Network technologies and trends


July 31, 2010  7:49 AM

How to use a Cisco Router or a Cisco Switch to decrypt the encrypted passwords (type 7 passwords) – Video

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

In one my articles I did talked about the commands used decrypt the encrypted password (type 7 passwords) using a Cisco router or Cisco Switch. Please find a video of the same, which I uploaded few moments back at YouTube.

[kml_flashembed movie="http://www.youtube.com/v/eGbRAzqrINA" width="425" height="350" wmode="transparent" /]

July 29, 2010  6:32 AM

Blue Coat Reporter 9.2 expands visibility into and analysis of potential threats

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Blue Coat Systems, the technology leader in Application Delivery Networking, introduced Reporter 9.2; with the latest version the blue coat administrator can have a hawk look at web activities and potential threats on the network. Three new reports have been incorporated in the latest Blue Coat Reporter 9.2, which enables the security administrators to evaluate risk and quickly identify users infected with malicious content, including malware.

“As Web threats continue to proliferate, security administrators need tools that can provide visibility into the Web activity on their networks,” said Carrie Oakes, vice president of product marketing and management at Blue Coat Systems. “With Reporter, administrators have an invaluable tool that provides detailed information about Web usage as well as information on potential threats and infected users.”

For further info do access the press release of Blue Coat Systems.


July 29, 2010  6:18 AM

Cisco 2010 Midyear Security Report released

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Cisco Systems released the Cisco 2010 Midyear Security report, according to the report, the increasing use of Social networking sites, the proliferation of network enabled mobile devices, smart phones and virtualization continue to alter the security landscape.   Which may enforce the Security Professionals to put effective security practice into place in order to protect their organizations reputation and maintain a competitive edge. Five major recommendations are suggested for improving the organization security.

  • An enterprise should these days enforce granular per-user polices for access to application and data on virtualized systems.
  • Sets strict limits for access to business data.
  • A formal corporate policy should be created for mobility.
  • More investments should be done on the tools and utilities to manage cloud activities.
  • Strict guidance should be provided to employees on the use of Social networks or media at workplace.

Read the Cisco 2010 Midyear Security Report, and find the best strategies to help you meet current security demands for your organization.


July 29, 2010  5:43 AM

Industry’s first End-to-End FCoE Solution with VMware for the Dynamic Data Center is unveiled.

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

The ongoing collaboration between Cisco Systems, NetApp and VMware is proving fruitful and their amicable collobration has resulted in inducstry’s first certified end-to-end Fiber Channel over Ethernet(FCoE) solution for VMware-virtual environments.

The combined solution resulted in supporting FCoE end-to-end to reduce the number of devices and cables needed to drive data center consolidation, virtualization, and automation. Cisco data center switches and NetApp storage FCoE solutions are now validated by VMware to support VMware-based virtualized environments, marking a significant milestone for the progression of the FCoE protocol to help more customers achieve efficiency in their dynamic data centers and progress on their journey to cloud computing.

Cisco Systems, NetApp and VMware are currently the only networking, storage, and virtualization vendors to combine data center consolidation, virtualization, and automation in a jointly certified end-to-end FCoE solution that includes both FCoE initiators (such as Converged Network Adaptors) and FCoE storage targets. VMware validated Cisco Nexus® 5000 Series Switches and NetApp FAS series unified storage support FCoE protocol in virtual environments running VMware vSphereTM. The solution has completed the VMware Hardware Certification Program testing criteria for use with VMware software and is now listed on the VMware Hardware Compatibility Guide, with support offered by all three companies.

For further info do have a look at the press release by Cisco Systems on 28th of July 2010.


July 28, 2010  5:42 AM

How to use a Cisco Router or a Cisco Switch to decrypt the encrypted passwords (type 7 passwords)

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Normally we use any of decrypting software’s to decrypt the Cisco type 7 passwords, which were encrypted by using a Cisco IOS command “service password-encryption”.  Image you don’t have an access to the internet or you don’t have a Cisco password decrypting software’s, what you will do in this situation. No worries you can use the Cisco Router or a Cisco Switch itself to decrypt the Cisco type 7 passwords.  Amazing isn’t it! We can make use of a feature call “key chain” to decrypt the encrypted type 7 passwords. To demonstrate I am just creating a scenario

Step 1

Create a username in your Cisco device and encrypt the password  by using following commands

ITKE-AS01(config)#username itke password joinitke

ITKE-AS01(config)# service password-encryption

 

Step 2

Let’s see user name and password we created

ITKE-AS01#sho run | include username

username itke password 7 12130A1E1C02180F2F

ITKE-AS01#

 

We can see “7 12130A1E1C02180F2F” is the encrypted password for joinitke which we created in step 1.

