Sunday, October 11, 2009

A poll to launch new project!

Hi all,

We are in need to your vote, we intend to launch a new project that is Vyatta based, i.e. a fork of Vyatta.

Like pfSense that was a fork of monowall, then got a very wider perspective, we intend to widen the Vyatta Community edition. We need as much votes as possible, so do not hesitate to vote.

The goals of the project is to extend the usability of VC and tie break the limitations of VC edition. Delay in releasing updates, subscription only editions, and similar limitations that make us frustrated sometimes.

The project will managed so features implemented are not those requested by customers, rather they will be what requested by the community.

PPPoE server, Captive portal, Cisco like access lists to manage traffic matches, VRF, and so on, all those features and many more are requested by the community, but they will not be implemented, unless they get a room in the developers priority list. We want to be more initiative, and do more, and I believe that this project will help Vyatta team a lot, it will provide them with free tests, a whole bunch of new features every while, features that are developed/tested by the community, so it will not take any of their time except time required for integration in the original project, just like Fedora and RedHat.

I hope this poll get filled with your invaluable votes, and I hope the project be a big help for all parties.

Regards,

Laith

PS: You can find the poll on the right of the page. Good luck :)

Posted by Laith Z. Ghazi at 11:17 PM 2 comments
Labels: ,

Saturday, August 15, 2009

VPN lan2lan using ASA template!

Hi,

If you intend to create a VPN connection using two ASAs, and you have already two static IPs at both sites, then you only need the following:

access-list inside-voice_NAT_outside extended permit ip <source lan subnet> <source lan mask> <dest. lan subnet> <dest. lan mask>
access-list outside_cryptomap_voice-inside extended permit ip <source lan subnet> <source lan mask> <dest. lan subnet> <dest. lan mask>

nat (inside-voice) 0 access-list inside-voice_NAT_outside


route outside 0.0.0.0 0.0.0.0 <DGW IP> 1



crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto map outside_map 20 match address outside_cryptomap_voice-inside
crypto map outside_map 20 set peer <Peer IP address>
crypto map outside_map 20 set transform-set ESP-AES-256-SHA
crypto map outside_map interface outside

crypto isakmp enable outside
crypto isakmp policy 10
authentication pre-share
encryption aes-256
hash sha
group 5
lifetime 86400




tunnel-group <Peer IP address> ipsec-attributes
pre-shared-key <a key of your choice>


#END

I will add all kind of VPN config here, as well as I will try to make the same with Vyatta not only Cisco.

I hope it will help!
;)


Posted by Laith Z. Ghazi at 9:50 AM 0 comments
Labels:

Thursday, July 9, 2009

My new MacBook Pro 15"

Hi,

I have purchased my new MacBook Pro 15" last week, I would like to share with all some pics of my new MAC ;)


Posted by Laith Z. Ghazi at 5:07 AM 0 comments
Labels:
Subscribe to: Posts (Atom)