All public logs
From Notes_Wiki
Combined display of all available logs of Notes_Wiki. You can narrow down the view by selecting a log type, the username (case-sensitive), or the affected page (also case-sensitive).
(newest | oldest) View (newer 20 | older 20) (20 | 50 | 100 | 250 | 500)- 06:14, 8 September 2023 Saurabh talk contribs created page Paloalto URL filtering (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto URL filtering =Creating desired URL filtering policy= Clone the default URL filtering policy default and configure a URL filtering policy as per organization (Eg block violence sites). The meaning of category eg business is not explained anywhere on the interface and is left up to interpretation. However there is a check URL link. https://urlfiltering.paloalt...")
- 06:10, 8 September 2023 Saurabh talk contribs created page Paloalto troubleshooting options (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options *Paloalto firewall packet capturing *Paltalto firewall Monitor Session Browser *Paltalto firewall Monitor allowed/denied traffic Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options")
- 06:10, 8 September 2023 Saurabh talk contribs created page Paltalto firewall Monitor allowed/denied traffic (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options > Paltalto firewall Monitor allowed/denied traffic Go to Monitor -> Logs -> Traffic. Here we filter for source/destination. Here unlike session monitoring we can see historic (Based on log storage capacity of firewall) sessions and whether they were allowed or denied. Example filter ( addr.dst in 192.168.0.0/24 ) Same as monitor ->...")
- 06:09, 8 September 2023 Saurabh talk contribs created page Paltalto firewall Monitor Session Browser (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options > Paltalto firewall Monitor Session Browser We can monitor for sessions from specific source or to specific destinations to see whether they are even going through firewall. Once we go to Monitor -> Session Browser and configure filters. For filter click on any source / destination etc. listed and change the value. Example filter to s...")
- 06:06, 8 September 2023 Saurabh talk contribs created page Paloalto Policy based forwarding (PBF) (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto Policy based forwarding (PBF) On PBF note that: * We dont need PBF for incoming NAT reply packets. Using ECMP with symmetric return on router is enough. * Dont do PBF with a specific ISP when the same source machine LAN machine is NAT with public IP of other ISP. In that case reply packets try to use a different ISP (As per PBF) and configuration does not works...")
- 06:00, 8 September 2023 Saurabh talk contribs created page Paloalto using ECMP for active/active ISP connectivity (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > aloalto using ECMP for active/active ISP connectivity =Enabling ECMP= If organization has multiple ISPs then: # Enable ECMP in virtual router with symmetric return. We can enable up to 4 equal cost routes via ECMP # After commit check "runtime stats" local routing table of the device (Should be done on device, cant be done via panorama) and validate that we have default r...")
- 05:44, 8 September 2023 Saurabh talk contribs created page Paloalto NAT examples (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto NAT examples =NAT of public IP to private IP on a few ports= To NAT a public IP:port to private IP:port use: # Create WAN to WAN Security rule with destination as NATed public IP with all services and all ports # Create NAT rule from WAN to LAN with source IP as any and destination IP as WAN public IP. After NAT change the destination IP to LAN IP. Here in NAT...")
- 05:41, 8 September 2023 Saurabh talk contribs created page Paloalto Configure firewall for proxy DNS (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto Configure firewall for proxy DNS Palo Alto Networks firewalls can act as DNS servers for local users. By configuring DNS Proxy on the firewall, you can intercept DNS requests from internal clients and forward them to external DNS servers or resolve them locally. =Configure DNS proxy via setup and service route configuration= To check the DNS settings on a Palo A...")
- 05:34, 8 September 2023 Saurabh talk contribs created page Paloalto general notes or best practices (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto general notes or best practices =Add /32 netmask for a single IP= Adding netmask eg /32 for a single IP is important. Without this the policy / rule may get accepted and committed but does not works unless we add /32 netmask. This should be followed for all address objects without fail. Home > Enterprise security devices or applications >...")
- 04:43, 8 September 2023 Saurabh talk contribs created page Check cluster health via nagios plugin (Created page with "Home > Suse > SAP setup and maintenance > Check cluster health via nagios plugin We can monitor cluster health using nagios plugin using: '''Not tested in production''' #Create a plugin to be called via nrpe on the cluster host '<tt>/usr/lib64/nagios/plugins/cluster_check.sh</tt>' with: <source type="bash"> #!/bin/bash # Run crm status command and capture output crm_output=$(crm status 2>&1) # Check for error or warning in output, ignoring ca...")
- 04:31, 8 September 2023 Saurabh talk contribs created page Check cluster status via systemd service (Created page with "Home > Suse > SAP setup and maintenance > Check cluster status via systemd service We can check cluster status via a systemd script using: '''Not tested in production''' # Setup outgoing email via postfix on the system so that email can be sent using mail command via CentOS 8.x postfix send email through relay or smarthost with smtp authentication # Create a systemd script '<tt>/etc/systemd/system/cluster_status_check.service</tt>' with: <s...")
- 05:56, 19 July 2023 Saurabh talk contribs created page Rocky 9.x Add UEFI boot option in BIOS (Created page with "Home > Rocky Linux or CentOS > Rocky Linux 9.x > System Administration > Add UEFI boot option in BIOS If for some reason UEFI boot option from BIOS for Rocky is removed and you want to add it again use: # Disable secure boot. This may require shimx64 efi image # Add a new option for Rocky pointing to '<tt>EFI/rocky/grubx64.efi</tt>' file under EFI boot partition # Eithe...")
- 10:47, 16 June 2023 Saurabh talk contribs created page Ubuntu 20.04 Zabbix agent installation (Created page with "Home > Ubuntu > Server or Desktop administration > Ubuntu 20.04 Zabbix agent installation To install Zabbix agent in Ubuntu 20.04 machine use: # Install Zabbix repository #:<pre> #:: wget https://repo.zabbix.com/zabbix/6.4/ubuntu/pool/main/z/zabbix-release/zabbix-release_6.4-1+ubuntu20.04_all.deb #:: dpkg -i zabbix-release_6.4-1+ubuntu20.04_all.deb #:: apt update #:</pre> # Install Zabbix agent using: #:<...")
- 08:39, 16 June 2023 Saurabh talk contribs created page Monitor esxi resource utilization via esxtop command (Created page with "Home > VMWare platform > VMWare vSphere or ESXi > Monitor esxi resource utilization via esxtop command esxtop is a command-line tool that provides real-time information about resource usage in your ESXi environment. It can provide you with a wealth of data on CPU, memory, disk, and network usage. Here's a step-by-step guide on how to use esxtop to monitor an ESXi host: # Connect to the ESXi host via SSH #: This assumes SSH to ESXi host is ena...")
- 07:50, 16 June 2023 Saurabh talk contribs created page Cisco ASA firewall (Created page with "Home > Enterprise security devices or applications > Cisco ASA firewall *Cisco ASA firewall basic initialization Home > Enterprise security devices or applications > Cisco ASA firewall")
- 07:50, 16 June 2023 Saurabh talk contribs created page Cisco ASA firewall basic initialization (Created page with "Home > Enterprise security devices or applications > Cisco ASA firewall > Basic initialization Consider requirement as follows to initialize a ASA firewall: * DMZ IP of 192.168.11.1/24 for servers * WAN public IP 1.1.11.213/30 for Internet * LAN IP of 192.168.100.1/24 for LAN users * Additional 192.168.10.0 subnet for LAN accessible via L3 switch 192.168.100.2 * Outgoing internet access for LAN users from...")
- 07:06, 16 June 2023 Saurabh talk contribs created page VMWare Platform Miscellaneous (Created page with "Home > VMWare platform > VMWare Platform Miscellaneous *VMWare Useful Links Home > VMWare platform > VMWare Platform Miscellaneous")
- 07:06, 16 June 2023 Saurabh talk contribs created page VMWare Useful Links (Created page with "Home > VMWare platform > VMWare Platform Miscellaneous > VMWare Useful Links We can use following useful links related to VMWare platform: ; Configuration Maximums : We can find out maximum limit eg no. of datastores, no. of hosts, no. of VLANs, etc. for any particular VMWare product version using https://configmax.esp.vmware.com/home ; Product Interopibility Matrix : We can check whether products will work together or not. Eg Whether a parti...")
- 06:52, 16 June 2023 Saurabh talk contribs created page Proxmox Change disk configuration of VM with snapshots (Created page with "Home > Debian > Proxmox virtual environment > Proxmox Change disk configuration of VM with snapshots In proxmox we can take snapshots of the VM. However, if we want to change existing disks (eg remove one hard-disk) and then add another new hard-disk then there is concern on how will snapshots be effective if a disk is removed / added. Thus, for a example requirement where we need to remove a old disk from a Linux VM and add a new disk with...")
- 08:53, 15 June 2023 Saurabh talk contribs created page Rocky 9.x Package management (Created page with "Home > Rocky Linux or CentOS > Rocky Linux 9.x > System Administration > Package management *Rocky 9.x Erlang installation Home > Rocky Linux or CentOS > Rocky Linux 9.x > System Administration > Package management")