Blog Archives

DDoS attacks – an explanation of amplified reflective UDP-based attacks

One of the most common types of DDoS attacks is the UDP-based amplified reflection attack. I will now explain how this attack works and what makes it so hard to protect against it. The most targeted systems is web servers.

Tagged with: , , , , , , , ,
Posted in General Security, Security

How to setup ssh keypair authentication in Cisco ASA

I created a short video on how to configure Cisco ASA to allow a CLI user to authenticate with RSA keypair when connecting with SSH instead of username/password. See video below. In short, this is how to do it: username

Tagged with: , , ,
Posted in Cisco Security, Security

Cisco ASA Anyconnect licensing for dummies, updated!

The picture below should be self-explaining. Click it for a larger version. Edit 2014: There was some errors in the logics around AEA-licenses. The picture below is now corrected. Please do not use the old version (v1.1).   Let me

Tagged with: , ,
Posted in Cisco Security

DNS Doctoring in Cisco ASA

Issue: Your internal clients tries to reach an internal server but since they resolves the address of the server from an external DNS-server they will get a public IP.   Solution: DNS Doctoring.   In the example below your client

Tagged with: , , , ,
Posted in Cisco Security

IPv6 address assignment will be messy

I am currently working with developing an introductionary workshop for IT consultant with the subject of IPv6. Scope: A client (windows 7) is connected to an internal network. On the same network there is a router facing internet, and a

Tagged with: , , ,
Posted in General Networking, General Security, Security


[mc4wp_form id="2457"]
Website Security Test