Association Executives (ASAE) annual convention August 15-18, 2004. gomembers will be the exclusive virtual exhibitor during the meetingWritten by gomembers, Inc.
Continued from page 1
For any questions, please do not hesitate to contact gomembers via email at: email@example.com
gomembers, Inc. gomembers is a leading provider of software solutions for membership, meetings and management of member-based organizations. gomembers' software and technology enable its customers to automate a number of enterprise resource planning, member relationship management, transaction processing and member-to-member communications functions in a single software platform with seamless inter-processing of data across all applications.
gomembers' membership, meeting, event planning and related solutions are used to improve operating efficiencies, enhance member services and enable interaction with and between members. Meeting and convention planning software products enable customers to coordinate virtually all of required functions for complete event management. All gomembers’ products are built using latest technology including Microsoft’s .NET framework.
gomembers sells its solutions through a direct sales force and provides a wide range of customizations, training and support service to their customers.
How to secure your small business with a PIX firewallWritten by Ron Jones
Continued from page 1
pixfirewall(config)# interface ethernet0 100full pixfirewall(config)# lnterface ethernet1 100full
Now to assign an address to inside and outside interfaces; ip address command sets ip address of an interface. The syntax is as follows: Ip address
An example might be as follows: Ip address outside pixfirewall(config)# ip address outside 184.108.40.206 255.255.255.252 (this IP address, netmask combination should not be used, it is shown here for example only. Use IP address/mask given to you by your ISP).
Then inside IP address ip address inside pixfirewall(config)# Ip address inside 192.168.0.1 255.255.255.0
A brief word about IP addressing is in order here.
One way that is used to conserve public IP addresses is through use of non-routable IP addressing blocks specified in RFC 1597. You may sometimes hear them referred to as “private” IP addresses, which is fine, but not quite technically accurate. There are three different blocks to choose from: 10.0.0.0 – 10.255.255.255 with a netmask of 255.0.0.0 172.16.0.0 – 172.31.255.255 with a netmask of 255.255.0.0 192.168.0.0 – 192.168.255.255 with a netmask of 255.255.255.0
as long as your internal network's IP addresses are all within one of those blocks of address space, you will not need to introduce complexity of routing within your LAN. An example scheme for those who are not familiar is shown below: PIX – 192.168.0.1 netmask 255.255.255.0 File/DHCP server – 192.168.0.2 netmask 255.255.255.0 Workstations – 192.168.0.10 – 192.168.0.254 netmask (each) 255.255.255.0 * I intentionally skipped over 192.168.0.3-9 addresses to plan for future expansion and possible need for additional servers, you don't have to do this. * Configure your DHCP server to hand out addresses in specified block using your ISP-provided DNS servers for name resolution. Make sure to change this should you ever decide to install a name server within your own network. * If you don't want to set up a DHCP server, just configure each PC with IP address, default gateway, netmask & DNS servers
It is very important now to add a default route to PIX configuration. Another term for default route is “default gateway.” You need to tell PIX that if it receives traffic destined for a network that isn’t directly connected, it should send it to connected ISP router. Your ISP should have given you IP address of your default gateway when you received your setup information.
Here is syntax: Route The English translation is “if packets destined for interface on network specified by network address are bounded by mask then route it via a next hop at optional command is used to give an indication of distance.
For example pixfirewall(config)# Route outside 0 0 <220.127.116.11> 1 (if packets are destined outside network to any ip address with any netmask, send them through ISPs default gateway, which is one hop away, meaning it is device to which PIX is connected on outside interface).
To password protect your PIX in order to prevent unauthorized access, use something that is secure and hard to guess. Try to stay away from names of spouses, children, pets, birthdays or other easily guessed variable. Whenever possible, use a combination of letters and numbers. The syntax is as follows (but please don’t use cisco as your actual password) pixfirewall(config)# Passwd cisco (note abbreviated spelling of word password) this will set a password for basic access (rembember pixfirewall> prompt?) pixfirewall(config)# Enable password cisco this will set password for administrative access
Now that your PIX has been given a basic configuration, you should be able to access internet, while preventing unauthorized access to your resources.
Ron Jones is the Founder and President of The Fulcrum Technology Group, Inc. Located just North of Atlanta, this consulting firm specializes in business technology solutions that will enable you to maintain a competitive advantage by increasing productivity, improving reliability and reducing expenses.