Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- :
- About Pratyush Sinha
Stats
Member since
10-11-2013
10
Posts
0
Helpful
0
Solutions
Created by
Pratyush Sinha
in Web Security
in Web Security
02-12-2018
10:34 AM
02-12-2018
10:34 AM
My proxy inserts XFF header by default. Some of HTTPS websites do not work if I do HTTPS interception. First I bypassed those websites from HTTPS interception and they started to work. Then I kept HTTPS interception enabled but disabled XFF interception and the websites still worked fine. So my question is what impact does XFF header have on HTTPS websites. I understand it is used to send client's original IP address but why the Websites work with XFF disabled and fail to load when XFF is enabled.
Thanks
Pratyush
... View more
Labels:
03-08-2017
12:21 PM
Hello All,
I have a very basic query on Collision Domain and Full Duplex Mode. There are two types of logical topology ; Ethernet and Token Ring .
Whenever we read about Ethernet the first thing that we are taught is CSMA/CD. It says that in Ethernet two computers can not send data simultaneously. I am trying to figure out why it is not possible.
Scenario 1. Two computers connected directly to each other via ethernet cable . No switch or hub in between. Both the adapters are in full duplex mode. In this scenario if both the computers started pinging each other will it not work. If no then why not and if it works then why is there no CSMA/CD involved.
Scenario 2. Two computers connected to each other via a plain hub( not switch). In this scenario can two computers ping each other simultaneously.
Does it matter on the type of cable ; CAT or Coaxial .
Please let me know if I am missing anything.
... View more
Labels:
12-06-2015
01:16 PM
Here is the query.
I have a Windows server 2012 at 10.10.1.200. The gateway is 10.10.1.1 . I am using 10.10.1.200 as the DNS server. I have configured DNS server on 10.10.1.200. In the DNS server settings I have not mentioned any forwarder.
Now from the browser of 10.10.1.200 I try to go to a domain that does not exist (Please check packet 25 and 26.). Ideally it should go from 10.10.1.200 to root server and from root server I should get the name server of the .com server. Now the next query should go from 10.10.1.200 to the .com server and from the .com server i should get a reply that the domain does not exist. (I think that is how iterative query works.)
However I am getting the reply directly for root server that the domain does not exist.
Can some one please check the packet capture (packet 25 and 26 ) and let me know why I am not getting a referral from the root server.
Also can someone please send me sample wireshark capture of iterative query explaining how the packet flows if the domain does not exist.I have checked wireshark's website and it is not there.
... View more
Labels:
Created by
Pratyush Sinha
in Switching
in Switching
09-28-2015
02:35 PM
09-28-2015
02:35 PM
Here is the question. When and Why do we decrease MSS instead of MTU. In the router that we can configure both of them separately. Suppose I have kept MSS as 1260.I have not made any changes to the MTU. Now if the TCP and the IP header do not have any options then they will be using 40 bytes( 20 TCP + 20 IP). So does this mean that the MTU in this case is 1300. Now the second scenario. I decreased the MTU to 1300. I did not make any change to the MSS. Again there are no options in the TCP and IP options. So does this mean that the MSS in this case is 1260. If both the scenarios have same outcome then please help me understand the following. In which case should we decrease the MTU and leave MSS untouched ? In which case should we decrease the MSS and leave MTU untouched ? Thank You
... View more
Labels:
Created by
Pratyush Sinha
in Switching
in Switching
04-16-2014
03:19 PM
04-16-2014
03:19 PM
I have 10 public ip addresses and I have only 1 WAN port . So I have created aliases on the WAN port of the firewall . Then I have forwarded the ports of all the public ips to internal machines . The questions I have 1. Will the alias broadcast mac address ? 2.Will the WAN interface broadcast mac address ? 3. How will the upstream device will know which IP has which mac ? 4. What is the use of proxy arp in this scenario ? 5. Does gratuitous arp play any role here .? Here is the setup ISP link Fibre Connection >ISP device >Switch >Firewall >LAN computers Please let me know the arp flow over the wan and the working of IP alias .
... View more
Labels:
01-03-2014
11:05 AM
Does https create any tunnel ? What is the diffenrence in working of SSL VPN and HTTPS ?If we are opening secured website using SSL VPN ,will there be a 3 way handshake? Can some one please explain the difference between the two using packet flow or if possible wireshark.
