Cisco ASA – How to View pre-shared keys in plain text
You don’t always document things as well as we should OR someone you work with is always “too busy” to document their work. This little trick will show you how to recover pre-shared keys on a Cisco Pix or ASA firewall.
Normally, you use the ’show run’ command to view the running configuration. Pre-shared keys are marked with an asterisk (*). To view the password unencrypted, type ‘more system:running-config’. This will display the full configuration with unencrypted passwords.
Too bad actually that the pre-shared key of an Cisco VPN Client doesn’t show up in the latest ASA software version 8.2.2. the pre-shared keys of the VPN Tunnels are showed.
Cisco ASA x Firefox: SSL Issues
Issues accessing Cisco ASA thru Firefox regarding SSL settings?
try this:
1) type about:config in the url bar
2) promise to Firefox, not mess things up
3) search this key: security.ssl3.dhe_dss_des_sha
4) set value to true
Quicky Link Aggregation (LACP 802.3ad) with FreeBSD
rc.conf
# interface: router edge (rtedgedc01)
ifconfig_lagg0="laggproto lacp laggport bce0 laggport bce1 123.45.67.89/28"
# additional loopback interfaces
cloned_interfaces="lagg0"
Recovering MySQL access
Okay, let's say you didn't have your coffe this morning, and because of this 'lack-of-fuel' you messed the 'mysql' database (specially users table'. All your clients are complaining, because they are not able to connect anymore, your phone rings like a hell.
Think fast! 1 shutdown your mysql server, 2 bring it up without grant handling and no network, 3 restore your last backup (I really hope you have a backup), 4 shutdown the server again, 5 start the service as usual.
in another words,
1 kill the pid of mysqld (or mysqld-nt.exe) (since mysqladmin won't work)
2 mysqld (or mysqld-nt.exe) --skip-grant-tables --skip-network
3 mysql -u root mysql < your_last_mysql_backup.sql
4 mysqladmin shutdown
5 start your mysql server as usual
If it worked, you are safe. Go get your coffee man!
Reading OpenBSD PF log entries in real time
When you set up the OpenBSD packet filter (aka PF) to log traffic, each packet is logged to the OpenBSD pflog pseudo-device. You can handle fetch information from this device the same way you'd with another network device, for example using tcpdump:
[marx@darkstar/usr/home/marx]# tcpdump -n -i pflog0 -ttt -vv
tcpdump: WARNING: pflog0: no IPv4 address assigned
tcpdump: listening on pflog0, link-type PFLOG (OpenBSD pflog file), capture size 96 bytes
000000 IP (tos 0x0, ttl 233, id 31165, offset 0, flags [none], proto TCP (6), length 40) xxx.yyy.zzz.aaa.80 > yyy.xxx.zzz.bbb.1234: [|tcp]
...
If you are using pflogd to archive those messages you can also check the pflog file to check what you need:
[marx@darkstar /usr/home/marx]# tcpdump -n -r /var/log/pflog -ttt -vvv
576333 IP (tos 0x0, ttl 59, id 0, offset 0, flags [DF], proto TCP (6), length 44) xxx.yyy.zzz.aaa.80 > yyy.xxx.zzz.bbb.26656: S, cksum 0x28e8 (correct), 1347964018:1347964018(0) ack 1787832775 win 14600
...
it should cover the basics, cya!
CLI in 3Com Baseline Switch 2952-SFP
Let`s say you wanna access the device console, or even worse, for some ominous reason, you are not able to login via web anymore and logging into device via ssh/telnet all commands you can use are:
initialize
ipsetup
password
ping
quit
reboot
summary
upgrade
so, are you doomed? not realy, try this:
at 3COM CLI
_cmdline-mode on
[password is] 512900
sys [to elevate to configuration prompt]
now you are on charge again! good luck!
Vacation Project
After cut down the forest in front of my house, I've started to work in something that I hope call garden after some weeks of work =)
January, 06
January, 07
January, 08
January, 09
January, 11
Eating and Drinking
"Buddy, have you eaten cheddar over here?"
It's a stupid question, but I had to ask this to a friend today in the morning, and I explain you why. During this week I went outside the office, have my lunch and after some walk I found a place which serves "Jacket Potatoes". I picked my fillings: Bacon and Cheddar. For my surprise I got my potato with bacon, and a yellow cheese, very similar to our muzzarela in Brazil. I though that I had asked it wrong, or the may be the guy didn't understand well what I asked.
Some days after, I bought a sandwich at Tesco... Hamburger and cheddar, and again there was the yellow cheese. This time it was not possible to be my mistake, it was written in the pack!
After a long talk about these events I knew that Orange Fanta is not orange, it's yellow! (and not good, don't taste!).
Beer is much more easier... Here you can have Guinness, paying the price of a "national" beer, it's great!
The cooker of my apartment looks like a spaceship panel, and I had no time to read the instructions yet and learn how "to fly" the machine, That's why I'm buying just fast food.
If you have some tip about how to eat better in London, they are all welcome=)
Cya!
First days @ London
Since last Saturday I'm @ London, and I'll be here for more 45 days, so I decided to post the most interesting things of this trip.
I do believe that have some notes written in some place about this trip will be much more funny to me than to who reads this posts, I really hope you like it, but if don't please don't look for me to complaint about.
After 4 days, the major feeling is that I'm trapped in Brazil. May be explored would be the right word. And I'm not talking about the work, I'm talking about our government. This city has amazing things that I will not live to see in Brazil. The subway (tube) is really amazing, its possible to reach anywhere in a few minutes. The subway cars are very clean and the punctuality (notice the cliche) is Britain!
It's hard to explain how funny is the feeling of to cross a street, look to the cars and have the impression that they are driving by themselves. Or look at the parked cars and have the impression that the passenger is seated, waiting for the driver. I though that the right side wheel was a issue which would affect just the driver, but it's not! By the way, I'll get dead crossing these streets, because I always do look, the wrong way. And the worst part is, when I get used to look to the right side, when I come back to Brazil, then I'll be surely get hit, since I'm sure no Brazilian drivers will stop, and wait for me cross the street =)
People from Curitiba, you are sympathetic! At least when compared to Londoner people. Take this as complement or insult, it's up to you).
London also has its "Curinthia" (Okay, I have to explain a little bit this part for non-Brazilian people). We have a soccer team in Brazil named "Corinthians", but the name is too complicate for their cheering. So they say the name the best way they can) . The "Curinthia's brother team is the Tottenham, says the legend that they are not able to win in the in the elimination phase of the Champions League.
Last Sunday I went to Greenwhich park (GMT-ZERO hehehehe). It is huge, but I didn't walk so long, I was kind of worried, thinking that I could have lost my cellphone. In the end I just forgot it at home.
I bought a digital cam, it should arrive next Friday, then I can post some photos!
Cya!
About me
My name is André and I'm 27 years old. I've been working in various areas of IT in the last years and this blog is about the most interesting things I found into my day after day... See more
here.
Find me on
Read in
Categories
- 3Com (1)
- ASA (2)
- BSD (2)
- Cisco (5)
- GNS (2)
- London (2)
- Networking (5)
- Sem categoria (4)
- Solaris (1)