Configuration Example, Firewalling

McAfee Firewall – NAT mapping

René Jorissen on December 28, 2011 0 Comments • Tags: #arp #enterprise #firewall #mcafee #nat #proxy #redirect

While testing a McAfee Enterprise Firewall running software 8.2.0, I had some problems with the creation of a NAT mapping. The firewall is configured as standalone firewall. All (NAT / access rule) configuration on the firewall is done using Access Control Rules. McAfee uses two types of NAT mapping: NAT: mostly used to translate a … Read More

Routing, Switching

Cisco ASA & ESX: strange ARP behavior

René Jorissen on January 12, 2009 10 Comments • Tags: #arp #behavior #esx #icmp #interface #nat #noproxyarp #path #proxy #reverse #reversepath #spoofing #strange #sysopt #verify #vmware

Last week I had a very strange problem with a Cisco ASA firewall. The firewall is configured with multiple interfaces, including a DMZ interface. There are multiple servers in the DMZ. These servers are physical and virtual servers. The virtual servers are VMware servers in a blade environment. I configured the feature ip verify reverse-path … Read More

Configuration Example, Security, Switching

Layer 2 security

René Jorissen on July 6, 2008 1 Comment • Tags: #address #arp #attacks #bpduguard #dhcp #dynamic #hopping #inspection #ip #layer #mac #rootguard #source #spoofing #two #vlan

I attended the session layer 2 security, because I had some discussions about layer 2 security with one of my colleagues. We were discussing about using layer 2 security and especially implementing it in the environments from our customers. Looking at my/our customers, I don’t see environments where layer 2 threats would be immediate. But … Read More

Other stuff...

WebMarshal performance problems

René Jorissen on May 22, 2008 0 Comments • Tags: #arp #bad #balancing #content #load #network #performance #procurve #static #switch #webmarshal

One of our customers is using WebMarshal for HTTP/HTTPS URL filtering and content scanning. The WebMarshall software is installed on two Microsoft ISA 2003 servers. These ISA servers are behind a Cisco Content Switch for load-balancing and redundancy purposes. The problem with the WebMarshal is the PERFORMANCE. Internet browsing with the WebMarshal as proxy just … Read More