Archive for July, 2015

CHAP CONFIGURATION ON CISCO ROUTERS

Posted: 31 Jul 2015 in CCNA
Tags: , ,
1
In this tutorial we will learn how to configure CHAP on Cisco Routers.But before we start configuring it we must know what CHAP is and why we configure it.CHAP is an authentication scheme used by Point to Point Protocol  servers to validate the identity of remote clients. It periodically verifies the identity of the client by using a three-way handshake. The verification is based on a shared secret (such as the client user’s password).
  1. One of important feautures of  CHAP is that it doesn’t only require the client to authenticate itself at startup time, but sends challenges at regular intervals to make sure the client hasn’t been replaced by an intruder, for instance by just switching phone lines.

Network admins configure CHAP on routers because it provides protection against replay attacks by the peer through the use of an incrementally changing identifier and of a variable challenge-value.

Authentication through CHAP is  more secure because it requires that both the client and server know the plaintext of the secret, although it is never sent over the network.

CHAP provides better security as compared to Password Authentication Protocol (PAP). (more…)

Configuring OSPF MD5 authentication

Posted: 23 Jul 2015 in CCNP
Tags: ,
3

In previous lab we have learnt how to configure OSPF clear text authentication,and now in this lab we will learn how to configure OSPF MD5 authentication which more secure than clear text authentication.Configuring OSPF MD5 authentication is very similar to configuring clear-text authentication. (more…)

configure clear text authentication on routers to secure ospf messages

Posted: 23 Jul 2015 in CCNP
Tags: , , , ,
0

If you have done your CCNA,you already familiar with the term OSPF and you also know how to configure it,but if you are new to networking you can learn about ospf along with it’s configuration from my blog.Today here i am going to discuss about how to configure ospf authentication on routers.OSPF can authenticate every OSPF message. This is usually done to prevent a rogue router from injecting false routing information and therefore causing a Denial-of-Service attack.

Two types of authentication method that can be used are:

1. clear text authentication clear text passwords are used,which is not more secure.

2. MD5 authenticationMD5 authentication is used. This type of authentication of more secure.

IMPORTANT NOTEwith OSPF authentication turned on, routers must pass the authentication process in order to become OSPF neighbors.

Here in this Lab we will learn how to configure clear text authentication method to secure ospf messages. (more…)

PAP(Password Authentical Protocol) Configuration on cisco router

Posted: 21 Jul 2015 in CCNA
Tags: , , , ,
0

In this tutorial you will learn how to configure PPP(Point to Point Protocol).

Authentication— You can use authentication to verify a router’s identity when it is connecting into your router. Options for authentication include CHAP and PAP.

Here in this lab we will learn how to configure  PAP between two routers using cisco packet tracer.

https://linuxtiwary.com/ethical-hacking-training/

PAP is an authentication method that can be used over Point to Point links. The username and password are sent in plain text, there is no encryption or protection. If it is accepted, the connection is allowed.Password Authentication Protocol goes through two way handshake process but still it  is not considered a strong authentication protocol.  (more…)

static routing configuration using four routers in a row.

Posted: 21 Jul 2015 in CCNA
Tags:
0

static routing configuration using four routers

 

You can clearly see there are four routers in a row and I am going to show you how to configure static routing for this lab scenario.Here i assume that you already know how to assign ip address on router interfaces.I will show you only routing configuration steps.This lab will help ccna students in their certification exams.Before we start configuring static routing we must assign ip address on each and every interface of routers and PC.We will start routing only after assigning ip address and enable each port.

You Can Also Read:

static routing configuartion on cisco router using serial port.
How to configure loopback interfaces on cisco router
cisco packet tracer lab:configuring static routing using three routers
static routing configuration using 3 routers
vpn configuration lab using routers in cisco packet tracer

(more…)

static routing lab in cisco packet tracer

Posted: 19 Jul 2015 in CCNA
Tags: ,
0

Static routing Lab in cisco packet tracer:This is a static routing lab showing you how to configure static route on cisco router.To show routing configuration i have used cisco packet tracer here.Here i have taken 5 routers R1,R2,R3,R4 and R5 and 10 Network to demonstrate static routing configuration Lab.In this lab i have not mentioned how to assign ip address on routers interfaces,I assume that you already know it and if you don’t you can read my other articles to learn that.

You can Also Read:

vpn configuration lab using routers in cisco packet tracer
static routing configuration using 3 routers
cisco packet tracer lab:configuring static routing using three routers
static routing configuartion on cisco router using serial port.

(more…)

Authenticating Login IDs from a Central System

Posted: 10 Jul 2015 in CCNP
0

Suppose you  want to administer login ID and password information centrally for all routers. i.e your all routers get authentication from a central server.I am not saying that it is not possible to store all information locally on router but if you have a large number of routers,it is extremely time consuming to reconfigure all the routers for a password change or to simply add a new user.So instead of doing the time consuming work we use TACACS+ for AAA authentication.There is a huge benefit of using TACACS+ SERVER for authentication,one of them is that after using TACACS+ authentication none of information is stored on the router. (more…)

secure your router without reading the whole book

Posted: 6 Jul 2015 in CCNP
Tags: , ,
0

In this tutorial we learn how to secure a router even without knowing how to configure telnet or how to enable password on routers.Even if you are new to networking and you dont have idea about how to configure your router securely, you can easily provide security to your router.There is no need to read the whole book on router just to learn how to secure it.Cisco introduced the autosecure feature to quickly harden router configuration files in an automated fashion.

Now what does this autosecure feauture actually do?

autosecure disables common router features that might pose a security while enabling other IOS features that will assist to harden the router. (more…)