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Sun,
  28 Sep 2008 15:01:57 +0700
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8S7966J020177
  GroupStudy Mailer; Sun, 28 Sep 2008 03:09:06 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m8S796xE020174 for
  securityxhiddenx; Sun, 28 Sep 2008 03:09:06 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.179]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8S794Us020154 GroupStudy Mailer; Sun, 28 Sep 2008 03:09:04
  -0400
Received: by wa-out-1112.google.com with SMTP id m34so1087397wag.30 for
  <security@xxxxxxxxxxxxxx>; Sun, 28 Sep 2008 00:08:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:message-id:date:from:to
  :subject:cc:in-reply-to:mime-version:content-type:references;
  bh=oTAjjHT0Jkknq29jRSgTzEJSUrj+e4ZfEr6ZLXiyO5o=;
  b=YyaxIZy48zqfkmJO4pWqpReVh4IFNxyN0nC5gepjPUW4Gs6wNT7KhxEQSjWYcbfAZl
  OPjghtrSMWM52J5RY1bdkOMlgXLQgHbAzSJmgv24n5xzAFE6qR6oB3GTLS0BbEqnoe4O
  quk7gY9tZ/YkO5zJgIEgncIr5mwb6G3nnrqYE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
  :content-type:references;
  b=C+zBjqSLV5jUtsJpdK5mRErC1bR+6dMucQkUJgtn6B9FsutyP5Y6hLhCOC+MCkBjrL
  E06S9bIW9MyhW32O3ICT+8Vm1BZXxQzn21VG7qQYdp7ql8Q/Llu8l5Rwr47h3REe3K3A
  EKnMBVIF4hxA5nPmpHZCxpvfA1NNeB9aYA2ys=
Received: by 10.115.47.13 with SMTP id
  z13mr3861507waj.197.1222585739829; Sun, 28 Sep 2008 00:08:59 -0700
  (PDT)
Received: by 10.114.192.6 with HTTP; Sun, 28 Sep 2008 00:08:59 -0700
  (PDT)
Message-ID: <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
Date: Sun, 28 Sep 2008 12:38:59 +0530
From: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>
To: "Ramy Sisy" <ramysisy@xxxxxxxxxxxxxxxxxx>
Subject: Re: PKI resources please
Cc: "Cisco certification" <security@xxxxxxxxxxxxxx>
In-Reply-To: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
  <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/alternative by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Whitelist match [from ahamadali@xxxxx\.com] (2008/09/28
  03:09:05)
X-OriginalArrivalTime: 28 Sep 2008 08:01:58.0138 (UTC)
  FILETIME=[7AF6ADA0:01C92140]
X-ASK-Info: Whitelist match [from ahamadali@xxxxx\.com] (2008/09/29 15:04:22)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: "Ahamad Ali Mohammed" <ahamadali@xxxxxxxxx>

Hi Ramy,
I am looking for CA server basics, (on Win2k or Win2k3 as per blue print)
whenever I am trying to configure VPN Client, VPN Conc for getting
certificates, the CA install, enroll sequence is failing. So I feel my
concepts are not strong enough in PKI,

many thanks for the response,

Ali

On Sun, Sep 28, 2008 at 2:09 AM, Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>wrote:

> Hi Ali,
> Do you need resources in PKI in general or how to use a router as CA or how
> to use Windows server as a CA or how to configure VPN client and VPN Conc.
> To get certificates?
>
> Please be more specific as PKI is a HUGE subject
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Ahamad Ali Mohammed
> Sent: Saturday, September 27, 2008 10:08 AM
> To: Cisco certification
> Subject: PKI resources please
>
> Hi All,
> please share any document related to PKI, I am facing problems in enrolling
> ceritficates in VPN client, VPN3K, due to lack of deep knowledge,
>
> many thanks in advance.
>
> --
> Ali Ahamad
>
>


