The Sorrow

And that's why you are so awesome infiltrator!

Not for what im doing Infiltrator. That was a link that DID come in very helpful for setting up my wireless AP. My issue lies in the fact that pfSense does not allow access to anything unless a rule says it has access. By default there is a rule that states ALL computers from the LAN interface are ALLOWED to access ALL interfaces. Im lost as to why i cant access a DMZ interface from my LAN. Kinda thinking about trying out m0n0wall

Been trying their forums. They aren't too helpful :/

My plan for my pfSense firewall is to have a LAN, Wireless Access Point interface, and a DMZ. Im not sure how to allow access to the internet with all interfaces (unless I'm just missing something). I have three NICs and one built in NIC. Here's an overview of my setup. Its a fresh install so I know I need to modify things to make it work (which I have, I just cant seem to figure it out). WAN -> DHCP LAN -> 10.10.1.0/24 DMZ -> 10.10.2.0/24 WAP -> 10.10.3.0/24 All the interfaces are statically assigned to *.*.*.254 for whatever range they belong to. Ive heard that pfSense has NAT set up to allow all the interfaces access to the internet and to each other and all I have to do is set up firewall rules. Ive tried allowing things and it never seems to work (IE allowing LAN to access DMZ so I can manage my DMZ boxes through LAN without allowing DMZ access to the LAN). So I'm not sure if i have a backwards idea of what I need to do or if I'm just crazy Thanks Edit: had the CINR notation incorrect. /16s instead of /24s

Cisco is a great direction. Im working on my CCNA along with a couple others like Net+ and CEH.

Im trying to make 2 virtual hosts on one apache server. its static IP is 192.168.5.128. i can make it see the web sites through 127.0.0.1/home.html and it shows whats in the root directory for httpd </var/www/html> but i cant make it see the web sites using the names i gave the hosts on the local host or through other hosts on the intranet. [...] NameVirtualHost 192.168.5.128:80 NameVirtualHost 192.168.5.128:8080 [...] [...] &lt;VirtualHost 192.168.5.128:80&gt; DocumentRoot /var/www/vhost1 ServerName library.com &lt;/VirtualHost&gt; &lt;VirtualHost 192.168.5.128:8080&gt; DocumentRoot /var/www/vhost2 ServerName catalogue.com &lt;/VirtualHost&gt; [...] i can ping so i know its strictly a config issue. Any ideas?

The HD in question is a USB external HD. so i booted a linux mint live and tried copying it over. Says access denied. I was gonna try and copy it with sudo user permissions. Not sure if it'll work though.

ITT uses Fedora for its 2 linux server classes. I hate it but i deal. (Mr Ubuntu)

Very useful! Thanks!

Ive installed windows already. Fresh Win7 and its so much faster. Haven't cleaned out stuff in a year or two. Haven't backed up the profile or anything. And brute force O.o? 3DES? Really?

I formatted the OS that I encrypted them on and didnt export the cert.... Just tried copying over to FAT32 and it wont remove the encryption. Refuses to copy over in fact.... Maybe because I'm using windows 7? Can I sudo force it onto a FAT32 partition?

I'm an ITT Tech student and i must admit, i have mixed feelings. They have some great teachers, but the way they tell them to teach hinders the students a lot. Ive learned a lot and will continue to learn (CNS to ISS). I feel its worth it.

Backed up my pics on a USB external drive. Formatted my PC that i encrypted them on and now of course I cant view them. Any awesome sauce way to crack EFS encryption?

Depends what work you want to do. i do a lot of windows and Linux hybrid environments. Namely because i like them both for different reasons. Im also a security guy and look at exploits based on the networks i build to make my builds more secure. Its really up to you and your goals for yourself.

Yes and i believe it helps. I can dump all the printer shares into a txt file and make a batch file to do it quickly.

modem i assume. i dont have NAT enabled on my PFSense box.

no. it seems to restore everything but the shares dont appear on the server

This is my network setup.

Definately look for books and reading material. I dont know what kind of PC you have, but if you can run a few virtual machines using VMWare then thatll help immensely. Reading theory is good, but doing stuff, breaking stuff then fixing it is so much better.

i made a rule for the PFSense firewall allowing the port u specified for OpenVPN. I have a cable (Cox) modem which connects to my PFSense firewall (WAN interface) then it routes to my LAN interface which is connected to a 24 port cisco switch, which then connects to my computers.

So since its behind a cable modem i need to get the IP from IPchicken or whatsmyip and set up port forewarding. Yes/no?

So im net to VPN setups. I searched the forums and did plenty of googling but im still at a loss. I have a PFSense firewall running the OpenVPN service. Its configured. Im using TCP. I have a shared key and ive set the port to 1194. BF-CBC cryptography and Shared key authentication. LZO Compression is also enabled. Im using a Cox modem. what do i need to put into the client program to connect VPN at say my school or public wifi?

For the most part we have the 64 bit drivers for each type of printer. we have been doing x64 windows 7 deployments slowly and already added the drivers.

well it backed everything up into a bin just fine. cant seem to restore the settings on another server for some reason though

Ive been trying to use the multipass to boot multiple Windows PE images. We use 32 and 64 versions of windows 7 (GM requires 32-bit for shop PCs and we have a lot of non 64-bit boxes as well). Is it possible? my current filesystem looks like this WinPE32- |-Boot |-EFI |-Sources WinPE64- |-Boot |-EFI |-Sources gldr menu.lst menu.lst looks like this title Windows PE 64-bit chainloader /WinPE64/boot/bootmgr title Windows PE 32-bit chainloader /WinPE32/boot/bootmgr Can this even be done? cause im getting an error during PE bootup that says it cant find Boot/BCD. This i assume is because its in a subdirectory. Any takers? --Edit-- I just took a 32-bit version out of the sub directory and it works like a charm. still looking to see if its possible to boot 2 winPE images on one USB --Edit-- Essentially came to the conclusion that the two PE images need to be on separate partitions. Gonna make PE-32 a redhead stepchild in its own partition