tag:blogger.com,1999:blog-88892850001862949322024-03-17T02:45:19.489-07:00Ken Felix Security BlogUnknownnoreply@blogger.comBlogger1104125tag:blogger.com,1999:blog-8889285000186294932.post-49601772588561271992024-03-13T12:43:00.000-07:002024-03-13T12:43:37.303-07:00Fortigate as a explicit proxy v7.2.x<p>In this post, we will explore explicit proxy setup and diagnostics in v7.2 since it has some simple changes</p><p></p><ul style="text-align: left;"><li><i>this is non-authentication proxy</i></li><li><i>I have the proxy client ranges limited to a single PC for this blog posting</i></li><li><i>http/https </i></li><li><i>port 3128 </i></li></ul><p></p><p>Okay let's enable proxy on an SDWAN interface and globally </p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">config system interface</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>edit "wan2"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set vdom "root"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set ip 20.14.20.2 255.255.255.240</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set allowaccess ping </span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set type physical</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space" style="color: #ffa400;"> </span><b>set explicit-web-proxy enable</b></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set alias "internet2 XO"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set role wan</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set snmp-index 4</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>next</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">end</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">and</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">config web-proxy explicit</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set status enable</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set ftp-over-http enable</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set http-incoming-port 3128</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set https-incoming-port 3128</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set pac-file-server-status enable</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set pac-file-server-port 7888</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set pac-file-name "socpuppetproxyaccessconf"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><i><span style="color: #ffa400;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></span></i></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">end</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">Now for our policy creation, the fortiOS uses proxy-policy </span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">config firewall proxy-policy</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>edit 1</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set proxy explicit-web</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set dstintf "upg-zone-wan2"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set srcaddr "HOME_PC"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set dstaddr "all"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set service "webproxy"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set action accept</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set schedule "always"</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>set logtraffic all</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;"><span class="Apple-converted-space"> </span>next</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><i><span style="color: #ffa400;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></span></i></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span style="color: #ffa400;">end</span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">Diagnostics tips</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div class="separator" style="clear: both; text-align: left;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEiXt8pw3T5OkIfkgKuVJYOcUMrp7uN-jxabX1TRCbFlqj64MnhDsMN0BBvmKCfFoDWgnMPrYD4yCbo3wOmWJHXcu7Hx9AvO2sp6TQYZPg6ZOhbxOvXMoN9ubqimaFGDYd9wfAMMI7gYrOcw6hSikGdS4mxY3FbdUl9btXarlOID5c7Wb1S54zCb5Gx90BLN" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="225" data-original-width="225" height="77" src="https://blogger.googleusercontent.com/img/a/AVvXsEiXt8pw3T5OkIfkgKuVJYOcUMrp7uN-jxabX1TRCbFlqj64MnhDsMN0BBvmKCfFoDWgnMPrYD4yCbo3wOmWJHXcu7Hx9AvO2sp6TQYZPg6ZOhbxOvXMoN9ubqimaFGDYd9wfAMMI7gYrOcw6hSikGdS4mxY3FbdUl9btXarlOID5c7Wb1S54zCb5Gx90BLN=w77-h77" width="77" /></a><b>If you are getting timeout , any by using the</b> <b><span style="color: red;">"diag sniffer packet any "port 3128" </span>you see no packets,<span style="color: red;"> </span>your problem is way before the proxy. Fix your local issues 1st. </b></div><div class="separator" style="clear: both; text-align: left;"><b><br /></b></div><div class="separator" style="clear: both; text-align: left;"><b>This is most likely a local firewall, downstream firewall/filters, or filtering. Also ensure the client has the right proxy IP and port#.</b></div><div class="separator" style="clear: both; text-align: left;"><b><br /></b></div><div class="separator" style="clear: both; text-align: left;"><b><br /></b></div><div class="separator" style="clear: both; text-align: left;"><b>Helpful diagnostics cmds</b></div><div class="separator" style="clear: both; text-align: left;"><b><i><br /></i></b></div><div class="separator" style="clear: both; text-align: left;"></div><p></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>diagnose wad stats common.ses_stats</i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><i><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></i></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>diag wad worker policy # p_id:xxxx <b>( the xxxx would be your policy id )</b></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><i><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></i></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>diag wad session list<span class="Apple-converted-space"> </span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"></span></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>diag wad debug enable all <b># this will generate a lot of messages</b></i></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><i><b><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></b></i></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"></p><div class="date-outer" style="-webkit-text-stroke-width: 0px; background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 12px; font-style: normal; font-variant-caps: normal; font-variant-ligatures: normal; font-weight: 400; letter-spacing: normal; orphans: 2; text-align: start; text-decoration-color: initial; text-decoration-style: initial; text-decoration-thickness: initial; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px;"></div><p></p><div class="date-outer" style="-webkit-text-stroke-width: 0px; background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 12px; font-style: normal; font-variant-caps: normal; font-variant-ligatures: normal; font-weight: 400; letter-spacing: normal; orphans: 2; text-align: start; text-decoration-color: initial; text-decoration-style: initial; text-decoration-thickness: initial; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px;"><div class="date-posts"><div class="post-outer"><div class="post hentry uncustomized-post-template" itemprop="blogPost" itemscope="itemscope" itemtype="http://schema.org/BlogPosting" style="margin: 0px 0px 25px; min-height: 0px; position: relative;"><div class="post-body entry-content" id="post-body-4528703615021897458" itemprop="description articleBody" style="font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration: none;"><br class="Apple-interchange-newline" /><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background: rgb(255, 255, 255); border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="background-color: white; color: #222222; font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"><div class="post-footer-line post-footer-line-1"><span class="post-author vcard" style="margin-left: 0px; margin-right: 1em;">Posted by<span> </span><span class="fn" itemprop="author" itemscope="itemscope" itemtype="http://schema.org/Person"><span itemprop="name">socpuppets</span><span> </span></span></span><span class="post-timestamp" style="margin-left: -1em; margin-right: 1em;">at<span> </span><a class="timestamp-link" href="https://socpuppet.blogspot.com/2024/02/generating-http-request-to-website-by.html" rel="bookmark" style="color: #2288bb; text-decoration: none;" title="permanent link"><abbr class="published" itemprop="datePublished" style="border: none;" title="2024-02-01T12:28:00-08:00">12:28 PM</abbr></a><span> </span></span><span class="post-comment-link" style="margin-right: 1em;"><a class="comment-link" href="https://socpuppet.blogspot.com/2024/02/generating-http-request-to-website-by.html#comment-form" style="color: #2288bb; text-decoration: none; white-space: nowrap;">No comments:<span> </span></a></span><span class="post-icons" style="margin-right: 1em;"><span class="item-control blog-admin pid-1160730667" style="display: inline;"><a href="https://www.blogger.com/post-edit.g?blogID=8889285000186294932&postID=4528703615021897458&from=pencil" style="color: #2288bb; text-decoration: none;" title="Edit Post"><img alt="" class="icon-action" height="18" src="https://resources.blogblog.com/img/icon18_edit_allbkg.gif" style="border-color: initial; border-image: initial; border-style: none !important; border-width: initial; margin: 0px 0px 0px 0.5em !important; position: relative; vertical-align: middle;" width="18" /><span> </span></a></span></span><div class="post-share-buttons goog-inline-block" style="display: inline-block; margin-right: 0px; margin-top: 0.5em; position: relative; vertical-align: middle;"><a class="goog-inline-block share-button sb-email" href="https://www.blogger.com/share-post.g?blogID=8889285000186294932&postID=4528703615021897458&target=email" style="background: url("/img/share_buttons_20_3.png") 0px 0px no-repeat !important; color: #2288bb; display: inline-block; height: 20px; margin-left: -1px; overflow: hidden; position: relative; text-decoration: none; width: 20px;" target="_blank" title="Email This"><span class="share-button-link-text" style="display: block; text-indent: -9999px;">Email This</span></a><a class="goog-inline-block share-button sb-blog" href="https://www.blogger.com/share-post.g?blogID=8889285000186294932&postID=4528703615021897458&target=blog" style="background: url("/img/share_buttons_20_3.png") -20px 0px no-repeat !important; color: #2288bb; display: inline-block; height: 20px; margin-left: -1px; overflow: hidden; position: relative; text-decoration: none; width: 20px;" target="_blank" title="BlogThis!"><span class="share-button-link-text" style="display: block; text-indent: -9999px;">BlogThis!</span></a><a class="goog-inline-block share-button sb-twitter" href="https://www.blogger.com/share-post.g?blogID=8889285000186294932&postID=4528703615021897458&target=twitter" style="background: url("/img/share_buttons_20_3.png") -40px 0px no-repeat !important; color: #2288bb; display: inline-block; height: 20px; margin-left: -1px; overflow: hidden; position: relative; text-decoration: none; width: 20px;" target="_blank" title="Share to Twitter"><span class="share-button-link-text" style="display: block; text-indent: -9999px;">Share to Twitter</span></a><a class="goog-inline-block share-button sb-facebook" href="https://www.blogger.com/share-post.g?blogID=8889285000186294932&postID=4528703615021897458&target=facebook" style="background: url("/img/share_buttons_20_3.png") -60px 0px no-repeat !important; color: #2288bb; display: inline-block; height: 20px; margin-left: -1px; overflow: hidden; position: relative; text-decoration: none; width: 20px;" target="_blank" title="Share to Facebook"><span class="share-button-link-text" style="display: block; text-indent: -9999px;">Share to Facebook</span></a><a class="goog-inline-block share-button sb-pinterest" href="https://www.blogger.com/share-post.g?blogID=8889285000186294932&postID=4528703615021897458&target=pinterest" style="background: url("/img/share_buttons_20_3.png") -100px 0px no-repeat !important; color: #2288bb; display: inline-block; height: 20px; margin-left: -1px; overflow: hidden; position: relative; text-decoration: none; width: 20px;" target="_blank" title="Share to Pinterest"><span class="share-button-link-text" style="display: block; text-indent: -9999px;">Share to Pinterest</span></a></div></div><div class="post-footer-line post-footer-line-2"><span class="post-labels" style="margin-left: 0px; margin-right: 0px;"></span></div><div class="post-footer-line post-footer-line-3"><span class="post-location" style="margin-left: 0px; margin-right: 0px;"></span></div></div></div></div></div></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><b><span style="color: red;"><br /></span></b></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><b><span style="color: red;"><br /></span></b></span></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-45287036150218974582024-02-01T12:28:00.000-08:002024-02-01T12:28:48.414-08:00Generating HTTP request to a website by using openssl <p> Have you ever been on a system with no GUI, no text browser, wget, or CuRL but need to test HTTP access? </p><p>If you have <b>openssl</b> you can craft a GET or HEAD request and generate HTTP traffic</p><p>example</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 14px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span> echo -e "HEAD / HTTP/1.1\r\nHost: www.example.com\r\nUser-Agent: SocPuppets\r\nConnection: Close\r\n\r\n" | openssl s_client<span class="Apple-converted-space"> </span>-quiet<span class="Apple-converted-space"> </span>-state -connect www.example.com:443 </span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 14px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 14px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 14px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p1" style="font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"> So if you ever need to test HTTPS access and the device has no standard web-browser use openssl.</p><p class="p1" style="font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="background-color: white; color: #222222; font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-43878440479076487962023-12-13T04:44:00.000-08:002023-12-13T04:44:12.408-08:00PANOS decryption tip<p>I was troubleshooting something with an org a while back where they needed to do decryption for just one "URL", but the FQDN IP address matching matches numerous sites.</p><p>So let's use example.com which has the following;</p><p><b><i>www.example.com</i></b></p><p><b><i>www.example.net.</i></b></p><p><b><i>www.example.org</i></b></p><p><b><i>and www.example.edu</i></b></p><p>all map to the same single IP. address; <span style="font-family: Menlo; font-size: 11px; font-variant-ligatures: no-common-ligatures;"><b><span style="color: red;">93.184.216.34</span></b></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ % host www.example.com<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.com has address <span style="color: red;">93.184.216.34</span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.com has IPv6 address 2606:2800:220:1:248:1893:25c8:1946</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ % host www.example.net</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.net has address <span style="color: red;">93.184.216.34</span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.net has IPv6 address 2606:2800:220:1:248:1893:25c8:1946</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ % host www.example.org</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.org has address <span style="color: red;">93.184.216.34</span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.org has IPv6 address 2606:2800:220:1:248:1893:25c8:1946</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ % host www.example.edu</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.edu has address <span style="color: red;">93.184.216.34</span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">www.example.edu has IPv6 address 2606:2800:220:1:248:1893:25c8:1946</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ %<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;">So let's say you want to decrypt traffic to www.example.com and not the others. </span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;"><br /></span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;">Do not use a decryption rule with an <b>IP</b> or <b>FQDN</b> address object in the decryption n rule. </span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;"><br /></span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;">You should use a "<i><b>custom URL</b></i>" list. Here are a few screenshots of how that would look from the web UI</span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;"><br /></span></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><div class="separator" style="clear: both; text-align: left;">1st the wrong method was deployed ( they had used an address object FQDN ) </div><div class="separator" style="clear: both; text-align: left;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2Ez_Fdb3veher3k8kjmr7hy_0MWqLQ1YLXYBl_qO5zTPaxlpB3J5_6hSvut-q_-uHvAEZYDnfQdpm36OmSUHiaYTM3FiWDNiVQcUYjwJrfezfv_IcnmyHbek2n2YRTkHY9sL7n-tjAvh0cgjylIiBTcZ2RYlOYB-TOIKbf1bNLrhXCQUfvtO5DJ3uWEyP/s803/Screenshot%202023-12-13%20at%206.22.33%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="415" data-original-width="803" height="270" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2Ez_Fdb3veher3k8kjmr7hy_0MWqLQ1YLXYBl_qO5zTPaxlpB3J5_6hSvut-q_-uHvAEZYDnfQdpm36OmSUHiaYTM3FiWDNiVQcUYjwJrfezfv_IcnmyHbek2n2YRTkHY9sL7n-tjAvh0cgjylIiBTcZ2RYlOYB-TOIKbf1bNLrhXCQUfvtO5DJ3uWEyP/w524-h270/Screenshot%202023-12-13%20at%206.22.33%20AM.png" width="524" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: center;"><br /></div><p></p><div class="separator" style="clear: both;">Now the method was changed to use a custom URL list the destination field for IP was left as an ANY.