-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 15:47:17 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TJlH9d009261
	GroupStudy Mailer; Mon, 29 Sep 2008 15:47:17 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TJlHKh009259
	for securityxhiddenx; Mon, 29 Sep 2008 15:47:17 -0400
Received: from wa-out-1112.google.com (wa-out-1112.google.com
  [209.85.146.181]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TJlFGx009239 GroupStudy Mailer; Mon, 29 Sep 2008 15:47:16
  -0400
Received: by wa-out-1112.google.com with SMTP id m34so1550461wag.30 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 12:47:13 -0700 (PDT)
Received: by 10.114.192.17 with SMTP id
  p17mr6399633waf.29.1222717633081; Mon, 29 Sep 2008 12:47:13 -0700
  (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id h40sm1121610wxd.11.2008.09.29.12.47.10
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 29 Sep 2008 12:47:12 -0700
  (PDT)
To: "'Ahamad Ali Mohammed'" <ahamadali@xxxxxxxxx>,
        "'Ramy Sisy'"
  <ramysisy@xxxxxxxxxxxxxxxxxx>
Cc: "'Cisco certification'" <security@xxxxxxxxxxxxxx>
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
In-Reply-To: <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
Subject: RE: PKI resources please
Date: Mon, 29 Sep 2008 12:47:07 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAGN7c0Fqca5Fv1edd0wcRxkBAAAAAA==@xxxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckhPwbyqyImFp4zRbyYQ6vuf9dszwBLQ9IQ
Content-Language: en-us
From: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>
Content-Transfer-Encoding: 7bit
X-MIME-Autoconverted: from quoted-printable to 8bit by groupstudy.com id
  m8TJlFGx009239
X-ASK-Info: Whitelist match [from ramysisy@xxxxxxxxxxxxxx\.com] (2008/09/29 15:47:16)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <ramysisy@xxxxxxxxxxxxxxxxxx>

Hi Ali,
1- Please make sure to install Simple Certificate Enrolment Protocol (SCEP)
over your Windows server. It is different file for W2K and W2K3.
2- You do not need to know how to manage CA server in the real lab exam, it
is off topic (it will be configured for you if it will show up). You need to
know it if you are running your own server at your home lab.
3- If you need to learn how to setup CA over windows, I highly recommend you
to check any Infrastructure book for MCSE track. Usually Microsoft
Infrastructure books have 2 or 3 modules to setup PKI

Good Luck


BEST REGARDS,

RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER

INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM 
INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM 
E. RAMYSISY@xxxxxxxxxxxxxxxxxx 



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ahamad Ali Mohammed
Sent: Sunday, September 28, 2008 12:09 AM
To: Ramy Sisy
Cc: Cisco certification
Subject: Re: PKI resources please

Hi Ramy,
I am looking for CA server basics, (on Win2k or Win2k3 as per blue print)
whenever I am trying to configure VPN Client, VPN Conc for getting
certificates, the CA install, enroll sequence is failing. So I feel my
concepts are not strong enough in PKI,

many thanks for the response,

Ali

On Sun, Sep 28, 2008 at 2:09 AM, Ramy Sisy
<ramysisy@xxxxxxxxxxxxxxxxxx>wrote:

> Hi Ali,
> Do you need resources in PKI in general or how to use a router as CA or
how
> to use Windows server as a CA or how to configure VPN client and VPN Conc.
> To get certificates?
>
> Please be more specific as PKI is a HUGE subject
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Ahamad Ali Mohammed
> Sent: Saturday, September 27, 2008 10:08 AM
> To: Cisco certification
> Subject: PKI resources please
>
> Hi All,
> please share any document related to PKI, I am facing problems in
enrolling
> ceritficates in VPN client, VPN3K, due to lack of deep knowledge,
>
> many thanks in advance.
>
> --
> Ali Ahamad
>
>


