Configuring PIX Failover Active/Standby using Qemu with udp tunnel mode
If you want to learn how to configure PIX Failover Active/Standby, this is a small part included in the CCIE Security blueprint click here with the right button of your mouse and choose “Salve Target As” (time length: 28:07 minutes)
……………………………………………………………………………………………………………………………………………………….
Emulating the NAC on vmware
If you want to learn how to emulate the NAC for your Security studies click here with the right button of your mouse and choose “Salve Target As” (time length: 22:48 minutes)
……………………………………………………………………………………………………………………………………………………….
Emulating an IDS-4215
If you want to learn how to emulate an IDS-4215 for the CCIE Security Lab studies click here with the right button of your mouse and choose “Salve Target As” (time length: 42:37 minutes)
……………………………………………………………………………………………………………………………………………………….
Emulating R/S Routers using Dynamips
If you want to learn how to install Dynamips and get started with R/S Netmetric Topology click here with the right button of your mouse and choose “Salve Target As” (time length: 26:37 minutes)
………………………………………………………………………………………………………………………………………………………
Installing Cisco ACS 90 days trial and SCEP in Windows 2000 (Vmware)
If you want to learn how to install Cisco ACS and a Certificate Authority in Windows 2000 click here with the right button of your mouse and choose “Salve Target As” (time length: 30:05 minutes)
………………………………………………………………………………………………………………………………………………………
Emulating 2 ASAs with Active/Active key on Windows XP
If you want to learn how to emulate 2 ASAs on Windows XP and how to integrate later on with Dynamips click here with the right button of your mouse and choose “Salve Target As” (time length: 37:32 minutes)
………………………………………………………………………………………………………………………………………………………
Emulating PIX on Windows XP (using the udp tunnel method)
If you want to learn how to emulate a PIX using UDP tunnels integrated with Dynamips click here with the right button of your mouse and choose “Salve Target As” (time length: 23:54 minutes)
………………………………………………………………………………………………………………………………………………………
Emulating PIX on Windows XP (using the tap method)
If you want to learn how to emulate a PIX using tap interfaces integrated with Dynamips click here with the right button of your mouse and choose “Salve Target As” (time length: 38:44 minutes)
………………………………………………………………………………………………………………………………………………………
Putting all the Parts Together (A Full CCIE Security Gear) with exception of a VPN_C 3005
If you want to see all the separate parts from previous videos working together with Dynamips watch this last video from the “emulation series” you just need to click here with the right button of your mouse and choose “Salve Target As” (time length: 35:40 minutes)
………………………………………………………………………………………………………………………………………………………
Installing ASDM on an emulated PIX (using tap interface method)
If you want to see how easy it’s to load an ASDM file in your emulated PIX you just need to click here with the right button of your mouse and choose “Salve Target As” (time length: 12:16 minutes)
Hi,
Could you share information about your PC I mean hardware specifications.
I just wander what to buy.
Many thanks
Tomek
Hi,
This is what I have inside my PC:
1x P5K Premium WiFi/AP (Intel® P35)
1x Core 2 Quad Q6600 (4x 2400 MHz)
1x Quad kit DIMM 8 GB DDR2-800 (8192 MB)
1x GF8600GT Super (NVIDIA GeForce 8600 GT)
1x DRW-2014L1T
1x AD-7191S
2x HD753LJ (750,0 GB)
1x StealthXStream 500W (500 vatios)
1x Armor (10 x 5,25″ external)
1x SyncMaster 2232BW (22 inches)
Hi Andy, your job is very interesting, thank you very much for publishing it, I’m from Bolivia and want to ask you, if its possible virtualize firewalls Cisco ASA 5505 (I saw you made that) to make a real connection between 2 places (separate agencies). Thank you for all the work done so far, really is very excellent.
Hi Carlos,
Thanks, technically speaking it could be done even though it would not be recommend because of its performance and also the main idea of my webpage and emulation is only for studies purposes so sorry but I cannot help you on this issue.
another interesting place I found.
Hi, Andy!
Is it possible for you to make download of your tutorials easy ? I mean easy as download .avi/mpg files. Also, personally I prefer to read guides, so is there any textual information available ? except hacki’s forum…
Hi Harrier,
I had a problem with my laptop and all the sources of my videos were there, I only have the converted version for flash, which is the one I have on my webpage.
About read guides, sorry I don’t have any as I thought it would be good for people to see some videos instead. sorry again.
Cheers
Hi Andy,
Great site! Is it also possible to connect a router(real hardware) to a PC with an ASA emulator and then get an IP-adress(dhcp) on your outside interface of the emulated ASA? In other words can i use the ASA emulator on a real test network as if it is a real ASA?
I have trouble with seeing IPS guide - at 33:43 it stops forever. With CANAC all is good.
Hi Harrier,
I was able to see the full video for IPS, maybe could be a problem with the provider at the time you were watching. Did you manage to see the full video now?
Cheers
Hi, Andy!
I’m able to see full video, as well as my IPS going to prevent my botnet from intrusions
at least I hope so - I have no license in it.
This is great stuff! Thanks so much for taking the time and effort to post this information in such an easy to use way!!!!