</div><div class="separator" style="clear: both;"><br /></div><div class="separator" style="clear: both; text-align: center;"><div class="separator" style="clear: both; text-align: left;"><br style="font-family: Menlo; font-size: 11px; font-variant-ligatures: no-common-ligatures;" /></div></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgC6gZnjYJ5gnMJHlr4zoVTYS403ruXt-lpCYWpU4OAA0HOUhaEHKsts94x8qYYV1ETI11T7Pactpx-e24YI9nvIIsoOFZXTF_vENebPsg0uHT5Y86zmskOj6HMMAOvsO-btKoy19vkfgDSDD99_wmceBEuMghFel9vnQQyQNak1xJAv2QfFP-Ut1JB9vw/s801/Screenshot%202023-12-13%20at%206.23.03%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="397" data-original-width="801" height="159" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgC6gZnjYJ5gnMJHlr4zoVTYS403ruXt-lpCYWpU4OAA0HOUhaEHKsts94x8qYYV1ETI11T7Pactpx-e24YI9nvIIsoOFZXTF_vENebPsg0uHT5Y86zmskOj6HMMAOvsO-btKoy19vkfgDSDD99_wmceBEuMghFel9vnQQyQNak1xJAv2QfFP-Ut1JB9vw/s320/Screenshot%202023-12-13%20at%206.23.03%20AM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjVyVxyN4WCCn9rzjOwRHs0QO4uqeefGbRPa3V0g_V4CcjgUABRcaAqo_deSSE-he-_rSggKm7oeZ5N0XyxGk-ZC88A06e6klFjcOceG8mjmoP1KSfnMwa10WGdWUadNxR0RIVSAyjwrY9IcnOjU8oqGsibZUQxuC1OOIyJ9FldDVyY7fdg3l7cprg7Zh26/s554/Screenshot%202023-12-13%20at%206.23.32%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="539" data-original-width="554" height="311" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjVyVxyN4WCCn9rzjOwRHs0QO4uqeefGbRPa3V0g_V4CcjgUABRcaAqo_deSSE-he-_rSggKm7oeZ5N0XyxGk-ZC88A06e6klFjcOceG8mjmoP1KSfnMwa10WGdWUadNxR0RIVSAyjwrY9IcnOjU8oqGsibZUQxuC1OOIyJ9FldDVyY7fdg3l7cprg7Zh26/w457-h311/Screenshot%202023-12-13%20at%206.23.32%20AM.png" width="457" /></a></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p>Now www.exmple.net was not decrypted when user-initiated traffic to that "URL" based on traffic log<p></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhlqfRFMnoMQWKDFzcKfkjpqiLpDQhnlHwUX8u3BEklPCUb79IeT5ntnpWziezPl4j-vAkyT0w_WC4M3VjCr_5VpwZI1eMp7BiyoIUX6LnIDpf2vT-UQsSgquAIun_5-7n88HxXpXER1VuZh18WFzf_-CguTb1kpNj_DJ92_I1HuOaOssO_00s_66UIrnga/s801/Screenshot%202023-12-13%20at%206.29.06%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="384" data-original-width="801" height="230" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhlqfRFMnoMQWKDFzcKfkjpqiLpDQhnlHwUX8u3BEklPCUb79IeT5ntnpWziezPl4j-vAkyT0w_WC4M3VjCr_5VpwZI1eMp7BiyoIUX6LnIDpf2vT-UQsSgquAIun_5-7n88HxXpXER1VuZh18WFzf_-CguTb1kpNj_DJ92_I1HuOaOssO_00s_66UIrnga/w481-h230/Screenshot%202023-12-13%20at%206.29.06%20AM.png" width="481" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: left;">But https://<span style="text-align: left;">www.exmple.com was decrypted when user-initiated traffic to that "URL"</span></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjZ4uFQM37w09WjR7gWqbbsgwStiQrtUtU_l_iqsDzDmNHsw8BRvBOEgkkl4L4L-uCoZeXjWcr0gmjjnYhbeuEoX3vytoTYGudS1DIiEsoVFC_bwyn72slmNoi7WJv6Vamr8PdE-fCRko1hpB02xMdl2aEF0hSjB77XjGe3QemhH3z8iQownzc63jsAaeHI/s796/Screenshot%202023-12-13%20at%206.29.40%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="402" data-original-width="796" height="236" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjZ4uFQM37w09WjR7gWqbbsgwStiQrtUtU_l_iqsDzDmNHsw8BRvBOEgkkl4L4L-uCoZeXjWcr0gmjjnYhbeuEoX3vytoTYGudS1DIiEsoVFC_bwyn72slmNoi7WJv6Vamr8PdE-fCRko1hpB02xMdl2aEF0hSjB77XjGe3QemhH3z8iQownzc63jsAaeHI/w466-h236/Screenshot%202023-12-13%20at%206.29.40%20AM.png" width="466" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><p></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 11px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="font-family: Times; font-size: medium; font-variant-ligatures: normal;"><br /></span></span></span></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-4757237091485817682023-11-28T14:35:00.000-08:002023-11-28T14:35:43.589-08:00Certificate types<p> In this blog, we will look at 4 certificate types.</p><p><br /></p><p>1st up PEM which is a base64 format. This format can include a certificate and key and if the key is included and it's protected it would have the wording "private-key" in the file format.</p><p>e.g</p><p><span style="background-color: rgba(66, 133, 244, 0.3); color: #e2eeff; font-family: "Google Sans", Roboto, arial, sans-serif; font-size: 20px;">"-----BEGIN PRIVATE KEY-----" </span></p><p><span style="color: #e2eeff; font-family: Google Sans, Roboto, arial, sans-serif;"><span style="background-color: rgba(66, 133, 244, 0.3);"><b>dddddddjhfjkfjfkfjfkskdjdkjkdjdd</b></span></span></p><p><span style="color: #e2eeff; font-family: Google Sans, Roboto, arial, sans-serif;"><span style="background-color: rgba(66, 133, 244, 0.3);"><b>djkdjkjdkdjdkjfkjfkrjfkerjkejfejfioewjfewijfewq</b></span></span></p><p><span style="color: #e2eeff; font-family: Google Sans, Roboto, arial, sans-serif;"><span style="background-color: rgba(66, 133, 244, 0.3);"><b>djeqfjeqkwjhfkqejfkejfkjfkeqjefq</b></span></span></p><p><b><span style="background-color: rgba(66, 133, 244, 0.3); color: #e2eeff; font-family: "Google Sans", Roboto, arial, sans-serif; font-size: 20px;">"-----END PRIVATE KEY-----"</span><span style="background-color: #202124; color: #e8eaed; font-family: "Google Sans", Roboto, arial, sans-serif; font-size: 20px;">. </span></b></p><p>Next up PFX ( privacy exchange is also known as PKCS12. Same as above it can have certificate(s) and key and the file format is binary. You will need a passcode to decode it. It's a common exported format in winOS or MacOSX. The extension for the file format would be<b><i> .pfx </i></b></p><p>Last, we have DER ( Digital Encoding Rules ) it's also binary and you will commonly see these with the name ending in <i><b>.der</b></i></p><p>We also have PKCS#7 but it's rarely used and typically does not contain any keying information.</p><p><br /></p><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background: rgb(255, 255, 255); border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-37779799205416393962023-11-11T18:31:00.000-08:002023-11-28T14:27:30.084-08:00howto use FortiOS api user with certificates ( fortios api ) <p>I worked with an issue a few months back where someone had changed the client key and did not update their Postman or the API clients</p><p>1st if using the Postman app you need to add the certificate and key files into your <b><i>setting > certificates</i></b></p><p><b><i><a href="https://en.wikipedia.org/wiki/Postman_(software)">https://en.wikipedia.org/wiki/Postman_(software)</a></i></b></p><p><b><i><br /></i></b></p><p>e.g</p><p><i>passphrase in real life should be something much stronger than<b> test1234</b></i></p><p><i> </i><br /><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgZPxl-f2CNWB0BQECOwW5hxA45WFAhhAOM2KVClloj1FQMwZzOumNmBWBCeUgqiR05f4q04PcWmA0fMKNnF2V7zUxSbAiJwL18i3BnMqG76J7mhU3aiciqs7oJtqm0_fZZTUkqaV-gqM6T6cA9kUzd4wrF_nwj1Ida_HwuJeKHuqe-uwLFhGm3LJji3Prh/s630/Screenshot%202023-11-11%20at%208.15.15%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="306" data-original-width="630" height="289" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgZPxl-f2CNWB0BQECOwW5hxA45WFAhhAOM2KVClloj1FQMwZzOumNmBWBCeUgqiR05f4q04PcWmA0fMKNnF2V7zUxSbAiJwL18i3BnMqG76J7mhU3aiciqs7oJtqm0_fZZTUkqaV-gqM6T6cA9kUzd4wrF_nwj1Ida_HwuJeKHuqe-uwLFhGm3LJji3Prh/w595-h289/Screenshot%202023-11-11%20at%208.15.15%20PM.png" width="595" /></a></div><br /><p>here's a simple API call for path ;<b><span style="color: #e06666;"> <span style="font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;">api/v2/cmdb/system/global</span></span></b></p><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgU3PygDtldcvDyCE-3gI9LqeymeKniLEJ3QL3LVeJRZXKid1YnT1dwMlCU60XXzfBGPaZ-wAb-biSWzj9-EHVzXKYR-JGF-PWHshVJO4fmqWmOlES_6oc2krHsbnsutsmGIiobtUGi6ra9PHZO016KLzlgJaNULhLRI662IEfTIO3ErGWJ_X6xg0PSWx6/s1199/Screenshot%202023-11-11%20at%208.15.03%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="510" data-original-width="1199" height="256" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgU3PygDtldcvDyCE-3gI9LqeymeKniLEJ3QL3LVeJRZXKid1YnT1dwMlCU60XXzfBGPaZ-wAb-biSWzj9-EHVzXKYR-JGF-PWHshVJO4fmqWmOlES_6oc2krHsbnsutsmGIiobtUGi6ra9PHZO016KLzlgJaNULhLRI662IEfTIO3ErGWJ_X6xg0PSWx6/w604-h256/Screenshot%202023-11-11%20at%208.15.03%20PM.png" width="604" /></a></div><br /><p><br /></p><p>using curl, you can simulate the above by calling up the API user cert/key files on the cmd-cli while inputting the passphrase</p><p><br /></p><p><span style="color: red; font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;">example1</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -v --cacert ./rootCA_crt.pem --cert ./api.crt --key ./api.key -k <span class="Apple-converted-space"> </span>"https://api.socpuppets.com/api/v2/cmdb/system/global?access_token=j1dc14rbyftN44QzdqhjN70sGcGsw8" --tlsv1.2</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ca_test<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="color: red;">example2 </span>( bundle cert+key into one file and use -E ) </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl - -E api.bundle -k<span class="Apple-converted-space"> </span>"https://api.socpuppets.com/api/v2/cmdb/system/global?access_token=j1dc14rbyftN44QzdqhjN70sGcGsw8" --tlsv1.2<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><span style="color: red;">example3</span> cert+key bundle, but supply the passphrase on the cmd-cli in one pass</span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl - -E api.bundle:<b>test1234</b> -k<span class="Apple-converted-space"> </span>"https://api.socpuppets.com/api/v2/cmdb/system/global?access_token=j1dc14rbyftN44QzdqhjN70sGcGsw8" --tlsv1.2<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvoIM_lAmSZCvd7Kk4ixyI9iai2ClBNpAzM09n00S98agNykPK4gPgIbNXNkdaSOzJqoQ_evHOXWqThjYzcCchabOQjMQH9VJ2bowSoyYWDa87ZdBu11UH35VlG-yVLO9O0ZIjG9jLjkHfN7mtonot7Sfm8WFMzYVM2ol6C2SJuftiorDzD2XV6Pg5wVQF/s170/Screenshot%202023-11-11%20at%208.20.53%20PM.png" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" data-original-height="92" data-original-width="170" height="25" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvoIM_lAmSZCvd7Kk4ixyI9iai2ClBNpAzM09n00S98agNykPK4gPgIbNXNkdaSOzJqoQ_evHOXWqThjYzcCchabOQjMQH9VJ2bowSoyYWDa87ZdBu11UH35VlG-yVLO9O0ZIjG9jLjkHfN7mtonot7Sfm8WFMzYVM2ol6C2SJuftiorDzD2XV6Pg5wVQF/w46-h25/Screenshot%202023-11-11%20at%208.20.53%20PM.png" width="46" /></a></div><br /><p><br /></p><p><i>Always ensure the API client key passphrase is secured and strong.</i></p><p>use the following debug on the FortiGate if you suspect a bad certificate during mTLS</p><p><i> diag debug reset </i></p><p><i> diag debug en</i></p><p><i> diag debug application httpsd -1</i></p><p><br /></p><p>You should see lines similar to the following;</p><p>( my apiuser name = apiuserken ) </p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] fweb_debug_init[430] -- User-Agent: "PostmanRuntime/7.35.0"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] fweb_debug_init[432] -- Handler "api_cmdb_v2-handler" assigned to request</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] _peer_auth_certificate_valid[180] -- Api-key + certificate login successful for apiuserken via pki peer apiuserken</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801<span class="Apple-converted-space"> </span>warning] api_access_check_for_api_key[687] -- API Key request authorized for apiuserken from 9.4.19.7.</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] api_store_parameter[323] -- add API parameter 'access_token' (type=string)</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] api_cmdb_request_init_by_path[1800] -- new CMDB query (path='system',name='global')</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[httpsd 6544 - 1699755801 <span class="Apple-converted-space"> </span>info] api_generate_and_add_etag[1826] -- Per VDOM ETags: [ "vdom: r</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">typical API user configuration enabled for PKI</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">longisland # show user group api-pki</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">config user group</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>edit "api-pki"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set member "apiuserken"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>next</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">end</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">longisland # show user peer apiuserken</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">config user peer</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>edit "apiuserken"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set mandatory-ca-verify disable</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set ca "ACME_CA_Cert_1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>next</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">end</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">longisland # show sys api-user apiuserken<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">config system api-user</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>edit "apiuserken"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set api-key ENC SH2pULD0pHAvU3P/IVgWdW8cDJhxFURU+rNuid335YYU9v65WAXRL/eYm4rSmU=</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set accprofile "super_admin"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set vdom "root"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set peer-auth enable</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set peer-group "api-pki"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>next</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">end</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjRLF0ayVW-wsDpBYjU-DGBf-1tibYVfQa6WNqyPEUHrzCpyt6OCFAptdIlL_rrpRa8s6D-jiQyvfB95gN0tYQgdLscVhsi3bqoK97g6dJGDx8R2J6pqicbstEAxQAzdLazzneDPUyfxGyZF_hrdp48pbWQXvfOjh57RutlrNPenqF2L2vnY_tkh-_JxNjO/s1036/Screenshot%202023-11-11%20at%208.28.06%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="459" data-original-width="1036" height="223" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjRLF0ayVW-wsDpBYjU-DGBf-1tibYVfQa6WNqyPEUHrzCpyt6OCFAptdIlL_rrpRa8s6D-jiQyvfB95gN0tYQgdLscVhsi3bqoK97g6dJGDx8R2J6pqicbstEAxQAzdLazzneDPUyfxGyZF_hrdp48pbWQXvfOjh57RutlrNPenqF2L2vnY_tkh-_JxNjO/w503-h223/Screenshot%202023-11-11%20at%208.28.06%20PM.png" width="503" /></a></div><br /><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><p></p><div class="post-body entry-content" id="post-body-6226815786706267877" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570.047px;"><div style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;"><br /></span><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div><span face="arial, tahoma, helvetica, freesans, sans-serif" style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div style="clear: both;"></div></div><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-62268157867062678772023-11-10T17:00:00.006-08:002023-11-10T17:00:46.480-08:0048min later my PA-220 is upgraded to 10.2.7<p> One of my biggest complaints with PanOS, upgrades take a considerable amount of time. Take this simple PA-220 upgrade to 10.2.7 It took way over 45mins.</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhSEni7IaensM4tfYzixC_Bj7QhdcibxSCgC_qzFJCK9DQh9I77rga9RjueqS8T2quwdLU4zH25S_1ofr6erZuJxEkWC_w_4pFve92pbbQGTJCQ_vBTVWAyvTLLnOwzCoydbCzXDdMM4vUdrPpRa8BRPT2mPOTmCpkxtVpXlJ611Wtt_m1KHQAl9ab7ISFP/s904/Screenshot%202023-11-10%20at%206.54.34%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="516" data-original-width="904" height="288" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhSEni7IaensM4tfYzixC_Bj7QhdcibxSCgC_qzFJCK9DQh9I77rga9RjueqS8T2quwdLU4zH25S_1ofr6erZuJxEkWC_w_4pFve92pbbQGTJCQ_vBTVWAyvTLLnOwzCoydbCzXDdMM4vUdrPpRa8BRPT2mPOTmCpkxtVpXlJ611Wtt_m1KHQAl9ab7ISFP/w504-h288/Screenshot%202023-11-10%20at%206.54.34%20PM.png" width="504" /></a></div><div><br /></div>The following firewalls are much quicker <div><br /></div><blockquote style="border: none; margin: 0px 0px 0px 40px; padding: 0px; text-align: left;"><div><p><i>CiscoASA</i></p></div><div><p><i>FortiGate</i></p></div><div><p><i>Forcepoint</i></p></div><div><p><i>Checkpoint </i></p></div></blockquote><p> So always plan for extra time with upgrading Palo Alto firewall. The quad digits appliance does upgrade in a quicker time from my experience. The only other vendor that is just as slow would be juniper.