Monthly Archives: December 2011

Upgrade Cisco ASA 8.3

Efectuar upgrade de firmware nos Cisco ASA para a versão superior à 8.3 não é uma tarefa fácil devido ás diversas dependências existentes: memória RAM, Configs (ACL, NATs), Steps entre versões.

Aqui ficam alguns links para analisar antes de efectuar o Upgrade:

https://supportforums.cisco.com/docs/DOC-12690

http://www.cisco.com/en/US/docs/security/asa/asa83/upgrading/migrating.html

vlan database cisco2821

router2821#show vlan-switch

VLAN Name                             Status    Ports
—- ——————————– ——— ——————————-
1    default                          active    Fa0/0/1, Fa0/0/2, Fa0/0/3
200 Outside                       active
1002 fddi-default                     act/unsup
1003 token-ring-default               act/unsup
1004 fddinet-default                  act/unsup
1005 trnet-default                    act/unsup

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
—- —– ———- —– —— —— ——– —- ——– —— ——
1    enet  100001     1500  –      –      –        –    –        1002   1003
200  enet  100218     1500  –      –      –        –    –        0      0
1002 fddi  101002     1500  –      –      –        –    –        1      1003
1003 tr    101003     1500  1005   0      –        –    srb      1      1002
1004 fdnet 101004     1500  –      –      1        ibm  –        0      0
1005 trnet 101005     1500  –      –      1        ibm  –        0      0

router2821#show vlans

No Virtual LANs configured.

router2821#

Diferenças na configuração de Startup e Running

#Alterando a configuração sem gravar
router#conf t
router(config)#ip access-list ext acl_archive
router(config-ext-nacl)#permit ip any any
router(config-ext-nacl)#exit
router(config)#exit

#Comparar o Running /Startup Config e mostrar as diferenças

router#show archive config differences nvram:startup-config system:running-config
Contextual Config Diffs:
+ip access-list extended acl_archive
+permit ip any any

#Comparar o Startup/Running Config e mostrar as diferenças

router#show archive config differences system:running-config nvram:startup-config
Contextual Config Diffs:
-ip access-list extended acl_archive
-permit ip any any

Formação-Juniper

Deixo alguns links importantes de Formação em Juniper

Junos As A Second Language

Networking Fundamentals Online

Junos as a Security Language

Junos as a Scripting Language

Junos As A Switching Language

Introduction to the IOS-to-Junos (I2J) Translator

J4350 and J6350 Hardware Installation and Configuration

MX960 and MX-960-ECM Ethernet Services Router installation and configuration


SRX3400 and SRX3600 Services Gateways Installation and Initial Configuration

EX4500 Ethernet Switch Installation and Initial Configuration

Training Configuring ASA and PIX Security Appliances

Formação sobre Como Configurar as Appliances Cisco ASA/PIX

Migrating from PIX Security Appliance

Migrating from PIX 500 to ASA 5500  Launch module

Firewall Services

Utilizing the Packet Tracer Feature on the Cisco ASA  Launch module

Simplifying Access Control Policies on PIX 500 and ASA 5500 Launch module

IPS Services

Intrusion Prevention Services in ASA 5500  Launch module

VPN Services

Configuring The Easy VPN Hardware Client feature on the Cisco ASA 5505 Launch module

Configuring the L2TP/IPSEC feature on the Cisco ASA Launch module

Using Cisco ASA 5500 Series SSL VPN for Clientless Access (WebVPN) Launch module

Using Cisco Secure Desktop to Provide Endpoint Security for SSL VPN Launch module

SSL VPN Client Access on ASA 5500 Launch module

Using Citrix™ with SSL VPN Clientless Access on ASA 5500 Launch module

VPN Clustering for ASA 5500 Launch module

Anti-X Services

Cisco ASA 5500 Series Content Security and Control SSM (CSC-SSM): Installation, Setup and Activation Launch module

Configuring the ASA 5500 Series with the CSC-SSM Launch module

Monitoring the ASA 5500 Series CSC-SSM Launch module

Configuring the Base License Features of the CSC-SSM in the ASA 5500 Series Launch module

Configuring the Plus License Features of the CSC-SSM in the ASA 5500 Series  Launch module

Policies

Modular Policy Framework on PIX 500 and ASA 5500 Launch module

High Availability

Active/Active Failover for ASA 5500 Launch module

Active/Standby Failover for ASA 5500 Launch module

Voice Services

Securing VoIP applications using the enhanced features of the Cisco ASA Launch module

Basic Features Services

Configuring Basic Features on the Cisco ASA 5505 Launch module

Cisco VPN Client Anyconnect Windows Linux Mac 32_64bits

Por vezes torna-se difícil obter as versões do VPN Client da Cisco, deixo-vos o link onde são disponibilizadas as seguintes versões:

VPN client 5.0.06.0160 Windows 2000/XP/Vista
vpnclient-win-msi-5.0.06.0160-k9.exe
VPN client 4.8 for Windows 98/Me
vpnclient-win-is-4.8.00.0440-k9.exe
VPN client 4.9 Mac (Mac OS 10.4.* and 10.5)
vpnclient-darwin-4.9.01.0080-universal-k9-5-10.dmg
VPN client 4.8.00.0490 for Mac (< mac 10.4 )
vpnclient-darwin-4.8.00.0490-GUI-k9-5-10.dmg
VPN client 4.8.00.0490 for Linux
vpnclient-linux-x86_64-4.8.00.0490-k9.tar.gz
AnyConnect (32 bit) client 2.5 Linux
anyconnect-linux-2.5.0217-k9.tar.gz
AnyConnect (64 bit) client 2.5 Linux
anyconnect-Linux_64-2.5.0217-k9.tar.gz

http://www.4shared.com/folder/RSMWutlZ/Cisco.html