Are you ready to explore the world of Virtual Port Channels (VPC) and its components in-depth? DC Lessons presents an engaging course designed for IT professionals, network engineers, and anyone looking to master the intricacies of VPC configurations. https://www.dclessons.com/labconfiguring-vpc-its-components

How does the firewall system protect social media users?

Federal government has announced an enforcement firewall system to protect social media users and block the misleading and fake news on social media. But how could this firewall system protect social media users? Some experts have explained how this system would work. Firewall system is a security system which monitors and controls network traffic. The main purpose of firewall systems is to…

(via Fix Elastic IP Address Could not be Associated)

A secure Internet Gateway is predominently deployed to monitor, track and protect the internet network by preventing suspicious traffic and data from coming in and going out of the corporate network.

Introduction to VPC Elastic Network Interfaces is an elastic network interface (ENI) allows an instance to communicate with other network resources including AWS services, other instances, on-premises servers, and the Internet.

Read More : https://www.info-savvy.com/introduction-to-vpc-elastic-network-interfaces/

The article guides the user on automating infrastructure deployment on AWS using CloudFormation. The template specifically automates the creation of: A Virtual Private Network An Internet Gateway 2 NAT Gateways Routing Tables, Routes, and Route Table Associations Subnets (Private and Public) Prerequisites An AWS account. A user with permissions to create resources on the account. Especially CloudFormation Full access rights. An IDE like visual studio editor to write and edit your scripts is unnecessary but will be convenient. The CloudFormation Template The below script is used to automate the creation of the network infrastructure as explained above. The user can modify the template to specifics to suit his/her preferred needs. The parts to be modified include: The chosen CIDR Blocks for the VPC and Subnets. The subnets to be created. The NAT gateways to be created. The Names and Tags for all the resources created. --- AWSTemplateFormatVersion: "2010-09-09" Description: Template to Create our a test environment Network Architecture with 4 private subnets and 2 public subnets Parameters: VPCBlock: Type: String Description: The CIDR Block for the VPC Default: 192.168.0.0/16 PrivateSubnet01Block: Type: String Description: The CIDR Block for the private subnet 01 Default: 192.168.1.0/26 PrivateSubnet02Block: Type: String Description: The CIDR Block for the private subnet 02 Default: 192.168.1.64/26 PrivateSubnet03Block: Type: String Description: The CIDR Block for the private subnet 03 Default: 192.168.1.128/26 PrivateSubnet04Block: Type: String Description: The CIDR Block for the private subnet 04 Default: 192.168.1.192/26 PublicSubnet01Block: Type: String Description: The CIDR Block for the public subnet 01 Default: 192.168.0.0/28 PublicSubnet02Block: Type: String Description: The CIDR Block for the public subnet 02 Default: 192.168.0.16/28 Resources: VPC: Type: AWS::EC2::VPC Properties: CidrBlock: !Ref VPCBlock EnableDnsHostnames: true EnableDnsSupport: true InstanceTenancy: default Tags: - Key: Name Value: eu-central-1-test-Environment-VPC - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test IGW: Type: AWS::EC2::InternetGateway Properties: Tags: - Key: Name Value: eu-central-1-test-Environment-IGW - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test VPCGatewayAttachment: Type: AWS::EC2::VPCGatewayAttachment Properties: InternetGatewayId: !Ref IGW VpcId: !Ref VPC NatGateway01: DependsOn: - PublicSubnet01 - VPCGatewayAttachment Type: AWS::EC2::NatGateway Properties: AllocationId: eipalloc-*************** SubnetId: !Ref PublicSubnet01 Tags: - Key: Name Value: eu-central-1-test-Environment-NatGateway01 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test NatGateway02: DependsOn: - PublicSubnet02 - VPCGatewayAttachment Type: AWS::EC2::NatGateway Properties: AllocationId: eipalloc-****************** SubnetId: !Ref PublicSubnet02 Tags: - Key: Name Value: eu-central-1-test-Environment-NatGateway02 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PublicRouteTable: Type: AWS::EC2::RouteTable Properties: VpcId: !Ref VPC

Tags: - Key: Name Value: eu-central-1-test-Environment-PublicRouteTable - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PrivateRouteTable01: Type: AWS::EC2::RouteTable Properties: VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateRouteTable01 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PrivateRouteTable02: Type: AWS::EC2::RouteTable Properties: VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateRouteTable02 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PublicRoute: DependsOn: VPCGatewayAttachment Type: AWS::EC2::Route Properties: RouteTableId: !Ref PublicRouteTable DestinationCidrBlock: 0.0.0.0/0 GatewayId: !Ref IGW PrivateRoute01: DependsOn: - VPCGatewayAttachment - NatGateway01 Type: AWS::EC2::Route Properties: RouteTableId: !Ref PrivateRouteTable01 DestinationCidrBlock: 0.0.0.0/0 NatGatewayId: !Ref NatGateway01 PrivateRoute02: DependsOn: - VPCGatewayAttachment - NatGateway02 Type: AWS::EC2::Route Properties: RouteTableId: !Ref PrivateRouteTable02 DestinationCidrBlock: 0.0.0.0/0 NatGatewayId: !Ref NatGateway02 PrivateSubnet01: Type: AWS::EC2::Subnet Properties: AvailabilityZone: eu-central-1a CidrBlock: !Ref PrivateSubnet01Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateSubnet01 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PrivateSubnet02: Type: AWS::EC2::Subnet Properties: AvailabilityZone: eu-central-1b CidrBlock: !Ref PrivateSubnet02Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateSubnet02 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PrivateSubnet03: Type: AWS::EC2::Subnet Properties: AvailabilityZone: eu-central-1a CidrBlock: !Ref PrivateSubnet03Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateSubnet03 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PrivateSubnet04: Type: AWS::EC2::Subnet Properties: AvailabilityZone: eu-central-1b CidrBlock: !Ref PrivateSubnet04Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PrivateSubnet04 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PublicSubnet01: Type: AWS::EC2::Subnet Properties: MapPublicIpOnLaunch: true AvailabilityZone: eu-central-1a CidrBlock: !Ref PublicSubnet01Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PublicSubnet01 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PublicSubnet02: Type: AWS::EC2::Subnet Properties: MapPublicIpOnLaunch: true

AvailabilityZone: eu-central-1b CidrBlock: !Ref PublicSubnet02Block VpcId: !Ref VPC Tags: - Key: Name Value: eu-central-1-test-Environment-PublicSubnet02 - Key: createdBy Value: Maureen Barasa - Key: Project Value: test-blog - Key: Environment Value: test PublicSubnet01RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PublicSubnet01 RouteTableId: !Ref PublicRouteTable PublicSubnet02RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PublicSubnet02 RouteTableId: !Ref PublicRouteTable PrivateSubnet01RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PrivateSubnet01 RouteTableId: !Ref PrivateRouteTable01 PrivateSubnet02RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PrivateSubnet02 RouteTableId: !Ref PrivateRouteTable02 PrivateSubnet03RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PrivateSubnet03 RouteTableId: !Ref PrivateRouteTable01 PrivateSubnet04RouteTableAssociation: Type: AWS::EC2::SubnetRouteTableAssociation Properties: SubnetId: !Ref PrivateSubnet04 RouteTableId: !Ref PrivateRouteTable02 Outputs: PublicSubnet01Id: Description: Public Subnet 01 ID in the VPC Value: !Ref PublicSubnet01 Export: Name: !Sub "$AWS::StackName-PublicSubnet01Id" PublicSubnet02Id: Description: Public Subnet 02 ID in the VPC Value: !Ref PublicSubnet02 Export: Name: !Sub "$AWS::StackName-PublicSubnet02Id" PrivateSubne01tId: Description: Private Subnet 01 ID in the VPC Value: !Ref PrivateSubnet01 Export: Name: !Sub "$AWS::StackName-PrivateSubnetId" PrivateSubne02tId: Description: Private Subnet 02 ID in the VPC Value: !Ref PrivateSubnet02 Export: Name: !Sub "$AWS::StackName-PrivateSubnet02Id" PrivateSubne03tId: Description: Private Subnet 03 ID in the VPC Value: !Ref PrivateSubnet03 Export: Name: !Sub "$AWS::StackName-PrivateSubnet03Id" PrivateSubne04tId: Description: Private Subnet IDs in the VPC Value: !Ref PrivateSubnet04 Export: Name: !Sub "$AWS::StackName-PrivateSubnet04Id" VpcId: Description: The VPC Id Value: !Ref VPC Export: Name: !Sub "$AWS::StackName-VPCID" The Template/Script Explained Our Template has three sections: The Parameter Section: The section allows a user to input custom values for the resources they are creating. It is best for use with dynamic values. Those values that will change regularly on your template. The Resources Section: This section allows the user to define the AWS resources they want to create using the template. The Output Section: The section, contains the names of the created resources. Also, should there be need to export these resources to be used on other stacks, the output section provides this option via the export session. Create a Stack to Execute the Template Once done editing your script/template login to your AWS cloud account. Under services search for CloudFormation. Then on the CloudFormation console, click on create stack as per image below. Create CloudFormation Stack On the drop-down menu, select create stack with new resources. As below image. Create CloudFormation Stack with New Resources On the create stack window, select upload a template. Then, choose the file/script you created in the above section. Click next. Upload The CloudFormation Template The window that opens allows the user to enter the stack name and Template Parameters. Here the User can decide to change the Template default values to their own customized values. When done click next.

Enter Stack Name and Parameters On the subsequent window, configure stack options. This include, the tags, stack policy, rollback configurations, etc. Once done click next. This will open a review window, to check all the configurations done earlier. If the user is satisfied, they can then click on create stack. Also, as the resources are being created using the template, the user can watch the events on the CloudFormation console. See below image. Watch Stack Creation Events When the template creation is complete, you will have all the resources on that Template created. Your Network Architecture is now ready. Important Links https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/parameters-section-structure.html https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cfn-ug.pdf

The merchant swipes the credit cardvia the terminal slot given to the credit card machine

There are numerous credit card terminals operatingin the market today. You have the option of selecting the right one foryourself if it offers you the services that you require. There are times whenthe customers wish to pay for the purchase via credit card. The transactionsmade by the credit or debit card are safe and secure. In fact, it is thefastest and the easiest mode to make payment. The advantages that it bringsalong with itself are above par.Gone are the days when people used to carry currencynotes and make payments via cheque and cash. The credit and debit card is thenew face of currency in the present times. To complete the sale, the creditcard is swiped through the terminal slot on the machine which starts theprocedure of processing payment from the account of the card holder.The procedure of processing payment is very simpleand the safest mode in the present times. 

The merchant swipes the credit cardvia the terminal slot given to the credit card machine. The merchant then asksthe customer to punch in the personal identification numbers on thealphanumeric keypad provided on the machine. Only after the number is punchedin, the payment is processed from the account of the card bearer. There aremany models for FTTH Outdoor Distribution Box Manufacturers the credit card machines available in the market. Certainmodels support an inbuilt printer and there are many that still use a separateprinter attached to the machine to print out two receipts. One of the receiptsis duly signed and handed back to the merchant whereas the other receipt, thecustomer’s copy, is for the card bearer to keep for his reference. 

Thetransaction can be made in a matter of few seconds.Apart from this method of payment where you requirethe physical presence of the card, there is another mode where you do not needthe card to be present to be swiped through the terminal. In this mode ofpayment, the merchant is required to type in the information of the credit cardinto the terminal to route the payment. It is advisable to use the other meansof processing the payment such as making the payment through an internetgateway or to make use of the credit card processing software. These modes aresafe and secure as well as saving you from the hassles of making cash payments.One factor that is of vital concern before you shopfor the credit card terminal is its price. The cost of the credit card terminalvaries from anywhere between $119 and $1000. The range in the cost of the cardterminal is dependent on the fact whether it supports the inbuilt printer ornot. The terminals having a separate printer attached to it cost less than theones coming equipped with inbuilt printers. Another factor that determines theprice of the terminal is the expected life of the credit card terminal and thefeatures present in it. You can connect to the internet and browse variouswebsites selling these machines.

Everyone lost in the great email war

OK. It was never Barcelona versus Real or England v Germany or even on the scale of VHS v Betamax. But there was a battle for the format of emails which raged at the turn of the millennium the outcome of which left us with a sour legacy.

GCHQ are patiently trying to help businesses secure their email and admirably trying to put the genie back in the bottle: https://www.ncsc.gov.uk/blog-post/making-email-mean-something-again 

But it could have all been very different. If only us messaging geeks had won and the unix sysadmins hadn’t been quite so promiscuous. 

X.400 had been the standard for email long before the world wide web was even a thing. It’s rival SMTP/Mime (now just called SMTP) was an upstart. The upstart won over the whole technology stack in the end. Even people who new it was wrong gave in. 

I first used X.400 supporting a messaging system for the NHS. It was mostly data being transferred; pathology results, xrays, prescriptions, purchasing etc. Very few messages left NHSnet. Person to person messages were rare. I later moved onto look after systems for the RAF and crucially a system that ran the financial transactions between European central banks that would later become the Euro currency. 

But X.400 was superb at this job. It was super secure, reliable, trustworthy. SPAM and junk mail was almost impossible. Every step of the message transfer process trusted every other step. X.400 handled attachments superbly, perfect for shuttling documents, financial transactions, images, encrypted messages etc.

SMTP on the other hand was invented to be simple. Simple to setup, simple to send. It was quick and dirty, literally. It was loved by unix system administrators who used it fire status messages around the computers they looked after into a central mailbox. It was designed for text messages only. It was (and still is) awful with attachments.

X.400 imagined a closed world where large central mail servers all trusted each other and where any email sent was guaranteed to be delivered, somehow. SMTP on the other hand was much more open. More like the postal system, where anyone with access to an envelope could post a letter to anyone they knew the address of. X.400 relied on trusted predetermined routes, SMTP on the other hand relied on the new technology of DNS. 

I dug out this old paper http://www.ittoday.info/AIMS/DCM/52-30-01.PDF which explains the differences in more detail. It concludes that X.400 and SMTP will converge into one format at some point. The author couldn’t have been more wrong.

At the same time, those of us in the front line waged a battle on forums, at the coffee machine; defending X.400 against the SMTP onslaught. 

I knew we would lose. For the same reason that VHS beat Betamax. VHS won out because it was much cheaper, although massively technically inferior. Betamax in fact lived on as the video format of choice for professionals until very recently.

X.400 was more expensive to manage. It needed skilled people. It had a much worse issue for users though. And this is what killed it. It didn’t matter how many times we tried to explain that no-one actually needed to know anyone else’s email address because we would all be using directories; it was the format of the address which killed it.

the very simplest email address you could have would be something like:

C=UK;A= ;P=gmail;O=hillohr;S=Ohr;G=Martin

It could be much much worse depending on how your company had setup it’s mail. Worse still, if you wanted to send an email to someone who only had an SMTP email address on the internet (and there were quite a few people at the time)

their address to you would be something like: 

C=UK;A= ;P=gmail;o=goole;cn=internetgateway;RFC-822=J.Bloggs(a)hotmail.com

while your address to them would be something even worse:

‘G=Martin/S=Ohr/O=hillohr/P=gmail/A= /C=UK’@google.com

it hardly trips off the tongue.

Whereas SMTP had the email address format we all know and love now.

The battles raged. X.400 was the backbone of every ‘proper’ messaging system. Microsoft’s Exchange, the worlds most successful email server seemed to have it cracked. It used X.400 in the background but exposed a lovely easy to use directory to users and was happy to accept the SMTP address format for emailing people outside the organisation.

“There” we said. That’s how you do it. The friendly email address, with the rock solid technology underneath. But website developers were having none of it. They wanted their webservers to be a able to ping out an email. Easy as pie. Without having to worry about the messy business of knowing the password for a central mail server, in fact without having to worry about knowing what their organisations webserver was called. They didn’t want to talk to the annoying messaging geeks. And they wanted to have the sender’s address as anything they cared to configure. 

They wanted to eat their cake and have it too.

But all this openness was about to bring down a storm, or maybe an avalanche. 

You probably don’t get that many penis enlargement emails any more. But that’s because you company, or google or whoever it is you trust, is already filtering out at least 80% of your email. They invest millions of pounds per day in effort holding back the tide. It’s never got any less.

In the early days it was good for messaging geeks. Sure we weren’t sorting out the shared password between MTAs anymore. But we were gainfully employed trying to stop spam, and porn and viruses.

SMTP’s open system and it’s terrible handling of attachments made it so easy. Spoofed emails were until a couple of years ago trivial to create. Me and my colleagues used to send them for fun on a rare quiet afternoon. But they are still one of the main sources of phishing attacks. Likewise the way that SMTP handles attachments is to convert them to text. It’s very messy and never been properly fixed. It’s a ripe area for malicious code because the attachments and message text are only separated by carriage returns. It’s trivially easy to make an executable look harmless. 

Even with the best efforts of the current technology SPAM is rife, spoofed emails are very common and viruses make up 50% of email traffic. None of these were possible with X.400

GCHQ and others are slowly trying to fix. If only we could turn back time. Maybe we would have battled a bit harder.

Interview Question- How to identify Public and Private Subnet in AWS VPC | NAT vs INTERNET GW http://ehelpdesk.tk/wp-content/uploads/2020/02/logo-header.png [ad_1] In this video, I am going to exp... #aws #awscertification #awscertifiedcloudpractitioner #awscertifieddeveloper #awscertifiedsolutionsarchitect #awscertifiedsysopsadministrator #awscloudpractitioner #awssolutionarchitectcertification #awstutorialforbeginners #ciscoccna #comptiaa #comptianetwork #comptiasecurity #cybersecurity #ethicalhacking #howtoidentifyprivateandpublicsubnet #internetgateway #it #kubernetes #linux #microsoftaz-900 #microsoftazure #natgateway #networksecurity #privatesubnet #publicsubnet #routetable #servergyanawsinterviewquestions #servergyan #servergyanaws #software #vpc #windowsserver

Cloud-Based Secure Internet Platform provides comprehensive domain filtering, blocks malicious websites, and applies a uniform browsing policy for your enterprise.

Comodo Dome offers Secure Internet Gateway the best-in-class security suite with functionalities to identify and prevent all malware types from accessing your network. The prevention mechanism analyzes the unknown files when they are delivered to the users. Comodo Dome Secure Internet Gateway uses a comprehensive technology that is flexible, end-user friendly and easy to set up.

The Comodo Dome #SecureInternetGateway Solution solves this problem using a default deny approach that doesn not affect usability.

Comodo Dome Secure Internet Gateway

Comodo Dome Secure Internet Gateway allows businesses of all size to efficiently monitor, control and protect user web traffic. With enhanced visibility and custom reporting, companies can observe all user web traffic and potential security threats in a single user interface  24/7/365. Stay protected!

https://cdome.comodo.com/secure-internet-gateway.php?afid=10110&utm_source=googleplus&utm_medium=referral&utm_campaign=lookup

AWS Certification Training Free AWS Tutorials: How to create a Virtual Private Cloud (VPC) on AWS http://ehelpdesk.tk/wp-content/uploads/2020/02/logo-header.png [ad_1] In this FREE AWS video tutorial,... #amazonvirtualprivatenetwork #amazonvpc #amazonwebservices #aws #awsamazon #awsbasicstutorial #awscertification #awscertified #awscertifiedcloudpractitioner #awscertifieddeveloper #awscertifiedsolutionsarchitect #awscertifiedsysopsadministrator #awscloud #awscloudcomputing #awsfree #awsfreetutorial #awshandsoncourse #awstraining #awstrainingonline #awsvirtualprivatecloud #awsvpc #awsvpcnetworking #certifiedsolutionsarchitectassociate #ciscoccna #cloudcomputing #cloudtechnology #comptiaa #comptianetwork #comptiasecurity #cybersecurity #ec2instances #ethicalhacking #internetgateway #it #kubernetes #linux #microsoftaz-900 #microsoftazure #networksecurity #software #solutionsarchitect #virtualprivatecloud #windowsserver

AWS - VPC, Subnets, Route Tables, Internet & NAT Gateways | Concept | Detail Demo http://ehelpdesk.tk/wp-content/uploads/2020/02/logo-header.png [ad_1] LGTICW Video will help us to und... #aws #awscertification #awscertifiedcloudpractitioner #awscertifieddeveloper #awscertifiedsolutionsarchitect #awscertifiedsysopsadministrator #awsigw #awsnat #awsvpc #awsvpcandnetworking #awsvpcandsubnetsexplained #awsvpcarchitecture #awsvpcbuild #awsvpccidr #awsvpccompletetutorial #awsvpccomponents #awsvpcconcepts #awsvpccreation #awsvpcdeepdive #awsvpcdesign #awsvpcessentials #awsvpcexplanation #awsvpctutorialforbeginners #awswhatisvpc #ciscoccna #comptiaa #comptianetwork #comptiasecurity #cybersecurity #eip #elasticipaddress #ethicalhacking #internetgateway #it #kubernetes #linux #microsoftaz-900 #microsoftazure #natgateway #networksecurity #routetables #software #subnets #virtualprivatecloud #vpc #windowsserver

The internet is a dangerous place with all types on online threats. To stay protected from these threats get the best protection tool called as cdome secure internet gateway