</p><p><br /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="background-color: white; color: #222222; font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-43695421137416154362023-10-27T04:01:00.002-07:002023-10-27T04:01:34.611-07:00Forticlient vs Globalprotect differences <p> In this blog I will discuss a few items that different between FTNT and PANW with regards to VPN clients</p><p><br /></p><p>1: GlobalProetct uses a portal with a list of various gateways. The gateways are where your SSL or IPSEC VPN clients are terminated to. So think of it as a distributed gateway</p><p>Fortinet is manual you have to define each gateway</p><p>2: With Globalprotect if you need to use a radius server that is not using the MGMT interfaces and have defined local admins authentications with an existing radius server, you can have service for radius using a data plane interface</p><p>For Fortinet you can source the radius server from any interface </p><p>3: GlobalProtect does not support Linux/Chrome/mobile devices without a license for globalprotect gateway</p><p>FortiGate does not care it supports numerous clients with no additional license</p><p>4: GlobalProtect SSL VPN client does not support DTLS</p><p>Forticlient, SSLvpn can use TCP or UDP</p><p>5: Globalprotect has a fallback from IPSEC ( default ) to SSL if the former has quality issues</p><p>Forticlient has no dual-mode fallback</p><p><br /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="background-color: white; color: #222222; font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"><br /></span></span></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-47222686997397603622023-10-16T23:00:00.001-07:002023-10-27T04:32:19.369-07:00CHKP proxy-id narrowing IKEv2<p>With CHKP and VPN, your Traffic Selectors will be narrowed down to longer CIDR if the peer sends a longer CIDR length </p><p>The following ;</p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEiLUmL27ecl5Y3ckggr4hUFJfyKImffAZjnmL74mx_Xcjrh2Bx0xwSLAYOC-Kd4tyx6YMGrLvy_ZUG9CSZlmgwD42RXbMgaiZD7KPJb6Jmaiy57Gehh-T1O15i8p5isTdaUuxVSdjzTOXGg1LHPPWEXXWeVGgsXea4RWFaMORpYV1B750K5YVcjxDqSCj4d" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="220" data-original-width="1097" height="101" src="https://blogger.googleusercontent.com/img/a/AVvXsEiLUmL27ecl5Y3ckggr4hUFJfyKImffAZjnmL74mx_Xcjrh2Bx0xwSLAYOC-Kd4tyx6YMGrLvy_ZUG9CSZlmgwD42RXbMgaiZD7KPJb6Jmaiy57Gehh-T1O15i8p5isTdaUuxVSdjzTOXGg1LHPPWEXXWeVGgsXea4RWFaMORpYV1B750K5YVcjxDqSCj4d=w504-h101" width="504" /></a></div><br />If the peer sends a 10.88.204.0/27 or 10.88.204.73/32 the Checkpoint will negotiate and install an IPsec Security Association for the more specific destination<p></p><p>Fortigate does the same thing btw but it will display the following "<strong style="background-color: white; box-sizing: border-box; color: #4f5458; font-family: "Courier New"; font-size: small;">Dynamic proxyid as a result of selector narrowing" </strong></p><p>The checkpoint appliance just does not make it so obvious that narrowing has taken place.</p><p>This process typically does not issues unless traffic exiting is using the wrong SPI. You will see issues in a lot of firewall Forcepoint and checkpoint primarily where the traffic is exiting using the wrong SPI. You can easily find the SPI used by using a packet size of 666 as an example and capture the ESP datagram on exit and review the SPI #</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 19px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variant-position: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>tcpdump -nnvv -i wan proto 50 and less 790 and greater 666</i></span></p><p>And on a host generate a ping of 666 bytes { <i><b>ping -s 666 x.x.x.</b></i> }</p><p>The ESP datagram will stick out and you can verify the SPI value in hex to the IPsec SA.</p><div class="post-body entry-content" id="post-body-4369542113741615436" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570.047px;"><div style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"><br /></span></span></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-22207418329161591392023-10-12T04:06:00.001-07:002023-10-27T04:15:33.220-07:00sonicwall VPN types ( site 2 site or tunnel ) <p></p><div class="separator" style="clear: both; text-align: left;">We will look at the differences</div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: justify;"><ol><li><i>1st tunnel interface means exactly that you have a tunnel and will need a route or use a routing protocol. </i></li><li><i>This is a classic junos route-based type</i></li><li><i>the proxy-id will be a single 0.0.0.0/0 for src/dst subnets</i></li></ol></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: center;"><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhAroWZgBMNYPAhvY1UbrUubcPmcdhN6CkyqV139BA1zhoPSC5JYeefkRZGH-Q75opbIaADvW3BXBAmjLPS0F5Tg1bF4G3Bkjd1Bj8IRL5OANJ3JVoluhtS_twQbKUgon7bhErADffVvokKahAGpKmXWn01Ke9YA3SXxlnczmmUpNdLMFZosIDOiORAm5-K" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="663" data-original-width="1349" height="291" src="https://blogger.googleusercontent.com/img/a/AVvXsEhAroWZgBMNYPAhvY1UbrUubcPmcdhN6CkyqV139BA1zhoPSC5JYeefkRZGH-Q75opbIaADvW3BXBAmjLPS0F5Tg1bF4G3Bkjd1Bj8IRL5OANJ3JVoluhtS_twQbKUgon7bhErADffVvokKahAGpKmXWn01Ke9YA3SXxlnczmmUpNdLMFZosIDOiORAm5-K=w594-h291" width="594" /></a></div><br /><br /></div><div class="separator" style="clear: both; text-align: left;">A policy-based VPN will look similar to the following;</div><div class="separator" style="clear: both; text-align: left;"><br /></div><div class="separator" style="clear: both; text-align: left;"><br /></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEjuoz7vRuvL2xwE8SgxjYP_VRFOWxsR3FWULp0h3XsUavXLFxeYefG0I-iqTUTsMGiwcQWYzoW7AVgaRifTIrU1T1FsD19sybwXqoORWCMrgisQQD58tsbd9iJuPSX-2l6hVZ5uhqxdUzgH91IFR5p7Mk3SpOuPNh5P85rkQW7DpFky-8yIdRnrLbaez_cQ" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="857" data-original-width="1734" height="375" src="https://blogger.googleusercontent.com/img/a/AVvXsEjuoz7vRuvL2xwE8SgxjYP_VRFOWxsR3FWULp0h3XsUavXLFxeYefG0I-iqTUTsMGiwcQWYzoW7AVgaRifTIrU1T1FsD19sybwXqoORWCMrgisQQD58tsbd9iJuPSX-2l6hVZ5uhqxdUzgH91IFR5p7Mk3SpOuPNh5P85rkQW7DpFky-8yIdRnrLbaez_cQ=w759-h375" width="759" /></a></div><br /><ol style="text-align: left;"><li><i> The proxy-id would be whatever remote/local subnets that you define</i></li><li><i>Your policy will initialize the IPsec tunnel, think of a juniper policy-based VPN</i></li></ol><p></p><p><i><b>In both cases, you still need a firewall policy to allow the traffic flow</b></i></p><div class="post-body entry-content" id="post-body-4369542113741615436" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570.047px;"><div style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"><br /></span></span></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-18094585872511420112023-10-05T09:22:00.001-07:002023-10-27T04:38:46.388-07:00Panorama and PA devices not receiving templates/devicegroups<p> Have you ever had this scenario?</p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEio0vgmfM3tzJqllSrgXNsrpMbt2hOIGBNB2YCqBgTZNWTd4f7D6cmiGdJOn2pbBKkoLxndHsd3_kB2rImLOgAI0oGMg5LXZu_zSrJ_SAh4CjRb24phFGI3mz0qdfVaR4ShVH5RbKSifEzDMGlO57eKdAjvIuj8eZfIY-HMFFjOZ9TwduG_4LM65Rs-yc8L" style="margin-left: 1em; margin-right: 1em;"></a><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEio0vgmfM3tzJqllSrgXNsrpMbt2hOIGBNB2YCqBgTZNWTd4f7D6cmiGdJOn2pbBKkoLxndHsd3_kB2rImLOgAI0oGMg5LXZu_zSrJ_SAh4CjRb24phFGI3mz0qdfVaR4ShVH5RbKSifEzDMGlO57eKdAjvIuj8eZfIY-HMFFjOZ9TwduG_4LM65Rs-yc8L" style="margin-left: 1em; margin-right: 1em;"></a><a href="https://blogger.googleusercontent.com/img/a/AVvXsEiQQWfCWvoQoo-xJug5YllkXTJyOfJaOxmlGL96wfhgtui_M-R3g_3Y0_a9Z7KOQNECv7BCvdCPuqyvDuze1nMrbzMTBq3B3RS1H50XnnxwXbSJ4U7FsR8VBpmxabUkXuGyW1m-sp2UbgSi0YghKk3XbDCvIYSABeHRDkqFvmyZ_JxWaBl-5sjr4j3koESi" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="215" data-original-width="629" height="201" src="https://blogger.googleusercontent.com/img/a/AVvXsEiQQWfCWvoQoo-xJug5YllkXTJyOfJaOxmlGL96wfhgtui_M-R3g_3Y0_a9Z7KOQNECv7BCvdCPuqyvDuze1nMrbzMTBq3B3RS1H50XnnxwXbSJ4U7FsR8VBpmxabUkXuGyW1m-sp2UbgSi0YghKk3XbDCvIYSABeHRDkqFvmyZ_JxWaBl-5sjr4j3koESi=w590-h201" width="590" /></a></div><br /></div>and<p></p><p><br /><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhqGD58ZARKvtW0jbfFGBXZ-J8ng6x5sT2qtRUbBlqlEPq8qOhd8bhVfbEvoEHRqnKj32p6RmzPVULSwAJ6kcdWoxzeu0VwNbePJPhYe0AHe-zzk4rJfu1rRkRxqnawLpI96RcA-UgLvzykhVgFMap7xGpfTC8RnyLqRpXolQ7vviIGYOP5xuh_G99nmsMy" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="241" data-original-width="541" height="205" src="https://blogger.googleusercontent.com/img/a/AVvXsEhqGD58ZARKvtW0jbfFGBXZ-J8ng6x5sT2qtRUbBlqlEPq8qOhd8bhVfbEvoEHRqnKj32p6RmzPVULSwAJ6kcdWoxzeu0VwNbePJPhYe0AHe-zzk4rJfu1rRkRxqnawLpI96RcA-UgLvzykhVgFMap7xGpfTC8RnyLqRpXolQ7vviIGYOP5xuh_G99nmsMy=w458-h205" width="458" /></a></div><br />Nine out of 10 times you didn't associate the device to the correct devicegroup .<p></p><p>It's always important to make sure the deviceid is associated to the correct tmpl/devgrp</p><p><br /></p><div class="post-body entry-content" id="post-body-4369542113741615436" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570.047px;"><div style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"><br /></span></span></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-90290876494752390622023-06-14T13:28:00.002-07:002023-06-14T13:28:19.629-07:00What chatGPT says about the top firewalls<p> <span style="background-color: #444654; color: #d1d5db; font-family: Söhne, ui-sans-serif, system-ui, -apple-system, "Segoe UI", Roboto, Ubuntu, Cantarell, "Noto Sans", sans-serif, "Helvetica Neue", Arial, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; font-size: 20px; white-space-collapse: preserve;">Title: Exploring the Top Firewalls: Enhancing Network Security</span></p><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; background-color: #444654; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; color: #d1d5db; font-family: Söhne, ui-sans-serif, system-ui, -apple-system, "Segoe UI", Roboto, Ubuntu, Cantarell, "Noto Sans", sans-serif, "Helvetica Neue", Arial, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; font-size: 20px; margin: 1.25em 0px; white-space-collapse: preserve;">Introduction:
In today's interconnected world, where cybersecurity threats are increasingly sophisticated, implementing robust network security measures has become paramount. Among the essential components of a comprehensive security infrastructure, firewalls play a crucial role. Firewalls act as a protective barrier between internal networks and external threats, filtering and monitoring network traffic to prevent unauthorized access. In this blog, we will explore some of the top firewalls available in the market, renowned for their features and effectiveness in safeguarding networks.</p><ol style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; background-color: #444654; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; color: #d1d5db; counter-reset: item 0; display: flex; flex-direction: column; font-family: Söhne, ui-sans-serif, system-ui, -apple-system, "Segoe UI", Roboto, Ubuntu, Cantarell, "Noto Sans", sans-serif, "Helvetica Neue", Arial, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; font-size: 20px; list-style-image: initial; list-style-position: initial; margin: 1.25em 0px; padding: 0px 0px 0px 1rem; white-space-collapse: preserve;"><li style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px; padding-left: 0.375em;"><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px;">Cisco ASA:
Cisco ASA (Adaptive Security Appliance) is a widely recognized and trusted firewall solution known for its advanced threat protection capabilities. It offers a broad range of features, including stateful packet inspection, intrusion prevention system (IPS), virtual private network (VPN) support, and application visibility and control. Cisco ASA provides granular control over network traffic and offers options for scalability, making it a popular choice for small to large enterprises.</p></li><li style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px; padding-left: 0.375em;"><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px;">Palo Alto Networks Next-Generation Firewall:
Palo Alto Networks has established itself as a leader in network security, and their Next-Generation Firewall (NGFW) is highly regarded for its innovative approach to threat prevention. It combines traditional firewall functionality with advanced features such as application-aware security, user identification, and content filtering. Palo Alto firewalls leverage machine learning and artificial intelligence to detect and prevent sophisticated threats, making them an excellent choice for organizations focused on proactive security measures.</p></li><li style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px; padding-left: 0.375em;"><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px;">Fortinet FortiGate:
Fortinet's FortiGate firewall series is widely deployed across various industries due to its comprehensive security capabilities and high-performance architecture. FortiGate firewalls offer a wide range of security features, including intrusion prevention, web filtering, application control, and sandboxing. They are known for their centralized management system, allowing administrators to efficiently monitor and control network security policies across multiple devices.</p></li><li style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px; padding-left: 0.375em;"><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px;">Check Point Next Generation Firewalls:
Check Point is a leading provider of network security solutions, and their Next Generation Firewalls (NGFWs) are renowned for their robust security features. Check Point firewalls offer threat prevention capabilities such as application control, antivirus, URL filtering, and sandboxing. Their unified security management platform allows for simplified administration and comprehensive visibility into network traffic.</p></li><li style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px; padding-left: 0.375em;"><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; margin: 0px;">Juniper Networks SRX Series:
The Juniper Networks SRX Series of firewalls combines traditional firewall functionality with advanced threat prevention capabilities. They offer features such as deep packet inspection, application identification, and virtualization support. Juniper firewalls provide flexible deployment options and are known for their high-performance architecture, making them suitable for networks with demanding security requirements.</p></li></ol><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; background-color: #444654; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; color: #d1d5db; font-family: Söhne, ui-sans-serif, system-ui, -apple-system, "Segoe UI", Roboto, Ubuntu, Cantarell, "Noto Sans", sans-serif, "Helvetica Neue", Arial, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; font-size: 20px; margin: 1.25em 0px 0px; white-space-collapse: preserve;">Conclusion:
Selecting the right firewall for your organization is crucial to ensuring robust network security. The firewalls mentioned above, including Cisco ASA, Palo Alto Networks Next-Generation Firewall, Fortinet FortiGate, Check Point Next Generation Firewalls, and Juniper Networks SRX Series, are among the top choices available today. Each firewall solution brings its unique set of features and strengths to the table. It's important to consider factors such as the organization's security requirements, scalability, ease of management, and integration capabilities when making a decision. By implementing a reliable firewall solution, organizations can strengthen their network defenses and protect sensitive data from ever-evolving cyber threats.</p><p style="--tw-border-spacing-x: 0; --tw-border-spacing-y: 0; --tw-ring-color: rgba(69,89,164,.5); --tw-ring-offset-color: #fff; --tw-ring-offset-shadow: 0 0 transparent; --tw-ring-offset-width: 0px; --tw-ring-shadow: 0 0 transparent; --tw-rotate: 0; --tw-scale-x: 1; --tw-scale-y: 1; --tw-scroll-snap-strictness: proximity; --tw-shadow-colored: 0 0 transparent; --tw-shadow: 0 0 transparent; --tw-skew-x: 0; --tw-skew-y: 0; --tw-translate-x: 0; --tw-translate-y: 0; background-color: #444654; border: 0px solid rgb(217, 217, 227); box-sizing: border-box; color: #d1d5db; font-family: Söhne, ui-sans-serif, system-ui, -apple-system, "Segoe UI", Roboto, Ubuntu, Cantarell, "Noto Sans", sans-serif, "Helvetica Neue", Arial, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; font-size: 20px; margin: 1.25em 0px 0px; white-space-collapse: preserve;"><br /></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-24678657445763510872023-05-04T17:43:00.003-07:002023-05-04T17:43:48.405-07:00Simple PANOS api examples<p>The REST-api or XML-api is very simple to use. I'm going to show you a few examples.</p><p>1st with RESTapi you have to call your API-KEY as a header "<span style="font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;">X-PAN-KEY: biglogapikey". </span></p><p><span style="font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;">tip:</span></p><p><span style="font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;">You have to specify the API version also. if you specify the wrong version you will received a error similar to;</span></p><p><span style="font-family: Menlo; font-size: 17px; font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">:[{"code":1,"module":"panui_restapi","description":"Version Not Supported: v10.1"}]}]}</span><span class="s2" style="background-color: black; color: white; font-variant-ligatures: no-common-ligatures;"><b>%</b></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s2" style="background-color: black; color: white; font-variant-ligatures: no-common-ligatures;"><b><br /></b></span></p><p>tip:</p><p>If you have typos , the key will not work</p><p><br /></p><p>tip:</p><p>Do not add the key as a HTTP query string </p><p><br /></p><p>examples;</p><p><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><b>restap</b>i</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># retrieve all objects from fw</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Objects/Addresses?