Assisting 11795182 developers since 2005.

Web Designer, Open Source, Loyal, Dad.  

Read More »

Cisco ASA 5505 UL-BUN-K9 Sec+ Firewall

Posted by David  •  Sep 8th, 2014 6:56:40 pm - Subscribe | Mood: good | Music: Final Fantasy IV Piano Collection

This afternoon I purchased myself a Cisco ASA 5505 (EOL) for my home network. My quest is to become a proficient system administrator, and perhaps one day a full stack admin...so I figured it would be a good idea to get some of the gear.

Now then, I have worked on the Cisco ASA 5510 & 5505, but the changes that I have made to it we're fairly easy to do. Open ports, edit ip addressing, and manage traffic But there is so much more to the ASA that I am interested in knowing so I figured I would jump in feet first by screwing up my own network and not someone elses. Here is a little background on the purchase.



Cisco ASA 5505-UL-BUN-K9 Security Plus Firewall Unlimited Users 25 SSL/IPSec VPN
quote:
Firewall is in perfect working order, no scratches on chassis.
ASA 5505
2 Power supplies and cords
Console cable
Ethernet cable

Cisco Adaptive Security Appliance Software Version 8.4(2)
Device Manager Version 6.4(5)

Hardware: ASA5505, 512 MB RAM, CPU Geode 500 MHz
Internal ATA Compact Flash, 128MB
BIOS Flash M50FW016 @ 0xfff00000, 2048KB

Licensed features for this platform:
Maximum Physical Interfaces : 8 perpetual
VLANs : 20 DMZ Unrestricted
Dual ISPs : Enabled perpetual
VLAN Trunk Ports : 8 perpetual
Inside Hosts : Unlimited perpetual
Failover : Active/Standby perpetual
VPN-DES : Enabled perpetual
VPN-3DES-AES : Enabled perpetual
AnyConnect Premium Peers : 2 perpetual
AnyConnect Essentials : Disabled perpetual
Other VPN Peers : 25 perpetual
Total VPN Peers : 25 perpetual
Shared License : Disabled perpetual
AnyConnect for Mobile : Disabled perpetual
AnyConnect for Cisco VPN Phone : Disabled perpetual
Advanced Endpoint Assessment : Disabled perpetual
UC Phone Proxy Sessions : 2 perpetual
Total UC Proxy Sessions : 2 perpetual
Botnet Traffic Filter : Disabled perpetual
Intercompany Media Engine : Disabled perpetual

This platform has an ASA 5505 Security Plus license.

Serial Number:
Running Permanent Activation Key:
Configuration register is 0x1
Configuration has not been modified since last system restart.
ASA#

Have one? Or have any suggestions for me? Leave me a comment.

Comments 0  •  Sep 8th, 2014 6:56:40 pm - Subscribe  •  Tweet this entry | Post a comment


If It Scares You: Cisco ASA 5510

Posted by David  •  Aug 31st, 2014 12:37:34 am - Subscribe | Mood: good | Music: FF IV Orchestra

This is a new type of entry, much like my Linux postings that I have recently been doing, but in these blogs I will be posting about things that made me uncomfortable, but I did them anyways. Success's & failures.

Well most of you know me as a web developer, but I do other things than web dev. In this past year I have taken myself outside of my comfort level and broaden my knowledge in other areas.


"If it scares you, you should probably do it."


This week I was asked to open a specific port on an Cisco ASA 5510, and also configure a Windows Server to adhere to that port on the ASA. I am unable to get into specifics but I can tell you that this was outside of my scope, but I welcomed it.

Success
That day (Thursday) I successfully con figured the server to listen to the non-traditional port and also configured the router allow the broadcasting of it. After a reboot of the server and an outside internet connection I was able to establish a connection. SUCCESS!

Issues
The next day I received notice that certain users were not able to connect to certain shares on the server. To top it off one of them was in a upper level position. EEK!

Solution
After finding the issue, and finding the solution I relayed my concerns to my sysadmin and he was able to get the disk share re-established. At which point I simply remapped my end users on the client ends. (not all had to be remapped)

I guess in the end, the configuration issues that I made to the Cisco ASA 5510 (router) and the reboot of the server was not my doing, but the fact that I was able to get the connection re-established was.

I embrace change, tasks like this regurgitate me. In the mean time I plan on continuing my knowledge with the ASA and seek other tasks as received. It is in my hopes to one day be a full stack administrator, in the mean time...let's all get out of our comfort level, and do something that scares us.

If it scares you, you should probably do it.

Comments 0  •  Aug 31st, 2014 12:37:34 am - Subscribe  •  Tweet this entry | Post a comment


Mentioned: News From You on Daily Tech News Show - Aug. 27, 2014

Posted by David  •  Aug 27th, 2014 10:00:21 pm - Subscribe | Mood: good | Music: No music

Today I was mentioned on the Daily Tech News Show podcast for August 27, 2014. I submitted a press release regarding Seagate is now shipping an 8 TB 3.5-inch hard drive with a SATA 6 gigabit-per-second interface.

I really enjoy this show, and not all the links I submit to the show are read or mentioned, but I really enjoy sharing content with the masses as you know by all my entries. happy.gif


...and yes Dan Patterson | danpatterson.com, you said my name correctly. Thanks!

Comments 0  •  Aug 27th, 2014 10:00:21 pm - Subscribe  •  Tweet this entry | Post a comment


Apache Web Server Crashes on High Load

Posted by David  •  Aug 24th, 2014 10:31:54 pm - Subscribe | Mood: good | Music: No Music

Need to send traffic to your Apache Web Server, in hopes that you will not bring it down by HTTP or ICMP request? Well read on.



Well this is unique entry, recently a friend and I we're bench testing a couple servers on different nodes using the Apache Benchmark Tool. In our findings we noticed that 2 of the domains that we tested feel to they're knees due to memory issues. Now then, in no way do I condemn black hat conduct but sometimes the only way to protect your OWN servers is to use penetration testing tools to stress the server.

Now, there is a plethora of software that can do this locally on the server or for remote usage, but for this entry I will refrain from that.

I recommend that you take a look at my friends blog on how to protect yourself from an EVASION of traffic.

External links
TRICK FOR APACHE2 AND MYSQL CRASHING ON HIGH LOAD / APACHE BENCHMARK

* thanks JV for the initial remote PT.

Comments 2  •  Aug 24th, 2014 10:31:54 pm - Subscribe  •  Tweet this entry | Post a comment


How to OCR a PDF File Using Acrobat Pro

Posted by David  •  Aug 24th, 2014 8:03:42 pm - Subscribe | Mood: good | Music: Reggie and the Full Effect - G

I receive a lot of PDF files in fact many more PDF files than word documents now a days. Now a day's being able to search a PDF file or perhaps a PDF file that was created into a doc file can same you time. Here are a few steps that you can do to OCR your PDF so that it can be easily searchable.

OCR PDF File in Acrobat Pro

  • Begin by opening up a PDF file.
  • Click on Tools located on the right side of the PDF.
  • Now click on the arrow that says Recognize Text.
  • In the list click on In This File.
  • When the menu comes up click on All Pages
  • Now click OK.

    Now you should be able to do a CTRL+F to find words with in the document.

    Comments 0  •  Aug 24th, 2014 8:03:42 pm - Subscribe  •  Tweet this entry | Post a comment



  • Image Gallery

    Badges


    Amazon Wishlist Stumble Upon Toolbar
    Internet Blogs - Blog Top Sites Internet Blogs - Blog Top Sites Technology

    About Me

    avatar

    @davidpolanco
    iPhone: 29.513522,-98.565523 Web Designer, Open Source, Loyal, Dad. Learn more...