Access and Session Control System?

Hello all. I am looking at a variety of systems/methods to provide (vendor, employee) access into my dmz's. I want to reduce the FW rule sets and connections to as minimal as possible. And I want the accessing party to only get to the destination I define (like a fw rule). When I refer to acc

Synology Disk DS211J

Hey all. A little off topic, but wanted to share... I purchased a home storage Synology DS1511+. After configuring it on the home net, I did some captures to look at the protocols, and noticed that the DS1511+ is making outgoing connections to 59.124.41.242 (www) and 59.124.41.245 (port 81 & 89)

RE: Synology Disk DS211J

Yep! -Original Message- From: Matthew Palmer [mailto:mpal...@hezmatt.org] Sent: Thursday, September 29, 2011 2:31 PM To: nanog@nanog.org Subject: Re: Synology Disk DS211J On Thu, Sep 29, 2011 at 12:11:48PM -0700, Jones, Barry wrote: > A little off topic, but wanted to share..

RE: Synology Disk DS211J

Or, open those specific ports as needed, then close. PITA though (pain in the @ss) -Original Message- From: Jones, Barry [mailto:bejo...@semprautilities.com] Sent: Thursday, September 29, 2011 4:14 PM To: 'Matthew Palmer'; nanog@nanog.org Subject: RE: Synology Disk D

RE: facebook spying on us?

I can't tell you the kind of servers, but I can say that I was recently in Prineville, OR, where FB is building a data center (and a second data center). I was used to the ol data centers - you know, where there's raised floors, cabinets, cool air, a guard and a few guys around with some screens

RE: Synology Disk DS211J

rom: "Pierre-Yves Maunier" Sent: Friday, September 30, 2011 8:32 AM To: "Jones, Barry" Subject: Re: Synology Disk DS211J 2011/9/29 Jones, Barry > Hey all. > A little off topic, but wanted to share... I purchased a home storage > Synology DS1511+. After configur

RE: events

A sub question to this would be - is anyone using an app or client that will forward windows OS events to said collector? I've seen Loglogic and others. Was just curious if you've used a small scale version to collect security events - log on, log off, etc...? -Original Message- From: H

Firewalls - Ease of Use and Maintenance?

Hello all. I am potentially looking at firewall products and wanted suggestions as to the easiest firewalls to install, configure and maintain? I have a few small networks ( 50 nodes at one site, 50 odd at another, and maybe 20 at another. I have worked with Cisco Pix, ASA, Netscreen, and Checkp

RE: Firewalls - Ease of Use and Maintenance?

Hey all. I wanted to say thanks for all the advice. Barry -Original Message- From: Jack Bates [mailto:jba...@brightok.net] Sent: Thursday, November 10, 2011 6:06 PM To: valdis.kletni...@vt.edu Cc: nanog@nanog.org Subject: Re: Firewalls - Ease of Use and Maintenance? On 11/10/2011 12:24

Portable Analyzers

Just curious if anyone is using handheld network analyzers or to what extent and results - yeah/neah? I have used this product, and others, but wondered if anyone had others? OptiView(r) Portable Network Analyzer

Net Brain?

Anyone using Net Brain? Just curious what you think Barry Jones - CISSP GSNA P please don't print this e-mail unless you really need to.

AD and enforced password policies

Hello all. Happy New Year. I have a requirement to enforce password policies on AD (a tacacs and windows domain). I don't have a great deal of Windows AD knowledge - so a newbie ;-) this is a little off topic, but I thought I'd ask... Specifically, I need to enforce the use of length, special c

RE: AD and enforced password policies

'Either way, expiring often is the first and most effective step at making the lusers hate you and will only bring the Post-It(tm) makers happy.' If you want to make them really, really unhappy, implement a rotating user ID coupled with an often expiring password policy. For example, User ID jj

RE: Network scan tool/appliance horror stories

I can share with you several stories personnel (both IT or vendors), who have scanned Electric Utility environments with or without permission; and hence caused multiple failures - including electro-mechanical systems and related applications. Utilities typically utilize many industrial controll

RE: Network scan tool/appliance horror stories

Speaking of scan tools, does anyone have recommendations for tools to do baseline configurations on Windows systems? Looking for pre-change configuration baseline and post change configuration baseline - to identify differences implemented by the change? Thanks. -Original Message- From