Whole idea for that article came from real environment. At home I have DrayTek Vigor 2850n as my broadband router (and in fact it is really nice piece of equipment). Same time I’m using some Cisco equipment located in remote Lab for testing purposes. Remote Lab is connected to Intrenet and before to get access to devices and systems located there I was using EzVPN. However, as Lab has Cisco ISR as main router I thought, why not to establish L2L IPsec between my home network and remote Lab. Now, question how to do that. I have DrayTek on one end and Cisco ISR on the other. After few attempts, mis-configurations and troubleshooting it did work quite well in fact. So, here it is.

Here is what needs to be achieved:

Equipment available:

• Cisco ISR 2811 – on the left side of the diagram – internal network 10.255.0.0/24
• DrayTek Vigor 2850n – on the right side of the diagram – internal network 10.130.1.0/24

Goal:

• Establish IPsec VPN Tunnel between Cisco and DrayTek to make communication available between 10.255.0.0/24 and 10.130.1.0/24.

(more…)

Recently submitted to BlackBerry AppWorld new application. This time small app which allows to decrypt enc_GroupPwd parameter from Cisco VPN Profile (PCF file).

Awaiting for application approval.. once approved I will add button with link to BlackBerry AppWorld store.

New application will be available for free 🙂

UPDATE: Unfortunatelly application has not been approved to be published in AppWorld without any reasonable explanation.

(more…)

Another small app written in Adobe Flex. This time to decrypt passwords stored in Cisco VPN PCF file. Just simply copy enc_GroupPwd or enc_UserPassword to decryptor and click Decrypt button 🙂

Using this small app you can decode:

• enc_GroupPwd – VPN group password from PCF file
• enc_UserPassword – VPN user password from PCF file

For that small webapp to work Adobe Flash Player is required.

(more…)

Finally it happened that I commited my first application for BlackBerry PlayBook. Application I’ve created decodes Type 7 password which is stored in Cisco devices configuration. It is not complicated application and has splash screen and one application screen, but it does what I expected this piece of software to do 🙂

Using this small app you can decode:

• wireless keys fro Cisco access points,
• RADIUS/TACACS shared secrets
• NTP authentication keys
• Enable passwords (NOT enable secrets, which are stored using MD5).

I hope to develop this application and add some more decryption abilities for Cisco devices (like group password from PCF file for example).

Here are screenshots of my first app 🙂

(more…)

As the effect of my attempts to produce some small applications in Adobe Flex, I commited decryptor for type 7 passwords stored on Cisco devices.

Using this small app you can decode:

• wireless keys fro Cisco access points,
• RADIUS/TACACS shared secrets
• NTP authentication keys
• Enable passwords (NOT enable secrets, which are stored using MD5).

(more…)