Create the iRule Snippet from below. Associate it with any of the VS as required. when HTTP_REQUEST { set LogString “Client [IP::client_addr]:[TCP::client_port] -> [HTTP::host][HTTP::uri]” log local0. “=============================================” log local0. “$LogString (request)” foreach aHeader [HTTP::header names] { log local0. “$aHeader: [HTTP::header value $aHeader]” } log local0. “=============================================” } when HTTP_RESPONSE { […]
Changing default SSH port in OpenSSH – Linux
The default SSH port on all Operating Systems is port 22. For security measures, KnownHost’s servers are configured to use port 2200. Changing your SSH port The server’s SSH configuration file is located here: /etc/ssh/sshd_config SSH into your server as the root user. ssh root@<ip address> -p 2200 Open the configuration […]
Un-Shut and Shutdown or Enable / Disable Interface – Juniper
Shut Down Interface in Juniper : root@Juniper# set interfaces ge-0/0/1.0 disable << This is cisco equivalent of “shutdown” Un Shut Interface in Juniper : root@Juniper# delete interfaces ge-0/0/1.0 disable << This is cisco equivalent of “no shutdown”
Work with FTD LINA Engine Captures – Firepower
Requirements 1. Enable two captures on FTD using these filters: Source IP 192.168.103.1 Destination IP 192.168.101.1 Protocol ICMP Interface INSIDE Source IP 192.168.103.1 Destination IP 192.168.101.1 Protocol ICMP Interface OUTSIDE 2. Ping from Host-A (192.168.103.1) to Host-B (192.168.101.1) and check the captures. Solution Step 1. Enable the captures: > capture CAPI interface […]
Work with Snort Engine Captures – Firepower
Prerequisites There is an Access Control Policy (ACP) applied on FTD that allows Internet Control Message Protocol (ICMP) traffic to go through. The policy also has an Intrusion Policy applied: Requirements Enable capture on FTD CLISH mode using no filter. Ping through the FTD and check the capture output. Solution […]
CPU Utilization of Lina – Firepower
Login into the FTD > system support diagnostic-cli Attaching to Diagnostic CLI … Press ‘Ctrl+a then d’ to detach. Type help or ‘?’ for a list of available commands. INFO: % Type “show ?” for a list of subcommands firepower# sho firepower# show cpu firepower# show cpu det firepower# show […]
CPU Utilization of Snort – Firepower
Log Into FTD: > expert admin@firepower:~$ top top – 19:05:27 up 22:01, 1 user, load average: 5.22, 5.41, 5.59 Tasks: 284 total, 4 running, 279 sleeping, 0 stopped, 1 zombie Cpu(s): 10.1%us, 2.3%sy, 2.0%ni, 85.4%id, 0.0%wa, 0.0%hi, 0.1%si, 0.0%st Mem: 32762076k total, 14565328k used, 16495516k free, 768k buffers Swap: 6716872k […]
Upgrade of F5 ASM
Current Image: 13.1.7 Expected Image: Pre-Requisite: Before the upgrade we need to remove the reporting configuration at BIG-IP F5 ASM. We would decrease the reserved disk size Command: modify /sys disk logical-disk HD1 vg-reserved 20480 1st Step: You could run “tmsh load sys config verify” and “tmsh load sys config […]
Installing The Latest Python 3.7 On Ubuntu 16.04 | 18.04
Method 1: Manually Installing Python Some users may want manually install the latest version of Python on Ubuntu by building from the source code… To do that they will need to download the installer file and run the executable… Before installing Python from its source code, you must first install […]
How to view hidden folders using in Apple Mac
How to view hidden folders using Terminal Another way to make hidden files and folders visible requires you to use Terminal. Open Terminal Run the following script: $ defaults write com.apple.Finder AppleShowAllFiles True $ killall Finder If you want to switch it back, simply change the true to false.
