For this lab I am using Firepower Threat Defence version 6.3 (FTD) and Firepower Management Center 6.3 (FMC). The FTD is a next generation firewall that does IPS/IDS, URL filtering and traditional firewall, the FTD itself can be managed individually with its own FTD manager, however it can also be managed with FMC. The IPS/IDS … Continue reading [cisco]Cisco Firepower lab setup
Regular expression reference Purchase the course by Sujith George The Complete Regular Expressions Course:Beginner to Advanced from Udemy Study this code from git hub, this code gives a good idea on how you should match access-list, from this course I realize the regex module can convert the matched data to dictionary. Read this documentation about … Continue reading [python]Match most of the Cisco ASA access list patterns with regular expression
Three python scripts were written for doing specific tasks. conn_asa.py - this script is responsible for generating two outputs hostname and md_now (md is short for message digest) statechange.py - this script writes the hash generated from conn_asa.py into database. compare_change.py - this script compares the hash stored in db with the current hash generated … Continue reading [python]Detect changes in configuration of ASA
SQLAlchemy is a python module that makes database operation easier for python scripters, the SQLAlchemy simplies the operation by replacing the SQL syntax with objects. So here's the SQL query for creating a table: This is the SQLAlchemy way of doing database. In SQLAlchemy there is no need to write SQL syntax, SQLAlchemy does it … Continue reading [python]SQLAlchemy for select and insert objects into sqlite db.
You can remove the entire Cisco anyconnect security files with Macbook apps like AppCleaner however you will find that the Anyconnect client still exists. Cisco Anyconnect client actually has a bash script to uninstall. sudo sh /opt/cisco/anyconnect/bin/vpn_uninstall.sh
Network diagram There are two vIOS which are R1 and R2, they have their gi0/2 and gi0/3 connected to the R5 switch, the configuration is pushed from the cloud through their gi0/2 and gi0/3 to configure their gi0/0 to become OSPF neighbours. Objective To configure the two routers to become ospf neighbors, the OSPF configuration … Continue reading [python]Automating OSPF configuration of two routers
I got a problem in copy and paste the entire rsa pub key into the router, the cisco router kept saying cannot decode the key value. So i search the web and found this youtube demo The thing is that the entire pub key has to be process with this linux command fold -b -w … Continue reading [cisco] importing rsa pub key to cisco router