Color Code Your Routers

It’s kind of hard to believe this was eight years ago! Time has changed some things over the years and I had a user Aaron or Frank? 😉 contact me about this post. In the post I posted a question, “trying to figure out a way to change the color of just the banner only” well eight years later I got an answer, so first of all thanks for reaching out and I’m glad you found this resource helpful and I’ll just reference the response here:

“The sequence you need is [0m – this resets any colour and formatting codes back to the terminal defaults. I also found that you need to set the international flag on your lines before this would appear correctly.”

So something like this:

R1(config)# line vty 0 15
R1(config-line)# international
R1(config-line)# end

Cisco Skills

I came across an interesting idea, what if you could color code your devices in command line? So such as if you were operating routers at a core level you could color code the CLI to the color red, and the branch routers green and etc. I wasn’t sure if this would possible but doing some searching through the internet I found a guy Ivan Pepelnjak who wrote how to do this  a couple years ago and wrote a couple books as well, check out his blog/website at http://www.ipspace.net there is tons of helpful information along with his original guide here. 

View original post 483 more words

Advertisements

Verifying DNS Lists – FMC

We are back with another post about Cisco’s Firepower Management Center and this time we are working with the DNS list which if you have a protect license you can have your Firepower modules or your FTD (Firepower Threat Defense) devices look at DNS requests and deny requests if they are malicious. These have to be applied on your access control policy to be able to use it and in this post we are going verify some of the domain names that are in this lists. Continue reading “Verifying DNS Lists – FMC”

Cisco FTD Standalone

No management centers here, sometimes a standalone firewall is all you need. In this post I have a FTD appliance and there really isn’t a need tie this into Cisco’s Firepower Management Center. So we’ll configure appliance in standalone mode and go through the initial first steps that are required to get it online and walk through Firepower Device Manager. If you worked with Cisco FMC you’ll find its pretty similar, so with introductions out-of-the-way let’s get started!

Continue reading “Cisco FTD Standalone”

Too Many TCP Resets

So, recently we enforced some firewall rules on a new environment, we did testing of the environment and everything was working as expected. In about 24 hours a lot of traffic from the web infrastructure was being denied and it continued, at first glance it looked like return traffic was being dropped, the web servers were sourcing at port 443 and the destination ports were using dynamic ports (RFC 6335)

No user or application problems were reported when we enforced rules, and we waited additional days to see if anything came up. Nothing came up, the only thing was a spike in amount of syslog messages of dropped traffic coming from the web servers. So from that point it really wasn’t an issue, but I thought it would be interesting to see what was going on. Continue reading “Too Many TCP Resets”

Factory Reset Firepower 4100 & 9300

I got my hands on some Cisco Firepower 4100 units and after playing around with them I wanted to reset them to factory settings, essentially erase the “startup-config” on the FXOS. The Firepower units act a little differently than your normal Cisco IOS or ASA and you can’t just erase startup-config and reload the device, that would be too easy. (Edit: 7-21-17) After Gabriele made this comment it looks like you can. You also can follow the  password recovery on this post which will also erases the configuration. Continue reading “Factory Reset Firepower 4100 & 9300”