Cisco ASA Domain Authentication and Trust (Allowing)
ASA Domain Authentication KB ID 0000973 Problem I cringed this morning when I was asked about this, last time I had to get a client to authenticate to a domain through a firewall, it was ‘entertaining’. The problem is Windows loves to use RPC, which likes to use random ports, so to make it work you either had to open TCP ports 49152 and 65535 (Yes I’m Serious). Or you had to registry hack all your domain controllers...
FortiGate Securing Remote Administration
KB ID 0001734 Problem When considering Securing FortiGate remote administration, I’ve written about changing the https management port to something other than TCP 443 before, I suppose that’s security by obfuscation (though even a script kiddy with one hours experience, will be able to spot an html responses). Typically with other vendors you limit remote administration access, to specific IP addresses (or ranges). So...
Cisco ASA – Port Forward a ‘Range of Ports’
KB ID 0001111 Note: This is for Cisco ASA 5500, 5500-x, and Cisco Firepower devices running ASA Code. This comes up on forums a lot, some applications and most phone systems require a ‘LOT’ of ports to be open. Normally thats fine you just give the internal IP a static public IP and open the ports. But what if you don’t have a spare public IP? I’ve already covered port forwarding before. Cisco PIX / ASA Port...
What’s My Network Address and What’s my Broadcast Address?
KB ID 0000215 Problem The network address is the IP address that is the lowest number in your network range, and the broadcast address is the highest. To find out what your is, use the form below. Solution Find your IP address and Subnet Mask then enter it below. Enter your IP address: . . . Enter your subnet mask: . . . Answer: Network Address: Broadcast Address: Related Articles, References, Credits, or External Links...
BT Business ADSL – Configure a 2Wire Router to Allocate a Static (Public) IP Address
KB ID 0000760 Problem I know BT are now shipping the BT Business Hub, to their business ADSL clients, but there’s still a few 2Wire routers out there in the wild. Essentially if you have a range of public IP addresses, this is how to allocate one of the public IP addresses to one of your devices. In my case its a Cisco ASA firewall that I need to have a public IP. Solution Firstly I’m going to assume the router is working and...