Step 3

Now we need to create a key chain and copy the encrypted password as the key string as demonstrated below

ITKE-AS01(config)#key chain getpassword

ITKE-AS01(config-keychain)#key 1

ITKE-AS01(config-keychain-key)#key-string 7 12130A1E1C02180F2F

 

Step 4

Now we can see the decrypted password by using the Cisco IOS command “show key chain getpassword”

ITKE-AS01#show key chain getpassword

Key-chain getpassword:

    key 1 — text “joinitke”

        accept lifetime (always valid) – (always valid) [valid now]

        send lifetime (always valid) – (always valid) [valid now]

ITKE-AS01#

Amazing we can use a Cisco Router or a Cisco Catalyst Switch to decrypt the type 7 encrypted passwords. Use this and do let me know.


July 27, 2010  8:31 AM

Using TCL scripts to test connectivity of hosts in a Cisco device

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

In my last post I talked about how to enable and disable the Tool command Language (TCL) in a Cisco router or a Cisco Catalyst Switch, suppose if you want to use a ping command for more than 50 hosts,you don’t need to ping each and every single host from the Cisco router or a Cisco Catalyst Switch, in this scenario you can make use of TCL scripts, I will provide you a sample script to ping 10 hosts at a time from a Cisco Catalyst 6506 E Switch, same script is applicable to Cisco routers as well.

Step 1

Enable TCL in your Cisco router or a Cisco Switch by using a “tclsh” command

ITKE-SW01#tclsh

Step 2

Write to script to ping hosts starting from 10.0.0.1 to 10.0.0.10 using the following script, start the script by using “foreach VAR {” followed by the IP Address of the hosts you want to ping and close the script by using following stings “} { puts [exec "ping $VAR"] }” as demonstrated below ( you can use notepad to prepare the script and then execute in your Cisco device)

foreach VAR {

10.0.0.1

10.0.0.2

10.0.0.3

10.0.0.4

10.0.0.5

10.0.0.6

10.0.0.7

10.0.0.8

10.0.0.9

10.0.0.10

 

} { puts [exec "ping $VAR"] }

 

Once you enter the script you will the following

TCL scripts are very helpful and really it automates some of our tasks.

[kml_flashembed movie="http://www.youtube.com/v/PcF8EdmfdoM" width="425" height="350" wmode="transparent" /]


July 26, 2010  5:35 AM

How to enable tcl in a Cisco Router or a Cisco Switch?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

In my previous post I was talking about Tool command Language (TCL), since now we are familiar with the evolution of TCL lets proceed a step ahead to see how we can enable TCL in a Cisco Router or a Cisco Catalyst Switch, before trying TCL make sure your using an IOS of release minimum of 12.3(2) T or higher. Here is the example to, I am using a Cisco Catalyst 6506 E Switch with an IOS version of 12.2(33) SXH5.

ITKE-SW01#tclsh

If the Cisco Router or a Cisco Ctalyst Switch supports the TCL feature you will see the following prompt in your device

ITKE-SW01(tcl)#

In the above example I just demonstrated how to enable the feature in a Cisco Router or a Cisco Catalyst Switch. In order to quit from the tcl mode you can use the “tclq” command as shown below.

ITKE-SW01(tcl)#tclq

ITKE-SW01#

In my next post I will try to post few examples for usage of TCL scripts.


July 25, 2010  6:25 AM

What is Tool Command Language?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

 

In today’s World we have many written scripts to automate our common tasks at work, we quite often use scripts in programming language, Linux, UNIX or even windows. But when it comes to networking to be more specific on Cisco devices there was no scripting language. However Cisco Systems realized the importance of automating the things and they come adding the “Tool Command Language in short TCL in Cisco IOS. This feature is enabled in the IOS starting from 12.3(2) T. I know most of us are not aware of this powerful scripting language.

TCL is a very powerful dynamic scripting language and it is based on open programming language developed by John Ousterhout.

Infact Cisco Press come out with a title named TCL Script for Cisco IOS which was released on June 9, 2010.

 

In upcoming articles I will try to address TCL commands how it can enabled and some sample scripts which can be used in day to day networking activities on Cisco Routers and Cisco Catalyst Switches.


July 24, 2010  6:20 AM

CCNP Routing and Switching Foundation Learning Library to be released on 28th July, 2010

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Are preparing for CCNP Certifications? Then here is good news waiting for you. On 28th July 2010 Cisco Press will release a new title CCNP Routing and Switching Foundation Learning Library, this new library is aiming to provide foundation-learning guides for the new CCNP certification exams ROUTE, SWITCH and TSHOOT. Each book consists of review questions, chapter objectives, summaries, definitions, case studies, job aids, and command summaries to provide comprehensive foundational learning for the new CCNP courses.

This Library includes the three foundation-learning guides help you understand the topics on the three CCNP exams: ROUTE, SWITCH, and TSHOOT exams. Each book includes review questions, chapter objectives, summaries, definitions, case studies, job aids, and command summaries to provide comprehensive foundational learning for the new CCNP courses.

The following topics are covered in the CCNP Routing and Switching Foundation Learning Library, once I get an access to these titles definitely you can expect a review from me. Pre order this foundation-library and avail early discount as well from Cisco Press .

SWITCH

Module 1: Analyzing Campus Network Designs
Module 2: Implementing VLANs in Campus Networks
Module 3: Implementing Spanning Tree
Module 4: Implementing Inter-VLAN Routing
Module 5: Implementing High Availability in a Campus Environment
Module 6: Implementing a First Hop Redundancy Protocols Solution
Module 7: Minimizing Service Loss and Data Theft in a Campus Module 8: Integrating Wireless LANs into a Campus Network
Module 9: Accommodating Voice and Video in Campus Networks
Appendix A Answers to Review Questions
Appendix B Configuration Exercise Equipment Requirements and Backbone Configurations

TSHOOT
Module 0: Curriculum Overview
Module 1: Planning Maintenance for Complex Networks
Module 2: Selecting Maintenance and Troubleshooting Tools and Module 3: Planning Troubleshooting Processes for Complex
Module 4: Maintaining and Troubleshooting Routing Based Solutions
Module 5: Maintaining and Troubleshooting Campus Switching Based Problems
Module 6: Maintaining and Troubleshooting Network Security Solutions
Module 7: Maintaining and Troubleshooting Network and Applications Services
Module 8: Troubleshooting Branch Office and Remote Worker Problems
Module 9: Maintaining and troubleshooting integrated, complex enterprise networks
Appendix A Answers to Review Questions
Appendix B Configuration Exercise Equipment Requirements and Backbone Configurations

ROUTE

Module 1: Planning Routing Services to Requirements
Module 2: Implementing an EIGRP-based Solution
Module 3: Implementing a Scalable Multiarea Network OSPF-based Solution
Module 4: Implement an IPv4-based Redistribution Solution
Module 5: Implement Path Control
Module 6: Configuring Policy Based Routing
Module 7: Connecting an Enterprise Network to ISP Networks
Module 8: Implementing IPv6
Module 9: Implementing Routing Facilities for Branch Offices and Mobile Workers
Appendix A Answers to Review Questions
Appendix B Configuration Exercise Equipment Requirements and Backbone Configurations


July 18, 2010  6:34 AM

Cisco is conducting Data Center of the Future on July 21st 2010

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Mark your calendar and make yourself free on 21st of July 2010 as Cisco Systems along with APC by Schneider Electric, BMC, EMC, Emerson Network Power, Intel, NetApp and Panduit conducting a day-long event which addresses the new IT challenges emerging from sophisticated virtualization, workload mobility and application complexity.

Register and participate in live roundtable discussions with leading industry experts on subjects ranging from networking, storage, applications and physical infrastructure.

Take advantage of this opportunity to join other IT and data center decision makers in this unique virtualized environment packed with informative resources. You can also network with colleagues and peers and chat with subject matter experts in our staffed partner rooms.

Apart from offering this wonderful live virtual event Cisco Systems is offering you a chance to win an Apple iPad. Register now and who knows you might be holding an iPad as a prize from Cisco Systems.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: