Archive for Yuri Slobodyanyuk's blog on IT Security and Networking
- Fortigate - revert configuration as a safety measure, analog to Cisco reload in, or Juniper commit confirmed
- Fortigate fnsysctl command options with examples
- Fortigate - set filters on logs exported to Fortianalyzer or Syslog
- Fortigate - switch from NAT to transparent mode error fix
- Fortinet-related blogs to read
- Send logs from non-Fortinet devices to Fortianalyzer via Syslog
- Collection of Fortigate Automation Stitches
- My networks talk to a prisoner, help.
- sFlow in Fortigate disables Hardware Acceleration
- Fortinet products Fortigate Fortiweb Fortimail and others online demo access details
- Transfer FortiTokens Mobile (FTM) between Fortigates - visual guide.
- Tips on Upgrading Fortigate in HA Cluster
- Fortinet Support - Tips on opening tickets with their TAC to make them more effective
- Fortigate cannot delete VDOM or other object in use problem solution
- Fortigate as DNS authoritative server with DNS database
- macOS mdfind examples cheat sheet
- tcpdump now shows interface names in its output, finally
- Fortigate VPN SSL Hardening Guide
- Fortigate end of support and end of life explained
- Fortigate subscription expired, list of features that will continue to work
- Fortigate buying used pre-owned firewall most frequently asked questions
- Fortigate administrator GUI authentication bypass critical vulnerability CVE-2022-40684 found
- Network MTU maximum size path discovery (PMTU) testing with ping
- Fortigate free VM Evaluation License is now permanent, not limited to 15 days, here is how to get it.
- GNU tar archive tool reference by example
- Fortigate Local-in policy configuration examples for VPN IPSec, VPN SSL, BGP and more
- Aruba and HP switches debug and diagnostics commands cheat sheet
- How to downgrade Fortigate Fortios version without losing the configuration
- FortiOS 7.2 New - diagnose debug flow in the GUI
- FortiOS 7.2 New - improved packet sniffer in the GUI
- FortiOS 7.2 New: diagnose sys top process monitor in the GUI
- Where do I download Fortigate free trial VM?
- Fortigate new Workspace Mode to commit changes in a batch - with an example of changing default gateway
- Fortigate CLI Tips to avoid costly mistakes, save time, and make you more effective
- How to request Google, Cloudflare, and OpenDNS/Umbrella DNS servers cache clearing for your domain records
- Cisco router - disconnect VTY user forcefully without reloading the router
- Check Point Certified Troubleshooting Administrator (CCTA) 156-580 Exam Preparation Tips and Impressions
- You CAN and probably should rename/delete the default admin user on Fortigate, here is how
- Fortigate - doing SNAT and DNAT on the same traffic in traditional and Central NAT modes how-to
- Checkpoint API tutorial, part 1 - getting started
- Fortianalyzer diagnose and debug cheat sheet
- Fortianalyzer Custom Reports from Custom Datasets Visual Guide How-to
- Fortigate FortiOS 7.0 is out - what's new Visual Guide
- Fortigate Firewalls Hardware - CPU model and number, Memory (RAM) and hard disk size datasheet table
- Fortigate VM Evaluation License 15 Days Limitations Explained
- Failed to connect to Fortiguard servers verification and debug
- 50,000 VPN usernames and their passwords from Fortigates around the world were leaked last week – what you can do to prevent it from happening to you
- Nfdump netflow/sflow cookbook of examples
- Using external threat feeds in FortiGate has become much easier with 6.0 and 6.2 versions
- Fortigate guest user accounts - create, edit, delete and deploy
- Fortigate how to verify that IPS is actually working
- Fortigate to Fortimanager management tunnel connection debug how-to
- Fortiweb Cookbook: Most Basic Setup - One website, add HTTPS support, Round Robin load balancing between two physical servers, all protections on Alert only, Host header filtration
- Fortiweb Cookbook: Basic setup - adding web site access authentication with local and remote (LDAP) users
- Fortigate Local in Policy what it does and how to change/configure it
- Fortiweb Cookbook: Most Basic Setup - One website, HTTP only, Round Robin load balancing between two physical servers, all protections on Alert only, Host header filtration
- Fortigate virtual IP server load balancing configuration and debug
- Fortigate DoS/DDoS sensor/policy rules configuration and verification
- Fortigate BGP cookbook of example configuration and debug commands
- AWS cli cookbook
- RAD ETX 203, 205, 220 debug and information commands
- Curl examples cookbook
- Fortiweb Cookbook: content routing based on URL configuration example
- Fortigate - enable e-mail as a two-factor authentication for a user and increase token timeout
- Fortigate CLI command alias to create shortcuts and save time
- What GEO location database Fortinet products are using?
- Fortigate has iperf client for traffic testing built in, here are all the details
- MRV Optiswitch OS904 OS906 OS912 debug and diagnostic commands
- Fortigate ssh access with public key authentication
- HIEW tutorial hexadecimal editor part 6 using HEM modules
- Checkpoint How to use R80.10 API for Automation and Streamlined Security webcast main points
- HIEW tutorial hexadecimal editor part 5 using Crypto module to program a keygen
- HIEW tutorial hexadecimal editor part 3 Navigation
- HIEW tutorial hexadecimal editor part 4 encrypting decrypting with XOR
- Binary obfuscation - String obfuscating in C
- How to manually install Security Policy via cli on Checkpoint Gaia.
- The one command to clear ALL the connections on a Checkpoint firewall - use with care
- What ports 18190 18209 18210 18211 in Checkpoint are used for
- HIEW Hex editor tutorials series , part 2 – the basics.
- HIEW Hex editor tutorials series , part 1 – the history.
- XCK and CRK file formats for binary patching in Windows.
- NMAP UDP DNS scan unexpected packets sending
- Last measure for the desperate case of a lost access to the Check Point firewall
- How many times can we change IP address of the Check Point license?
- NMAP run stages flow diagram
- Hex editor of binary files on Linux
- Ever wondered how much does ip addresses allocation cost to your service provier ?
- Public DNS servers open to any on the Internet
- Linux ip route command reference by example
- Free public NTP servers from Google
- Disconnect VPN or Mobile Access or SNX user from Check Point firewall
- On what Linux version do Check Point firewalls run ?
- Configure SSL protocol version used in SSL VPN by Check Point
- Add free disk space to Check Point appliance hard disk
- Check Point Gaia route missing after adding via ip route add problem
- RHEL get firewall zones and their interfaces in one go
- fw ctl zdebug drop - Check Point firewall ultimate debug command
- Do not miss Netflow capability of Check Point Gaia R77 and above
- Change colors of ls output in the bash shell
- How to know Checkpoint UTM Appliance model from the cli
- Undocumented command to install policy on Locally managed Checkpoint UTM 1100 series appliance
- Useful CLI commands for Cisco CUCM, Cisco Unity Connection and IM and Presence
- Cisco reflexive access-lists are still on CCNP Security exam
- How to know if a license or a subscription is about to expire for Check Point product
- Overlooked but nice utility from Checkpoint - cpview
- Checkpoint Mobile Access support for SHA-256 SSL certificates
- SNMP in Gaia default community string
- RIPE database query for a route object, or why my network is not advertised
- Cisco CUCM CDR report - call duration and called numbers extraction script
- Convert Checkpoint SPLAT routes into Gaia route configuration commands
- PTR bulk DNS resolver in Perl to see what is in the name
- Bash script to generate random passwords
- Disabling SSL Deep inspection proxy in Fortigate should be easier
- md5 sha256 sha-1 tiger and whirlpool sum checker for Windows
- Checkpoint SNX 75 does work on Mac OS X 10.8 Mountain Lion
- Agressive scans from 69.175.126.170 - HD Moore is trying to save the Internet
- SCP file transfers and Checkpoint R75 problems
- How to enroll Cisco VPN client with IOS CA
- Check duplex and speed settings of all interfaces in one go
- Funny way to expire Antispam license in Checkpoint
- Finally GEO location blocking has arrived to Fortigate
- Convert Fortigate diagnose sniffer packet output into tcpdump format understood by Wireshark
- awk weekly - Security rule hits statistics . Checkpoint
- Time-based access limiting on Checkpoint or any Linux for any network service
- Set NTP time source on Checkpoint to have correct log timestamps
- All you need to know about networking in Checkpoint firewall SecurePlatform FAQ
- Enable 2 factor authentication to protect your Gmail account if you have not
- Watch your DNS records day and night with Nagios plugins
- Limit maximum size of scanned files in Fortigate firmware 4
- 'Archive IOS running configuration automatically for possible rollback '
- Configure DVTI hairpinning on Cisco router for safe browsing
- Enable RADIUS Authentication for SSH and WEBGui access to the Checkpoint firewall
- Encrypting preshared keys stored on the cisco IOS router
- Cisco router – how to schedule an unattended reload with EEM
- Enable SNMP v3 in Checkpoint video walkthrough
- Two tips to secure SSH access from specific IPs to specific users in Checkpoint or any Linux
- 'How to separate inbound and outbound data graphs in Nfsen Netflow tool '
- You can be Nmap hacker too - contribute new signatures in few easy steps and feel proud of yourself
- Checkpoint firewall VPN debug cheat sheet
- RSA servers have been hacked
- Cisco Netflow performance data
- My Amazon book list for CCIE Security Lab exam
- Cisco ASA 5500 Series Content Security and Control Security Services Module or just CSC-SSM and how it looks
- How to enable SCP protocol on Checkpoint firewall for transferring files - video
- New Year present from Checkpoint - R75 download
- Check Point Certified Master Architect Certification is more accessible than ever
- Best open source Netflow/sFlow analyzing software
- Class A 2.0.0.0 is inaccessible from behind Edge devices bug
- IP address pools of Facebook to block, if you need to
- Grab bag of IPF firewall commands for FreeBSD and Solaris 10
- The D-day for CheckPoint UTM-1 Edge Appliances happened today - reboots are reported all over the world
- The easiest way to disclose Cisco routers on the network and how to fix it
- Too much of the Zeus on TV
- Convert mb4 to mp3 files in one run with ffmpeg
- Do not miss the long awaited addition to the Fortigate 4 MR2 – sFlow data export
- Darknet can't lie - most of the attacks, scans and other interesting things
- Funny things people do - how to turn Checkpoint UTM 450 into Windows Media player
- You need no MX record to get mails
- Skynet got blacklisted - Google mail servers entered RBL of Sorbs.net
- How come assigning VPN user to specific group takes just one command but no one does it ?
- Turn the Checkpoint firewall into network-neutral router and do it in 2 minutes.
- Number of connected SecureClient or Secureremote users
- Checkpoint - turn netconf.C routes into linux route command
- snmp-map in ASA is for passing through traffic only
- ASA 8.2 now speaks SNMP v3 decently
- sla monitor in Cisco ASA land
- Teach Cisco ASA to speak NTP
- Redundant interfaces in Cisco ASA
- Find SmartCenter address on the firewall module
- Playing with RIP on ASA
- Subnet calculator in Checkpoint firewall
- Restart Checkpoint Smart Center/Management Server only, without traffic interruption
- List of valid domain names for load testing DNS
- Restart SNMP daemon on Checkpoint
- Query non-standard port of SNMP with snmpwalk
- Break free from the GUI dependency – checking Fortigate logs on the cli.
- MAC finder script
- Visio stencils for Cisco, Juniper, Fortinet, Checkpoint, Avaya Updated for 2020
- Where do I download the Checkpoint Splat/Gaia image
- 8 Things to do before opening ticket with Checkpoint
- Solaris interfaces – create assign delete
- How to choose the password that noone can guess and you cant remember
- Top 10 usernames used in SSH brute force
- SSH brute force is on the rise, awk script to count failed SSH attempts
- Change IP address on the interface without losing the connection
- Schedule fw monitor to run unattended via cron
- SMTP inspection with policy-map in ASA
- Alert on change of SOA in domain
- FTP inside VPN Checkpoint troubles
- Configure VLAN Solaris way
- md5 and sha1 hashing in Solaris
- Encrypting local files in Solaris
- Authenticating ssh access on the Checkpoint using external Radius server
- How to know UTM appliance version on the CLI
- fw ctl or checkpoint tables by any other name
- Solaris – configure ftp server
- Fortigate BGP - configure and debug
- Scan of the week – scan by country scan by continent
- Install native telnet client on Checkpoint firewall
- Traffic shaping in Checkpoint the Linux way
- awk weekly rule hits statistics checkpoint again
- awk weekly – Checkpoint Anti Spam statistics or viva les Open Relays
- Cisco IPS sensor – initial setup
- awk weekly - how to see Checkpoint logs on command line
- Difference between ebgp-multihop and ttl-security.
- VPN client stops working in visitor mode after major update
- fw monitor add-on - using tables in Checkpoint fw monitor capture tool
- Fortigate firewall demo free access. Also FortiManager and FortiAnalyzer
- Mail alert on ssh login or any other rule hit in Checkpoint
- Capture packets at IOS Cisco router or finally we have a sniffer
- Enabling antispam or antivirus on the Checkpoint gateway blocks smtp or http traffic
- IP Options are evil - drop them , drop them on Cisco Asa/IOS Microsoft ISA
- 'Cisco log: Missing cef table for tableid 65535 during CEF samecable event'
- Scheduled Daily Reboot of FortiGate
- Cisco ASA privilege separation for a local user or read only user on ASA
- Print rulebase in Checkpoint firewall
- Checkpoint – back up centrally for recovery.
- Checkpoint winscp troubles
- ARP table overflow in Checkpoint and Linux in general
- Increase log size in eSafe
- Increase the limit and rotate SSH log files in Checkpoint firewall
- fw monitor command reference CheckPoint firewall
- copy http flash – download from HTTP server to the Cisco router
- SSH login alert by mail Linux or Unix based systems
- Reinstall Checkpoint UTM-1 firewall, the hard way...
- Ping – setting don't fragment bit in Linux/Windows/FreeBSD/Solaris/Cisco/Juniper
- Don't rely on SmartViewTracker only - it may lie
- Failed to connect to Fortiguard servers
- You can't set duplex/speed settings of the Fortigate interfaces?
- Tracking the source of DDOS attack with Cisco IOS ip source tracking
- Checkpoint UTM Appliance or Open Server/Power ?
- Change password for console expert user Checkpoint Splat
- Debug VPN in Fortigate - seeing is believing
- Black hole routing to the rescue - Fortigate OS 4 surprise
- eSafe Certified Professional
- Cisco routers ip accounting to see most bandwidth abusing connections
- Finding the station/IP using/abusing most of the bandwidth – PIX/ASA
- Clear ARP table in Checkpoint
- Prevent brute force attack on VTY in Cisco IOS
- Manage VPN tunnels smartly: forget vpn tu,enter the vpn shell
- Autologin Expect scripts for telnet/ssh
- SSH session timeout in Checkpoint Firewall
- Telnet from inside Checkpoint firewall
- Aladdin Esafe defaults and some debug commands
- find tool patterns