I wrote a previous blog entry that gave information creating a self-signed SSL certificate with Apache. I recently also had to create a self-signed SSL certificate for Microsoft IIS. It turns out that this is really easy.

Chesapeake Netcraftsmen hosts the monthly Cisco Miad-Atlantic Users Group (C-MUG) meeting. Last month we had a presentation on NAC Architectures and on Troubleshooting ASA. You can view the presentation slides at the  C-MUG Archive. Posted by Rob Chee

The Cisco VPN client is the client side application used to encrypt traffic from an end user's computer to the company network. IPSec is used to encrypt the traffic. When using standard IPSec, IKE is used for the key negotiation and IPSec to encrypt the data. IKE uses UDP port…

On Jan 15 and 16, Chesapeake Netcraftsmen will be hosting the Cisco Mid-Atlantic User Group meeting. For more details, go to our Cisco Mid-Atlantic User Group page.Below are the speakers and topics:

Microsoft Windows Server Update Services (WSUS) provides a method for managing Microsoft updates for company computers. Within a company, there are one or more WSUS servers that gets updates from Microsoft. Computers, within the company network, check in with this WSUS server to get their Microsoft updates.

This is an example of how to handle a tricky boolean expression with NAC Appliance rules. I'll lay out a scenario and focus on the rule creation. I'll cover the other aspects in future blog posts.

It looks like Cisco has been fixing NAT issues with DMVPN. They fixed the NAT issue for spokes talking to the hub using NAT traversal. This is the same method that VPN clients use. It uses UDP port 4500 to send the IPSec traffic instead of IP protocol 50 (ESP) and IP protocol 51 (AH).