17Mar 2008 by Curtis LaMasters No Comments

Cisco PIX 515E upgrade to 7.0 Code

Cisco
Today I used the monitor mode version of the installation procedure to upgrade a Cisco PIX 515E that was 2 months from being out of a SMARTNet contract. Just in time. This is done by rebooting the firewall with the reload command or flipping the switch (whichever you prefer), and pressing ESC during the boot cycle when the prompt tells you to, then getting started with the string of commands that are required. First lets set the interface. interface inside Then lets set the IP address address 10.0.0.1 Next lets tell it where the TFTP Server is. server 10.0.0.10 Now lets tell it the file name. file pix707.bin Finally, lets tell the firewall to upload the file. tftp The firewall will start to download, then install the code and it'll…
Read More
11Mar 2008 by Curtis LaMasters No Comments

Packet Capture with Cisco PIX / ASA

Cisco
One of the guys I work with learned a cool trick and decided to pass it on to me. From a Cisco ASA / PIX firewall you can create a pcap file from the command line for use in Wireshark or just to debug from the console. First we need to create an access list. access-list testpcap permit tcp any any Next we start the capture. capture testpcapname access-list testpcap interface outside Now that the capture is started you can view your capture with show capture testpcapname or you can download the current pcap file from the SDM with http://ipoffirewall/testpcapname/pcap To stop the capture issue no capture testpcapname and don't forget to delete your access list unless you want to use it later. This example was very basic but you…
Read More
18Jul 2007 by Curtis LaMasters 4 Comments

Cisco vs. Extreme Networks Switching Commands

Cisco, Extreme Networks
Don't get your hopes up, I'm not taking sides here. I just wanted to show how the companies differ in basic switch configuration. Now for you who don't know who Extreme is, they are the purple ones, better known as Extreme Networks. They offer some pretty nice products that compete very well with the likes of Cisco or HP. Feel free to check out their product line at http://www.extremenetworks.com/. Configuring VLANs: Extreme - Create 2 VLANs and basic configuration create vlan data configure vlan data tag 2 configure vlan data ipaddress 10.0.2.1/24 create vlan voice configure vlan voice tag 3 configure vlan voice ipaddress 10.0.3.1/24 enable ipforwarding Cisco - Create 2 VLAN interfaces and basic configuration vlan dat vlan 2 name data vlan 3 name voice exit configure terminal interface…
Read More
10Jul 2007 by Curtis LaMasters No Comments

Helpful Cisco Commands

Cisco
Well, this is my first tech post so I'll make it an easy one. I'll put a few of the commands that I regularly utilize on Cisco routers and Switches to make my life easier. | (Pipe) command output modifier - Alrighty, this truly is a basic command. You issue a normal command at the privilege exec level and add the | (pipe) afterwards followed by an i (include) e (exclude) or b (begin). Begin is not available in all IOS versions. Command Example: show run | i ip route would show something like this: ip route 10.0.0.0 255.255.255.0 11.24.1.1 name default ip route 10.1.255.0 255.255.255.0 11.24.1.2 name backup_net If you were to replace the i with a b the output would begin at "ip route" and continue on with…
Read More