Get the full Wireshark course for $9: bit.ly/wireshark9 Need help? Join my Discord: discord.com/invite/usKSyzb Download pcapng file here: bit.ly/2GSsNGg ====================== Special Offers: ====================== Cisco Press: Up to 50% discount Save every day on Cisco Press learning products! Use discount code BOMBAL during checkout to save 35% on print books (plus free shipping in the U.S.), 45% on eBooks, and 50% on video courses and simulator software. Offer expires December 31, 2020. Shop now. Link: bit.ly/ciscopress50 ITPro.TV: itpro.tv/davidbombal 30% discount off all plans Code: DAVIDBOMBAL Boson software: 15% discount Link: bit.ly/boson15 Code: DBAF15P GNS3 Academy: CCNA ($10): bit.ly/gns3ccna10 Wireshark ($10): bit.ly/gns3wireshark DavidBombal.com DavidBombal.com: CCNA ($10): bit.ly/yt999ccna Wireshark ($9): bit.ly/wireshark9
-Great content ... !!! -For security reasons the network engineer always has to mitigate the chances of invasion of the devices on the network and to protect it in the best way and with the best practices. -Telnet is unprotected and a very bad option that unfortunately sometimes due to the lack of knowledge that the teacher taught in the video, people leave the protocol active. -Always important to pay attention if in the "line vty" configuration leave only "transport input ssh", never the line "transport input all" or "transport input telnet" configured. -In cases it would be good to create an access list to block the telnet. -In Juniper firewalls these protocols must be enabled and are blocked by default.
Hello I'm a subscriber to your CZcams channel and I find your tutorials great. I have knowledge in pentest, and I learn every day. I would like to ask you what are the different procedures for entering a local business network for example and accessing your local oracle server from the internet? I read one of your tutorials from 2016 on port forwarding, but over time other more effective techniques have surely emerged. In summary, how to hack a LAN network from the Internet, that is to say WAN? i use kali. How to bypass DMZ protections? What are the best tools or scripts to use? Thanks again and see you very soon.
Hi David, great video. I have question. In the GNS3 it is simple to catch telnet packets on link. You also say in real world we need to span port, or inject some device in te network to catch packets. Is there any more way that hacker can catch traffic in the real network or what was the common way that hacker can catch packets in this topology in real world i would like to know. Thank you
Apologies! This is outside the scope of this video. I want to know the easiest way to relay dhcp on PC1 and PC2 on this ladder network using R1 as the server. R1, R2 and R3 are connected as illustrated below. R1 ! R2 ! R3 ! Switch / \ PC1 PC2 The PCs are in separate vlans. A written explanation will suffix. Thanks
Sir plzzzz clear my doubt....🙏🙏🙏 Sir what is the difference between a web server running a website which we can acess on internet and a apache server runned through kali linux ....plzzzzz explain me sir...i can't underatqnd yhe difference...
At the most basic level, they are the same. The website on the Internet is just reachable from Internet devices (but also a bunch of other stuff like scaling ability).
@@davidbombal yes sir thanls for your reply.....it means that if we host a simple html web page of the apache web ser through kalli linux.....can it be accessed through other devices through internet....if yes then sir how????plzzzz clarify my doubt...
@@aknayak644 You will need to configure the device to be accessible from the Internet - normally you need to enable port forwarding on your Internet router.
@@davidbombal yes sir thanks a lot......actually sir i want to leqrn a lot pf things from u but not able to communicate u........tyrough youtube comments is the only way is to qsk my doubts to u......can u plzzz tell me how can i communicate u????...love u sir❤❤
I use Telnet to log into a locally hosted game server through the Ubuntu Terminal. I also use the Ubuntu Terminal for the telnet connection or I use a Client made to connect to the game server via Telnet. I also then run a Discord Bot through the Ubuntu Terminal that creates a bridge between the game server and a Discord Direct Message connection. In this manner, anyone in my Discord Server can access the social game server and play acting as a Client for the game server. The Discord Bot creates accounts for my Discord Members automatically on first logging onto the game server. As far as I know the Only one directly connected through Telnet is me and it's my machine to my own machine where the game server is hosted. Does this sound like I need to use SSH to connect to my game server? I don't know if any info is discoverable between the Discord Server and the Bot and then to my game server.
@@davidbombal Thanks for the information. I will have to get back to you on the IOS version. Another question: Do you have a course on GNS3 on the Udemy platform?
You may still find in production some devices that only work with telnet and/or serial console, even after reaching the EOS/EOL. Some companies that sold these devices or software went out-of-business. Meanwhile, other vendors wouldn’t work on a migration process due to the lack of demand from that legacy product. Also, other vendors simply turned down migration solution due to copyright, licensing, patents, higher costs and the lack of support, documentation and information of a customized system available (which later turned into a “brick”) at the time. Many of those systems are still in production labeled as LEGACY.
@@jaimerosariojusticia I understand that. What can one do in those cases? Use Telnet across encrypted tunnels if you can. Or on specific secure networks, or out of band networks etc. What do you do?