Hard Drive/USB Files not Writable or NTFS not Mountable
OSXFUSE – FUSE for macOS is an open source, GitHub-hosted application that basically operates a mechanism that allows the implementation of a fully-functional file system in a macOS program. The process that FUSE for macOS uses is tedious and can get very technical, which might make people who are not very […]
AnyConnect VPN in Cisco ASA
Web VPN Configuration: webvpn enable outside anyconnect image disk0:/anyconnect-win-3.1.14018-k9.pkg 1 regex “Windows NT” anyconnect image disk0:/anyconnect-macosx-i386-3.1.14018-k9.pkg 2 regex “Intel Mac OS X” anyconnect image disk0:/anyconnect-linux-3.1.14018-k9.pkg 3 regex “Linux” anyconnect image disk0:/anyconnect-linux-64-3.1.14018-k9.pkg 4 regex “Linux” anyconnect image disk0:/anyconnect-linux64-4.4.03034-webdeploy-k9.pkg 5 regex “Linux” anyconnect image disk0:/anyconnect-win-4.4.03034-webdeploy-k9.pkg 6 regex “Windows NT” anyconnect image disk0:/anyconnect-macos-4.4.03034-webdeploy-k9.pkg […]
Update the Antivirus Database in Palo Alto Using CLI
1. Check for new updates admin@PA-3020(passive)> request anti-virus upgrade check Version Size Released on Downloaded Installed ————————————————————————- 2689-3186 82MB 2018/07/30 08:54:05 PDT no no 2687-3184 21MB 2018/07/28 09:46:17 PDT yes previous 2688-3185 21MB 2018/07/29 10:02:37 PDT yes current 2. Download the latest updates admin@PA-3020(passive)> request anti-virus upgrade download latest Download […]
Install PAN-OS Software through the CLI
This document describes how to view and install available PAN-OS software through the CLI. Details To display a list of available PAN-OS software, use the following command: > request system software info admin@PA-3020(passive)> request system software info Version Size Released on Downloaded ————————————————————————- 8.0.11-h1 464MB 2018/07/05 22:16:21 no 8.0.10 462MB […]
IPSec VPN configuration between Cisco ASA to ASA
Phase 1: crypto ikev1 policy 10 authentication pre-share encryption aes-256 hash sha group 2 lifetime 86400 name 10.10.10.6 Thimi-L2 Object Group: object-group network Kukl_Thimi_network network-object 192.168.104.0 255.255.255.0 object-group network Kukl_Thimi_network network-object 192.168.104.0 255.255.255.0 Access Control List: access-list kukl_cryptomap_bhaktapur extended permit ip object-group Kukl_HQ_Network object-group Kukl_Bhaktapur_network log access-list kukl_cryptomap_bhaktapur remark Interesting […]
Enabling Trace Route in Cisco ASA
From a Windows client if I try and Tracert to an external IPaddress, this is what I would see. My first task is to get the ASAitself to reply to me, unlike most network devices the ASAdoes not decrease the ‘hop count’ as traffic passes through it, to rectify this we need to […]
Enable Logging in Juniper
Commands : set system syslog user * any emergency set system syslog file messages any critical set system syslog file messages authorization info set system syslog file messages match RT_FLOW set system syslog file interactive-commands interactive-commands error set system syslog file default-log-messages any info set system syslog file default-log-messages match […]
Troubleshoot USB to Serial Converter Issue
Steps to Download the Driver : https://developer.toradex.com/knowledge-base/how-to-install-prolific-usb-to-serial-driver-on-windows-8 Download PL2303 Driver: http://www.prolific.com.tw/US/ShowProduct.aspx?p_id=225&pcid=41 Chinese CH340 Driver: https://sparks.gogo.co.nz/ch340.html NOTE: Windows 8/8.1/10 are NOT supported in PL-2303HXA and PL-2303X EOL chip versions. Run PL2303 CheckChipVersion tool program in Windows XP/Vista/7 to check chip version. Windows Vista, XP, 2000, 98 and Windows ME driver technical support are discontinued. Prolific […]
NHRP Flags in Cisco Router
NHRP FLAGS AUTHORITATIVE : Indicates that the NHRP information was obtained from the Next Hop Server or router that maintains the NBMA-to-IP address mapping for a particular destination. NEGATIVE: For negative caching; indicates that the requested NBMA mapping could not be obtained. When NHRP sends an NHRP resolution request it inserts an […]
NHRP in Cisco Router
Multipoint Generic Routing Encapsulation (mGRE) It is a multipoint GRE It is point to multipoint It uses GRE and NHRP Next Hop Resolution Protocol (NHRP) NHRP is an ARP (Address Resolution Protocol) like protocol that dynamically maps a non broadcast multi access network NHRP has two component; NH Client (NHC) […]
