How to configure an L2TP/IPsec server behind NAT

INTRODUCTION Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base: 322756 How to back up and restore the registry in Windows By default, Windows Vista and the Windows Server 2008 operating system do not support Internet Protocol security (IPsec) network address translation (NAT) Traversal (NAT-T) security associations to servers that are located behind a NAT device. Therefore, if the virtual private network (VPN) server is behind a NAT device, a Windows Vista-based VPN client computer or a Windows Server 2008-based VPN client computer cannot make a Layer Two...
Read More

NTLM Windows Credential Leak

Understanding the Windows Credential Leak Flaw and How to Prevent It By Lawrence Abrams August 5, 2016 12:48 PM 34 This week there has been a lot of news about a flaw in Windows that could be used by web sites to easily gain access to a visitor's Windows login name and password. When I tested this flaw it was downright scary.  Using a test site for this flaw, the site was able to get my test Microsoft Account login name and the hash of its password in a few seconds.  Then it took the site less than 30 seconds to crack the password! What is even scarier, is that this flaw is not new and was discovered in March 1997! Test shows my account info and PasswordYes. I changed the password already. News about this flaw was recently reported again by VPN company Perfect Private and by ValdikSS, who is affiliated with the Russian...
Read More

Disable NetBIOS and SMB to protect public Web servers – TechRepublic

techrepublic.com Disable NetBIOS and SMB to protect public Web servers - TechRepublic Mike Mullins Serving data to users outside of an internal network, public Web servers are typically the first point of contact for an external attack. In addition, internal networking ports are the most revealing and most often attacked ports on a server. That's why you need to make sure you've disabled the services that are specifically for intranets. The two biggest culprits that you need to worry about are the Server Message Block (SMB) protocol and NetBIOS over TCP/IP. Both services can reveal a wealth of security information and are reoccurring vectors for hacks and attacks. They're unnecessary for the operation of a public Web server, and you should take steps to shut down both services on these servers. Disable NetBIOS NetBIOS was once a useful protocol developed for nonroutable LANs. In this case, it acts as a session-layer protocol transported over TCP/IP to provide name resolution to...
Read More

Nslookup

Nslookup Updated: April 17, 2012 Applies To: Windows Server 2003, Windows Vista, Windows Server 2008, Windows Server 2003 R2, Windows Server 2008 R2, Windows Server 2012, Windows Server 2003 with SP1, Windows 8 Displays information that you can use to diagnose Domain Name System (DNS) infrastructure. Before using this tool, you should be familiar with how DNS works. The Nslookup command-line tool is available only if you have installed the TCP/IP protocol. Syntax Nslookup [<-SubCommand ...>] [{<ComputerToFind> | -<Server>}] Nslookup /exit Nslookup /finger [<UserName>] [{[>] <FileName>|[>>] <FileName>}] Nslookup /{help | ?} Nslookup /ls [<Option>] <DNSDomain> [{[>] <FileName>|[>>] <FileName>}] Nslookup /lserver <DNSDomain> Nslookup /root Nslookup /server <DNSDomain> Nslookup /set <KeyWord>[=<Value>] Nslookup /set all Nslookup /set class=<Class> Nslookup /set [no]d2 Nslookup /set [no]debug Nslookup /set [no]defname Nslookup /set domain=<DomainName> Nslookup /set [no]ignore Nslookup /set port=<Port> Nslookup /set querytype=<ResourceRecordType> Nslookup /set [no]recurse Nslookup /set retry=<Number> Nslookup /set root=<RootServer> Nslookup /set [no]search Nslookup /set srchlist=<DomainName>[/...] Nslookup /set timeout=<Number> Nslookup /set type=<ResourceRecordType> Nslookup /set [no]vc Nslookup /view <FileName> Parameters Parameter Description Nslookup -exit Exits nslookup. Nslookup -finger Connects with the finger server on the current computer. Nslookup -help Displays a short summary of nslookup subcommands. Nslookup -ls Lists...
Read More

Citrix Cheat Sheet

Terminal Server /Remote Desktop Client Shortcut Keys Key Combination Function Similar Local Keys CTRL+ALT+END Opens the Windows Security dialog box CTRL+ALT+DELETE CTRL+ALT+BREAK Toggles the Terminal Services client display from window to full screen NONE ALT+INSERT Cycles through running programs on the remote computer ALT+TAB ALT+HOME Displays the remote computer’s Start menu NONE ALT+DELETE Displays the remote window’s Control Menu ALT+SPACE BAR CTRL+ALT+NUMBERPAD MINUS Places an image of active window onto the TS clipboard ALT+PRINT SCREEN CTRL+ALT+NUMBERPAD PLUS Places an image of the entire Terminal Services client on the Terminal Services clipboard PRINT SCREEN Citrix ICA Client Shortcut Keys Key Combination Function Similar Local Keys SHIFT+F1 The Task List hotkey displays the local Windows Task List for Windows...
Read More

Change Laptop Power Plan

In this post we will learn how to change the power plan of your laptop.  If you are running on your laptop’s battery, you can make your laptop last longer by reducing the power consumption.  You would do this by enabling the Power Saver mode or an Eco mode built in by the manufacturer of your laptop.  When you return to running your laptop with the power cord, you would change the power plan back to Balanced or High Performance.   Here is how you change your Power Plan: 1) Click on the Power icon in the task tray   2) The Power Plan menu appears.  You can select a different power plan from this menu.  However, only a few power plans are listed here.  To see more power plans, continue on to the next step.  If you find a power plan here that fits your needs, just click the power plan to...
Read More