T-53 | Waving and VPNing! « TacAck

T-53 | Waving and VPNing!

Ah, feels great to be blogging again! Couldn’t wait for this. I’ve a couple of things planned out for today :

I spent some time in the morning, making a little video about Google WAVE and how i use it for effective communication and collaboration during my practice labs. I’ve found it to be a very very useful tool and i would urge you to give it a try . Here’s the little video i made .
Please feel free to comment/mail me regarding any questions on how to effectively lab using Google WAVE.
For the rest of the day, i want to focus on some aspects of VPNs which have been troubling me for a long time. They are as follows:
- EZVPN
  - Group Locking.
  - Authorization and XAUTH using ACS
  - Certificate based authentication between the VPN client and the EZVPN server
  - Try this on both IOS and the ASA
- ANYCONNECT VPN
  - Iron-out some of the doubts that i have regarding these.
  - I had a couple of people asking me some doubts regarding this, so i’ll try and document my efforts as best as possible
  - Try this on both IOS and the ASA
- CONTROL PLANE SECURITY
  - I want to revise and study some of the stuff that i’ve already done and hopefully post some interesting stuff that i found here.

You can catch you on the WAVE most of the time, if i’m not there, either Ryan ( www.routsec.com) or Paul ( www. packetu.com) will be there and they’re super helpful guys

I’ll update this post again this evening.

Cheers,

TacACK

This entry was posted on Tuesday, January 26th, 2010 and is filed under 90 Day countdown. You can follow any responses to this entry through RSS 2.0. You can leave a response, or trackback from your own site.

INTERACT!

