Tuesday, December 12, 2006

Show Access-List = No Matches?



Have a Cisco Catalyst 6000 or a 7600 and don't see any matches when you issue a "show access-list"? This is due to these platforms performing this function in hardware and not in the MSFC:

"The show access-list command displays statistics only for traffic that matches ACLs processed in software on the MSFC. The show access-list command does not display statistics for traffic that matches an ACL supported in hardware on the PFC. (CSCdt14386)"

So when you don't see matches here:
core01#sh access-list 2020
Extended IP access list 2020
10 permit ip host 10.100.56.21 any
20 permit ip host 10.100.56.23 any (1 match)
30 permit ip host 10.100.56.24 any
40 permit ip host 10.100.56.25 any (1 match)
50 permit ip host 10.100.56.26 any
60 permit ip host 10.100.56.27 any
70 permit ip host 10.100.56.28 any (2 matches)

Do this instead:
core01#sh tcam interface Vlan1000 acl in ip

* Global Defaults shared

Entries from Bank 0

Entries from Bank 1

permit ip any 224.0.0.0 15.255.255.255 (17642 matches)
policy-route ip host 10.100.56.21 any (616218 matches)
policy-route ip host 10.100.56.23 any (6518782 matches)
policy-route ip host 10.100.56.24 any (6694712 matches)
policy-route ip host 10.100.56.25 any (6820337 matches)
policy-route ip host 10.100.56.26 any (7223011 matches)
policy-route ip host 10.100.56.27 any (7133610 matches)
policy-route ip host 10.100.56.28 any (6811648 matches)
Posted by at No comments:

Thursday, August 17, 2006

Password Generation


Since I have to create strong & random passwords so often, and got tired of using websites, I decided to look for a real program. I came across PWGen and have found it to do everything I need including creating password size in bit length and utilizes entropy for randomness.
Posted by at No comments:

Sunday, August 13, 2006

Cracker scores big on Interactive TV show "Banzai"


I received some "insider information" from someone working for one of the top Interactive TV (ITV) networks that a player of the interactive game show Banzai found a way to crack (some say hack) his or her scores. Apparently the individual was kind enough to register with the email address of his actual domain name, then wrote about it on his site, posting screen shots.

Knowing these game cheaters use programs to modify values in memory adresses, I'll try this with TSearch on a simple game like Pinball. Fire up Pinball and start playing until theres a score, then start Tsearch and click "Open Process":



Click the magnifying glass and search with an exact value for the current score, leaving the "4 Bytes" under "Type".

1 byte = 0-255
2 byte = 0-65535
4 byte = 0-4294967295
8 byte = 0-18446744073709551615

I came up with 2 results on the first query. Double click to bring the address to the right pane, then edit the value and see if the score changed in the game. That was easy:

Posted by at No comments:

Wednesday, June 21, 2006

Foundry Console Cable

Now everyone and his grandmother has a Cisco console cable but what
about one for Foundry?  The Cisco rollover cable will work for
many devices such as Extreme, but Foundry is not included in the list.
 I ran to a couple local stores and bought what were supposed
to be the correct cables, but none of them worked.  Here's the
info to make your own.  



First, here's the pinouts on a DB-9:






And the most important info, the pin assignments.  Remember
not to connect the wires labeled "Reserved".  (I cut mine)



Posted by at No comments:
Subscribe to: Posts (Atom)