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># all services</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Objects/services?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># addressGroups</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Objects/AddressGroups?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># security polices</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Policies/SecurityRules?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># NAT rules</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Policies/NatRules?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># zones</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl -H "X-PAN-KEY:LUFRPT1zQ05XOHhPbXpFWk9GWTVFcXVaMkhDVTY4dEE9bFg3VnFtc3RlSGN1L1U2eGd1bVA3NGJRN0wwaUxkcEZVVlYvN1o5VTZ6cklsRi9QZjA4NEhqc1NkblJqd3FROQ=="<span class="Apple-converted-space"> </span>-k "https://192.168.11.99/restapi/v10.0/Network/zones?location=vsys&vsys=vsys1"</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;">The XML-API can use the key within a http query string, just append it to the HTTP get query.</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">xml-api</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#list devices XPath</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://csockets-panorama01.socpuppets.net/api/?type=op&cmd=<show><config><running><xpath>devices</xpath></running></config></show>&key=LUFRPT1wWno4WEprSHlqV1hkNGtuWllXckxXaVFtOWM9a0ZmdTlKMFQxZWRVMVhkd29pSVlqZU1JL2UvcVF6L1AvbmZKYUR3Yi8xeXdkS0XnedRscXk2Z043OWJMbEtpdw=='</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># list shared xpath</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://csockets-panorama01.socpuppets.net/api/?type=op&cmd=<show><config><running><xpath>shared</xpath></running></config></show>&key=LUFRPT1wWno4WEprSHlqV1hkNGtuWllXckxXaVFtOWM9a0ZmdTlKMFQxZWRVMVhkd29pSVlqZU1JL2UvcVF6L1AvbmZKYUR3Yi8xeXdkS0XnedRscXk2Z043OWJMbEtpdw=='<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"># check operational mode</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://panorama01.socpuppets.net/api/?type=op&cmd=<show><operational-mode></operational-mode></show>&key=LUFRPT1lL0I0YkFhMFNIOUs1SDSiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVXVyV21YREFSeFFnZmFXVzUrb0luZw=='</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span># fetch license</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://panorama01.socpuppets.net/api/?type=op&cmd=<request><license><fetch/></license></request>&key=LUFRPT1lL0I0YkFhMFNIOUs1SDSiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVXVyV21YREFSeFFnZmFXVzUrb0luZw=='</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://panorama01.socpuppets.net/api/?type=op&cmd=<request><license><info/></license></request>&key=LUFRPT1lL0I0YkFhMFNIOUs1SDSiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVXVyV21YREFSeFFnZmFXVzUrb0luZw=='</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"># display the license details</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://panorama01.socpuppets.net/api/?type=op&cmd=<show><system><info></info></system></show>&key=LUFRPT1lL0I0YkFhMFNIOUs1SDSiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVXVyV21YREFSeFFnZmFXVzUrb0luZw=='</span></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span># save the config file</p><p class="p1" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px; min-height: 20px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">curl<span class="Apple-converted-space"> </span>-k<span class="Apple-converted-space"> </span>'https://panorama01.socpuppets.net/api/?type=op&cmd=<save><config><to>config.save</to></config></save>&key=LUFRPT1lL0I0YkFhMFNIOUs1SDSiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVXVyV21YREFSeFFnZmFXVzUrb0luZw=='</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">here's an example of a license info</span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiTifvmCn32Q7I8rJ5Wk7vueWEJZB1ertuMBF0wMh4GJ_sypVXjjE81V4PIVLGxpDUmy6Xc1BmWI8wMnmTJgL8T1NMvfkJBjexkxiMq0Pl4-uq_FJWJiVKGp50jRLDKZ0TZN0VnhN-VSskdPoPINSVEziwXDaZVVtaQjaEURe2SOyXnQgrWIhbD4-dBfg/s1826/Screenshot%202023-05-04%20at%207.36.31%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="755" data-original-width="1826" height="202" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiTifvmCn32Q7I8rJ5Wk7vueWEJZB1ertuMBF0wMh4GJ_sypVXjjE81V4PIVLGxpDUmy6Xc1BmWI8wMnmTJgL8T1NMvfkJBjexkxiMq0Pl4-uq_FJWJiVKGp50jRLDKZ0TZN0VnhN-VSskdPoPINSVEziwXDaZVVtaQjaEURe2SOyXnQgrWIhbD4-dBfg/w490-h202/Screenshot%202023-05-04%20at%207.36.31%20PM.png" width="490" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;">XML is sometimes slightly harder but you have multiple items that can be done from show operational and commit commands.</p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;">RESTapi is easier but if you ever upgrade your FW and have hardcoded scripts, the API version will come back and haunt you.</p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;">I've always found myself using a combination of REST and XML API calls.</p><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br /></p><p></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><br /></span><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13px;"><span style="color: black;"> / \</span></span></div><p class="p2" style="font-family: Menlo; font-feature-settings: normal; font-kerning: auto; font-optical-sizing: auto; font-size: 17px; font-stretch: normal; font-variant-alternates: normal; font-variant-east-asian: normal; font-variant-numeric: normal; font-variation-settings: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-16938591046585626522023-04-18T15:51:00.003-07:002023-04-18T15:59:25.515-07:00HOWTO Backup Panorama with a API call<p> One of my colleagues was discussing a way to backup panorama cfg vrs with the "schedule backup export" option that Palo has.</p><p><br /></p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEg4VG4RvLsgy2-P8RDqpot2tAB9hNuw_a6u1V8c1saznLozABWh6SElMnRBFvtaMrsCu4n0YjmGscbANQEJPZOfDz0f3KAnQ8TSXFDrfyGoUBTWuJrzjgLSXPcOxiUPCsGgypqeLZyJJPcxZ7YkTfMk_Vg2sS4QfNit7HTzesfhP6tRZXSjKLjG_MNHcg" style="margin-left: 1em; margin-right: 1em;"><img alt="" data-original-height="100" data-original-width="298" height="107" src="https://blogger.googleusercontent.com/img/a/AVvXsEg4VG4RvLsgy2-P8RDqpot2tAB9hNuw_a6u1V8c1saznLozABWh6SElMnRBFvtaMrsCu4n0YjmGscbANQEJPZOfDz0f3KAnQ8TSXFDrfyGoUBTWuJrzjgLSXPcOxiUPCsGgypqeLZyJJPcxZ7YkTfMk_Vg2sS4QfNit7HTzesfhP6tRZXSjKLjG_MNHcg" width="320" /></a></div><br /><br /><p></p><p>The problem with Scheduled Config Export the save file does not have the time stamps in the name</p><p>By using the API you can set the timestamp by using the date cmd</p><p>https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-panorama-api/pan-os-xml-api-use-cases/query-a-firewall-from-panorama-api</p><p><br /></p><p>e.g </p><pre class="c-mrkdwn__pre" data-stringify-type="pre" style="--saf-0: rgba(var(--sk_foreground_low,29,28,29),0.13); border-radius: 4px; border: 1px solid var(--saf-0); box-sizing: inherit; color: #d1d2d3; counter-reset: list-0 0 list-1 0 list-2 0 list-3 0 list-4 0 list-5 0 list-6 0 list-7 0 list-8 0 list-9 0; font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; font-variant-ligatures: none; line-height: 1.50001; margin-bottom: 4px; margin-top: 4px; overflow-wrap: break-word; overflow-y: hidden; padding: 8px; tab-size: 4; white-space: pre-wrap; word-break: normal;">create the API key
curl -k -X GET 'https:///panorama.socpuppets.com/api/?type=keygen&user=kfelix&password=ChangeME2023%21%40%23'
</pre><p><br /></p><pre class="c-mrkdwn__pre" data-stringify-type="pre" style="--saf-0: rgba(var(--sk_foreground_low,29,28,29),0.13); border-radius: 4px; border: 1px solid var(--saf-0); box-sizing: inherit; color: #d1d2d3; counter-reset: list-0 0 list-1 0 list-2 0 list-3 0 list-4 0 list-5 0 list-6 0 list-7 0 list-8 0 list-9 0; font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; font-variant-ligatures: none; line-height: 1.50001; margin-bottom: 4px; margin-top: 4px; overflow-wrap: break-word; overflow-y: hidden; padding: 8px; tab-size: 4; white-space: pre-wrap; word-break: normal;">run the API call every hour and download the file