Hi,
I went through most of the posts in 7200emu.hacki.at and also your video. I tried several things (like adjusting vlan, model type etc). however i cant get my ASA to ping the loopback interface i have setup. One of the posts mentions that this could be a problem with the onboard NIC. If so my question is, when the NICs needed by the ASA is emulated in software by qemu and the other interface that i am trying to ping is a loopback interface why would it matter if my onboard NIC has some weird chipset?
Further how do i go about fixing this problem.
Cheers,
Have you also tried to use PIX emulation instead using udp tunnel mode? This seems to be the most stable version for windows so far.
Just try that first and them we can go for ASA emulation from there.
Cheers
Hi,
Got it working. So i guess it is a chipset problem, though i dont understand why. I am running ASA in windows XP inside vmware. vmware is configured to emulate e1000 card, though i dont have it on my mcahine. with that done i am able to ping the ASA interfaces from both the vmware guest and host OS. Now except for VPN concentrator i have all equipments needed for CCIE security
Thanks guys
Cheers,
Thanks for your boss Anderson….do some for voice….awaiting!!!
i am having issues downloading playing the video on R&S dynamips setup, it usually stops at 6.56mins
Hi,
I opened a ticket with my web hosting to see why this is hapenning.
Sorry about that.
Cheers,
Andy
my 64bit xp has realtek al888 codec sound but it has not been working. and my dynamips too is having some issues.
please can you help me out
Hi, about your sound problem in 64 xp I start having the same problems some weeks back, I’m suspecting Microsoft Automatic Update has something to do with it, because I also have a Realtek and now its not working.
I will see if I can find out what is going on, about your dynamips issues, what are the exactly problem?
thanks for the update, please as soon as you solve your realtek issue kindly help mw with it too, concerning the dynamips, the tutorial u have, i can only download max of 6-8mins of the 26mins no matter how fast my internet is?
Hi, I was advised by my web hosting to split the files in sizes of 100 Megas and let people download them before actually watching them so I am planning to do that, this weekend so you can download them.
hello andy,
any solution to your sound issue, incase you downloaded a driver or software that solved it, please kindly help me because i am also interested.
thanks
Hii Andy,
I can’t watching videos in this tutorials, we’re load very slow and standby ! and I can’t download it !
hi Andy,
thanx a lot very nice.
Hi andy,
really nice. I was in search of NAC VIDEO to learn with handson. thanks for this nice video. I will emulate NAC.
Hi Andy,
Thanks for the tutorials. Very much appreciated. There is one issue regarding the ASA on XP tutorial. I am not able to bind the loopback interace to a phyiscal interface. I have tried on 3 different machines with no success. I noted the equipment you have in your PC in a reply further up these respones (#2). I have purchased the same motherboard, processor, etc. It still won’t work with the specs you provided above. I noticed in the tutorial in your network connection list that there is an intel pro 100 ve card there (disconnected) and another intel pro/wireless 3945 ABG connection. These aren’t mentioned in your hardware specs above and I do not see them included with my Asus P5K board. I have a Marvell and Realtek gig integrated Nic’s. Did you need one of these intel cards to make this work. Just want to confirm before I hunt around for one of these?
Thanks,
I would like to thank you Anderson for converting the tutorials into .rar file. It was an obstacle to download them to review at home.
Thank you.
Hi Ryan,
I think there is no problem which model of NIC you are using whatsoever. You need to make sure that your Dynamips detect them, in order to do so, go to Network Device List and check if you can see the NIC device there, then get the all line and copy into the .net file of your Dynamips.
Regarding PIX emulation, the best one that works for me its the UDP tunnel mode version.
Cheers.
hi Andy
thank you for these tutorial
Hi Andy,
Thanks for such a great work. I need suggestion for my CCIE security lab at home as I have all the physical devices at home with the exception of IPS for which I am using vmware. I want to know how this will interact with the physical devices using the instruction providing in your video for IPS? Do I have to create vlan sub interface on IPS in order to make it work with physical devices or your Gig interface pair can work with vlan 10 and vlan 20?
Please let me know.
Fred
Hi Fred,
You will need at least two NIC cards on your desktop and bind them in vmware, one NIC for the first NIC in IPS for C&C interface for management and another for promiscuous mode using VLAN 10 and VLAN 20, if you want you can bind the second and third NIC to a real NIC for inline mode and bing the first NIC in vmware to a loopback in your desktop and always use that desktop for management of IPS that also would work.
Make sure you disable the NIC and enable it in IPS everytime you bring up the image in vmware in order for it to work.
Hello Andy,
Thank you for your reply. Could you please elaborate more on disable the NIC and enable it in IPS? Do you mean enabling by going under vmware workstation settings and enable and disable it from there? Also suppose if I have 3 nic card 2 for mapping Gig0/1 and Gig0/2 and third one for Management and I will mapped those under vmware and then I believe it should work?
Please confirm
Fred
Hi,
You gotta it, enable and disable the NIC I meant you should go under vmware workstation settings of the emulated IPS and click on disable and enable again for all the NICs everytime you bring the image up, otherwise it won’t work.
Regarding the NICs and mappings in vmware you got it, if you map then right in the Global settings of vmware and then on the actual IPS emulated image it shoud work, watch my video of Putting all the parts together and you can see from there how I do it.
Cheers