About steven.pw.lau

steven.pw.lau · 07-14-2015

Hi, Is there way to modify the IP address settings in CMX 10.1?Or I have to re-run "cmxctl node install" again? Thanks.

steven.pw.lau · 07-12-2015

Has anyone successfully created a Pre-Auth ACL to block Whatsapp messenger from connecting prior to authentication?I understand that in some posts, there were suggestions to block Whatsapp via blocking access to c.whatsapp.net and s.whatsapp.net, but...

steven.pw.lau · 07-12-2015

Hi, Is there a way to block access to virtual IP (192.0.2.1) in the pre-auth ACL when doing external webauth?This is because I've noticed that even before the visitor/guest registers to the external portal, if they manually enter 1.1.1.1 in their web...

steven.pw.lau · 12-01-2010

steven.pw.lau · 10-04-2010

Hi,I'm having trouble getting this new BIOS policy feature "Resume AC on Power Loss" to work. I've tried both on v1.3(1c) as well as v1.3(1n) but to no avail.After creating the BIOS policy with "Resume AC on Power Loss" set to "reset" (I've even trie...

steven.pw.lau · 07-14-2015

I think in terms of getting the user re-authenticate, it depends on the webauth timer or if you delete the user entry from WLC monitor client.But on how to delete the visitor entry from the database manually, I'm interested to know also as I've been ...

steven.pw.lau · 07-14-2015

Thanks.. I totally forgotten about that... But I've just realized, I'm not able to block whatsapp on iphone because of the TCP multipath in iOS 8.Whatsapp will fallback to the cellular data when the app can't get through the wireless LAN.

steven.pw.lau · 12-04-2010

Bouncing off FW-A probably would require me to use the ASA command of same-security interface permit intra-interface for an ASA firewall.Another way I can think of is to do a NAT on the apps server on FW-B so that request from webserver will be NAT'e...

steven.pw.lau · 12-03-2010

Thanks Jon. I agree with you on that.Having said that, if I've a web server with a public NIC to pointing to the tier-1 firewall and the private NIC pointing to the tier-2 firewall to access the apps server subnet, I will not be able to configure two...

steven.pw.lau · 12-01-2010

How about those servers which is single-homed with one single NIC (one GigE port)?One way of doing this is to manually configure the routing in the server itself but this would not be practical if there are many servers..Thanks..

Member Since	‎07-18-2005 11:25 PM
Date Last Visited	‎08-18-2017 03:55 AM
Posts	55

User Statistics

User Activity

Modifying IP address in CMX 10.1?

CMX Visitor Connect - How to block Whatsapp Messenger?

Blocking access to virtual IP 192.0.2.1 when using external webauth?

Multi-tiered Firewall (for Web,App,DB) - DMZ switch should be L2 or L3?

Resume AC on Power Loss BIOS policy not working

I think in terms of getting

Thanks.. I totally forgotten

Re: Multi-tiered Firewall (for Web,App,DB) - DMZ switch should b

Re: Multi-tiered Firewall (for Web,App,DB) - DMZ switch should b

Re: Multi-tiered Firewall (for Web,App,DB) - DMZ switch should b