Comments for HiddenOne

Comment on Bookshelf by HiddenOne » CCNA – One Year Later

HiddenOne » CCNA – One Year Later — Thu, 03 Jun 2010 12:02:46 +0000

[...] Bookshelf [...]

Comment on Internal DNS Reverse Lookup Zones by QualityLife

QualityLife — Fri, 14 May 2010 12:37:13 +0000

Thanks for posting this very helpful information; I happened to come to your blog just searching around the web. Please keep up the good work!

Comment on Fortigate Static NAT Configuration by Chris

Chris — Thu, 22 Apr 2010 16:15:16 +0000

@WalkerBoh42 I'm not familiar with the clustering features on the Fortigate units. I am actually in the process of migrating from a single Fortigate 800 to a pair of Juniper SRX240's. @Paul Kuhne On the Fortigate 800 you can add multiple IP addresses to an interface. This is done under the System -> Network -> Interface menu. Once you select the interface you wish to configure (probably External), look for the "Secondary IP Address" option. From there you add the needed IP addresses and choose to enable remote administration (HTTP/HTTPS) on one or more of the IP addresses. Note, this may not be available on the 80c. Using different IPs based on the external service the workstation is attempting to use is a bit tricky. Most likely you will have to get creative with the firewall policies, however you may not be able to accomplish this with the 80c.

Comment on Fortigate Static NAT Configuration by Paul Kuhne

Paul Kuhne — Wed, 07 Apr 2010 08:07:23 +0000

I have an issue with UPC business; we are using a fortigate 80c. UPC provided us with 4 fixed IP-adresses. However, I could only use 1 on the external interface wan-1, and all mapping with NAT. What I would like to do is use different IP’s for HTTP, FTP-access, Audio-streams, Remote administration. So every use it’s own IP xxx.xxx.xxx.250-254. I can’t get all 4 IP’s been seen on the outside (WAN). Can you help me out ?

Comment on Fortigate Static NAT Configuration by WalkerBoh42

WalkerBoh42 — Sun, 14 Feb 2010 12:45:02 +0000

Thanks for the reply guys. All working perfectly now.

Next question (might not be the right thread for this). I have setup 4 blades into an ELBC cluster. I need to be able enable RIP. I had RIP working on the HA cluster, but when I changed it to the ELBC it got broken!!

Any suggestions.

Thanks

Comment on Fortigate Static NAT Configuration by Chris

Chris — Sun, 07 Feb 2010 14:01:06 +0000

@cdm You will want to have a look at port forwarding as well as the one to many NAT feature. I have not played with these features, so I am unsure of they will accomplish your goal.

Comment on Fortigate Static NAT Configuration by Chris

Chris — Sun, 07 Feb 2010 13:59:55 +0000

@Walkerboh42 Have a look at my Fortigate NAT Overload (PAT) article. You can use the PAT address that is assigned to your external interface for any other traffic that does not need a dedicated IP (such as DNS forwarding). Juts be sure you create a policy that allow DNS queries from your internal server to get to the external DNS servers that you are using. I use this method with our Fortigate and it works well.

Comment on Fortigate Static NAT Configuration by Walkerboh42

Walkerboh42 — Sun, 07 Feb 2010 11:46:35 +0000

Thanks for the easy to follow steps. I have just one question. How do I configure the VIP for traffic that is initiated inside the private network? DNS for example needs to forward to a server in another network on a natted address.

Thanks

Comment on Rancid & HP Procurve Equipment by Dan

Dan — Tue, 02 Feb 2010 20:05:28 +0000

This was very helpful. Thanks for the post!

Comment on Fortigate Static NAT Configuration by cdm

cdm — Tue, 26 Jan 2010 03:00:20 +0000

Not to be late to the party here – but great article – very easy to follow..

My issue is that I am trying to get one WAN address to forward traffic to multiple LAN addresses..

So – 4.2.2.2 will have to ports open 80 and 25.. 80 needs to route to 192.168.0.5 and 25 needs to route to 192.168.0.10..

Thanks in advance..

Comment on CCNP Changes by Chris

Chris — Mon, 25 Jan 2010 23:13:27 +0000

I was going to try for the current exams before the changes were officially announced. However, for the past few months I have been studying for the CCNA Voice and possibly the JNCIA-EX exams because of some projects at work.

Since I really don’t have any CCNP study material (Except for the INE COD), I will just go for the new exams.

Comment on CCNP Changes by Jeremy L. Gaddis

Jeremy L. Gaddis — Mon, 25 Jan 2010 22:56:38 +0000

Going to try to get it knocked out by July 31st?

Comment on CCNP Version 6.0 by HiddenOne » CCNP Changes

HiddenOne » CCNP Changes — Mon, 25 Jan 2010 16:34:23 +0000

[...] the information that has been floating around the Internet (and covered here) regarding the changes has been spot on. Pre-orders for some of the Cisco Press books have started [...]

Comment on CCNP Version 6.0 by sturd

sturd — Wed, 13 Jan 2010 04:17:05 +0000

I agree with you, What we learn in CCNP today are the pillars(Fundamentals) on which Latest version will be introduced so need not to wrry as long as knowledge is concerned.

Comment on VMware Whitebox Build by Chris

Chris — Tue, 05 Jan 2010 05:12:45 +0000

@Mark Mark, Good luck with the build! My only suggestion would be to shop around. The native support for SATA within ESX has improved greatly since I first started speccing out my whitebox. Some money can be saved on the motherboard.

Comment on VMware Whitebox Build by Mark

Mark — Tue, 05 Jan 2010 01:00:20 +0000

Your setup sounds like it will work very nice. I am planning on the same build you are and can’t wait to pull the trigger on my order from newegg. As of me writing this, the MB is still available and I am very excited to get it. I’ll post my findings.

Comment on What’s a Whitebox? by HiddenOne » VMware Whitebox Build

HiddenOne » VMware Whitebox Build — Mon, 30 Nov 2009 13:25:30 +0000

[...] while back I talked about building a VMware whitebox to run VMware ESX on inexpensive equipment. That was over a year ago and a few things have changed, [...]

Comment on Local Port Mirroring by Aaron Gilbert

Aaron Gilbert — Thu, 29 Oct 2009 17:36:56 +0000

Thank you for this quick write-up – I needed to do some network port mirroring on my ProCurve 5412 switches and couldn’t remember the syntax.

Comment on Procurve RADIUS Authentication by Mark

Mark — Thu, 22 Oct 2009 05:46:30 +0000

Brilliant! Much simpler to follow than the docs I downloaded from HP (and it works!!).

Comment on Solarwinds Orion: Custom Links by Chris

Chris — Thu, 08 Oct 2009 13:55:27 +0000

Thanks for the tip, Ryan!