Thursday, 15 September 2011

Practical Packet Analysis, 2nd Edition

Practical Packet Analysis, 2nd Edition

Using Wireshark to Solve Real-World Network Problems by Chris Sanders

ISBN: 978-1-59327-266-1

Paperback: 280 pp

Publisher: No Starch Press July 2011

cover picture

Review by Henrik Lund Kramshoej, hlk@kramse.org

September 2011

Get started in packet sniffing

About the book

This book is about packets, sniffing packets, dec  More text

Posted by hlk at CEST 01:09 15/09/2011 in Books

Tuesday, 7 June 2011

World IPv6 day, danish measurements

Hi All

Today is World IPv6 day, you know about it right?! http://www.worldipv6day.org/

in that spirit I asked a few of our customers at Solido Hosting if they would like to join the fun.

They did :-)

So today on World IPv6 Day we have at least two danish sites running IPv6 - and also our own home page etc.

The sites are:

Posted by hlk at CEST 20:06 07/06/2011 in IPv6

Saturday, 4 June 2011

Building the Ostinato Packet/Traffic Generator and Analyzer

I love networks.

Ostinato Packet/Traffic Generator and Analyzer is a nice tool that too few people know about, lets see if we can change that :-)

First of all, what are we talking about? From the homepage of Ostinato

Ostinato is an open-source, cross-platform network packet crafter/traffic generator and analyzer with a friendly GUI. Craft and send packets of several streams with different protocols at different rates. For the full feature list see below. Ostinato aims to be "Wires  More text

Posted by hlk at CEST 10:06 04/06/2011 in Internet

Friday, 15 April 2011

Reporting about IPv6

Hmm, does my blog still work ;-)

So, I work with IPv6 - as some might know already. I also know a lot about IPv6, at least I think so myself :-)

I really hate reading about IPv6 these days, except when reading news like:

Posted by hlk at CEST 13:04 15/04/2011 in IPv6

Wednesday, 29 December 2010

Using Junos to connect to serial console

OK, lets say you have a nice router running Junos in a remote location.

This device is running nicely, but you want to make sure you can control it, even while doing updates and other stuff from console. Enter the console server, conserver and some multiport seriel adapter - everything is fine. Usually I buy a Soekris from Wim at KD85.com for this purpose. The reason to use Soekris are, pretty cheap, very small, can run from Compact Flash even, runs OpenBSD, multiport serial car  More text

Posted by hlk at CET 13:12 29/12/2010 in Toolbox entries

Sunday, 14 November 2010

Junos Security, book review

Junos Security

A Practical Guide to Junos Enterprise Services Gateways, Software, and Certification by Rob Cameron, Brad Woodberg, Patricio Giecco, Tim Eberhard, and James Quinn

ISBN: 978-1-449-38171-4

Paperback: pages

Publisher: O'Reilly August 2010

Junos Security cover picture

Review by Henrik Lund Kramshoej, hlk@kramse.org

November 2010

The best in-depth Juniper SRX   More text

Posted by hlk at CET 12:11 14/11/2010 in Books

Thursday, 19 August 2010

Network flow analysis by Michael W. Lucas, review

Network Flow Analysis by Michael W. Lucas

ISBN: 978-1-59327-203-6

Paperback: 224 pages

Publisher: No Starch Press June 2010

network flow analysis cover

August 2010

Fantastic and very complete information about network flows

Content

This book is a easy guide to the world of netflow logging and analysis. The content ranges from basic configuration of flow logging and easy custo  More text

Posted by hlk at CEST 09:08 19/08/2010 in Books

Thursday, 1 July 2010

IPv6 is coming, except in Denmark?

IPv6 is coming, no doubt.

The level of interest at tech news sites like Version2.dk is growing - search for IPv6. The danish Science Minister Charlotte Sahl-Madsen was reported this week for talking about IPv6 (terrible article but hey, interest)

But still the level is nowhere close to being enough. So lets get started, push IPv6 now!

Why push IPv6

  • It has gained momentum - enough that it will be the new version
  • Making the tr  More text

Posted by hlk at CEST 08:07 01/07/2010 in IPv6

Thursday, 24 June 2010

The book of Xen, review

The book of Xen: a practical guide for the system administrator by Chris Takemura and Luke S. Crawford

ISBN: 978-1593271862

Paperback: 312 pages

Publisher: No Starch Press October 8, 2009

Review by Henrik Lund Kramshoej, hlk@kramse.org

Book of Xen cover

June 2010

Practical use and short cut to running Xen quickly.

Content

This book is a how-to and a Xen guru standing behind you gu  More text

Posted by hlk at CEST 09:06 24/06/2010 in Books

Wednesday, 2 June 2010

Juniper SRX210 Junos 10.2 flow based IPv6 forwarding

I have previously talked about Juniper SRX and IPv6 forwarding, where it is possible to get them to forward IPv6 packets. In packet-based mode:

[edit security forwarding-options]
hlk@bender# show
family {
inet6 {
mode packet-based;
}
}

I was thus very interested when I got hold of the release notes for JUNOS 10.2 which told about flow-based forwarding. I downloaded the 10.2 relase and upgraded my small testsystem which is a SRX210B - low memory model. It needed some cleanup to free space, and update went smoothly - but slowly  More text

Posted by hlk at CEST 11:06 02/06/2010 in IPv6

Wednesday, 28 April 2010

work work work 2010 is busy!

Wauw its been a while!

I will start blogging RSN, so watch out - just checking that everything is still running smoothly with the Ecto blog editor.

I have a few book reviews, done - but not posted

i have done a lot of amazing stuff lately, ok maybe not epic - but funny things that I would like to share.

Tonight is also DNSSEC at BSD-DK, so maybe we will meet?

Ohh and BTW, communication from me on blog, twitter, company homepage, etc. is going to be in english from now on. Tired of writing things in two languages!

Posted by hlk at CEST 10:04 28/04/2010 in Freelance, work etc.

Saturday, 9 January 2010

DNSSEC in your BIND

This is a blog entry I have wanted to write for so loooong, and why didn't I?

Perhaps because I thought it would be hard and complex, but it isn't hard to DNSSEC enable your resolving/caching nameserver!

Luckily for me Tykling has done all the hard work and thus I asked him and he helped me :-)

So this entry is a 3..2..1 step to DNSSEC enabling your resolving/caching BIND DNS server, mine runs on OpenBSD with the built-in chrooted BIND, so the config is in /var/named/etc/named.conf and the resulting parts are:

Step 1 - enable DNSSEC

To enable  More text

Posted by hlk at CET 12:01 09/01/2010 in Internet

Monday, 14 December 2009

Juletip 12: SYN scan IPv6 with scapy

Så er der blevet tid til at skrive næste indlæg, øv hvor kan tiden flyve når man har det sjovt - eller arbejder.

De planlagte indlæg tager også længere tid end forventet, måske fordi jeg leger så godt :-) Planen for de indlæg der mangler er nogle helt nede på jorden eksempler med pakker, til rigtige formål. Altså eksempler på programmer som man reelt kan bruge i sit eksisterende arsenal med Nmap, Python, Perl, Nemesis osv.

Det første som er blevet mere færdigt er en lille sød IPv6 portscanner, som snildt kan udvides med mere funktionalitet. Ideen med portscanneren er at s  More text

Posted by hlk at CET 17:12 14/12/2009 in Toolbox entries

Email address change for Henrik Kramshoej

Hi There

I am changing my email adress, the one I thought I would keep until I die ... hlk@kramse.dk

You should update your address book if you want to continue sending me email. The new address is: hlk@kramse.org

The new address has been available for some time and the old one will be removed December 2010

Thanks in advance Henrik

PS You can always find updated contact information at: http://kramshoej.tel

Posted by hlk at CET 07:12 14/12/2009 in Toolbox entries

Saturday, 12 December 2009

Juletip 11: N900 tcpdump

Update 15:14: Jeg er en tumpe, tcpdump virker - hvis man vælger det rigtige interface :-)

Hovsa, jeg tror julemanden kom forbi, for jeg har fået fat på en N900 til lidt leg :-)

Jeg har tidligere snakket en del om min Nokia N810 som jeg har leget en del med, både med tcpdump, airodump osv. - det er en sød lille hackerplatform. Dog er den lidt begrænset med specs:

  • Procesor TI OMAP 2420, 400Mhz
  • Memory DDR RAM 128MB
  • Flash 256MB
  • Storage Up to 2GB int  More text

Posted by hlk at CET 09:12 12/12/2009 in Toolbox entries