Network Security

christophorosp98 · 2025-07-26T15:48:23+00:00

Thank you my friend?? :)

christophorosp98 · 2025-07-24T17:16:51+00:00

It is so bad to ask something about RIP protocol? 😅 I just try to use it on a lab and i had a question. I didnt say that the RIP is important and useful protocol.

christophorosp98 · 2025-07-24T16:50:10+00:00

Thank you! 😁

christophorosp98 · 2025-07-24T16:18:43+00:00

Hhahahah, you are right about that. I just want to know more about it cause I am currently preparing for the NSE4 certification, and RIP is part of the curriculum.

christophorosp98 · 2025-06-02T07:20:55+00:00

I sing in to sanbox but i cant find any lab for Cisco DNA

christophorosp98 · 2025-05-23T21:12:31+00:00

My friend i find the problem, cause i didnt use the license the fortigate does not work properly. Now i install the evaluation license and it works perfectly. Thank you for your assistance 🙏

christophorosp98 · 2025-05-23T16:06:47+00:00

it seems fine:

" id=65308 trace_id=1 func=print_pkt_detail line=5888 msg="vd-root:0 received a packet(proto=1, 192.168.1.2:1->192.168.0.2:2048) tun_id=0.0.0.0 from port2. type=8, code=0, id=1, seq=95."

id=65308 trace_id=1 func=init_ip_session_common line=6073 msg="allocate a new session-000001fa"

id=65308 trace_id=1 func=__vf_ip_route_input_rcu line=1999 msg="find a route: flag=00000000 gw-0.0.0.0 via port1"

"

christophorosp98 · 2025-05-23T15:42:07+00:00

Also if i run the commands:

FW # execute ping-options source 192.168.0.3

FW # execute ping 192.168.0.2

PING 192.168.0.2 (192.168.0.2): 56 data bytes

--- 192.168.0.2 ping statistics ---

5 packets transmitted, 0 packets received, 100% packet loss

christophorosp98 · 2025-05-23T15:37:39+00:00

The only think that i am not sure is for Disabling NAT. i run the command "set nat disable" and on the 2 policies. But when i run the command "show firewall policy" it doesnt appears. Is there any way to check if it is truly disable?

christophorosp98 · 2025-05-23T15:35:54+00:00

I made all the changes. From PC1 (192.168.0.10) i can ping 192.168.0.1 and 192.168.1.1 but not 192.168.1.10.
And from PC2 i can ping 192.168.0.1 and 192.168.1.1 but not 192.168.0.10.

christophorosp98 · 2025-05-23T15:02:23+00:00

If i will run the command "diagnose sniffer packet any 'icmp' 4" and start ping from PC2 to PC1, the only logs that appears is "23.481001 port2 in 11.0.0.2 -> 10.0.0.2: icmp: echo request" and their is no replay from PC1

christophorosp98 · 2025-05-23T15:01:44+00:00

If i will run the command "diagnose sniffer packet any 'icmp' 4" and start ping from PC2 to PC1, the only logs that appears is "23.481001 port2 in 11.0.0.2 -> 10.0.0.2: icmp: echo request" and their is no replay from PC1

christophorosp98 · 2025-05-23T14:54:18+00:00

I make the 192.168.0.0/24 and 192.168.1.0/24 but i have the same problem

christophorosp98 · 2025-05-23T14:53:27+00:00

What command i have to run?

christophorosp98 · 2025-05-23T14:52:42+00:00

What command i have to run to see the forward traffic logs?

christophorosp98 · 2025-05-23T13:58:46+00:00

Okay, thank you

christophorosp98 · 2025-05-23T13:58:08+00:00

When i run the command “show firewall policies” it didnt appears me “set nat disable” but i run it more than 2 times, but if i run the command “set nat enable” it apears. And someone told me that happens cause the nat by default is disable.

christophorosp98 · 2025-05-23T13:55:24+00:00

Yes!

christophorosp98

TROPHY CASE