02. Feb 2011 
0 comments
After applying a aaa-model you may notice that user privileges are not taking effect when logging into the console.
To fix this issue simply copy the following code into the config:
aaa authentication login local_authen local
aaa authorization exec local_author local
line vty 0 4
authorization exec local_author
login authentication local_authen
18. Aug 2010 1 comment
Its amazing how hard some little things can be to setup, but if your in need of setting up what I think is a wonderful VPN solution then below is the commands you will need to complete it
In this setup the external IP is 30.30.30.30 with a internal IP range of 192.168.1.0/24 the router in use is a Cisco 837 with the latest IOS
aaa new-model
!
!
aaa authentication login authen local
aaa authorization network author local
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
crypto isakmp keepalive 60
!
crypto isakmp client configuration group VPN
key semaja2
dns 192.168.1.200
domain semaja2.local
pool ipsecvpn
save-password
crypto isakmp …
09. May 2010 3 comments
This is just a very quick and brief guide, basically this setup should provide a very basic firewall that performs the following:
Block all traffic initated externally, except the ports required for public accessible services
Allow external traffic initated by a internal connection
In short, blocks everything except your public services but at the same time not blocking your users traffic.
This example we have the following public services:
RDP(3389
SMTP(25)
SSH(22)
WWW(80
HTTPS(443)
The example also allows IPSEC traffic so we do not break the tunnels created in the last example, however at the same time please remember that if you have a VPN network all it takes …