1. Access the Device using SSH. admin@Test-Leader:/# 2. Generate the Diag File using command:-system diagnostics Generating…………………………… ………..done Diagnostics package saved to: DiagFile-Test-Leader-KEXY.tbz2 Note: Generating Diag file will takr 5 to 20 Min. 3. Then use following set of command: #shell >cd /base/data/files > ls -lr >ls -lt >pwd >passwd root […]
Sending syslogs to remote server from F5
In order to enable syslog on F5, the following steps need to be completed: Log in to tmsh by entering the following command:tmsh To log to the remote syslog server using the TCP protocol, use the following command syntax: modify /sys syslog include “destination remote_server {tcp(\”<remote syslog server IP>\” port […]
LDAP authentication configuration on F5 BIG-IP
F5 BIG-IP can be configured to authenticate with LDAP server based on freeipa. We can do the same by configuring the autentication settings as such: Web interface: System > Users > Authentication User Directory: Remote – LDAP Host: ipa.example.com <This is the ip or hostname of the LDAP server reachable […]
Automatic Backup of WordPress Website for Free
Install and Activate the plugins – UpdraftPlus Go to Settings and then select GoogleDrive Make the required selection like weekly backup and save the setting Allow the credentials as of GoogleDrive Once everything is done. Go to Backup/Restore Select Backup Now This will enable the backup of all the files […]
NextCloud Full Setup In Ubuntu 18.4 LTS and ARM
Nextcloud is a suite of client-server software for creating and using file hosting services. step 1:- Install Mysql server. Step 2:- Install MariaDB Step 3:- sudo Mysql NextCloud database Setup Step 4:-Mysql> CREATE DATABASE nextcloud CHARACTER SET utf8mb4 COLLATE utf8mb4_general_ci; Mysql> GRANT ALL ON nextcloud.* TO ‘nextclouduser’@’localhost’ IDENTIFIED BY ‘change-with-strong- […]
verify that destination port number is open or not, using powershell command.
Test-NetConnection command can be used to verify port status . (note:- power shell version 4 or newer version can support this command) Test–NetConnection is a Power Shell cmdlet that checks and then displays diagnostic information about a network connection, whether to another computer on the same network or a web […]
Website Search Bar Malfunction using CloudFlare SSL
The issue can be resolved by using the Cloudflare Flexible SSL. This is pretty straight forward. Find the below steps. Install the Cloudflare Flexible SSL plugins. Activate the installed plugins. Enable the Your SSL/TLS encryption mode in Flexible. Make sure to enable the below setting. Always Use HTTPS : Redirect all […]
Ring Version Mismatch Error In Panorama – Palo Alto Tshoot
SYMPTOMS Deploying Panorama in Panorama/Log Collector Combination in HA Mode on the Panorama Managed Log Collectors tab results in the following error: Ring version mismatch. DIAGNOSIS Resolution To resolve this mismatch, the configuration needs to be committed to both Panorama and the log collector group: Perform local commit on Panorama Perform commit […]
ZoneRunner-managed zone – zrsh – F5 Networks
We could also use zrsh as a workaround, but kindly take note this is not officially supported by F5 Technical support and we don’t have official document published for this tool. ******************************************* There’re two types of DNS records in the customer’s RPZ blacklist zone – normal DNS record – wildcard […]
Freezing zone files to allow manual update to ZoneRunner-managed zone files – F5 Networks
Topic You should consider using this procedure under the following condition: You need to stop dynamic updates to zone files while manually editing files managed by the ZoneRunner utility.Important: F5 recommends using the ZoneRunner utility to manage the DNS/BIND file rather than manually editing the file. If you are required to manually edit […]
How to Shut Down Windows 10 PC/Laptop by Using Command-Line
Start->Run->CMD; Type “shutdown” in the open command prompt window; List of various choices that you can do with the command will be listed down; Type “shutdown /s” to Shutdown your computer; Type “shutdown /r “to Restart your windows PC
Palo Alto Networks Update Server Failed
Symptom Users sometimes change the content update URL to static to prevent back-end failures. But this practice doesn’t prevent failures, and because of security posture and rules, should only be used on a specific address. This document offers a recommended updates server configuration. Environment update server configuration is set properly updates are failing on the firewall […]
The VPN client was unable to successfully verify the IP forwarding table modifications
AnyConnect Unable to modify the IP forwarding table The VPN client was unable to modify the IP forwarding table. A VPN connection will not be established. Please restart your computer or device, then try again. Cisco AnyConnect is broken on Catalina. Throws up “The VPN client was unable to successfully […]
IRule to log to custom file
This is a simple IRule that logs the URLs tried to be accesed in the virtual server where the IRule has been applied: when HTTP_REQUEST { log local0.info “[IP::client_addr] [HTTP::host][HTTP::uri]” } As expected, this lines would be logged to /var/log/ltm file To send those messages to the custom log file, […]
Problem with Panorama shared context
Every Panorama commit shows me Warning: Disabled applications in shared: intercall google-spaces-base google-spaces-posting zenefits gitlab-base gitlab-uploading jumpshare-base jumpshare-uploading xfinity-tv newton-mail cylance directv ms-teams quip filestack-base filestack-downloading filestack-uploading In Panorama CLI use this command for affected apps: request set-application-status-recursive enable-dependent-apps <yes|no> application <value> status <enabled|disabled>
Check the Missing Service Value in Palo Alto Configuration Push
Error : Operation : Commit Status : Completed Result : Failed Details : vsys1 Error: Missing service value Error: Failed to parse security policy (Module: device) Commit failed Warnings How to view the logs : admin@NAKKHU-USER-FW0(active)> tail follow yes mp-log devsrv.log 2019-08-21 00:24:02.919 +0545 Loading PaloAltoNetworks URL categories… 2019-08-21 00:24:02.919 […]
Send Gratuitous ARP in Cisco ASA
This would help in sending the Gratuitous ARP from ASA during the migration. Command : ASA/pri/act# debug menu ipaddrutl 6 120.78.149.147 Gratuitous ARP sent for 120.78.149.147
iRule to Log the CLIENTSSL_HANDSHAKE and SERVERSSL_HANDSHAKE- F5 Networks
Use the Below snippet to rewrite the http request. Associate it with the required VS. when CLIENTSSL_HANDSHAKE { log local0. “clientside {[IP::remote_addr]:[TCP::remote_port]} <–> clientside {[IP::local_addr]:[TCP::local_port]}” log local0. “RSA Session-ID:[SSL::sessionid] Master-Key:[SSL::sessionsecret]” } when SERVERSSL_HANDSHAKE { log local0. “serverside {[IP::local_addr]:[TCP::local_port]} <–> serverside {[IP::remote_addr]:[TCP::remote_port]}” log local0. “RSA Session-ID:[SSL::sessionid] Master-Key:[SSL::sessionsecret]” }
iRule to Redirect Traffic as Required – F5 Networks
Use the Below snippet to rewrite the http request. Associate it with the required VS. when HTTP_REQUEST { switch -glob [HTTP::uri] { “/apicall*” { pool MIFE_DEP_POOL_8243} “/store*” { pool MIFE_DEP_POOL_9444} “/publisher*” { pool MIFE_DEP_POOL_9444} “/manage-service*” { pool MIFE_DEP_POOL_9444} } }
iRule to Rewrite the URL without Redirection – F5 Networks
Use the Below snippet to rewrite the http request. Associate it with the required VS. when HTTP_REQUEST { if { [HTTP::header Host] eq “zyx.com” and [HTTP::path] starts_with “/api”} { HTTP::header replace Host “abc.com” HTTP::uri [string map {“/api” “”} [HTTP::uri]] } }
