davethemaker

Category: security

  • Network Adress Translation (NAT)

    In the continuing deep-dive of Switching and Routing, as part of my networking class, I have been getting some hands-on experience with both learning about NAT and configuring those within a network. Every device on a network, including the internet, needs to have an unique IP address, and these are in short demand (and growing…

  • Routing: QoS

    As part of the networking class that I am studying, we did a deep dive into routing. The class allows for hands-on practice using a virtual machine sandbox (which I’ll be sharing screenshots here), but I have also been supporting that with studying pages 395-420, and 231-277 in the All-In-One Network+ study book by Mike…

  • Switch Hardening: pt 2 (ACE)

    Today I’ve been spending quite a bit of time learning about how to make a network more secure through hardening a switch. One additional way to do so is through MAC-based access control entries.

  • Switch Hardening pt 2

    Other options to harden a switch include the creation of an access profile. In the following, I have created such a profile that has an implicit deny: Next, I added a profile rule that would allow HTTP access from a particular IP address: