SOHO NETWORKING

Scope:
1. If you have DSL connection.
2. If you have cat5 Internet connection.

Topology:

--Telco--RJ11-DSL Modem/Router--RJ45--
|
|
--CAT5 internet connection sify ---Rj45--


Netgear / Linksys Router

= Connect RJ45 connection to Ethernet wan port on the router, and use Ethernet LAN ports to connect desktop and wireless to connect Laptops.

*************************************

Setting up SOHO network:

1. Basic Internet access using one host.
2. Basic Internet access using more then one host.
3. Giving access of your machine "ftp/http/any service" to outside world "DMZ".
4. Using VMWare as DMZ server.
5. Using dyndns for FQDN of your network.

Object is to provide a working infrastructure rather then instigating technical knowledge in the group. We will extend this article as and when required. I know, there are loads of information available a google away, still it seems worth the salt to prepare this document and share along...

Some basics:

Scenario A. service provider modem/router in bridge mode. TATA/reliance/bsnl/others.
Scenario B. Service provider modem/router in routed mode. TATA/reliance/bsnl/others.
Scenario C. ethernet connection to internet. "sify/others".
Scenario D. There are several options, like in bridge mode you can receive dynamic ip or static, you might need to dial or it is always on. Article will be populated with time, at this point I will start with or tackle the obvious.

Scenario A # service provider modem/router in bridge mode. TATA/reliance/bsnl/others.
Assumptions 1: static ip, always on connection to a single PC running windows flavor.
Information to obtain from ISP - ip address/subnet mask, dns values and gateway.

COMMAND LINE setting on windows:
netsh inter show interface // identify the name of your NIC card from the output "Interface Name".
Say the information supplied by the ISP is as follows:
ip add 5.5.5.5/24, default gateway=5.5.5.1, dns primary - 1.1.1.1, dns secondary - 2.2.2.2

netsh interface ip set address name="Local Area Connection_your nic" source=static addr=5.5.5.5 mask=255.255.255.0 gateway=5.5.5.1 gwmetric=15
netsh interface ip set dns name="Local Area Connection" static 1.1.1.1 primary
netsh interface ip add dns name="Local Area Connection" 2.2.2.2

<<<CLI >>>> come on, just a little learning phase..

Start -- Control panel - Network Connections - Right click nic card - Properties - Scroll to get "internet connection TCP/IP" in the "This connection uses the following items", and select it -- click on properties button just underneath "3rd one". AND FILL IN THE BLANKS.. :)

Router 2 would not work "Dynamips"

Issue : Router 2 would not work "Dynamips"

Product: Dynamips


Many of the engineers in our group has reported that Router 2 is not working.
They see at the console of Dynamips that it is working, but are not being able to make a console connection.

Well after investigation and some netstat commands, it comes out to be, Logmein uses port 2002 and R2 would get port 2002 from dynamips usually. As we at network-effect use logmein extensively to provide support, this is what our current stand is.

Solution:
change the port number of Router 2.
OR
exit Logmein

Exploring:
Possibility of changing port 2002 in Logmein.

Confirmed & tested symptom:

Which ever application is run first would work decently, and subsequent application will not work. Usually, as logmein is setup to run at startup, this renders dynamips Router 2, never to work.

CISCO search from within firefox

CISCO search from within firefox

Well looking for a bug, or command output or , go to cisco.com -> go right -> take left turn -> and then stand there till it loads... :)
Not any more....



Follow the steps and integrate these tools with firefox.. It works pretty decently. I am sure you will love it..
If you are really serious about your career in Networking, do this.

While analyzing show tech.. take each command and put in command lookup tools and you will be amazed, at the learning curve you get. Downside, you need to be registered user... to use most of them.

Great idea !!!

Link to Go : http://www.cisco.com/web/tsweb/searchplugins/plugin_homepage.html#

Folder2Iso.exe

Tool : Folder2Iso.exe

Support: supported by the vendor

OS: MS

Execution: GUI

Installation: Not Required

Well, this is another one of the tiny tools which really works, don't have to install. It will convert your folders into ISO images. I use this one in conjunction with PoserISO, as evaluation version of Power ISO will not allow you to create ISO's larger then 300 MB.

Good tool to have, and you don't need to worry about your registry files.. You don't have to install a bit on your already bulky windows...

Google it, and don't miss to read the disclaimer...

