Build a network router on Linux
Zebra is open source TCP/IP routing software that is similar to
Cisco's Internetworking Operating System (IOS). Flexible and
powerful, it can handle routing protocols such as Routing
Information Protocol (RIP), Open Shortest Path First (OSPF),
Border Gateway Protocol (BGP), and all of their various
flavors. This article shows how our authors set up Zebra and
used it to manage routes dynamically in conjunction with real
Cisco hardware.
Dynamic Address Assignment
Are you still assigning static IP addresses on your network? This article explains how dynamic IP address assignment works and helps you understand if it is right for your network.
Dynamic iptables firewalls
Firewalls are good and fun, but what do you do when you need to
make rapid, complex changes to your firewall rules? Easy. Use
Daniel Robbins' dynamic firewall scripts that are demonstrated
in this article. You can use these scripts to increase your
network security and responsiveness, and to inspire your own
creative designs.
IP Packets Revealed
In last week's article, we used the tcpdump utility to capture the packets involved in a telnet session and then examined the resulting dump file. This week, I'd like to continue through the output of this file to see what else we can discover regarding a typical TCP connection.
Network Address Translators
This article discusses Network Address Translators (NATs), how they are used to multiplex a single IP address across multiple machines, and how NATs can be used effectively in a gaming environment.
Networking with TCP/IP
This article explains the basics of TCP/IP networking and gives examples of how to use it on FreeBSD. This also makes great reading for Linux and other operating systems that utilize the TCP/IP networking stack.
Optimize TCP/IP performance by a factor of four
One of the key components in the TCP/IP protocol stack is the
checksum computation, which ensures the integrity of the
transferred data. This computation can be greatly accelerated
with the use of single instruction, multiple data (SIMD) units
prevalent in state-of-the-art processors. This article analyzes
a former vectorization effort, shows how it can be improved
upon, and then enhances it further.
Predictable Initial Sequence Numbers
This article shows us predictable initial sequence number attacks; a format string vulnerability in minicom; a buffer overflow in mailx; a new version of GnuPG; and problems in SAP R/3 demo, Bugzilla, and Red Hat Linux 7.1's mount package.
Proxy Terminology 101
If you've ever accessed the Internet from an office
environment, chances are your communications passed through a
proxy. In the next few articles, I'll discuss the advantages of
using a proxy and demonstrate the configuration of several
proxies available from FreeBSD's ports collection. You may not
already know what a proxy does.
Tapping on the walls
In last month's column, we looked at how services run on various Unix ports, and how the superserver, inetd, listens on behalf of many other network services. I advocated running only the network services that you require; this creates fewer opportunities for someone to compromise your systems.
TCP Tuning and Network Troubleshooting
Information doesn't travel across networks in one big chunk--it goes in little packets wrapped in packets wrapped in packets. Sure, you know that, but did you know that a bit of measuring and a bit of tweaking can improve your networking performance by two orders of magnitude? Brian Tierney shows how.
VPNs and IPSec Demystified
So far in the cryptosystems series, we have taken a look at
general cryptographic terminology and the SSH cryptosystem
(including configuration). In today's article, I'll start off
with how VPNs work and then concentrate on the IPSec standard.
Computer Graphics World Computer graphics professionals turn to Computer Graphics World to them decide which computer graphics products to purchase to make their job more cost effective! ...
subscribe now
Files
