CCNA Security

Posted on March 29, 2009

For the about the last 2 years my Cisco certifications have been mostly on hold, for a number of reasons (namely a study break, doing a ITIL certification, work and then DIY). However last week I passed the Cisco IINS (640-553) exam, this means that I can add CCNA Security to my list of Cisco certifications.

This is quite a new certification, as it was only released last year. The subject matter of the course is very similar to that of ISCW and SND. This should be a great help for me as my next Cisco exam should be ISCW, as I really would like to finally add CCNP to my growing list of certifications.

Adding support for Services to Rails-CMDB

Posted on April 12, 2008

I’ve just checked my work in progress of adding support for modeling services in Rails-CMDB into SVN, it’s not really ready for production use yet (i.e. I may change the model in incomputable ways) and it’s lacking much code and tests.

The following is a my current thoughts on the process flow for modeling transitions of services:

I’m thinking buying a license for OmniGraffle, as I can’t edit the above diagram any more, it seems a lot nicer than Visio which I use quite a lot at work. The only thing is the Professional version worth the extra money ?

Combining Dynamic DNS, DHCP and PXE boot

Posted on February 9, 2008

Following on from looking at PXE based installs earlier on in the week, I then moved on to looking at integrating dynamic DNS updates into DHCP (see this article for more details), which is something else I’ve been meaning to look at for some time.

It does greatly simplify the setting of the hostname and domain name on a server when it’s been automatically installed with Debian pre-seeding or Red Hat’s kickstart over the network. This is because both build systems use the reverse DNS entry of the server’s IP address during installations as its hostname.

Thus the host entry in the DHCPd configuration becomes the single location for the details, as in the following example:

host test-001 {

  hardware ethernet 00:0c:29:56:f3:7b;

  option host-name "test-001";

  ddns-hostname "test-001";

  ddns-domainname "local";

}

A first look at PXE based installations

Posted on February 7, 2008

I’ve never really managed to spend the time needed to have a good look at setting up an environment for installing Linux via PXE. However I finally managed to find the time earlier on this week, and so far I’m impressed. I’ve now got the start of a boot menu from which I can install Debian Etch, two different versions of Centos and most importantly the DHCP server co-exists on the same network as my cable router.

The following magic in the dhcpd.conf allows this server to co-exist with another DHCP server, due to PXE clients ignoring DHCP replies which do not contain the filename or next-server options:

deny unknown-clients;

class "pxe" {
  match if substring (option vendor-class-identifier, 0, 9) = "PXEClient";
}

And finally within a pool definition, the real magic:

allow members of "pxe";
next-server 192.168.1.2;

This allows hosts that boot with the same file name to be grouped together, which should also allow installation of *BSD systems and may be even Windows servers off the same Linux server running ISC DHCPD and TFTP.

I think the next step is to look at automatic installation of Debian and integrating dynamic DNS updates into DHCP, that way it should be possible to get the correct hostname into a Centos VM. However I’m not sure if how it will work with Debian.

Rails-CMDB release 0.4.4

Posted on December 1, 2007

I’ve released a new version of Rails-CMDB with some extra reports and behind the scenes improvements. Details behind the cut, it can be downloaded from here.

Continue reading →

Rails-CMDB release 0.4.3

Posted on November 28, 2007

I’ve released a new version of Rails-CMDB with some reports. Details behind the cut, it can be downloaded from here.

Continue reading →

Rails-CMDB release 0.4.1

Posted on November 22, 2007

It’s been a while since I’ve managed to do a release of Rails-CMDB. This is mainly because I got stuck working parts of the test suite and I’ve been doing things that have kept me away from a computer.

However over the last few days I’ve managed to get an import integration story working, which seems to be working. I’ve also taken the chance to migrate to Ruby on Rails 1.2.5, but there are some DEPRECATION warnings still to dealt with.

Behind the cut is the changelog. Continue reading →

Cool things in Leopard (and sorting keyboard issues)

Posted on November 18, 2007

I’ve finally upgraded to Leopard and so far I’m loving the following:

Built in ssh-agent support.
The iCal and Mail integration.
Spaces.
New look Finder.
Profiles in the terminal.
Being able to map network shares from the dock.

The things that have not improved.

Using a real UK PC keyword is still not handled correctly (I’m had a ergonomic keyboard for years).
There seems to be no way to change to size of unread counts in the dock (annoying for netnewswire).

I’ve also just spent what seems like an age getting my keyboard back to functioning correctly, after MacOS refused to do anything to change the keyboard type with the following error (also sometimes the change keyboard type button disappeared from the keyboard and mouse section of system preferences):

No unknown keyboard connected - terminating

The only way to fix it was to remove the following file and then reboot.

/Library/Preferences/com.apple.keyboardtype.plist

Then when re-detecting the keyboard type and selecting the map from the following page, it worked correctly with the keyboard type of ISO European.

It’s been a while…

Posted on November 11, 2007

It’s been a while since I posted and this is mainly because I’ve been very busy with work and also trying to cut back on computer use for the last month.
Currently I’m managing to hold back on the upgrade to Leopard, however this is because some really important software is missing support and thus preventing me upgrading . I’m hoping that early December will give me the new shiny.

A couple of weeks ago I went to a talk at ScotRUG about StaticMatic and I’ve now ported my web site over to it from Website Meta Language. Now all that’s left is working round HAMLs handling of content within pre tags and updating the site so it looks like something created the in latter half of this decade instead of the late 90′s.

ITIL Foundation v3 Certificate

Posted on October 19, 2007

I got some very good news in the post this morning (well it turned up for a start). After weeks of waiting I got the letter informing me that I had passed the ITIL Foundation v3 exam, which I sat on 27th September.

Really happy about this as I started reading about ITIL some time in May this year, just before I learned about version 3. All in all I think it’s a good improvement over version 2 and well worth doing.

M	T	W	T	F	S	S
« Nov
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29

Blogging Without a Safety Net

Photography, Security and a little bit of every day life

Category Archives: Technical