Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Router God tutorial

Comments

  • Registered Users, Registered Users 2 Posts: 443 ✭✭bricks




  • Closed Accounts Posts: 1,719 ✭✭✭Ruaidhri


    Dear LORD,have some ppl no shame?and now for some more PIX firewall :))


  • Closed Accounts Posts: 13 Demitri


    why not just get down and dirty with standard & extended access-lists on your router, which I asume you have if your going to be putting a moderate amount of money into a small home network. You can pick up a 25** series access router for a few hundred. Hell put a named access list on and you'll be launghing.

    Example:

    access-list 101 deny tcp 172.16.4.0 0.0.0.255 any eq 80
    access-list 101 permit ip any any
    (implicit deny any)
    (access-list 101 deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255)

    interface ethernet 0
    ip access-group 101 out

    this access list will deny the port 80 or internet traffic from that host and permit all other traffic. With a decent knowledge of port numbers (Lists of which are readily available) you can permit or deny anything and everything

    In case you wonder about the source of this it's CCNA, Net+ and mod V CCNP so I have faith in what I've learnt and why fork out for security periphals when the knowledge of how to implement security features is worth so much more. And will get you more money from your Job.

    My tupence.


  • Closed Accounts Posts: 649 ✭✭✭The Cigarette Smoking Man


    Originally posted by Demitri
    why not just get down and dirty with standard & extended access-lists on your router, which I asume you have if your going to be putting a moderate amount of money into a small home network.

    I've never seen anyone using a PIX for a home network....


  • Closed Accounts Posts: 13 Demitri


    The same applies for coporate networks of moderate size, hiring someone to your IT team to manage your networks and troubleshoot any faults should be able to do some router configuration. And it is more cost effective to have some one in your work place able to configure any changes necessary in your access lists than having some one come out to you or talk you through configuration changes over the phone, which it is likely to be the case with periphals.

    Demitri


  • Advertisement
  • Closed Accounts Posts: 219 ✭✭Bosco


    Originally posted by Demitri
    And it is more cost effective to have some one in your work place able to configure any changes necessary in your access lists than having some one come out to you or talk you through configuration changes over the phone, which it is likely to be the case with periphals.

    Actually, unless the work place is large enough to keep your networking engineer busy round-the-clock, its much much (much much much much) more cost effective to outsource your network maintainance to a specialist networking company.


Advertisement