About Eugen Serban

Eugen Serban · 10-26-2016

Hello,I just found out that when connecting to a guest network I can ssh to 1.1.1.1. If I have the username and password, I can log in and wreck havoc in the network.Of course, an attacker will find the 1.1.1.1 address (or whatever) and try to exploi...

Eugen Serban · 04-12-2017

Edit 6h after  I have found the issue. The source was behind a nat and when I was doing a sh ip mroute I could see the group twice from both IPs (original and natted). I suspect that's why the RPF failed. When I moved the source outside of the NAT...

Eugen Serban · 10-27-2016

I applied the change and now it's behaving like it should  Thanks again! Eugen

Eugen Serban · 10-27-2016

On the anchor, we do, yes. On the remote sites we don't. This is indeed a proper solution. Thanks!

Eugen Serban · 10-26-2016

Hello, Yes, when connected to the guest network, I am able to ping 1.1.1.1 and ssh to it. As I have the credentials for the WLC, I was able to log in.

Eugen Serban · 08-18-2016

Hello, I'm also trying to redistribute that /32 route without success. I had the same idea as you: creating a static to null0 and then redistribute static in bgp, but it does not work. It redistributes all my other static routes, but not that one. ...

Member Since	‎06-27-2013 02:20 AM
Date Last Visited	‎09-07-2018 12:03 AM
Posts	10

User Statistics

User Activity

Block Guest SSH to 1.1.1.1

Hello,

I applied the change and now

On the anchor, we do, yes. On

Hello,

Hello,