Windows L2TP split tunnelling using CMAK

by Default, the in-built windows L2TP client will attempt to tunnel all internet traffic over an L2TP VPN connection. This can of course be disabled to achieve a low level of split tunnelling: Right click on the VPN adapter > properties > TCP/IP settings > Advanced. Clear the “use default gateway on remote network” It’s … Continue reading Windows L2TP split tunnelling using CMAK

Advertisements

Configuring basic cisco network traffic monitoring with ntop and NetFlow

If you are the admin of a cisco (and sonicwall now in the newer firmware) network, NetFlow is a good and easy way of gathering insight into what exactly is passing through your cisco. Apart from seeing link usage, netflow also allows the admin to see which protocols, ports and hosts are being used. This … Continue reading Configuring basic cisco network traffic monitoring with ntop and NetFlow

UPnP Media Server to XBOX 360 streaming across SonicWALL

This is a pretty common scenario: You have a media server (think windows media server or XBMC server) that is connected to your wired network. You also have a variety of wireless clients (think netbooks or laptops) that you would like to setup in order to use the media server via streaming or UPnP. In … Continue reading UPnP Media Server to XBOX 360 streaming across SonicWALL

SonicWALL Support notes

Below are the links to my personal notes while supporting the SonicWALL range of products. There is some good information there, and hopefully it’s not presented too badly so you can make some sort of sense from them 🙂 SonicWALL firewall notes: https://docs.google.com/Doc?docid=0AV33ZFctNVtsZGhwY3ozY2ZfNTc4aHRxbWMzZDI&hl=en_GB SonicWALL Aventail notes: https://docs.google.com/Doc?docid=0AV33ZFctNVtsZGhwY3ozY2ZfOTY3Y21yaHI3ZHQ&hl=en_GB&authkey=CM7M5IkK SonicWALL GMS and Viewpoint notes: https://docs.google.com/Doc?docid=0AV33ZFctNVtsZGhwY3ozY2ZfNzgwY3Q1M3B6ZGQ&hl=en_GB SonicWALL Email … Continue reading SonicWALL Support notes

Internet browsing time-based quotas

Classic hotel WiFi access scenario: You’d like to setup your network in such a way as to give a particular user only a certain amount of time per day to browse the internet. Say for example “guestuser1” should only be given 2 hours of internet access per day. Some vendors make this (relatively) easy. For … Continue reading Internet browsing time-based quotas

First line windows DLL hijacking mitigation

The questions have started rolling in : how to stop the recent vulnerability discovered in Windows applications termed “Windows DLL hijaking”. This is quite a serious exploit, considering the ease of use of the tools already written to exploit this, and the huge number of applications found to be vulnerable. Add to that the difficulty … Continue reading First line windows DLL hijacking mitigation

Implementing traffic shaping for home use (SonicWALL)

Having recently moved to a lower-bandwidth area (from 12Mb/s to 7Mb/s… sucks ), I really needed to find a way of controlling and optimizing the Internet usage from my home connection. That’s basically what traffic shaping, or bandwidth management (BWM) comes into play. I still have a low-end sonicwall TZ200 from my support days, and … Continue reading Implementing traffic shaping for home use (SonicWALL)