About gryffindor

gryffindor · 10-14-2021

Our vulnerability scan found that all 4948 and 3750 switches are having a vulnerability of "SSH Birthday attacks on 64-bit block ciphers (SWEET32)". However, the other models like 3650/3850/4500 are not having this vulnerability. Could anyone help me...

gryffindor · 08-02-2021

Hi AllI need help regarding setup of a new backup connection between my DCs. The link is terminated on edge routers in each DC, namely DC1-edge and DC2-edge. There is EIGRP (As 40) running between two edge routers. On DC-1, we have eBGP between DC1-c...

gryffindor · 06-18-2021

Hi All, I am very new to Cisc/ASA and maybe this question is very basic but I couldn't get it. We have a crypto-map configured with a client and have used an ACL to define the interesting traffic. There is no Tunnel interface attached to it. We only...

gryffindor · 05-25-2021

Hi, I have two BGPs configured on my core router. One is with P2P link to another location (site B). Other is with MPLS circuit which connects all other sites. Now, my routes from site B are being learnt from P2P bgp while of other sites from MPLS. T...

gryffindor · 05-23-2021

Hi, I am new to cisco and still learning my way around. My questions is we have BGP neighborship configured on Cisco 4500 switch and distribute-list is used. neighbor <IP> distribute-list 20 inneighbor <IP> distribute-list 21 out From what I learnt...

gryffindor · 10-14-2021

Hi Giuseppe, Thanks. I also tried the same but it didn't help. I had one more query if you could help. I was looking to fix weak key exchange algorithms on my switch. I could do it on 3650 switch with command ip ssh server algorithm kex diffie-hellma...

gryffindor · 10-14-2021

Hi Leo, switch is already on recommended ios i.e. Version 15.2(4)E10. I was wondering, if there were some config changes that can be made.

gryffindor · 08-02-2021

Hi @Giuseppe Larosa Thanks a lot for your reply. I wasn't aware of this command. Just to confirm, can I use the same method for redistribuiting eigrp into eigrp (another AS). Can you please also suggest something for this. >> Similary, on DC-1 core ...

gryffindor · 06-18-2021

Hi Rob, Thanks for your reply but, I am sorry as there is still a little confusion. I understand your point that since we have connection type as answer-only, it is client who has to initiate the traffic. But, my ACL allows from Source (internal-IP) ...

gryffindor · 05-24-2021

Hi Giuseppe, Thanks a lot for your time & response. This will help me in applying the ACLs according to requirement.

Member Since	‎05-18-2021 10:10 PM
Date Last Visited	‎10-20-2021 12:05 AM
Posts	13
Total Helpful Votes Received	15

User Statistics

User Activity

Fix for CVE-2016-2183 (SWEET32) vulnerability

Redistribution between Eigrp and BGP to setup a new backup link

Defining ACL in a crypto map

BGP routing in multi-homed

View distribute-lists in Cisco 4500

Re: Fix for CVE-2016-2183 (SWEET32) vulnerability

Re: Fix for CVE-2016-2183 (SWEET32) vulnerability

Re: Redistribution between Eigrp and BGP to setup a new backup link

Re: Defining ACL in a crypto map

Re: View distribute-lists in Cisco 4500