Recent content by jdabbs

Let's say a company, Frapple, comes out with a new app--it opens your garage door without needing a key. It's a very helpful product. Unfortunately, this product can also open other people's garage doors even if they don't have the product. There's been a handful of sensational cases in the...

It's common for network infrastructure to have ICMP rate limiting configured on the device--it takes CPU to generate ping replies, so rate limiting is a defense against denial of service attacks. With regards to packet loss on specific hops, packet loss is cumulative--if say hop 2 is dropping...

Be civil, guys. a thread in my space caused this frown on my face to touch is disgrace

Re: MITM attacks Depends on the platform. Scenario: Let's say a home router is the DHCP server, and is providing its own IP as the DNS server in leases to clients. It's not uncommon for routers to serve as a DNS relay. An attacker has compromised the router and configured a malicious DNS...

Asking here is a long shot--you'd probably have better luck on an India-centric forum, or a computer engineering study group. I saw your other posts--if you are looking for foundational knowledge in network design, I recommend the Cisco guide for Cisco Certified Design Associate (CCDA). The...

For anyone trying to follow along, I just moved this thread to the AX subforum.

That's a lot of questions. 1. I'm assuming this question is for OS hardening. For a home user, a basic change would be making sure antivirus is running and the firewall is enabled. 2. For wireless, let's say you're being harassed by your neighbor. If you set up a new router and the wireless...

First, let's discuss best practices. For bringing new devices online, we don't put them on the Internet straight out of the box--that laptop might be six months behind on patches. Same goes for routers or firewalls. We update the device to a current OS version, then apply a hardened...

Unlikely, but really depends on the modem. My day job is firewalls, and every once in a while Cisco puts out a vulnerability notice like "an attacker sending a specially crafted packet" followed by something unfortunate now being possible. If packets go through and there's a vulnerability to...

At the enterprise level, it's not uncommon to remove access to device management from external and user-facing networks. To add to what Tim posted: Let's say you go all out and buy a $800 firewall and pay a guy $200 to set it up for you. Meanwhile, the RAT installed on your PC six months ago...

So an Ethernet cable has 8 conductors (wires). Pre-gigabit, you just needed to have pins 1, 2, 3, and 6 connected properly. Since you are getting gigabit on the original Cat 5e cable, I'd agree with the others that's it's probably a damaged or otherwise faulty Cat 7 cable. The cheaper ethernet...

I manage one of the 1010s bigger brothers and can answer some questions. I'm speaking in general product family terms and haven't verified that everything pertains to the 1010. Still, this will give you an idea of what to check for. Device management--depends on the codebase. You can run...

Sure, there's potential performance differences with ASICs vs general purpose CPU, but what magnitude? A 10x difference sounds significant, but something like between 1ms and .1ms wouldn't be noticeable. For cheaper, what exactly are you comparing? An AP comes in a lot cheaper than a $550...

MSRP for the Netgate 2100 is $299. Of course, the cost for the AP is on top of that, but that's really the advantage. A wireless router is an embedded PC with a radio bolted on. If you get a new phone and want a radio with 802.11ax support, you're throwing out your router to get a new one. When...

^^What Asus wants you to see: Heroic Routers What your family sees: