close
Top Panel
Top Panel
Top Panel

RANDOM ARTICLE

Multiple IPSec peers behind PAT

I was always curious how the IPSec session looks like after PAT translation. As we discovered in IPSec basics: IPSec through NAT article, IPSec must use some NAT-avoiding mechanism to work through NAT/PAT. I have to say (for those who aren't IPSec fan) that most IPSec connections are made through the NAT (at least most Remote Access VPN connections). So that is a common case when IPSec session encapsulated in udp packets (in case of NAT-T).

Let's see what happens with one (first) IPSec session before and after PAT.
Read more...

TOP NEWS

New job, same pleasure, more cisco
Hey,

I'm still in a cisco world, what a wonder. My way was out of cisco's orbit for a while (IT security stuff, you know) but now I'm back on track and doing well. I changed my job a couple of month ago and you know what? It is such a pleasure to do a work that you know, you love and you are best in.

I've bumped into the IP telephony. It's almost a completely new area for me with all it shiny, ringing glory and gloomy reputation.
Read more...
Rumors about CSA EoS/EoL

During last month I've heard some rumors that Cisco Security Agent is going to be dropped and end-of-sale is going to be announced in a near future. Personally I was expecting things like that because the CSA's development pace is rather slow. And I'm saying that in a polite way :). They even don't get CSA compatible with 64-bit platforms during last several years. Some sources says there will be a new great product that will replace CSA in an year or two. Anyway I've tried to find out the truth and I have some non-official statements to declare :)
Read more...
About CCIEvault PDF Print E-mail
Written by Alexei Spirin   
Saturday, 05 January 2008 03:34

My name is Alexei Spirin aka asp13. Currently I'm a cisco gold partner's employee and team leader of network security group. I have been working with cisco devices since 1999 and.. you know... I like it :) My "major" is a security technologies and products but I have a good background in a backbone networks. I earned a CCIE Security in March 2006 with first attempt (yes, sometimes it happens :). My career changed to the management a bit since then but I'm still an engineer in my heart. I'm available at This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Hey! I supposed to talk about what CCIEvault is and what it is for, so I just tell you the basic principles:

1) First of all, this site was made as a place where I can keep professional information. I just forget everything all the time, so let it be here

2) Keep things easy, the goal is quick learning/recalling (quick and I hope not so dirty :)

3) Third rule is to provide my personal experience along with basic information (so called best-practices)

4) And fourth, last but not least, provide the next step(s), for those who need more detailed info,links to guides, sources or manuals.

Last Updated on Thursday, 16 April 2009 14:50