Linux Fedora CentOS Ubuntu TCP/IP Config

export LANG=C 設定英文語系

"setup" 指令，即可設定網卡



 指令修改網卡設定

一、 Fedora 13

vi /etc/sysconfig/networking/devices/ifcfg-eth0

# Intel Corporation 82557/8/9/0/1 Ethernet Pro 100
DEVICE=eth0
IPADDR=172.16.0.204
NETMASK=255.255.255.0
GATEWAY=172.16.0.254
DNS1=168.95.1.1
NAME="System eth0"


二、 CentOS 5.4

vi /etc/sysconfig/network-scripts/ifcfg-eth0

# Advanced Micro Devices [AMD] 79c970 [PCnet32 LANCE]
BROADCAST=172.16.1.255
IPADDR=172.16.1.101
NETMASK=255.255.255.0
NETWORK=172.16.1.0
GATEWAY=172.16.1.254

三、 重啟網路服務

service network restart

[root@lab-linux ~]# service network restart                                               
Shutting down interface eth0:  [  OK  ]
Shutting down loopback interface:  [  OK  ]
Bringing up loopback interface:  [  OK  ]
Bringing up interface eth0:  [  OK  ]

四、確認路由

netstat -nr

[root@lab-linux ~]# netstat -nr
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
172.16.1.0      0.0.0.0         255.255.255.0   U         0 0          0 eth0
169.254.0.0     0.0.0.0         255.255.0.0     U         0 0          0 eth0
0.0.0.0            172.16.1.254    0.0.0.0         UG        0 0          0 eth0

五、Ubuntu 11

vi /etc/network/interfaces


iface eth0 inet static
        address 172.16.1.211
        netmask 255.255.255.0
        network 172.16.1.0
        broadcast 172.16.1.255
        gateway 172.16.1.254

sudo /etc/init.d/networking restart

Cisco VPN Apple Andorid Supported

Apple Devices Supported

http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect24/release/notes/rn-ac2.4-apl4.2.html

Device  Apple iOS Release Required 
iPad               4.2.1 or later
iPhone 3G      4.1 or later
iPhone 3GS    4.1 or later
iPhone 4         4.1 or later
iPod Touch (2nd Generation or later)  4.1 or later

Download: iPhone Configuration Utility (IPCU) 3.3

Download iTunes 10

Windows 操作：
a. 連接 IPAD /Iphone 設備
b. 安裝 iPhone Configuration Utility
c. 新增 profile，config 憑證 及 AnyConnect.
d. "Install" 到 IPAD (傳送)

IPAD 操作：
a. 收到 config profile，按"安裝" (內含憑證)
b. Anyconnect 連線.

參考文件

Andorid Devices Supported

http://www.cisco.com/en/US/docs/security/asa/asa84/release/notes/asarn84.html

We now support VPN connections between Android mobile devices and ASA 5500 series devices, when using the L2TP/IPsec protocol and the native Android VPN client.

Requirements:
•Mobile devices must be using the Android 2.1, or later, operating system.
•The ASA must be running the ASA Release 8.4(1) or later.

隨手雜記

* 免費音樂MP3下載
   BearShare
   YouTube Song Downloader

* 免費在線聽歌
  鯊客
  亦歌

* 免費的「電腦時光機」，幫你輕鬆將系統做快照和還原
   COMODO Time Machine

* 25GB 的免費線上儲存空間
  SkyDrive

* 統一發票中獎號碼單
  財政部稅務入口網

* 2007 Office system 相容性套件
   FileFormatConverters.exe

* PowerPoint Viewer ( Microsoft PowerPoint 2010 向下相容 )
   PowerPointViewer.exe

* Virtual CloneDrive 「免費」虛擬光碟軟體！
  Virtual CloneDrive

POE 802.3at 802.3af 標準，AP1131AG AP1142N Power 需求

802.3at (PoE+) (up to 30W per port)

802.3af (up to 15.4W per port)

http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps6406/product_data_sheet0900aecd80322c0c.html

=============
WS-C2960-24PC-L

AP1131#sh power inline f0/1
Interface Admin  Oper       Power       Device                    Class Max
                                        (Watts)                           
--------- ------ ---------- ------- ------------------- ----- ----
Fa0/1     auto   on               12.2    AIR-LAP1131AG-T-K9  3     15.4
Interface  AdminPowerMax   AdminConsumption   
                      (Watts)                    (Watts)          
---------- --------------- -------------------- 
Fa0/1                 15.4                      15.4

=============
WS-C3560G-24PS-S

AP1142N#sh power inline g0/1
Interface Admin  Oper       Power        Device                Class Max
                                        (Watts)
--------- ------ ---------- ------- ------------------- ----- ----
Gi0/1     auto   on               15.4    AIR-LAP1142N-T-K9   3     15.4
Interface  AdminPowerMax   AdminConsumption
                      (Watts)                     (Watts)
---------- --------------- --------------------
Gi0/1                 15.4                 15.4

=============

Cisco SSLVPN，FireFox瀏覽器出現憑證讓你選擇

Microsoft IAS Log Viewer

Microsoft IAS server log analyzing tool.
IAS Log Viewer

http://www.deepsoftware.com/

VMware Workstation Convert to Esxi

Tools : VMware vCenter Converter Standalone Client

Source : VMware Workstation (6.5)
Destination : VMware Infrastructure virtual machine (4.1)

轉檔後，會佔用Storage實際切割的磁碟空間 (例：3G -> 8G)

Exchange 2003 安裝

OS : Win2003 AD Server

1. 新增/移除，安裝
a. IIS
b. ASP.NET
c. NNTP Service
d. SMTP Service

2. 開始安裝 Exchange 2003
D:\SETUP\I386\SETUP.EXE

3. add AD user (建立 Exchange 信箱)

4. Access OWA
http://server_ip/exchange/

ASA 8.3 SSLVPN / IPSEC VPN Config

一、 vpnclient access inside ，no nat (nat 0)

object-group network NETWORK_OBJ_10.1.10.0_26  (vpnclient_net)
 network-object 10.1.10.0 255.255.255.0

object-group network DM_INLINE_NETWORK    (inside_net)
 network-object object 192.168.0.0 255.255.0.0
 network-object object 10.0.0.0 255.0.0.0

nat (inside,outside) source static DM_INLINE_NETWORK DM_INLINE_NETWORK destination static NETWORK_OBJ_10.1.10.0_26 NETWORK_OBJ_10.1.10.0_26

VPN-SSL# sh nat
Manual NAT Policies (Section 1)
1 (inside) to (outside) source static DM_INLINE_NETWORK DM_INLINE_NETWORK destination static NETWORK_OBJ_10.1.10.0_26 NETWORK_OBJ_10.1.10.0_26
    translate_hits = 3, untranslate_hits = 15

VPN-SSL# sh xl
1 in use, 155 most used
Flags: D - DNS, i - dynamic, r - portmap, s - static, I - identity, T - twice
NAT from inside:192.168.0.0/16, 10.0.0.0/8 to outside:192.168.0.0/16,
    10.0.0.0/8
    flags sI idle 0:00:08 timeout 0:00:00



二、SplitTunnel

splitTunnel, ipsec vpn 建立連線後，依然可以上 internet

建立  ACL

access-list lab_splitTunnelAcl standard permit 10.0.0.0 255.0.0.0

access-list lab_splitTunnelAcl standard permit 192.168.0.0 255.255.0.0

套用在 group-policy 上

group-policy lab attributes

 dns-server value 10.1.1.1

 vpn-tunnel-protocol IPSec

 split-tunnel-policy tunnelspecified

 split-tunnel-network-list value lab_splitTunnelAcl