-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 16:14:13 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TKEDle011634
	GroupStudy Mailer; Mon, 29 Sep 2008 16:14:13 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TKED31011632
	for securityxhiddenx; Mon, 29 Sep 2008 16:14:13 -0400
Received: from smtp5.poczta.onet.pl (smtp5.poczta.onet.pl
  [213.180.130.32]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TKEBAS011594 GroupStudy Mailer; Mon, 29 Sep 2008 16:14:11
  -0400
Received: from pmq4.test.onet.pl ([192.168.246.4]:56098 "EHLO pmq4"
  rhost-flags-OK-OK-OK-OK) by ps5.test.onet.pl with ESMTP id
  S251772383AbYI2UODJwPbi convert rfc822-to-8bit (ORCPT
  <rfc822;security@xxxxxxxxxxxxxx>); Mon, 29 Sep 2008 22:14:03 +0200
Received: from 198.160.96.7 by 10.174.16.59 with HTTP; Mon, 29 Sep 2008
  22:14:02 +0200
Date: Mon, 29 Sep 2008 22:14:03 +0200
From: Piotr Kaluzny <stefaan@xxxxx>
To: security@xxxxxxxxxxxxxx
Subject: DocCD question
X-Mailer: onet.poczta
Message-Id: <Q155075524-6b72be0926980fe8bf71f8cc55ad8f62@xxxxxxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2
Content-Transfer-Encoding: 7bit
X-ASK-Info: Whitelist match [from stefaan@xx\.pl] (2008/09/29 16:14:13)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Piotr Kaluzny <stefaan@xxxxx>

Hi,

I just want to be 100% sure which URL can be used to access former UniverCD documentation.
What I have seen on IE page is that 

http://cisco.com/web/psa/products/tsd_products_support_configure.html

is a valid one. Can somebody confirm that?

Assuming it is, I had some problems with founding Command References e.g. for 12.4T
Would be great if somebody could also provide a path to Worms Characteristics; like configuring NBAR for detecting NIMDA or smth like this; previously I have found it on ESM QoS Solution Reference.

Thanks in advance.

Regards,
Piotr Kaluzny


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 16:41:45 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TKfj8V013954
	GroupStudy Mailer; Mon, 29 Sep 2008 16:41:45 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TKfjIE013952
	for securityxhiddenx; Mon, 29 Sep 2008 16:41:45 -0400
Received: from mgw.fpt.com.vn (mgw.fpt.com.vn [210.245.10.68]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with SMTP id m8TKfhnx013921
  GroupStudy Mailer; Mon, 29 Sep 2008 16:41:44 -0400
Received: (qmail 25507 invoked from network); 29 Sep 2008 20:40:27 -0000
Received: from unknown (HELO fe21-srv.HO.FPT.VN) (10.4.11.51) by
  mgw.fpt.com.vn with SMTP; 29 Sep 2008 20:40:27 -0000
Received: from fe21-srv.HO.FPT.VN ([10.65.96.52]
  helo=fe21-srv.HO.FPT.VN) by FPT.SpamMaster; 30 Sep 2008 03:40:26 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Tue, 30 Sep 2008 02:45:01 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Tue, 30 Sep 2008 00:58:17 +0700
Received: from mail pickup service by fe21-srv.HO.FPT.VN with Microsoft
  SMTPSVC; Tue, 30 Sep 2008 00:35:47 +0700
Received: from groupstudy.com ([208.73.222.90]) by fe21-srv.HO.FPT.VN
  over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Sun,
  28 Sep 2008 04:01:29 +0700
Received: from groupstudy.com (groupstudy.com [127.0.0.1]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKThsB007796
  GroupStudy Mailer; Sat, 27 Sep 2008 16:29:43 -0400
Received: (from listserver@xxxxxxxxx) by groupstudy.com
  (8.12.11.20060308/8.12.11/Submit) id m8RKThcQ007793 for
  securityxhiddenx; Sat, 27 Sep 2008 16:29:43 -0400
Received: from smtp19.orange.fr (smtp19.orange.fr [80.12.242.17]) by
  groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8RKTgj4007754
  GroupStudy Mailer; Sat, 27 Sep 2008 16:29:42 -0400
Received: by mwinf1910.orange.fr (SMTP Server) id 95BF35C0410F; Sat, 27
  Sep 2008 21:36:23 +0200 (CEST)
Date: Sat, 27 Sep 2008 21:36:23 +0200 (CEST)
X-ME-UUID: 20080927193621999.F3FEC1C00093@xxxxxxxxxxxxxxxxxxx
From: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: security@xxxxxxxxxxxxxx
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <20080927193623.95BF35C0410F@xxxxxxxxxxxxxxxxxxx>
X-Converted-To-Plain-Text: from multipart/report by GroupStudy
X-Converted-To-Plain-Text: Alternative section used was text/plain
X-ASK-Info: Message from Mailer-Daemon (2008/09/27 16:29:43)
X-OriginalArrivalTime: 27 Sep 2008 21:01:29.0927 (UTC)
  FILETIME=[36B58D70:01C920E4]
X-ASK-Info: Message from Mailer-Daemon (2008/09/29 16:41:45)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: MAILER-DAEMON@xxxxxxxxx (Mail Delivery System)

This is the mail system at host mwinf1910.orange.fr.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<koolkid_110@xxxxxxxxxxx>: host mx3.hotmail.com[65.54.244.200] said: 550
    Requested action not taken: mailbox unavailable (in reply to RCPT TO
    command)
Reporting-MTA: dns; orange.fr
X-SMTP-Server-Queue-ID: 5FE7A5C0089B
X-SMTP-Server-Sender: rfc822; security@xxxxxxxxxxxxxx
Arrival-Date: Sat, 27 Sep 2008 21:36:22 +0200 (CEST)

Final-Recipient: rfc822; koolkid_110@xxxxxxxxxxx
Action: failed
Status: 5.0.0
Remote-MTA: dns; mx3.hotmail.com
Diagnostic-Code: smtp; 550 Requested action not taken: mailbox unavailable
Received: from smtp19.orange.fr (mwinf1916 [172.22.129.116]) by
  mwinf1910.orange.fr (SMTP Server) with ESMTP id 5FE7A5C0089B; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from me-wanadoo.net (localhost [127.0.0.1]) by
  mwinf1916.orange.fr (SMTP Server) with ESMTP id 546551C00098; Sat, 27
  Sep 2008 21:36:22 +0200 (CEST)
Received: from srv001
  (LAubervilliers-153-53-10-154.w217-128.abo.wanadoo.fr
  [217.128.133.154]) by mwinf1916.orange.fr (SMTP Server) with SMTP id
  F3FEC1C00093; Sat, 27 Sep 2008 21:36:21 +0200 (CEST)
X-ME-UUID: 20080927193621999.F3FEC1C00093@xxxxxxxxxxxxxxxxxxx
Message-ID: <004401c9213c$eaee9fbf$74eb642e@xxxxx>
From: "=?windows-1251?B?T2x1c2lr?=" <security@xxxxxxxxxxxxxx>
To: <koolkid@xxxxxxxxxxx>, <koolkid_110@xxxxxxxxxxx>,
  <koolkid_514@xxxxxxxxxxx>
Subject: =?windows-1251?B?QW0gc2Vla2luZyB5b3U=?=
Date: Sat, 27 Sep 2008 21:36:18 +0200
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="windows-1251";
  reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

Privet, my friend!

Life is very short, so break the rules, forgive quickly, believe slowly, 
love truly, laugh loudly and never regret anything that made you smile. 
Every little smile can touch somebody's heart. Can I touch yours? 
Can you touch mine? Let me know http://flirtylove.net/hilove

Waiting for your
Olly


From security-owner@xxxxxxxxxxxxxx Mon Sep 29 15:45:44 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8TJji7d009111
	GroupStudy Mailer; Mon, 29 Sep 2008 15:45:44 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8TJjidt009109
	for securityxhiddenx; Mon, 29 Sep 2008 15:45:44 -0400
Received: from rv-out-0708.google.com (rv-out-0708.google.com
  [209.85.198.247]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8TJjhS2009089 GroupStudy Mailer; Mon, 29 Sep 2008 15:45:44
  -0400
Received: by rv-out-0708.google.com with SMTP id f25so2426642rvb.54 for
  <security@xxxxxxxxxxxxxx>; Mon, 29 Sep 2008 12:45:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com;
  s=gamma;
  h=domainkey-signature:received:received:return-receipt-to:to:cc
  :references:in-reply-to:subject:date:message-id:mime-version
  :content-type:content-transfer-encoding:x-mailer:thread-index
  :content-language:disposition-notification-to:from;
  bh=NlJ33v3kutxvH9Ag3EoqChIEJuGffcXh6DHtl3hL4vo=;
  b=KOpAGbt9a/+YCN7w+kt/E39j+WyLsSoZOApbN0aaOrASQU4S6Xfdl+dbldbGi65DOw
  qUCQN7vXFJY+dyjiVMKPt6qwTuGr/Z0J/SPxlG5cVQSGdVr50q+n3z16gjx09UWZ2BjN
  DvbcQIXw/GhrrqeKbgmtiQHgCiVMfSj5mdCWA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
  h=return-receipt-to:to:cc:references:in-reply-to:subject:date
  :message-id:mime-version:content-type:content-transfer-encoding
  :x-mailer:thread-index:content-language:disposition-notification-to
  :from;
  b=SMzm4gcwC3ogvxp/tpMNvFCIGxlCfR2VHOPrb950iZQVZdGVoHFVF4vonYIvYxdVXC
  bv8HdNuBduSmZ4CVvhZ2ZAmMaz9+eoOMZPnuuBjDLXyuiBW2QgOZ/hk3My+JcqAtVSyP
  fMLkzgIfieMaqFHrvJ+kXKKxdhn74h4S4Z+4o=
Received: by 10.141.212.5 with SMTP id o5mr2847016rvq.20.1222717541373;
  Mon, 29 Sep 2008 12:45:41 -0700 (PDT)
Received: from BlackBox (ip72-193-213-28.lv.lv.cox.net [72.193.213.28])
  by mx.google.com with ESMTPS id 5sm625843ywl.4.2008.09.29.12.45.38
  (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 29 Sep 2008 12:45:40 -0700
  (PDT)
To: "'Ahamad Ali Mohammed'" <ahamadali@xxxxxxxxx>,
        "'Ramy Sisy'"
  <ramysisy@xxxxxxxxxxxxxxxxxx>
Cc: "'Cisco certification'" <security@xxxxxxxxxxxxxx>
References: <14acbbd90809271008w215bb808x503d2c48588414e3@xxxxxxxxxxxxxx>
   <!&!AAAAAAAAAAAYAAAAAAAAAB2X7J+AdixDkv1GBqNOeBDCgAAAEAAAAKRxNiTIZFROkgYbDhjscuIBAAAAAA==@xxxxxxxxxxxxxxxxxx>
  <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
In-Reply-To: <14acbbd90809280008r3b0235f8h8311c03671f4bccd@xxxxxxxxxxxxxx>
Subject: RE: PKI resources please
Date: Mon, 29 Sep 2008 12:45:35 -0700
Message-ID: <!&!AAAAAAAAAAAYAAAAAAAAAF6gb0Y/QT9NrT/KaVvfmcmijQAAEAAAACaZa85dyupIoT9sVj9IIFkBAAAAAA==@xxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AckhPwbyqyImFp4zRbyYQ6vuf9dszwBLDZSQ
Content-Language: en-us
From: Ramy Sisy <rsisyie@xxxxxxxxx>
X-ASK-Info: Whitelist match [from rsisyie@xxxxx\.com] (2008/09/29 15:45:44)
Sender: nobody@xxxxxxxxxxxxxx
Precedence: bulk
Reply-To: Ramy Sisy <rsisyie@xxxxxxxxx>