@@davidbombal First, thanks for the content and the reply. Yes, there is always high risk vulnerabilities with unencrypted protocol services across networks. Some workarounds I’ve seen in production is to place a firewall between the legacy device and the network using ACLs with NAT. Other workaround I’ve seen is to use a server between the legacy device and the network. SSH is used to access the server, and from within the server, telnet is used to access the legacy device. Legacy device is then connected directly to a secondary interface on the server. There are also other interesting workarounds and solutions that are more elaborated and sophisticated which can offer a better management/performance experience. Other legacy solutions require specific hardware which are no longer available. Not everything can be migrated P2V. Again, thanks for the videos. Have a great day.
Get the full Wireshark course for $9: bit.ly/wireshark9
Need help? Join my Discord: discord.com/invite/usKSyzb
Download pcapng file here: bit.ly/2GSsNGg
======================
Special Offers:
======================
Cisco Press: Up to 50% discount
Save every day on Cisco Press learning products! Use discount code BOMBAL during checkout to save 35% on print books (plus free shipping in the U.S.), 45% on eBooks, and 50% on video courses and simulator software. Offer expires December 31, 2020. Shop now.
Link: bit.ly/ciscopress50
ITPro.TV:
itpro.tv/davidbombal
30% discount off all plans Code: DAVIDBOMBAL
Boson software: 15% discount
Link: bit.ly/boson15
Code: DBAF15P
GNS3 Academy:
CCNA ($10): bit.ly/gns3ccna10
Wireshark ($10): bit.ly/gns3wireshark
DavidBombal.com
DavidBombal.com: CCNA ($10): bit.ly/yt999ccna
Wireshark ($9): bit.ly/wireshark9
I really appreciate the effort you put into your content. The audio and video quality is also absolutely superb.
Thank you Nick
Yep, I definitely have your Wireshark course from Udemy. Will you be creating Cisco firewall course in the future ?
Depends on time and demand. I am way behind with things :(
@Bombal you are among of the Best instructor in the world, 99% of students can understand your explanations.
Thank you so much for share...
@@davidbombal please create cisco firewall course as well.
-Great content ... !!!
-For security reasons the network engineer always has to mitigate the chances of invasion of the devices on the network and to protect it in the best way and with the best practices.
-Telnet is unprotected and a very bad option that unfortunately sometimes due to the lack of knowledge that the teacher taught in the video, people leave the protocol active.
-Always important to pay attention if in the "line vty" configuration leave only "transport input ssh", never the line "transport input all" or "transport input telnet" configured.
-In cases it would be good to create an access list to block the telnet.
-In Juniper firewalls these protocols must be enabled and are blocked by default.
Yes bro u are my role modeland best person while u are teaching what u are talking is clear and best of the best
Thank you very much!
Thanks a lot for this vid, will buy your Wireshark soon after the Linux gsn3 course
Thank you Rayan
Thanks David for uploading the video in Wireshark series!!
You're welcome Kazim!
Thanks for the upload David! Well explained! Great content as always :)
Thank you James!
Telnet, a modest icon of the unresolvable. Lets see what the future of chain-linking has to offer.
Good lesson David sar..... 👍👍👍👍👍🌹🌹🌹🌹🌹🌹
I appreciate that, Anuradha!
Great video David.please can you tell where you get ubuntu client cli based gns3 applianse from?.thanks
This is so cool!! Thanks for the video
Glad you liked it Sarthak!
Hello
I'm a subscriber to your CZcams channel and I find your tutorials great. I have knowledge in pentest, and I learn every day. I would like to ask you what are the different procedures for entering a local business network for example and accessing your local oracle server from the internet?
I read one of your tutorials from 2016 on port forwarding, but over time other more effective techniques have surely emerged. In summary, how to hack a LAN network from the Internet, that is to say WAN?
i use kali. How to bypass DMZ protections?
What are the best tools or scripts to use?
Thanks again and see you very soon.
Hello sir
I how to agian access to pcs which using telnet port 23 on the same network
Hi David, great video. I have question. In the GNS3 it is simple to catch telnet packets on link. You also say in real world we need to span port, or inject some device in te network to catch packets. Is there any more way that hacker can catch traffic in the real network or what was the common way that hacker can catch packets in this topology in real world i would like to know. Thank you
Thanks for uploading this video. I also saw this video in your ( wireshark packet analysis) Udemy course.
Thank you for your support :)
thanks for the video, great content with awesome explanation ❤️
Thank you for watching!
If you find security holes in a certain product , how do you contact that company to fix the issue ? what’s the ethical way to raise a concern?
Apologies! This is outside the scope of this video.
I want to know the easiest way to relay dhcp on PC1 and PC2 on this ladder network using R1 as the server.
R1, R2 and R3 are connected as illustrated below.
R1
!
R2
!
R3
!
Switch
/ \
PC1 PC2
The PCs are in separate vlans.
A written explanation will suffix. Thanks
Wow, You explained it really well. Thanks!
Thank you. Glad you enjoyed it Aditi!
@@davidbombal Yeah, I actually wait for your videos and questions, they are knowledge booster.
It is same as http unencrypted traffic , clear shown in plain text.
thank you very much for your work, I finally understood many many things. I learned a lot about important things that I didn't know even exist. :)
You are welcome!
Many thanks sir !
Thank you Ahmed
hello how can i change gpon serial number
Nice video
Thank you!
i remember only the starWars movie, as telnet was in win XP, nowadays its not in latest Windows version
lol... great comment
Awesome👏we have to be very careful in every step. Hmm
Yes we do.
Sir plzzzz clear my doubt....🙏🙏🙏
Sir what is the difference between a web server running a website which we can acess on internet and a apache server runned through kali linux ....plzzzzz explain me sir...i can't underatqnd yhe difference...
At the most basic level, they are the same. The website on the Internet is just reachable from Internet devices (but also a bunch of other stuff like scaling ability).
@@davidbombal yes sir thanls for your reply.....it means that if we host a simple html web page of the apache web ser through kalli linux.....can it be accessed through other devices through internet....if yes then sir how????plzzzz clarify my doubt...
@@aknayak644 You will need to configure the device to be accessible from the Internet - normally you need to enable port forwarding on your Internet router.
@@davidbombal yes sir thanks a lot......actually sir i want to leqrn a lot pf things from u but not able to communicate u........tyrough youtube comments is the only way is to qsk my doubts to u......can u plzzz tell me how can i communicate u????...love u sir❤❤
I use Telnet to log into a locally hosted game server through the Ubuntu Terminal. I also use the Ubuntu Terminal for the telnet connection or I use a Client made to connect to the game server via Telnet. I also then run a Discord Bot through the Ubuntu Terminal that creates a bridge between the game server and a Discord Direct Message connection. In this manner, anyone in my Discord Server can access the social game server and play acting as a Client for the game server. The Discord Bot creates accounts for my Discord Members automatically on first logging onto the game server. As far as I know the Only one directly connected through Telnet is me and it's my machine to my own machine where the game server is hosted. Does this sound like I need to use SSH to connect to my game server? I don't know if any info is discoverable between the Discord Server and the Bot and then to my game server.
What is telnet is it the tunisian satellite ??
Thank you sir. You are great. 🥰
Most welcome Rahul
very informative video 🙏
Thank you Ashish!
Thank you!
You're welcome Marius!
Heyy.... Remember me.... Love from india
Thank you!!!
You're welcome Teshager!
Sir whichis the best oprating system
Kali linux
Black arch linux
I am confused🤔🤔🤔🤔
Kali Linux is the best Linux operating system
Use either. Most people start with Kali.
@@davidbombal thank u sir
Sir I have one question when we install open source tools in kali is it harmful to our pc how do we protect from this❤️
It depends on what you install.
@@davidbombal thank for ur reply teacher ❤️
What if the IOS does not allow you to use SSH based on regional location?
Which version of IOS is not allowing you to use SSH? If you must use Telnet, then try to encrypt via a tunnel.
@@davidbombal Thanks for the information. I will have to get back to you on the IOS version. Another question: Do you have a course on GNS3 on the Udemy platform?
@@nitroflamegtsyt3964 For some of the demonstrations. For the labs all you need is Packet Tracer
Big fan sir
Thank you Rahul
I moved on to SSH 5 years ago :p
Unfortunately not everyone has :(
спасибо, интересно
1st to learn 😀
Thank you for your support Armando! Learning is the best :)
Hello sir
Hello
never ever...
Ever!
❤️❤️
b...b.. but starwars?
Hiii
Hi!
Who uses Telnet nowadays lol
lol... you would be surprised ....
You may still find in production some devices that only work with telnet and/or serial console, even after reaching the EOS/EOL. Some companies that sold these devices or software went out-of-business. Meanwhile, other vendors wouldn’t work on a migration process due to the lack of demand from that legacy product.
Also, other vendors simply turned down migration solution due to copyright, licensing, patents, higher costs and the lack of support, documentation and information of a customized system available (which later turned into a “brick”) at the time. Many of those systems are still in production labeled as LEGACY.
@@jaimerosariojusticia I understand that. What can one do in those cases? Use Telnet across encrypted tunnels if you can. Or on specific secure networks, or out of band networks etc. What do you do?
@@davidbombal First, thanks for the content and the reply. Yes, there is always high risk vulnerabilities with unencrypted protocol services across networks. Some workarounds I’ve seen in production is to place a firewall between the legacy device and the network using ACLs with NAT. Other workaround I’ve seen is to use a server between the legacy device and the network. SSH is used to access the server, and from within the server, telnet is used to access the legacy device. Legacy device is then connected directly to a secondary interface on the server. There are also other interesting workarounds and solutions that are more elaborated and sophisticated which can offer a better management/performance experience. Other legacy solutions require specific hardware which are no longer available.
Not everything can be migrated P2V.
Again, thanks for the videos. Have a great day.
@@jaimerosariojusticia Great examples. Thanks for sharing :)