To check pre shared key in ASA : Fw1/sec/act# more system:running-config | in ikev1 crypto ipsec ikev1 transform-set TRANSFORM_SET_1 esp-aes esp-sha-hmac crypto map CRYPTO_MAP 10 set ikev1 transform-set TRANSFORM_SET_1 crypto map CRYPTO_MAP 20 set ikev1 transform-set TRANSFORM_SET_1 crypto ikev1 enable outside crypto ikev1 policy 30 crypto ikev1 policy 50 vpn-tunnel-protocol […]
Check open port from Vcenter to ESXI
Below is the command to check on the below : root@vc01 [ ~ ]# curl -v telnet://rndesxi02.iautomatix.com.np:902 * Trying 10.255.174.242:902… * Connected to rndesxi02.iautomatix.com.np (10.255.174.25) port 902 (#0) 220 VMware Authentication Daemon Version 1.10: SSL Required, ServerDaemonProtocol:SOAP, MKSDisplayProtocol:VNC , VMXARGS supported, NFCSSL supported/t, SHA256 supported ^C
Check Ubuntu or Linux Firewall Status
Check Ubuntu or Linux Firewall Status Before disabling the UFW firewall, it is a good idea to check its status first. In Ubuntu, the firewall is disabled by default. How do you know if your firewall is on? To check the current status of the firewall, execute the command in your command […]
VPN Down due to no traffic Fix with Keep Alive – ASA
Configuration of Keep Alive in ASA : Stokes-Fw1/sec/act(config)# tunnel-group <IP ADDRESS> ipsec-attributes Stokes-Fw1/sec/act(config-tunnel-ipsec)# isakmp keepalive retry 10 Stokes-Fw1/sec/act(config-tunnel-ipsec)# end
Remove VMware VM Invalid State
The only method to delete this VM is to use the SSH console on the ESXi host and execute a number of commands. This implies that SSH has been enabled on the ESXi host. Read our quick guide on “How to enable SSH on an ESXi host” if SSH is not enabled on your ESXi host. Once ssh is enabled, connect […]
Basic Linux Commands on Ubuntu
To check the IP address : root@gcloud:~# ip -br a lo UNKNOWN 127.0.0.1/8 ::1/128 eth0 UP 10.27.2.58/24 fe80::20c:29ff:fe7e:89c4/64 docker0 UP 172.17.0.1/16 fe80::42:6dff:fe1c:28d6/64 vethe1bf053@if4 UP fe80::d0b3:dfff:fe8b:b0aa/64 To check the MAC address : root@gcloud:~# ip -br l lo UNKNOWN 00:00:00:00:00:00 <LOOPBACK,UP,LOWER_UP> eth0 UP 00:0c:29:7e:89:c4 <BROADCAST,MULTICAST,UP,LOWER_UP> docker0 UP 02:42:6d:1c:28:d6 <BROADCAST,MULTICAST,UP,LOWER_UP> vethe1bf053@if4 UP d2:b3:df:8b:b0:aa […]
How to find VM and its IP by MAC address in vCenter when not shown in GUI
How to find VM and its IP by MAC address in vCenter when not shown in GUI? Install the VMware.PowerCLI Tool : Windows PowerShell Copyright (C) Microsoft Corporation. All rights reserved. Try the new cross-platform PowerShell https://aka.ms/pscore6 PS C:\Windows\system32> Install-Module -Name VMware.PowerCLI Untrusted repository You are installing the modules from […]
Bad Gateway in Nginx Proxy Manager
Login to Database Docker: root@iautomatix:/home/nginxproxymanager# docker exec -it nginxproxymanager-db-1 /bin/sh /var/lib/mysql # chown -R mysql mysql/ mysql_upgrade_info /var/lib/mysql # chown -R mysql:mysql npm /var/lib/mysql # Once this command is entered the Error would be resolved!
