|
I've recently passed the ISSAP; for no other reason then to annoy self righteous know nothing CISSPs.
|
#
¿
Dec 15, 2012 17:36
|
|
|
|
| # ¿ Apr 25, 2024 04:59 |
|
|
CrazyLittle posted:This... how is this even possible? Going into management and getting stale and out of practice over time.
|
|
#
¿
Dec 28, 2012 02:48
|
|
|
psydude posted:Who the gently caress still uses T568A. Is there some new pinout sweeping the nation?
|
|
#
¿
Jan 13, 2013 02:32
|
|
|
Back when I did lan cabling everything we installed was B. However, every yellow cat 5 cable I've found packed with a Cisco router has been A. Also, go look at a crossever cable sometime, one end is A, one end is B. Point is, EIA/TIA 568A & B are both reasonable pinouts to be asked about on a test.
|
|
#
¿
Jan 15, 2013 03:55
|
|
|
doomisland posted:I was more commenting on people still saying 'Class A/B/C' which no one uses anymore and haven't forever. It's only use is for understanding legacy networking. Keep on using /XX for subnets. People conflate the two all the time. A common misconception is that anything/8 is a class A; anything /16 is a class B; and that anything/24 is a class C. Which is not the case.
|
|
#
¿
Jan 26, 2013 20:43
|
|
|
Anyone here ever take the wireshark certification (WCNA)? I've been thinking about doing it just because it's something different.
|
|
#
¿
May 8, 2013 12:42
|
|
|
What VSAT system are you using that speaks frame relay?
|
|
#
¿
Jun 4, 2013 12:30
|
|
|
XakEp posted:Got the email, confirmed the pass. Officially OSCP, now to CCIE R&S written. Belated congratulations on this; the offensive security certs are no joke. Did you do any other security stuff prior to the OSCP such as the GPEN? My problem with a lot of the high end security stuff like pen testing, or forensics, or malware analysis is that it requires extensive host level knowledge. I've been in R/S for so long I have no idea how that world works. I'd be interested to know how you are maintaining expertise in such divergent fields.
|
|
#
¿
Jun 20, 2013 14:02
|
|
|
Moey posted:
This is a really obtusely written question.
|
|
#
¿
Jul 4, 2013 02:40
|
|
|
Passed the JNCIA-JUNOS today.
|
|
#
¿
Aug 10, 2013 21:11
|
|
|
CloFan posted:Hey dudes! I work InfoSec at a small bank, and one of the things I mentioned in my interview (and bosses agreed with) was that I wanted to get some certificates under my belt. Here we are a year later-- I'm due for a raise at the end of this month, but I'm going to defer* and ask if in the mean time they'll pay for me to get A+ and S+. I believe they will; after that, I'd like to go for N+ because I really enjoy networking more than security, but I'm not sure if they'd pay for that since it's out of my field. I'm reading through the thread to learn a little more, but I just wanted to post and say I'm somewhat confused that you're in an infosec position and looking at entry level generalist certs. What kind of job duties do you have?
|
|
#
¿
Aug 13, 2013 17:54
|
|
.
|
Protokoll posted:I need to draw up a development plan and have my director look it over, but he basically said don't go for your CCIE it's not worth it, so I think I know what he will want me to do. Your director either knows nothing or is actively misleading you.
|
|
#
¿
Aug 14, 2013 02:02
|
|
|
Anyone know of any good sources for non classroom Juniper training material similar to what IP Expert or INE has for Cisco? Thus far I've found: http://www.bowlercbtlabs.com/products/juniper-lab-cbt-video-series-1 https://networkfaculty.com/en/courses https://www.proteus.net/books/jncie-sp-preparation-workbook http://www.cbtnuggets.com/it-training-videos/juniper
|
|
#
¿
Sep 26, 2013 12:04
|
|
|
I've got 15 years Cisco experience, and thus far Junos makes my head hurt. It seems like Juniper went out of their way to break all conventions established by Cisco just so they could have their own identity as Not Cisco. For instance, in Junos the configuration commands are different than how the config is displayed. You can't copy/paste show config into another device as config changes like you can on Cisco. You either have to change the way the config is displayed, or change the way config commands are accepted. config command vs show config code:code:code:
|
|
#
¿
Sep 26, 2013 16:28
|
|
|
Yeah, there are some nice features in JunOS like commit confirm. However it also contains dumb things like having to configure my own BGP AS number someplace outside the BGP config hierarchy for no clear reason.
|
|
#
¿
Sep 26, 2013 16:47
|
|
|
BigT posted:I agree with the CCENT, in fact, if i see that or Network+ I dive in. The reason i recommend Net+ over CCNET is because the future is commodity hardware with open source software. This is nuts for two reasons: 1. Good luck with a career in network infrastructure if you're going to exclude anyone who makes non open source products: Cisco, Juniper, Extreme, Dell, HP, Palo Alto, Riverbed, F5, etc. 2. The vast majority of the functionality from those vendors equipment is implementing open standards from the IETF and IEEE.
|
|
#
¿
Oct 26, 2013 21:37
|
|
|
The asdm gui is on the test. Which is annoying.
|
|
#
¿
Nov 6, 2013 19:59
|
|
|
ICE UP SON posted:I didn't see GSEC mentioned in the OP for security. What do you security dudes think? I'm scheduled to take GSEC 401 boot camp next month with cert - coming from a sec admin background. It's a reasonably respectable entry-ish level cert, and it's on the DoD list. It will cover networking, windows, and linux in a more technical fashion then the CISSP. It's somewhat overview level though, as SANS offers more in depth courses on all of those topics. I suppose it just comes down to what your goals are vs your current skill level vs your job responsibilities.
|
|
#
¿
Feb 20, 2014 14:40
|
|
|
The SEC 401 test isn't that bad. It's just irritatingly broad with network, linux, and windows content. Aside from the items you mentioned you may want to print out the help or man page for a few things: net on windows netstat on windows netstat on linux nmap netcat tcpdump tshark list of common wireshark display filters list of port numbers/services I'm probably running a lot of the 401/503/504 prep I did all together though. You'll know where you stand when you take your first practice test.
|
|
#
¿
Mar 28, 2014 17:45
|
|
|
I passed the GIAC GCIA. It was annoying.
|
|
#
¿
Apr 4, 2014 15:01
|
|
|
Paperwork obsessed ones.
|
|
#
¿
Jun 15, 2014 15:12
|
|
|
XakEp posted:Got the email, officially Offsec OSCE certified. Man, my brain hurts. It was definitely worth it, but it took a lot out of me. If anyone has any questions, feel free to ask. Does anyone know how the OSCP/OSCE compares to the GSE? Both in terms of difficulty and blueprint.
|
|
#
¿
Jun 27, 2014 15:38
|
|
|
GobiasIndustries posted:A friend in an entry-level position with an IT company is trying to explain to me that MAC addresses are irrelevant and shouldn't be studied anymore, as we're studying for our CCENT/CCNA. Don't listen to people with entry level knowledge. Also, there are many people with several years of experience still operating with entry level knowledge.
|
|
#
¿
Jul 31, 2014 12:59
|
|
|
I've taken 401, 502, 503, 504, and 572. 504 is one day of IR process, then four days of pen test light. John Strand is pretty good with this class, but depending on your goals 511 or 560 might be better. 503 is about as intimate as you'll ever get with packet headers. Lots of tcpdump, wireshark, and snort. Mike Poor or Johannes Ulrich would be good for this class. 502 seemed to be mostly a rehash of 504 and 503 content. The unique content in this course is IP tables rules.
|
|
#
¿
Aug 12, 2014 23:40
|
|
|
Passed CCIE-RS written this weekend. Ugh...v5.
|
|
#
¿
Sep 2, 2014 21:37
|
|
|
It was just the written.
|
|
#
¿
Sep 2, 2014 21:50
|
|
|
psydude posted:Now that I'm getting heavily into the security field, I'm wondering if Cisco certifications are even worth pursuing anymore outside of a career-broadening fashion (which pretty much stops at the CCNP level). Depends on what aspect of security you're doing. The networking knowledge you'll get from Cisco certs will certainly be of value for layer 2 hardening, firewalls, vpns, ids/ips, full packet capture, and network forensics. It's not going to help with host level forensics on a windows box, or reverse engineering malware though. The aforementioned SANs roadmap is a good thing to look at.
|
|
#
¿
Sep 3, 2014 12:51
|
|
|
For reasons I don't fully remember I did the SANS GIAC GPPA.
|
|
#
¿
Sep 26, 2014 19:45
|
|
|
GPPA turned out to have a lot of overlap with the GCIH and GCIA material.
|
|
#
¿
Sep 27, 2014 03:19
|
|
|
They have offices in Herndon, close enough.
|
|
#
¿
Oct 4, 2014 00:44
|
|
|
I am now a JNCIS-ENT. Yay, or something.
|
|
#
¿
Dec 15, 2014 13:27
|
|
|
Wheeee...I have a JNCIS-SP now.
|
|
#
¿
Feb 10, 2015 12:57
|
|
|
If you can do the OSCP you should be able to sleep through the CISSP.
|
|
#
¿
Feb 20, 2015 13:40
|
|
|
Dr. Arbitrary posted:Are there other security certifications that are valued? The SANS GIAC stuff is pretty good. Cisco & Juniper have their own security tracks. Actually, pretty much any vendor will have a cert for their own products. Find something apropos to your area of interest and go for it.
|
|
#
¿
Mar 14, 2015 17:51
|
|
|
I have a CCIE R/S; I passed the v4 lab in 2010. I have no idea if that IP Expert topology is representative of the current lab or not. The troubleshooting section I had in V4 was about 30 routers, but the build portion was still just 6 routers, 4 switches, 3 backbone devices. The number of devices in troubleshooting actually made things easier, the issue tickets all concerned different sets of routers with no inter-dependencies. INE makes a lot of good study material. For a lab I'd suggest looking into VIRL, it fills in the layer 2 stuff that GNS3 won't do. Additionally it allows running IOS-XE, IOS-XR, and ASA (not necessarily relevant to the R/S material though).
|
|
#
¿
May 4, 2015 19:53
|
|
|
Ahdinko posted:Will VIRL do all the stuff I need? I remember looking at it when it came out last year and being a bit disappointed but to be honest I haven't read much on it since. I've got switches coming out of my ears, 10+ 3560's I can play with here, but routers are where I might come up short. I've got probably 5x 881/887/891's, 2x 1841's and 2 x 1941's. I've got two 2900's of some model that I can't think of right now, a 3925E and a 4451-x. The latest release of VIRL added the layer 2 & ASA VM images. Physical gear is great if you have it, depends on what you want to do. Physically mirroring an IPExpert or INE lab topology may still involve finding different interfaces, or having to adapt to different interface numbers from what is in the vendor initial configs. INE already has adapted their CCIE RS v5 workbook topology to VIRL: http://blog.ine.com/2014/12/04/using-cisco-virl-for-ccie-preparation/ http://ieoc.com/forums/t/31223.aspx
|
|
#
¿
May 5, 2015 14:45
|
|
|
psydude posted:That does not, however, preclude you from having to know the poo poo in a job interview. Trick question, CISSPs don't know poo poo. I'll be here all week, try the veal!
|
|
#
¿
May 13, 2015 16:00
|
|
|
Take this also: -man page for tcpdump -man page for snort -man page for whatever netflow application they covered (don't remember what it was) -list of ip protocol numbers in decimal, hex, and binary -as many tcpdump & bpf filter cheat sheets as you can find -ip/tcp/udp header diagrams, fields, bits, etc http://packetlife.net/media/library/12/tcpdump.pdf http://packetlife.net/media/library/13/Wireshark_Display_Filters.pdf http://packetlife.net/media/library/23/common_ports.pdf http://taviso.decsystem.org/files/tcpdump_quickref.pdf http://biot.com/capstats/bpf.html https://ixquick-proxy.com/do/spg/sh...2fa0330d0a56aa2
|
|
#
¿
Aug 23, 2015 17:33
|
|
|
I don't recall the test being radically different in tone or difficulty vs the practice tests. You should have two practice attempts. Make use of both of them with the notes, index, and whatever supplemental materials you choose to print out. I took the GCIA in early 2014 and passed with 90% while looking up a lot of the stuff in my notes/book. It's entirely doable.
|
|
#
¿
Aug 23, 2015 21:44
|
|
|
|
| # ¿ Apr 25, 2024 04:59 |
|
|
I thought the CCNP Security was just revamped? The current version has an entire test dedicated to ISE.
|
|
#
¿
Oct 16, 2015 19:01
|
|