December 4, 2005
Hi List,
Is there a way I can block the likes of limewire uploading (without
blocking d/l) at a network level preferably via a filter rule on the
router or server s/w in a home network environment.
The problem I have is ppl on the network forget to close limewire and
leave their machines on and of course this gobbles up all the
bandwidth. I have successfully implemented a rule to block limewire
altogether at the router but this does not go down to well with my
users!
Many thanks,
Sam
- Why not get a bandwidth/QoS control device (you can even build one with
a linux box if you so desire) and limit the amount of upload bandwidth
they can use? There are small programs that can be installed in linux
firewalls, there are also dedicated devices to do this..
The options only depend on what you’re most comfortable with.
The nice thing about QoS controls is that you can say, other traffic
gets priority, but if there is no other traffic, limewire can use all
available bandwidth.
- My advice would simply be to go with the plan to ban P2P traffic. Your
user’s complaints can be ignored if there is not legitimate use that
provides value to your organisation. You users griping over the bar on P2P
file sharing is nothing compared to the headache of policing illegal
content and malware which is a constant part of P2P life.
If you allow it and it causes trouble would you want to be responsible?
Jim Halfpenny
- There are several packet classification projects out there that may help
you.
http://ipp2p.org/
http://www.shorewall.net/IPP2P.html
http://l7-filter.sourceforge.net/
http://hippie.oofle.com/tiki-view_articles.php
Posted in Q & A 
No Comments »
December 4, 2005
I am looking for people to share there advise or any software that will
allow me to achieve the following.
I would like to do an SNMP walk over all of my Cisco devices, to get the
hardware and IOS version information.
With this information I would then like to audit each IOS version to see
– Latest IOS image ave liable
– Recommended IOS Image
– Last IOS image that doesn’t have any vulnerabilities
– Then possibly an advanced check to see if my Cisco device supports
the mimimum hardware requirements
The main difficulty here is an easy automated way to get this information.
Any suggesions?
- Search for kiwicattools ( http://www.kiwisyslog.com/cattools2.htm ) .. That
may solve all of your MASS CISCO problems. We have a network of 300+ routers
and switches and it works nicely.
Muhammad
- I’ve had great success doing much of the things your interested in. Did
it under linux
using snmpwalk/snmpget and python with some shell for
glue (or was that in shell with python for glue?), but I suspect any
number of other *nix type OSes would work, dunno about cygwin on
windows. Probably an equivalent library or toolset somewhere if you
wanna do windows natively.
As for cisco IOS versions, these 3 charts @
http://www.cisco.com/en/US/products/sw/iosswrel/ps5012/products_tech_note09186a00800afdb6.shtml
are very illustrative, I’m sure something like this exists in an ordered
parseable form somewhere…
- Ciscoworks ??? should be able to get it if you have CCO.
Could try OpenNMS if you using *nix / so you would not have to pay alot
of licensing fees.
http://www.opennms.org/wiki//
Hope that helps …
-
Posted in Q & A No Comments »
December 4, 2005
———- Original Message ———————————-
From: Chris Merkel
Date: Tue, 29 Nov 2005 11:15:50 -0600
>
>> I tried
>> calling Microsoft and going through the automated process on
>> the phone, but it says my installation is invalid. Is there
>> any way around this (I am not trying to cheat Microsoft here)
>> or any way to speak to a Microsoft representation to explain
>> my situation? Any help would be greatly appreciated.
>
>My guess is that it won’t activate because the hardware hash generated from
>one VMWare machine to another will be nearly identical. Take a look at the
>table here:
>http://www.microsoft.com/technet/prodtechnol/winxppro/evaluate/xpactiv.mspx
>
>On a VMWare machine, the only things that would need to be different would
>be MAC Address and HDD volume serial number. If the developers didn’t design
>the machines to be more unique, that may not be enough differentiation.
>
>I’ve never tried activation – the VMWare machines I use XP Pro in come from
>our volume license pool.
>
>I wonder if this problem exists using Microsoft’s Competing product: Virtual
>PC. I bet not. (Paging Dr. DOS… 
>
>- Chris Merkel
>
>
It should activate just fine under vmware, I’ve done it a number of times myself. After reading another reply I’m also thinking the OP is trying to activate it as both the host and guest at the same time. Download a distro of linux and use that as the host and activate XP as the guest only, it will be much faster that way as well.
- If your host OS is MS winXp and guest is also the same and if you are using
the same license/keys, you are violating the MS licensing policy. You may
require a separate license For the Virtual PC I would suggest you use some
Linux for Host OS and install winXP as the guest.
Pl. follow the instructions VMWare has provided to activate the os you can
find them at
http://www.vmware.com/support/guestnotes/doc/guestos_winxp.html.
Also VMWare has VMTN forums which has good threads on issues like the one
you are facing you may do a search on the VMTN forums at
http://www.vmware.com/community/index.jspa?categoryID=1.
HTH
Ramki
- I run VMWare on XP as well. Installing XP into a VMWare virtual machine, then activating the OS has always worked fine for me.
You may experience problems if you are using the same, single retail license or OEM key to register the OS on the virtual machine that you have installed on the laptop.
Try another lic. key, be sure the copy of XP you are installing in the correct type for the key (retail,OEM,volume), and be sure the key has not been used on another computer that has already been activated (only applies if retail or OEM).
Hope this helps…
- As was stated in the original post, this IS an OEM version of the
software. That OEM license is NOT good on the virtual hardware being
presented to XP’s activation app. IT WILL NOT WORK.