Hi Ali,
1- Please make sure to install Simple Certificate Enrolment Protocol (SCEP)
over your Windows server. It is different file for W2K and W2K3.
2- You do not need to know how to manage CA server in the real lab exam, it
is off topic (it will be configured for you if it will show up). You need to
know it if you are running your own server at your home lab.
3- If you need to learn how to setup CA over windows, I highly recommend you
to check any Infrastructure book for MCSE track. Usually Microsoft
Infrastructure books have 2 or 3 modules to setup PKI

Good Luck



-----Original Message-----
From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
Ahamad Ali Mohammed
Sent: Sunday, September 28, 2008 12:09 AM
To: Ramy Sisy
Cc: Cisco certification
Subject: Re: PKI resources please

Hi Ramy,
I am looking for CA server basics, (on Win2k or Win2k3 as per blue print)
whenever I am trying to configure VPN Client, VPN Conc for getting
certificates, the CA install, enroll sequence is failing. So I feel my
concepts are not strong enough in PKI,

many thanks for the response,

Ali

On Sun, Sep 28, 2008 at 2:09 AM, Ramy Sisy
<ramysisy@xxxxxxxxxxxxxxxxxx>wrote:

> Hi Ali,
> Do you need resources in PKI in general or how to use a router as CA or
how
> to use Windows server as a CA or how to configure VPN client and VPN Conc.
> To get certificates?
>
> Please be more specific as PKI is a HUGE subject
>
>
> BEST REGARDS,
>
> RAMY SISY | CCIE II (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
> CCIE PROGRAM MANAGER
>
> INSPIRED MASTER | INSPIRING CREATIVE THINKING... |  WWW.INSPIREDMASTER.COM
> INSPIRED KNOWLEDGE BLOG | WWW.INSPIREDK.COM
> E. RAMYSISY@xxxxxxxxxxxxxxxxxx
>
>
>
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
> Ahamad Ali Mohammed
> Sent: Saturday, September 27, 2008 10:08 AM
> To: Cisco certification
> Subject: PKI resources please
>
> Hi All,
> please share any document related to PKI, I am facing problems in
enrolling
> ceritficates in VPN client, VPN3K, due to lack of deep knowledge,
>
> many thanks in advance.
>
> --
> Ali Ahamad
>
>


-- 
Ali Ahamad


From security-owner@xxxxxxxxxxxxxx Tue Sep 30 11:56:00 2008
Received: from groupstudy.com (groupstudy.com [127.0.0.1])
	by groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id m8UFu0m1004823
	GroupStudy Mailer; Tue, 30 Sep 2008 11:56:00 -0400
Received: (from listserver@xxxxxxxxx)
	by groupstudy.com (8.12.11.20060308/8.12.11/Submit) id m8UFu0vZ004821
	for securityxhiddenx; Tue, 30 Sep 2008 11:56:00 -0400
Received: from hrndva-omtalb.mail.rr.com (hrndva-omtalb.mail.rr.com
  [71.74.56.124]) by groupstudy.com (8.12.11.20060308/8.12.11) with
  ESMTP id m8UFtxrC004800 GroupStudy Mailer; Tue, 30 Sep 2008 11:55:59
  -0400
Received: from JimPC ([72.227.160.68]) by hrndva-omta02.mail.rr.com with
  ESMTP id <20080930155551.SPAX20555.hrndva-omta02.mail.rr.com@xxxxx>
  for <security@xxxxxxxxxxxxxx>; Tue, 30 Sep 2008 15:55:51 +0000
From: "Tim&qu