-
Notifications
You must be signed in to change notification settings - Fork 1
Cisco
-
Enable ssh console: http://www.mustbegeek.com/enable-ssh-in-cisco-ios-router/
- Radius 3.0 with certificate per supplicant
- Test eap-tls
-
pdf: https://networkradius.com/doc/FreeRADIUS-Implementation-Ch6.pdf
-
https://networkradius.com/doc/3.0.10/raddb/tls/tls-config_tls-common.html
-
https://networkradius.com/doc/3.0.10/raddb/sites-available/tls.html
-
http://lists.freeradius.org/pipermail/freeradius-users/2016-March/082736.html
-
How many user/supplicant certificates are needed for WPA2 enterprise on a small network?
-
Certificates
-
DER binary format:
.der = .cer
: binary -
PKCS#12 format:
.p12 = .pfx
: binary -
PEM format:
.pem .crt .cet .key
- Android 8:
RootCA: .cer instead of .der
andUser cert + key: .pfx instead of .p12
-
DER binary format:
-
Standard ACL are applied to the traffic going through the interface not to the interface itself. Thus the traffic sent to the gateway isn't filtered. (if using outbound)
-
https://www.geeksforgeeks.org/computer-network-access-lists-acl/
-
-
https://community.cisco.com/t5/switching/inter-vlan-routing-with-acl/td-p/3412658
-
https://www.geeksforgeeks.org/computer-network-reflexive-access-list/