If you are using a Juniper Netscreen as a DHCP server you may find that when rebooting the device the DNS server entries for the DHCP change to the entries of the untrust port. This is down to the default DNS override settings and they can be changed either by using the GUI or Shell commands. I will show both ways below:
GUI:
- Log into the juniper and select Network > Interfaces > untrust port > Edit
- Deselect the setting Automatic Update DHCP Server Parameters
Shell:
Login to the shell (i.e. using Putty) then type the following command to disable the setting on the untrust port:
unset interface untrust dhcp client settings update-dhcpserver
Cisco Security Advisories
- Cisco IOS XE Software Arbitrary Code Execution VulnerabilityA vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and break the chain of trust. This vulnerability is due to incorrect validations by boot scripts when specific ROM monitor (ROMMON) variables are set. An attacker could exploit this vulnerability by installing code to a specific […]
- Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software for Firepower 1000/2100 Series Appliances Secure Boot Bypass VulnerabilitiesUpdate from October 23, 2020: Cisco has become aware of a new Cisco Adaptive Security Appliance vulnerability that could affect the fixed releases recommended for code trains 9.13 and 9.14 in the Fixed Software section of this advisory. See the Cisco Adaptive Security Appliance Software SSL/TLS Denial of Service Vulnerability for additional information. Multiple vulnerabilities in the secure […]
- Cisco FXOS Software Command Injection VulnerabilityUpdate from October 23, 2020: Cisco has become aware of a new Cisco Adaptive Security Appliance vulnerability that could affect the fixed releases recommended for code trains 9.13 and 9.14 in the Fixed Software section of this advisory. See the Cisco Adaptive Security Appliance Software SSL/TLS Denial of Service Vulnerability for additional information. A vulnerability in the CLI […]
- Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Denial of Service VulnerabilityUpdate from October 22nd, 2020: Cisco has become aware of a new Cisco Adaptive Security Appliance vulnerability that could affect the fixed releases recommended for code trains 9.13 and 9.14 in the Fixed Software section of this advisory. See the Cisco Adaptive Security Appliance Software SSL/TLS Denial of Service Vulnerability for additional information. A vulnerability in the TCP […]
Recent Comments