Last Message

22 hours, 53 minutes

ago

Info : Please, resolve the addition below before post any new comment...
Rami : so i wondering if this exam can be passed or not
Rami : Am sorry for that, hope you will do it next time, my studying is going on slowly, am little bit fed up, you are the 3rd person i know who didnt clear it, i've 2 of my friends didnt clear it too.
TacAck : Hello Rami, Well i couldn't clear the lab this time. However i hope to clear it sometime soon How are your studies going ?
Rami : Hello man, how was you exam?
TacAck : Hello Guest_1455. Yeah, i guess i'm as ready as i'll ever be Hoping to have a good time.
Guest_1455 : ready for the exam? did u finalize every thing? good luck
Guest_1455 : Hello man,
TacAck : Thank you Rahgovin
rahgovin : See that your lab exam is coming up soon. All the best for the same Do well.
TacAck : Thank you , my friend!
Guest_3723 : it has to be really god meal I wish you good luck man!!!
TacAck : Yep! I've the lab scheduled on the 31st of this month. Hoping to get atleast a good meal for the $1400
Guest_3723 : I saw your countdown you are going very soon
Guest_3723 : I think it is going to be at the end of November.
TacAck : Thanks a lot Guest_3723! All the best for your ccie-sec journey too. When are you shooting for the lab?
Guest_3723 : I am also an ccie sec candidate.
Guest_3723 : Good luck on your exam!
TacAck : Hello Guest_1455 -> By CLND , I was referring to the Cisco Learning Network Discussions
Guest_1455 : Hi, what clnd you are talking about?
TacAck : Hello Guest_2104, please go ahead with your question. I hope to be of some assistance!
Guest_2104 : anyone thr... i've some doubts
Guest_2104 : hi
TacAck : One of my ccie-sec peeps ( Simon Baumann ) just finished his lab in Dubai. Here's wishing him the best of luck!
TacAck : Thanks for the kind words Pritham!
Pritham : Wow...another goal from TacACK...nice interview...keep it up
TacAck : Lol..Ajay! Welcome to my boring world
Guest_462 : nope im Ajay lol
TacAck : Hello Guest_462! Thanks for visiting! Are you a ccie-sec candidate too?
Guest_462 : hey tacAck
routsec : Another good interview. I wish only the best of luck to Brian A!
TacAck : Hello! Thanks for visiting. What kinda examples are you looking for? I could help you find them?
Guest_848 : Ana, thanks for the link to this cool site. Where's the examples of CCNA ACL's?
TacAck : Thanks Ana. Are you on the CCIE-sec train too?
Ana : your website is very well structured, I like your explanations. thank you.
TacAck : @Pritham Thanks for the kind words
Pritham : Hey tacAck, I just went thru ur short tweenterview wid amplebrain ,really awesum...keep it up
TacAck : Good luck with your studies, Pritham!
Pritham : Currently loading CCSP...next CCIE-sec
TacAck : That's great to hear! Are you studying for CCIE-sec?
Pritham : @ TacAck...I m frm Mumbai...
TacAck : Haha @Pritham. Thanks! Where are you from?
Pritham : Thx Macha...its really inspiring !!!
TacAck : @LBSources -> Thanks bro. I hope to keep learning and sharing
LBSources : Your blogging is very inspiring man. CCIE-Sec is the goal for me as well. Thanks for sharing your journey.
TacAck : Thanks Murad
Murad Rahman : Cool job with taking notes.
Murad Rahman : Dude,
TacAck : @Murad : Hang in there bro, and keep plugging away at the lab
TacAck : 3) Almost none, but yes there is. I do feel bad when i see my friends chill out and go on vacations,etc , but this is all going to be worth it
TacAck : 2) Umm..not sure if i understand your question. Could you please elaborate?
TacAck : 1) Hardware costs a lot and rack-rentals are a lot cheaper. I can rent a rack for about 600-700 hours for half the price of a second-hand ASA
TacAck : Hello Murad. Here are my answers
Murad : 2. when you use INE/IPX material, how do you blend it with DOC-CD? 3. Is there any social life for CCIE candidates?
Murad : Shoutbox sucks!
Murad : Great Blog! Your blog keeps me motivated although I am not making much progress Unfortunately. I had few questions: 1. why rack rental? - because you don't have hardware cost or because all
TacAck : Thanks @rahgovin for the encouragement
rahgovin : hey man...awesome posts...keep up the good work..
routsec : I have a feeling that we will not be tested on LI views.....
routsec : Quick update on LI Views, I believe SNMP v3 needs to be enabled along with the view defined. Unfortunately, I don't have a high end router (I have a 2851) that supports the TAP mib. This is why the view is absent I believe...
Tac-ACK : Hey Ryan! Maybe on the same date? Will def book it tonight..see you on gtalk/wave!
routsec : The date is set my friend - Aug. 31 Any idea when you will schedule?
routsec : Have you taken a vacation, I am concerned due to your absence from the digital world....
TacAck : @routsec : Yes, we can , my friend. We're going to kick it!
routsec : Well, hopefully we can crunch through the studies in the month of March!
TacAck : Currently reading some NAC fundamentals!
TacAck : Would you like to too any topic covered .. Let me know!
TacAck : Would you like any changes to be made to the site.. Let me know!
TacAck : EVERYONE my wave id is " ybnmts at googlewave.com"
TacAck : Hello Tirumala. I've sent you an invite you should be getting one soon.
Tirumala : please send me wave request to «email»
TacAck : So will i , my friend
Routec : Time to get on the wave and do some serious labbing material. I will be on the wave all this week!
TacAck : Sure Please email me your wave ID and i'll add you right in
Guest_58 : Can I get google wave invitation from you.
TacAck : Thanks for the all kickass info that you pose Ryan ( a.k.a Routsec ) . I really appreciate all your help!
routsec : I have been trying to keep our core knowledge questions coming. Check out some new ones on the Wave!
TacAck : Yeah control plane security next!
Routec : Well, I see you put Identity Management on the wave, I have to do some catch up now. Control and Management Plane Security next?
TacAck : Thanks for the suggestion @routsec. We've started the IPS thread on the wave, next i'm planning to do Attack mitigation/contr ol plane security. Any suggestions/comm ents?
routsec : I guess we should start coming up with another WAVE topic. I chose IPS, your turn....
TacAck : Another wave is scheduled at 7 PM UTC on Friday! Be there!
TacAck : Next Wave at 1:30 AM UTC! See you there Routsec! Others are welcome!
TacAck : I'll schedule the next one in accordance with either the Pacific or Atlantic time-zone More surfers = better!
routsec : Too bad we are about 12 hours apart. I would have liked to join you in google wave.
TacAck : P.S : This is not a twitter feed This's like a Chat engine/live discussion/query tool!
TacAck : Guys, i'm going to be starting a WAVE at 2 PM IST ( 9:30 AM UTC ) when i start the Lt2p config. Do feel free to join . My google wave id is "ybnmts". Send me a request! Cheers!
TacAck : I'm making notes for the next article
TacAck : Alright guys! I'm starting Written study in about 20 mins...
TacAck : Any feedbacks/commen ts will be appreciated!
TacAck : Hello everyone! I've integrated this new feature with the site so that we can interact live whenever possible! Cheers!

M	T	W	T	F	S	S
« Dec				Feb »
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

TacAck – My security journey!

T-53 | Waving and VPNing!

STUDY SCHEDULE

INTERACT!