You can call Microsoft for a new activation key SOMETIMES, but often
this doesn’t work either and you will actually have to open a service
ticket to resolve the issue (as I did with my thinkpad).
You will also need to remove this licensed copy of XP from the latop
BEFORE installing it in the virtual machine. Personally, I have vmware
running on SuSE 10 and it works well – and as I said, I went through
all of these pains to get here.
- Hmmm, I haven’t tried this in a VM situation, however, I reformat my hard
drive every 30 – 90 days (very paranoid) and use a little trick to avoid
having to constantly re-register. It might work for you.
Boot your system into Safe Mode.
Copy the C:\Windows\System32\wpa.dbl file to another directory.
Boot into Normal Mode.
Copy the wpa.dbl into the same directory in your Virtual system.
Should now be activated. Let me know if that works for you. I’m hoping to
setup VMWare on one of my XP systems shortly, so it would be nice to know if
that works beforehand.
Cheers!
Mark
Posted in Q & A No Comments »
December 4, 2005
Can anyone tell me what they are using to crack/guess SQL Server
passwords? For Oracle I am using OPWG….but I don’t have a tool for SQL
Server. Any help would be great. Thanks, Roger
- SQLCRACK: http://www.ngssoftware.com/sqlcrack.htm
ForceSQL v2.0: http://www.nii.co.in/resources/tools.html#fsql
sqlbf: http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=26
Posted in Q & A No Comments »
December 4, 2005
Hello everyone.
I am looking for tools/scripts to clean up unused AD accounts
Background:
- Active Directory is one of the key repositories for system and user accounts.
- Various licensing systems use AD as an indicator of the number of
licenses needed to cover the environment.
- AD is known to have entries for systems and people that are no
longer with the organization.
Basic problem statement:
- We need accurate counts of active machines and users in the
environment and have not been able to generate the necessary reports
using the existing tools and processes.
- We need an automated process whereby we can generate accurate
reports on a regular basis.
I’ve identified a number of tools and processes we may be able to use
as interim solutions.
+ LogParser used to query ActiveDirectory directly
+ SystemTools free utility “NetPwAge”
(http://www.systemtools.com/download/netpwage.zip)
Can any one recommend or give insight on how they have done it at their company?
Peter.
- Post this on the activedirectory listserve..topics like these get asked
all the time….
http://www.activedir.org/List.aspx
OldCmp:
http://www.joeware.net/win/free/tools/oldcmp.htm
RE: [ActiveDir] Cleaning up Stale entries in AD:
http://www.mail-archive.com/activedir@mail.activedir.org/msg34047.html
- This may help …
http://wm.quest.com/products/ActiveDirectory/
Jay
-
Posted in Q & A No Comments »
December 4, 2005
Hello,
I would like to know if it is possible to do like a traceroute
but on layer 2.
I need to see the equipment that is between source and target
machines.
Thanks in advance;
PS: Sorry my English, this is my first post … be kind
- Layer two only provides connectivity to machines attached to the same
segment. In the case of ethernet, this means the local network segment,
such as a 192.168.0.1/24 class C subnet of 255 hosts – in order to
communicate with hosts on a wide area/extended/inter network (ie. across
more than one local network), traffic needs to be routed (which occurs
at layer three).
You can view the ethernet (MAC) addresses of other machines in the same
layer two ethernet segment as you, but traffic for these hosts is
broadcast to the local network, and as such I don’t think there would be
any practical way to ascertain what layer two equipment was in between a
pair of hosts other than by physically looking at it, or
manually/automatically logging into equipment (say, via SNMP) in order
to view MAC/CAM tables and port assignments.
Hope this helps!
James.
- An L3 traceroute gives you a very good idea of which L2 devices are in
the path between source and destination – if it does L3, has to do L2
(and L1 )
The question is: what are you trying to achieve? What additional
information would you get from a L2 traceroute that you cannot obtain
from an L3 traceroute + additional tools to identify the specific L3
device?
Agreed: your packet *might be* traversing one or more
switches/bridges/translational bridges which would be transparent to
your L3 traceroute.
Cisco does implement an L2 traceroute feature – but many preconditions
have to be met. Check:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/122sx/swcg/l
2trace.htm
A generic L2 traceroute looks to me like a difficult thing to do.
Dario
- Layer2 on Ethernet doesn’t have any hop counter such as TTL on IPv4
header, that’s why Spanning-Tree-Protocol is needed to avoid loops on
network topology.
In order to know a layer 2 path, that feature that has to be provided by
the vendor on the switching devices in the path. Cisco calls it “Layer 2
Traceroute utility” and it mainly relies on the Cisco Discovery Protocol
(CDP) feature.
“traceroute mac” or “traceroute mac ip” CLI commands are the answer. 
http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_guide_chapter09186a00804357b3.html#wp1122528
- Short answer: No.
Long answer: traceroute uses ICMP ttl-expired messages to work – which has
no equivalent in the various layer two protocols.
The only thing similar that is possible, is with source-route-bridging on
token ring, and you will only find out which ring numbers and bridge
numbers you go through to reach your destination, not the name, mac
address or other layer three addresses of the devices in between, so if
you have access to network topology diagrams, you can figure out where
your traffic goes, but it is of little use for network topology discovery.
Besides, even in a token-ring SNA environment nowadays, everyone uses
DLSw, which masks the real path that datagrams take.
Posted in Q & A No Comments »
Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers,