Doug McIntyre

This user hasn't shared any biographical information

Homepage: http://www.iphouse.com


Posts by Doug McIntyre

What is a WiFi Controller?

Jan 25th

Posted by Doug McIntyre in Online Security

No comments

WiFi controller solutions have become pretty popular for Enterprises lately. Some of the benefits of why you would want them are.

  • Centralized management over several to many access-points.
  • Unified access policies.
  • Ease of deployment.
  • Rogue AP scanning for PCI/DSS compliance.
, ,

Debugging IPSec VPNs in FortiGate

Jan 20th

Posted by Doug McIntyre in ipHouse Products

No comments

Debugging IPSec VPNs in FortiGate

Debugging what is going wrong with a VPN setup is difficult. The IKE protocol is “chatty”, and negotiates back and forth between the two ends for several rounds. The GUI offers not much help, it is either  UP or Down. Most of the real debugging happens inside the CLI.

One problem in particular that has always bugged me is that you need access to the end machines involved to initiate traffic across the link. The network admin typically doesn’t have direct access on the computers on either side of the VPN in order to initiate that traffic. I’ll show you a method that can be used to initiate traffic from that network as well.
More >

, , ,

NAT: the savior and destroyer of the Internet

Jan 3rd

Posted by Doug McIntyre in Online Security

No comments

Having helped a customer setup VPNs for private connectivity to several large (ie. Fortune 100) companies lately, I’ve really dreaded seeing how NAT has been abused to the extent that it is making private islands on the Internet and breaking everything from routing to DNS to any future protocol enhancements. More >

, , ,

Setting up L2TP over IPSec VPN for VM Forge Customer Managed FW – Part 1

Nov 18th

Posted by Doug McIntyre in ipHouse Products

No comments

Wow thats a mouthful of a title isn’t it.

When you have a VMForge VDC and control your own area of the FortigateFirewall in front of your VDC, you can setup a secure VPN connection with several different technologies.

If you want to use the built in VPN client in Windows or Mac OSX without installing any other VPN Client software, then L2TP over IPSec is the way to go. Although you will need to escape out to the CLI of the FW to complete this setup.

More >

, ,

Types of VPNs used for vmForge VDC

Nov 14th

Posted by Doug McIntyre in ipHouse Products

No comments

If you have a customer managed vmForge firewall option with the Fortigate Firewall in front of your VDC, there are several types of VPNs to securely connect over an encrypted tunnel back into your VDC.

What is a VPN?

A VPN (Virtual Private Network) is a way of creating a secure connection to and from a network (site to site or LAN to LAN) or computer (node based VPN). It is usually encrypted end-to-end and lets you route traffic securely over a direct channel into the remote network. There are usually separate policies applied on the VPN connection letting more remote services in that you wouldn’t let in through the primary internet facing connection (ie. MS-SQL server administrative access, FTP services, etc).

More >

, ,