Press "Enter" to skip to content

Posts published in “Network”

Getting started with Windows Server command line

Shahriar 0

Hello everyone, In this post I am going to introduce some basic commands that are used to configure Windows Server. Of course if you are using Windows Server with GUI, you may not need these command at all (except for automation maybe). However if you work in an environment in which you configure windows network on a regular basis, you need to know some basic stuff B) OK, Imagine you have installed Windows Server Core 2012 R2 on a server…

Simple OpenLDAP + phpLDAPadmin setup

Shahriar 0

Hello everyone, In this blog post I’m going to show you how to setup a simple OpenLDAP server  with phpldapadmin on apache. I’m posting this because I didn’t find any up to date content on how to do this. Installing OpenLDAP and exploring it with phpLDAPadmin helps you learn LDAP structure and use cases. Also you can redirect authentication of other devices on your network to this server. These steps are run in a fresh debian wheezy (7) installation: [asciinema…

Cisco IOS and StrongSWAN IPSEC VPN

Shahriar 0

In this blog post we will cover IPSEC tunnel between Linux StrongSWAN and Cisco IOS. The strongSWAN config file can copied exactly as is to another server with the IP of Cisco Router and the tunnel will be connected between two linux routers. That is you do not need to change right and left in config files. It will be automatically detected from interface IP address (if available of course) Cisco IOS configuration is very similar to previous post. Here are…

GRE over IPSec in Cisco IOS

Shahriar 0

Cisco GRE over IPSEC In the following is a sample configuration for GRE/IPSEC in Cisco IOS devices. you can tailor this to your needs (changing encryption algorithms, IP addresses etc), just remember to make sure they are the same on both sides (except for IP of course). In later posts we will discover how to do this scenario in other platforms like Cisco ASA and StrongSWAN on Linux.

Bind9 chroot on debian 8

Shahriar 0

From Wikipedia: BIND, or named, is the most widely used Domain Name System (DNS) software on the Internet. On Unix-like operating systems it is the de facto standard. As you know chrooting a process is very beneficial for security as any compromise cannot have effect on the whole system. But be aware escaping from chroot is not impossible. and therefore should not be used as your only security measure on a production DNS resolver. Chrooting Bind is simple, however there…