... View more
Labels:
10-23-2013
07:58 AM
Two Scenarios. 1. The network setup is as follows. There is one firewall .I have two computers in the network. i have created a DMZ with network 192.168.1.0/24 and a LAN zone with network 192.168.2.0/24. By default the LAN to WAN is allow . I have created the same for DMZ to WAN. There is no sever in the DMZ.No one is trying to access anything from WAN to DMZ.Now if I try to access internet from the computer in DMZ will it be any different than trying to access internet from the computer in the LAN ? Is there any feature in DMZ which is not in LAN. 2. I have a home wifi router with the local address 172.16.16.0/24.Also i have a gaming device which needs to forward certain ports.One way is to do a port range forward on the router and forward the ports for the ip of the gaming device. Another way is to do a port range triggering on the router and forward the ports without mentioning the ip address of the gaming device. The third option is to select DMZ option in the router. My question is 1. What does selecting DMZ in the home router do? Does it open all the ports ? 2.What purpose does a DMZ zone serve in the first network set up ? 3. Are both the DMZs same ? Please help as i am not able to find a good explanation .
... View more
10-21-2013
03:18 PM
Is there any difference between the" DMZ " of gaming consoles and the DMZ in networking.As far as I know the DMZ term used in firewall is related to a zone which is not completely trusted and hence is kept outside LAN.What does DMZ mean in wireless routers ?Is there any relation between the two ?
... View more
Labels:
Created by
Pratyush Sinha
in Switching
in Switching
10-14-2013
01:46 PM
10-14-2013
01:46 PM
Thank you for the answer . Now I have some more questions related to alias. 1.How many broadcast domain would be present ? 2.In the ARP for the 17.16.16.1/24 will i get any response from 172.16.17.1/24? 3.Can an alias port act as a DHCP server. 4.If the hosts in the 172.16.16.1/24 fail to ping 172.16.16.1 will it have any effect on the 172.16.17.1 network ?
... View more
Created by
Pratyush Sinha
in Switching
in Switching
10-11-2013
12:53 PM
10-11-2013
12:53 PM
I have a firewall with one WAN port and two LAN ports. Say the IP on the WAN port is 115.115.115.115. Then the IP address on the LAN ports are 172.16.16.16.1/24 and 192.168.1.1/24. the firewall is in gateway mode (it does NAT ing).Now i have connected four computers to the network 172.16.16.1 via a switch.If i create an alias on the LAN port which has 172.16.16.1 /24 ip and give the alias an ip 172.16.17.1 then what does it do in the network behind switch. Will i have 3 LANs now. Or will the computers behind the switch get an optiopn to choose the ip address from both the range i.e 172.16.16.1 /24 and 172.16.17.1/24..Will I be able to ping 172.16.17.1 from any computer in the network 172.16.16.1/24 network. I do know that if we use alias on WAN interface then we can accesss the device on two ip addresses. But my question is related to ip alias in LAN. So what does an alias do from start to end.
... View more
Labels:
02-12-2018
My proxy inserts XFF header by default. Some of HTTPS websites do not
work if I do HTTPS interceptio...
03-08-2017
Hello All, I have a very basic query on Collision Domain and Full Duplex
Mode. There are two types o...
12-06-2015
Here is the query. I have a Windows server 2012 at 10.10.1.200. The
gateway is 10.10.1.1 . I am usin...
09-28-2015
Here is the question.When and Why do we decrease MSS instead of MTU.In
the router that we can config...
04-16-2014
I have 10 public ip addresses and I have only 1 WAN port . So I have
created aliases on the WAN port...
01-03-2014
Does https create any tunnel ? What is the diffenrence in working of SSL
VPN and HTTPS ?If we are op...
10-23-2013
Two Scenarios.1.The network setup is as follows.There is one firewall .I
have two computers in the n...
10-21-2013
Is there any difference between the" DMZ " of gaming consoles and the
DMZ in networking.As far as I ...
10-14-2013
Thank you for the answer . Now I have some more questions related to
alias.1.How many broadcast doma...
Public Statistics
| Date Registered | 10-11-2013 12:46 PM |
| Date Last Visited | 02-19-2018 11:14 AM |
| Total Messages Posted | 10 |
