Hey!
hows the summer working for u there lol?

CCIE lab still 3months to get near to say ready.
GSEC should be good as i got to take the course as work study program and Mark hoffman is a great instructor.

Thanks for responding via PM. I will be giving it out on first come first serve

Thanks guys! and you ppl surely are motivating ppl.

Three things to finnish this year.
Python Security tube course.
SANS GSEC 401 exam. gonna do that in 2 weeks or so.
CCIE Security Labs end of the year.

Phew!!

I have one GCIH practice test available. If anyone wants it please PM me with your details and I shall transfer them.

 

just passed my GCIH challenge exam.

Feels great.

Hmm.. interesting... Would putting this sort of content on your blog or site, cause legal issues ?

Anything we say... ethical activities or unethical.... This kid seems to be taking steps to offensive security... Might be a good future.. for the kid.. lol

I am taking the SPSE course and seems this would be a good follow up book.

Not making a argument or anything, just sharing my experience.

-3704 yes is an update to 2827, so it supersedes as such, but still  2827 is used to refer to uRPF as a base. Even CCIE v4 exams still use 2827 lol ... to test on.

- I do agree about ingress and egress as they are basically to block invalid traffic to enter or leave the network respectively, Whatever it maybe Spooing, Smurf etc.

Having ingress we allow certain things to enter our network.

However egress can be used to identify any anomaly. Egress usually let almost all IP traffic out of network (expect sourced from 1918, Bogon,  multicast,  and even some ftp, tftp, protocols).

I like to use egress to find out a sudden spike in outbound bandwidth and random ports sending large traffic; which is useful is end machines have been part of a bonet or a virus. Egress helps to quickly stop these attacks going out of the network. Once things are more clear on analysis, acls close the source of malicious activity can be applied.

For Enterprise or small business sized network, I consider egress as more important to ingress as it serves as filter to drop traffic leaving your network.

Ingress filter ... yes mainly from Spoofing and sort of route leaking etc if seen from a ISP's network view.


you could lookat RFC 2827 which states everything in detail.

Sweet!

Thanks for sharing.

Even I was stuck on Multiprocessing, a admin on SPSE Forums gave me this link to help me understand better:

http://eli.thegreenplace.net/2012/01/16/python-parallelizing-cpu-bound-tasks-with-multiprocessing/

For someone with limited programming skills would have to dig around, maybe because this is focused towards infosec; and hence the basic topics are covered with the required depth to get you started.

As all Security Courses, Vivek does press on digging out more information.

I am happy with the course and worth every penny.

I have taken up the python course SPSE as well guess 3 weeks ago.
I have a bit of python experience from Uni degree etc, but SPSE ofcourse focuses on infosec.

I am in Module 3 now and really going at a slow pace. I also tend to go through this guy on youtube

http://www.youtube.com/course?list=ECEA1FEF17E1E5C0DA

He has made small videos on each important basic topic and fairly good for basics.