Configuration guides for IT Administrators
Administrator
-
Restrict access of Cyberoam Web Admin GUI to certain WAN IPs
⏱︎
Read time:
Read More →: Restrict access of Cyberoam Web Admin GUI to certain WAN IPsThis article, tells you how to restrict Cyberoam GUI access to certain IPs from LAN, so what to do, if you want to restrict to specific Public IPs from WAN. Create a Host Group (named here as WAN IP Access Group) with list of Public IP addresses that you want to provide access, then create WAN-LOCAL access…
-
Cyberoam Firewall firmware upgrade – Video Tutorial
⏱︎
Read time:
Read More →: Cyberoam Firewall firmware upgrade – Video Tutorial[wpdevart_youtube]J_zISa69nts[/wpdevart_youtube]
-
route traffic via IPSec tunnel in Cyberoam firewall
⏱︎
Read time:
Read More →: route traffic via IPSec tunnel in Cyberoam firewallIt took almost 2 days for me to resolve this problem -> traffic didn’t pass through the IPSec tunnel in Cyberoam firewall. I read most of KB articles in Cyberoam that talks about it. I grouped here all the checklists that you need to verify. Log shows EST-P1: Peer did not accept any proposal sent, Message ID 17853 1.Define the subnets…
-
Cisco 1850 Mobility Express Configuration – Video Tutorial
⏱︎
Read time:
Read More →: Cisco 1850 Mobility Express Configuration – Video Tutorial[wpdevart_youtube]NaSLHokze6E[/wpdevart_youtube] Our video tutorial missed to clarify few information, so we explained here 10.150.102.1 and 10.150.180.1 are IPs of SVI configured on the switches. 10.150.200.253 is an interface on Cisco ASA firewall, being Guest WLAN, we have not configured SVI on the switch and let ASA handle DHCP Server and lease IPs. You should necessarily have…
-
Configure IKEv1 Site to Site VPN between Cisco ASAs
⏱︎
Read time:
Read More →: Configure IKEv1 Site to Site VPN between Cisco ASAsStep 1: Configure Phase 1 and Phase 2 In ASA of both sides Phase 1: IKE policy In Phase 1, single bi-directional SA (Security Association) is created between VPN peers and is a control channel for Phase-1 keepalives, DH-Key Calculation and Phase-2 SA creation and rekey. ciscoasa(config)# crypto ikev1 policy 10 ciscoasa(config-ikev1-policy)# authentication pre-share…
-
Connect F5 LACP ports to Cisco Switch on ether-channel
⏱︎
Read time:
Read More →: Connect F5 LACP ports to Cisco Switch on ether-channelF5 LACP Configuration: In both F5 boxes, configure LACP as shown in the screenshot Cisco Switch Configuration: Both these Cisco switches are stacked and it supports multi-chassis port-channel, i.e. creating port-channel between Ethernet interfaces of different switches. Set all these interface to default settings, this is to avoid mismatch on interface configuration causing failure of ether-channel formation. (config)# default int…
-
Port Forwarding in HG8247, Home Gateway – Fibre to the Home
⏱︎
Read time:
Read More →: Port Forwarding in HG8247, Home Gateway – Fibre to the HomeThe default administrator password of HG8247, Home Gateway – Fibre to the Home is Username: telecomadmin Password: admintelecom Below is one example of port forwarding in HG8247 device, it is same for other ports/applications. To port forward VPN traffic on a device (IP address as 192.168.100.3) located behind HG8247 router, you need to open UDP ports 500 and 4500…
-
Cisco 887- configure FastEthernet port as WAN
⏱︎
Read time:
Read More →: Cisco 887- configure FastEthernet port as WANBelow is successfully working configuration to configure Cisco 887 router interface as WAN port, remember that you cannot make these FastEthernet interfaces as L3 (no switchport) and you cannot assign IP address to these interfaces, so instead create SVI as we did below. Configure inside interface as “ip nat inside” and outside interface as “ip nat…
-
Review of Cisco Meraki Facebook Wi-Fi
⏱︎
Read time:
Read More →: Review of Cisco Meraki Facebook Wi-FiConfiguration of Facebook Wi-Fi in Cisco Meraki: In Cisco Meraki dashboard, navigate to Wireless > SSIDs > edit settings of Access Control. Then configure as below Under Addressing and traffic option, choose Bridge mode: Make clients part of the LAN. This option let clients receive IP address from your local DHCP server, probably thats your ADSL router…
-
F5 SSL offload – redirects traffic back in http instead of https
⏱︎
Read time:
Read More →: F5 SSL offload – redirects traffic back in http instead of httpsWe are using WebLogic Server at the backend and F5 LTM load balancer at front. Our SSL certificate is offloaded in F5 and users see https in their browser. But while looking at the packets (using F12) in the user computer and also in the logs of Weblogic server, everything was recorded as http instead of…
Lucas Brey
I’m Lucas Brey, a travel blogger sharing practical guides, hidden gems, and honest tips from the road. Follow along for smart itineraries, great food finds, and stories worth bookmarking.
Categories
- Active Directory
- AWS
- BIG-IP F5
- BlueHost
- CCNA 200-301
- CCNA Practice LAB
- Cisco
- Cisco ASA
- Cisco Router
- Cisco Switch
- Cisco TelePresence
- Cisco UCS
- Cisco Wireless
- Cloud
- Commands
- Cyberoam Firewall
- DevOps
- Docker
- Elasticsearch
- Firewall
- FortiGate
- General
- HP Switch
- Huawei Router
- Hyper-V
- Linux
- Microsoft365
- MongoDB
- Oracle Cloud
- Paloalto Firewall
- PSExec
- Python
- SEO
- Solaris
- Symantec Messaging Gateway
- Tiny Core Linux
- TM Deep Security
- Tomcat
- tp-link
- Uncategorized
- VMware
- Wordpress
- Zabbix
Tags
- .m4a to .wav
- /bin/false
- /sbin/nologin
- 301 permanent response
- Access Control List
- activation-key
- Active
- AD Group
- Add member to Switch Stack
- airmon-ng
- APN
- ASA allow ping
- ASA AnyConnect Package
- ASA FirePower Services
- ASA IKEv1 Site to Site VPN
- ASA IKEv2
- ASA license
- ASA SFR Setup
- audacity merge
- Auto start stop
- Azure AD
- Azure AD Connect
- Azure AD Join
- AzureAD
- backup mobility express
- Bidirectional Static NAT Cisco ASA
- Bluehost
- Bootstrap
- Brackets
- Cannot start microsoft outlook
- CCNA
- CentOS
- Certificate
- certificate chain expiry
- Certs
- Checklist
- Chrome
- circuit breaking exception
- Cisco
- Cisco 1850
- Cisco 887 WAN
- Cisco AnyConnect
- Cisco ASA
- Cisco ASA Active/Standby
- Cisco ASA AnyConnect
- Cisco ASA Anyconnect SSL
- Cisco ASA CSR
- Cisco ASA Failover
- Cisco ASA High Availability
- Cisco ASA IKEv1 VPN
- Cisco ASA IKEv2 VPN
- Cisco ASA VPN
- Cisco ASDM Windows 10
- cisco cucm user logged in
- Cisco Mobility Express
- cisco router
- cisco stack switch upgrade
- Cisco Switch
- Cisco Switch DHCP
- Cisco Switch Stack
- Cisco Switch tips
- Cisco Telepresence
- cisco ucs ESXi purple error
- Cisco VPN Alternate
- Cisco VPN encrypt drop
- Cisco Wireless
- Cisco WLC
- Cisco WLC Tips
- Cisco WLC upgrade
- cli
- commands
- Commands on standby ASA
- content exists
- Convert CAPWAP to Mobility Express
- could not start pcpu 1 TSC sync timed out
- Country Code F5
- csv mysql
- cyberoam
- Cyberoam Firewall upgrade
- Cyberoam firmware upgrade
- cyberoam GUI access
- Cyberoam IPSec VPN
- Cyberoam Static NAT
- cyberoam WAN
- Data Group iRule
- date
- debug php errors
- debug wordpress
- Deep Security
- default interface
- delegate
- dev fd0
- DHCP in Cisco ASA
- Diagnostic Package
- difference
- Disable
- Disable HTTPS Redirect
- Disable or Forced Offline Pool member
- dlink
- Docker
- double dash
- double hyphen
- Download
- Dynamic NAT
- DynDNS
- Elasticsearch
- empty()
- Enable SSH
- enterprise vault
- err-disabled
- Error
- exchange
- ExchangeOnline
- exit-code
- Expand Disk
- external dynamic list
- F5
- f5 active connections
- F5 APM
- F5 clear LCD
- F5 Data Group
- F5 deployment topology
- F5 Exchange CAS Hostname
- F5 Geo-location
- F5 High Availability
- F5 HSTS
- F5 LACP
- F5 load balancing methods
- F5 logging
- F5 PFS
- F5 SSL offload
- F5 tcpdump
- file empty
- Firefox
- Firewall Feed
- font
- forticlient
- FortiGate
- FortiGate Block Country
- FortiGate Category
- FortiGate CLI
- FortiGate CLI Address Objects
- Fortigate Conflict With Subnet
- Fortigate difference threat feed
- Fortigate GUI Access
- Fortigate IP Address
- Fortigate IP Address Feed
- Fortigate IP Feed
- Fortigate IP Pools
- Fortigate IP Text File
- Fortigate Management Interface
- Fortigate one-to-one NAT
- Fortigate Same Subnet
- FortiGate Security Fabric
- Fortigate Static NAT
- Fortigate Virtual IP
- Free
- Free Tool
- free wav merge files
- FSSO upgrade
- GAL
- Geolocation F5
- get list of program
- get_query()
- get_results()
- get_row()
- get_var()
- Get-MessageTrace
- Global Address List
- GoDaddy
- Google Search Console
- growpart
- Gutenberg
- HP Cisco switch trunk
- HP Switch CLI
- HP switch intervlan routing
- HSRP
- HSTS
- http monitor f5
- https to http redirect
- Hyper-V
- Hyper-V Convert VM
- IKEV1 VPN
- image
- image on standby asa
- Install
- Install-Module
- Installation
- Integrate
- interface bandwidth
- internet
- IPSec between Paloalto and Cisco Router
- IPSec Cisco Router Dynamic IP
- IPSec VPN
- iptables
- IPv6
- iRule
- iRule Commands
- iRule logging
- iRule order
- isset()
- Jasper
- Jetpack
- kali
- kill process in remote pc
- KRACK Attack
- Lab
- Large files
- lcdwarn
- libseccomp2
- Linux
- Linux command
- log rotation
- logging console
- Login Banner
- Loop
- LTM inline character error
- mac-address
- Mailbox
- MailboxPermission
- Manual Install
- Menu
- Meraki Facebook WiFi
- merge wav files
- Microsoft 365
- Mobility Express
- mobility express AP
- Mobility Express CLI Commands
- MongoDB
- Monitor Website
- Move OU
- Msol
- multi-SSID
- multiple SSID
- multiple VLAN
- mysql
- MySQL table size
- NAT
- netplan
- Network Missing
- networkmanager
- new line
- New Outlook
- next line
- No Skype for Business
- Notifications
- ntp
- Office365 Deployment Tool
- Ooredoo
- Ooredoo fiber
- openssh
- Oracle Access Rules
- Oracle Cloud
- Oracle Cloud DB Access Rule
- Oracle Database Cloud Service
- Oracle Java Cloud Firewall
- Orange
- Outlook
- Outlook Classic
- Outlook Rules using powershell
- pa 8.1.0 upgrade
- Packet Tracer
- PacketTracer
- page role
- Palo Alto
- Paloalto
- paloalto firewall
- paloalto firewall upgrade
- Paloalto OpManager
- Paloalto SNMP MIB
- Paloalto Tunnel Monitor
- parsedmarc
- Pass Country Code using iRule
- password reset
- Permission
- php
- php class COM
- ping ASA inside
- PoE vs PoE+ vs UPoE
- Pool members traffic
- port forward
- Port Forwarding in HG8247
- port-channel
- PowerShell
- ppk version 2
- ppk version 3
- Practice LAB
- predownload AP
- preg_split
- Priority
- privilege
- PsExec
- PSSession
- PUTTY
- Python
- remote access vpn
- remotely reboot windows
- Replace
- ReplicaSet
- resize2fs
- route-lookup
- Router
- router factory default
- Routes
- rsyslog
- S3 bucket
- SAN Certificate Symantec Messaging Gateway
- Script error
- Search
- Secure
- Secure Boot
- server
- serverside SSL
- Shrew soft VPN Setup
- Slack
- SNMP
- SNMP v3
- software
- Solaris
- SPF
- ssh
- SSL
- stack upgrade
- Static
- Static NAT Cisco ASA
- subdomain
- Subscription
- Sucuri
- Sudoers
- switch autostate
- Switch back
- switch bandwidth
- Switch DHCP 150
- switch etherchannel
- SX80 Codec 4x Cam
- symantec
- syslog
- tcpdump nnn
- Teams
- Teams PowerShell Module
- Telepresence Firewall Ports
- terminal monitor
- text file
- Themes Editor
- time
- timezone
- tiny core
- tomcat
- tp-link
- Trace email logs
- Trap
- Trend Micro
- Ubuntu
- uccx .wav
- uccx audacity
- uccx audio free converter
- UCCX Master/Slave
- uccx script error
- uninstall ap
- upgrade
- Use Data Group in iRule
- useful
- User
- UUID
- v1
- v2c
- v3
- vCenter 6.5
- Vi
- virtualbox
- VMware
- vpn
- w32tm
- WAN Access
- Weblogic Plugin Enabled
- Website
- Windows Service
- without plugin
- WL-Proxy-Client-IP
- WL-Proxy-SSL
- WLC 8.3.133 Upgrade
- WLC upgrade
- Wordpress
- WordPress Javascript
- WordPress URL Parameter
- wpdb last_error
- wpdb last_query
- wpdb last_result
- X-Forwarded-For
- XAMPP
- XAMPP Control Panel
- xpack.security.encryptionkey
- Zabbix
- Zabbix Port
- Zabbix_get