Qos MIB would not respond to snmp get or snmp walks in the absence of QoS configuration.

Issue: Qos MIB would not respond to snmp get or snmp walks in the absence of QoS configuration.

Vendor: CISCO

Execution: CLI

Installation: Parsing of mib is required for translation in the NMS.

Support: Vendor

Recently, one of my friend called up with interesting issue. "CISCO-CLASS-BASED-QOS-MIB.my", would not respond on 6k series... Well after much ado, and testing, it was simple issue. QoS was not configured on the device...

Well, as this issue did not jump at me, I thought, why not to share with you guys..

Configure QoS on the router and you will get them in walk.
Let me know the outcome...

Test conducted:
Walk on the router without QoS.
OID not available: .1.3.6.1.4.1.9.9.166
R1#show policy-map interface fa1/0 output
R1#

C:\usr\bin>snmpwalk.exe -v 1 -c ORARO 192.168.208.137 .1.3.6.1.4.1.9.9.166

C:\usr\bin>

Walk on the router with QoS.
OID available: .1.3.6.1.4.1.9.9.166
R1#show policy-map interface fa1/0 output FastEthernet1/0

Service-policy output: QoS

Class-map: ICMP (match-all)
0 packets, 0 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: protocol icmp
police:
cir 8000 bps, bc 1500 bytes
conformed 0 packets, 0 bytes; actions:
transmit
exceeded 0 packets, 0 bytes; actions:
drop
conformed 0 bps, exceed 0 bps

Class-map: class-default (match-any)
11 packets, 1097 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: any
R1#

C:\Documents and Settings\Administrator>cd c:\usr\bin

C:\usr\bin>snmpwalk.exe -v 1 -c ORARO 192.168.208.137 .1.3.6.1.4.1.9.9.166 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.2.50 = INTEGER: 1 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.3.50 = INTEGER: 2 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.4.50 = INTEGER: 3 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.5.50 = INTEGER: 0 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.6.50 = Gauge32: 0 SNMPv2-SMI::enterprises.9.9.166.1.1.1.1.7.50 = Gauge32: 0
####OUTPUT OMITTED FOR BREVITY####

C:\usr\bin>

:)

FCIV “File checksum integrity verifier”.

Tool : FCIV “File checksum integrity verifier”.



Vendor: Microsoft

OS: Microsoft only, Windows 2000, Windows XP, Windows 2003

Execution: CLI

Installation: Not Required.

MS support: Not supported.



Excellent command line tool. Can compute & verify cryptographic hash of files. Generates and verifies MD5 & SHA-1 hashes.



Aspects:

1. Support for MD5 & SHA-1, defaulting to MD5.
2. Output could be redirected to console or to an XML file.
3. Can generate hash values for all files in folders and sub folders.



Usage:



My personal opinion is a hash value should accompany any file being transferred.



Under the Hood #
Name of the file is not computed during generation of the hash value. That translates to the fact that, you can compute hash value and append the value to file name.



POC:

1. Compute hash value of a file.
2. Copy the hash value. “highlight – Right click – select Mark”.
3. Append the hash value to the filename.
4. Compute again the hash value for the file with changed name.
5. Right click and select find, paste the first generated in the “find dialog box”.
6. Search will affirm both hashes to be the same.


ILLUSTRATION





Workbook and technical article would soon follow to learn and use this tool.


Warning #
Use this utility at your own risk Not supported by Microsoft The above illustration can be used for lab environment Above document and suggestions are for students. Do not use it in production environment. Author is not liable for any loss pertaining to the suggestion or recommendation in the article. Use it “information/product” at your own risk.

Setting up ESX server on VMware Workstation

Tool: Setting up ESX server on VMware Workstation

Vendor: VMware

OS: Windows, Linux & others.

Execution: GUI

Installation: Required.

Support: Vendor

While testing my hands with ESX, I was confronted with some issues. There is not much to write to on how to set this thing up. Just a google away, and you will find excellent document from Xtravit on this subject.

What did not work for me is this...

the keys in vmx:

monitor_control.restrict_backdoor = TRUE

monitor_control.vt32 = TRUE

the truth value is not in quotes, and after much fuss, with qotes, it works fine for me.... so, putting quotes worked for me.. and the correct value would be

monitor_control.restrict_backdoor = "TRUE"

monitor_control.vt32 = "TRUE"

Enjoy...