Basic Docker Workout Commands
List the docker Container : root@iautomatix:/home/nginxproxymanager# docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 8ab3996ab5e2 jc21/nginx-proxy-manager:2.10.4 “/init” 4 months ago Up 3 hours 0.0.0.0:80-81->80-81/tcp, :::80-81->80-81/tcp, 0.0.0.0:443->443/tcp, :::443->443/tcp nginxproxymanager-app-1 527f275db7a0 jc21/mariadb-aria:latest “/scripts/run.sh” 4 months ago Up 3 hours 3306/tcp nginxproxymanager-db-1 Restart the docker Container : root@iautomatix:/home/nginxproxymanager# docker restart nginxproxymanager-app-1 […]
Allow Traffic Through the Remote Access VPN
You can use one of the following techniques to enable traffic flow in the remote access VPN tunnel. Configure the sysopt connection permit-vpn command, which exempts traffic that matches the VPN connection from the access control policy. The default for this command is no sysopt connection permit-vpn, which means VPN traffic must also […]
sysopt noproxyarp for MAC Address issues
ARP (Address Resolution Protocol) is a layer two protocol that resolves an IP address to a physical address, also called a Media Access Controller (MAC) address. A host sends an ARP request asking “Who is this IP?” The device owning the IP should reply with “Hey, I am the one, […]
Installation script for TacacsGUI
Base OS – Linux (ubuntu 20.04) root@tacasgui:~/tgui_install# sudo apt update root@tacasgui:~/tgui_install# sudo apt install mysql-server root@tacgui:/home/tacgui# sudo systemctl start mysql.service root@tacgui:/home/tacgui# sudo mysql_secure_installation Securing the MySQL server deployment. Connecting to MySQL using a blank password. VALIDATE PASSWORD COMPONENT can be used to test passwords and improve security. It checks the […]
Install Docker and use Docker Compose on Ubuntu 22.04
Introduction of Docker Docker is an open-source project that automates the deployment of Linux applications into virtualized containers. Docker provides a layer of abstraction and virtualization based on Linux. Docker uses isolated Linux resources such as cgroups, kernel, and file managers to allow containers to run independently within a Linux entity. […]
Nginx Proxy Manager with Docker Compose on Ubuntu 22.04
Implementation Guide Step 1: Install Nginx Proxy Manager First, you need to create a directory containing the project and create a docker-compose.yml file for Nginx Proxy Manager with the following commands in turn: mkdir /home/nginxproxymanager cd /home/nginxproxymanager nano docker-compose.yml Enter the content below and save it. version: ‘3’ services: app: image: ‘jc21/nginx-proxy-manager:latest’ […]
Uptime Kuma Installation from Docker
Uptime Kuma Uptime Kuma is an easy-to-use self-hosted monitoring tool. Monitoring uptime for HTTP(s) / TCP / HTTP(s) Keyword / HTTP(s) Json Query / Ping / DNS Record / Push / Steam Game Server / Docker Containers Fancy, Reactive, Fast UI/UX Notifications via Telegram, Discord, Gotify, Slack, Pushover, Email (SMTP), […]
F5 LTM policy for source IP based redirection
If traffic coming to a virtual server needs to be redirected to a different server, pool or URL by testing if the source IP belongs or does not belong to a list of network addresses, it can be achieved using LTM policy and datagroups. 1. Create datagroup with list of […]
SSL Certificate Installation from the Cisco ASA CLI
From the ciscoasa(config)# line, enter the following text:crypto ca authenticate my.xyz.trustpointWhere my.xyz.trustpoint is the name of trustpoint created when your certificate request was generated. Next, enter the entire body of the xyzRSAAddTrustCA.crt file followed by the word “quit” on a line by itself (the xyzRSAAddTrustCA.crt file can be opened and […]
NEXUS 7000/7700 SOFTWARE UPGRADE VIA ISSU
This article shows how to perform an ISSU (In-Service Software Upgrade) on a Nexus Data Center switch (7000 and 7700 models) and avoid service and network disruption. We explain the importance of keeping your NX-OS software updated, how the upgrade process is executed, explain the purpose of the Kickstart and System images, provide methods on how to transfer the NX-OS images to the switch bootflash on […]
Configuration Analyzer Cisco IOS and ASA
From the below link please download the CLI Analyzer. Download CLI Analyzer : https://cway.cisco.com/cli/ Please upload the file in the file analysis. For this to work we would need to login to CCO ID. Once the files are analyzed. It would show case on the recommendation to be worked.
Check Vulnerability in Cisco IOS, IOS XE, NX-OS and NX-OS
Check Your Cisco Software Use the Cisco Software Checker to search for Cisco Security Advisories that apply to specific Cisco IOS, IOS XE, NX-OS and NX-OS in ACI Mode software releases. URL : https://tools.cisco.com/security/center/softwarechecker.x
