Archive for the ‘Network Security’ Category

ThePhig, SecureWorks, Atlanta, and all that jazz…

Posted on May 29th, 2010 by Ryan Reed

It's been a while but that's alright. I just like to take my time when updating. So, what's been going on in Reed's life? A few things here and there. Let's kick it off


ThePhig
Recently, you may remember that I released ThePhig to the world. Well, it was more like a small release to whoever happened to come across it. The project started as a small gallery script I created for my own personal use but as time went on, I kept adding features such as Google Maps integration, database support, etc. I even had a coworkers testing various iterations.

Fast forward to now and I'm finally up to version 3.0.7 with a relatively major update coming soon enough. I submitted ThePhig to 2 different script based sites, HostScripts and Script & Style. I wanted to help anyone out that may have wanted a relatively simple gallery.

So, how has ThePhig been since release? As of writing this post, the site has had 4181 hits, averaging 134.87 hits per day. ThePhig has been downloaded a total of 726 time (all versions) with the latest version reaching 341 downloads. There have also been a few link backs from sites that I never submitted the script to, for instance W3Avenue, Smashing Magazine's recent Twitter post, and even a few Digg submissions. I'm pretty happy with the current exposure.

One also nice little plus to the release of ThePhig was pushing my webpage, ryanreed.NET toward the top of Google when searching for searching for Ryan Reed. This to me is awesome considering how generic my name kind of is. I definitely can't complain about that.


SecureWorks and Atlanta
I recently was promoted from a Security Specialist to Security Analyst. Pretty soon, the titles will be restructured so I'm more likely to be Security Engineer pretty soon. I definitely prefer the Engineer title. Sounds a bit more professional to me. I was considering making a move to another team, as a Support Engineer for one of our dedicated teams or a Security Engineer working with the Sherlock Security Platform but decided against either for the moment.

What is in the works, though, is a move to the Atlanta office while continuing to work on the TeraGuard system. I do this mostly to live closer to my family in the south but also because I really need a change of pace from Providence or Connecticut. I should be making the move in late July or early August. No date has been set in stone quite yet but my lease is up in Providence at the end of August so I'd like to be out well before then.


That pretty much sums thing up in a nutshell. Nothing too exciting but I am pretty proud of how ThePhig is currently going and extremely excited for the Atlanta move.

No Comments »

European Vacation Incoming

Posted on December 29th, 2009 by Ryan Reed

I've been thinking about it a lot and would really like to take a vacation to Europe while I'm still this dashing, young guy. I mentioned this to one of my friends at work, Chris Teekema (Teek for short). Teek has family that actually lives in Amsterdam and said that he was looking to take a trip out there sometime this year. Definitely an opportunity has arisen.

Teek mentioned his granparents would likely allow a few of us to stay at their place in the city for free, which would be awesome. So now we're planning a trip to out to Amsterdam for sometime in late March, early April. I know it is going to be a tad pricey but I really think it'll be well worth it and an awesome experience.

So yeah, that's the plan. Should be fun if we follow through with it. Updates to come in the near future.

Note: The Gallery is back up. Yay...

No Comments »

Pictures from Knoxville

Posted on December 26th, 2009 by Ryan Reed

So, just a few pictures from my vacation to Knoxville this year. Nothing too exciting but I like how some of these turned out.

DSC_0531 DSC_0605 DSC_0608 DSC_0628

DSC_0540 DSC_0610

I am a tad disappointed in the bird picture. The shot could have been a lot better but the lighting was pretty crappy, I wasn't really ready for it, and I didn't really mess with the settings enough on the camera. Next time I'm in Knoxville, I hope to grab a better shot.

No Comments »

Network Specialist Resume

Posted on July 13th, 2009 by Ryan Reed

Just got around to updating the 'ol resume and Monster.com profile. I need to update the resume a tiny bit more to include the new company, SecureWorks as the sale has been completed.

I also need to export the new resume to pdf. Ah, no rush, I suppose.

No Comments »

CCSA – Checkpoint Security Administration Certification

Posted on June 19th, 2009 by Ryan Reed

Quick update. I passed my CCSA exam today. 3 certs this year and counting. CCNA coming very soon.

No Comments »

JNCIA Certification

Posted on June 8th, 2009 by Ryan Reed

Quick update, just got my JNCIA certification. Wasn't as bad as I thought it would be.

No Comments »

Pix/ASA Site-to-Site VPN Generator

Posted on January 26th, 2009 by Ryan Reed

I decided that after working on various Pix and ASA firewalls, that it would be nice to have a VPN generator that could easily output the code needed to setup a site to site VPN. Apparently, someone at the 'ol workplace had created one but I only realized it after I ha mostly created the script. Ah well, not a huge deal.

So what are some of the feature of the generator?

  • Has the ability to generate version 6 or 7/8 code for VPNs
  • If not pre-shared key is entered, a random key will be generated
  • The information stays on the page and is not posted. All the processing is done on the client's computer so that the sensitive information isn't transmitted over the internet

There are a few things this script does not do

  • It will not create the access-lists required (for the encryption domains)
  • The NONAT will not be generated (leaves it open to the user to decide if NONATting is desired, etc)
  • Has not been completely tested as of yet (syntax wise)

Because I'm all for openness, I'm releasing the script under the GPL. Take it, enjoy it. A small request, if you modify the code, let me know. I'm a curious one.

Pix/ASA Site-to-Site VPN Generator

No Comments »

Comptia Network+

Posted on January 22nd, 2009 by Ryan Reed

Just a quick update. I went for my Network+ certification, my first so far. I passed with a 600. Minimum required score was a 554. Pretty happy with how it went. Next up.... Security+ or a Juniper cert. Not positive yet but I will start studying soon enough.

No Comments »

Juniper Netscreens..

Posted on January 10th, 2009 by Ryan Reed

I have to say that of the three main firewalls I work with on a daily basis, the Netscreen is one of the best out there. All 3 firewalls have their pros and cons:

Checkpoint

  • Pros
  • Easy to use and understand
  • The gui is built for ease of use
  • tcpdump is one of my favorite tools to sniff traffic and it works well the Nokias and Crossbeams
  • Cons
  • The log viewer seems to "lie" sometimes, not showing the proper rule numbers at times
  • Editing rules via CLI is extremely tough

Cisco Pix/ASA

  • Pros
  • Fast
  • Relatively easy to use
  • Lots of documentation online and on Cisco's website for many things
  • Cons
  • I'm not a personal fan of the capture command, although it does work
  • Trace routes are not stateful and only the newer versions can actually perform a virtual inspection of those packets

Juniper Netscreen's are excellent firewalls. They tend to be extremely quick and the commands are straight forward. The log viewing on the firewall is excellent and gives a good amount of information. The only issue I have with these firewalls is the gui, the Netscreen Manager. NSM has some excellent features and the gui tends to be relatively easy. Unfortunately it's programmed in Java. The app can be extremely slow and unresponsive. When running NSM on the local machine, the software has a tendency to max the cpu usage for a while. The newest NSM software version I've been using (can't recall the exact version, sorry) has a memory leak that causes the application to eat up memory until all the free memory on the machine is being used by NSM. The only way to solve the issue is to minimize the app for a minute or to close NSM and reopen it.

I should reiterate the point that I do like Netscreens. I even own a Netscreen 5xp for my own home use. I do wish that they would work on improving the Netscreen Manager. I'm not a fan of using Java for the app. If they ever overhaul the application, I think it could be the best firewall on the market. I would still recommend for small offices and home use the Netscreen 5XP and for the larger business/organizations, take a look at their higher end products.

3 Comments »