Profile

Cover photo
Pete Long
Works at ITPS
Lived in Middlesbrough
170 followers|64,468 views
AboutPostsPhotosVideos

Stream

Pete Long

Shared publicly  - 
 
A few days ago I wrote about disabling SSL v3.0 to force your clients to connect with the more secure TLS v1.0. But what if your AnyConnect clients chose to connect with a weaker encryption cipher? The ciphers your firewall offer (by default) will vary depending on what OS your ASA. 
CentOS 7 - No Network Connection 01/04/15 - A while ago I spun up a CentOS server in VMware Workstation, and I could not get it connected to the network, I was in a bit of a hurry, so I blew it away and just built a new server with CentOS 6. This week I've been using VirtualBox and spun up a new ...
1
Add a comment...

Pete Long

Shared publicly  - 
 
I had a ponder on just how difficult this would be to defeat. I had a fully working (certificate based) VPN solution running on the bench that I'd used to 'proof of concept' a clients requirements. So I attempted to compromise that for educational purposes :)
1
1
Sadredin Safavi's profile photo
Add a comment...

Pete Long

Shared publicly  - 
 
A few days ago I did an article on AnyConnect and Windows DHCP. I ran it up on the test bench for a client, and everything worked fine. Doing the install my test 'remote' client failed to get an IP address. 
1
Add a comment...

Pete Long

Shared publicly  - 
 
Updated for MAC OS X
Linux - Cisco AnyConnect Error - The AnyConnect package on the secure gateway could not be located.
1
Add a comment...

Pete Long

Shared publicly  - 
 
I did an AnyConnect design for a client, and they asked 'Instead of using the firewall to lease the DHCP addresses to our remote clients, can we use our Windows DHCP Server?" In the past I've used Windows DHCP servers for IPSEC VPN clients, but recently I've tended to just use the firewall. 
CentOS 7 - No Network Connection 01/04/15 - A while ago I spun up a CentOS server in VMware Workstation, and I could not get it connected to the network, I was in a bit of a hurry, so I blew it away and just built a new server with CentOS 6. This week I've been using VirtualBox and spun up a new ...
1
Add a comment...

Pete Long

Shared publicly  - 
 
Although not my strongest subject, I know enough to get by in Linux, so I was a little put out when I tried to run ifconfig, only to be told it could not be found. On an 'out of the box' install you are supposed to use 'ip addr' instead.
1
Add a comment...
Have him in circles
170 people
Mohamed Haris's profile photo
Vitaliy Kolganov's profile photo
Stuart Weir's profile photo
Richard Watkins's profile photo
Shaun van Tonder's profile photo
Paul Martin's profile photo
Srinivasulu Bathina's profile photo
Renato Maria Marini's profile photo
Hendra Nugraha's profile photo

Pete Long

Shared publicly  - 
 
Had a stack of 3560-X switches to update, when I went looking for the notes I used last time, I could not find them. This time I took the time to document the procedure. I could upgrade from TFTP, but I used a spare USB drive and the image 'tar' file, and found it a lot less hassle.
Cisco Catalyst - Upgrading IOS via USB”/> <meta name=
1
Add a comment...

Pete Long

Shared publicly  - 
 
I have made the transition to a MAC laptop pretty easily, but theres one thing thats still a pain, VMware ESXi servers! I know these days vCenter has a nice shiny web management portal, but ESXi does not. 
1
Add a comment...

Pete Long

Shared publicly  - 
 
UPDATED - I saw this very problem again today, while hardening a firewall I had disabled some SSL encryption ciphers, I had left aes256-sha1 active, and removed the others. Took me a while to realise what had broken it!
1
Add a comment...

Pete Long

Shared publicly  - 
 
I don't usually use the graphical packet tracer tool, but I did this week, and it failed, giving me an '%Invalid input detected at '^' marker' error. 
1
Add a comment...

Pete Long

Shared publicly  - 
 
Not only make sure you have not dropped a clanger! But heres the entire process for troubleshooting connectivity though the ASA that should cover most eventualities. Covering packet-tracer, packet capture and logging.
1
Add a comment...

Pete Long

Shared publicly  - 
 
A while ago I spun up a CentOS server in VMware Workstation, and I could not get it connected to the network, I was in a bit of a hurry, so I blew it away and just built a new server with CentOS 6. This week Ive been using VirtualBox and spun up a new CentOS 7 server and had the same problem.
CentOS 7 - No Network Connection”/> <meta name=
1
Add a comment...
People
Have him in circles
170 people
Mohamed Haris's profile photo
Vitaliy Kolganov's profile photo
Stuart Weir's profile photo
Richard Watkins's profile photo
Shaun van Tonder's profile photo
Paul Martin's profile photo
Srinivasulu Bathina's profile photo
Renato Maria Marini's profile photo
Hendra Nugraha's profile photo
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Previously
Middlesbrough - Antrim - Tidworth - Chatham - Osnabruck - Dover
Story
Tagline
Author of http://www.petenetlive.com
Work
Employment
  • ITPS
    Consultant, present
Basic Information
Gender
Male