curl -o panorama.`date +%F-%H-%M-%S`.xml -k '<a class="c-link" data-sk="tooltip_parent" data-stringify-link="https://panorama.socpuppets.com/api/?type=op&cmd=" delay="150" href="https://panorama.socpuppets.com/api/?type=op&cmd=" rel="noopener noreferrer" style="box-sizing: inherit; text-decoration-line: none;" target="_blank">https://panorama.socpuppets.com/api/?type=op&cmd=</a><show><config><running><%2Frunning><%2Fconfig><%2Fshow>&key=LUFRPT1lL0I0YkFhMFNIOUs1RDRiUFFBVDAvOXdxNjQ9WmNaa1JrblVuMEVubFBBNlVJT3loWk9VT0F5VThiK0s1UmFjTVhwa0oyVJJyV21YREFSeFFnZmFXVzUrb0luZw=='</pre>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-51130692780794171052023-04-03T22:21:00.001-07:002023-04-03T22:21:00.167-07:00Sonic route-based vpn 0.0.0.0/0<p> I was working in my day job with a customer that has a sonicwall and they need to change from specific proxy-ids for src/dst to 0.0.0.0/0:0 </p><p><br /></p><p>In order to do this you need to change the VPN from site2site to tunnel. Check out the screenshots of the two modes and take notice of how the "network" option disappears when you do tunnel mode</p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhpayruTyyMcSBVTtqjYxdt_OcNFz0jnSeoL578nDEWyTyOfsPnhhWVDZMYctGX0ej5Hxfisb-5BHGC9EJTgOGlejWcnFNxeIkzh1KLDFi1Xs7XlD2NbeB_9lo3qniICcoxiyoLIY0-8yXSWbys52eYjwEAcktXjV2bRaqiThOHsbAmiQ1rhWMY5myQxA/s1388/Screenshot%202023-03-27%20at%2011.19.24%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="751" data-original-width="1388" height="254" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhpayruTyyMcSBVTtqjYxdt_OcNFz0jnSeoL578nDEWyTyOfsPnhhWVDZMYctGX0ej5Hxfisb-5BHGC9EJTgOGlejWcnFNxeIkzh1KLDFi1Xs7XlD2NbeB_9lo3qniICcoxiyoLIY0-8yXSWbys52eYjwEAcktXjV2bRaqiThOHsbAmiQ1rhWMY5myQxA/w470-h254/Screenshot%202023-03-27%20at%2011.19.24%20PM.png" width="470" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhw4HCHYjfu7FgY2psTHQ_QIsJ34-e00qMrLPnTdlRwz9uf0xsf0A3BVw-S7ACtBbqsbsNYfvexPrAEsl8NFv--RsIbXnZ5v7KOD0Z4bGQWA78bYcSWyWhcz2rXdLq8rorZ8KONHSVpDMlbwzku9f_BhnZzOwCicpt6uUSK3VMPzpvcZlsENf7gRv31kA/s1349/Screenshot%202023-03-27%20at%2011.20.25%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="663" data-original-width="1349" height="193" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhw4HCHYjfu7FgY2psTHQ_QIsJ34-e00qMrLPnTdlRwz9uf0xsf0A3BVw-S7ACtBbqsbsNYfvexPrAEsl8NFv--RsIbXnZ5v7KOD0Z4bGQWA78bYcSWyWhcz2rXdLq8rorZ8KONHSVpDMlbwzku9f_BhnZzOwCicpt6uUSK3VMPzpvcZlsENf7gRv31kA/w394-h193/Screenshot%202023-03-27%20at%2011.20.25%20PM.png" width="394" /></a></div><div><br /></div><div><br /></div>You still need to apply a route-policy for the destination to ensure that traffic is routed over the VPN . This is an option in sonicwalls that is commonly missed<div><br /></div><div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><br class="Apple-interchange-newline" /><br class="Apple-interchange-newline" /><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background: rgb(255, 255, 255); border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div class="p1" style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><i style="clear: left; margin-bottom: 1em; margin-right: 1em; text-align: center;"></i><br /></div><p class="p1" style="color: #222222; font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><p><br /></p></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-66429082268580664652023-02-18T23:21:00.005-08:002023-02-18T23:21:36.196-08:00linux GRE interface TX error( the issue and resolution ) <p> So I was doing some work for a friend of mine in the Market Delivery Network who's using a linux host and we ran into an issue where our ipsec tunnel was up but the GRE encapsulation over the tunnel was not working.</p><p>We had put this design into place over 2 years ago and it was moved to a new host and had issues. So I was scratching my head to figure out what was happening.</p><p><br /></p><p>What we found was the gre interface had TX errors;</p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtTa2i83WUCyMoTsSgwrO_S36tKsGxhHaVg30v-thQ133SK6jkHK1EPJIcWYA5bcm27dmeC4bkoB34EVmxaUx8KR_sRocm7o2bvGmZTTQMuOF-7OJWWt5PkTdisIJ13DYi9-Hxs2uINiXG2CgftqrGsFCgcSMRwhwCiuGa5p00DqtBIt38RgvLOdYRFg/s1458/Screenshot%202023-02-19%20at%201.04.01%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="546" data-original-width="1458" height="148" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtTa2i83WUCyMoTsSgwrO_S36tKsGxhHaVg30v-thQ133SK6jkHK1EPJIcWYA5bcm27dmeC4bkoB34EVmxaUx8KR_sRocm7o2bvGmZTTQMuOF-7OJWWt5PkTdisIJ13DYi9-Hxs2uINiXG2CgftqrGsFCgcSMRwhwCiuGa5p00DqtBIt38RgvLOdYRFg/w537-h148/Screenshot%202023-02-19%20at%201.04.01%20AM.png" width="537" /></a></div><br /><p>So after hours and hours recreating the gre interface, I finally figured out the SRC IP of our GRE1 interface was not configured. So the tunnel had no means to source the gre traffic</p><p><br /></p><p>Once we set up the src.ip on a dummy interface, the tunnel came up and our pim neighborship was established</p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiFXinWwly-KoyCNaf0vPhUUYRgysnUIxec1dxdiV48QlEa6q4dzkgseta9oz4Otu-PoCfsVhePIaCTf1UPoM_0V1xZ6aoQ9078T_sIvUVMKVbIvcNtdlYSqffpXaKU9RgdvIGCsxFRJgkHnRTg4lhPlERQFp6qkZ84v7XZN1mbaMQeTe4IA4AiIinaLQ/s959/Screenshot%202023-02-19%20at%201.08.48%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="264" data-original-width="959" height="118" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiFXinWwly-KoyCNaf0vPhUUYRgysnUIxec1dxdiV48QlEa6q4dzkgseta9oz4Otu-PoCfsVhePIaCTf1UPoM_0V1xZ6aoQ9078T_sIvUVMKVbIvcNtdlYSqffpXaKU9RgdvIGCsxFRJgkHnRTg4lhPlERQFp6qkZ84v7XZN1mbaMQeTe4IA4AiIinaLQ/w493-h118/Screenshot%202023-02-19%20at%201.08.48%20AM.png" width="493" /></a></div><br /><p>sample dummy1 interface sysconfig;</p><p><br /></p><p><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[root@host01 ~]# cat /etc/sysconfig/network-scripts/ifcfg-dummy1</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">DEVICE=dummy0</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">NM_CONTROLLED=no</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">ONBOOT=yes</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">TYPE=Ethernet</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">BRIDGE=virbr10</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">IPV6INIT=no</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">IPADDR=10.247.0.39</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">NETMASK=255.255.255.255</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">Sample ipsec.conf strongswan</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># CERT FEEDS 69.50.112.0/25</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"># CERT/NR A-Feed/B-Feed MDP Source Range</span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#CERT FEEDS 69.50.112.128/25 CERT/NR Mediator IP Source Range</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#<span class="Apple-converted-space"> </span></span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#CERT FEEDS 69.50.112.254/32 CERT/NR A-Feed/B-Feed RP</span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">conn CERT01</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>type=tunnel</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>compress=no</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>authby=secret</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>left=<my public address></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>right=164.74.129.26</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>ikelifetime=86400s</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>lifetime=3600s</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>keyexchange=ikev1</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>keyingtries=%forever</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>rekey=yes</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>auto=start</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>ike=aes256-sha1-modp1024</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>esp=aes256-sha1</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>#dpdtimeout= 120s</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>#dpdaction=restart</span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">conn CERT01A <span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#<span class="Apple-converted-space"> phase2 for unicast traffic e.g order entry </span></span>CME group</p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>leftsubnet=10.247.39.64/26</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>rightsubnet=69.50.112.128/25</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>also=CERT01</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span># phase2 for GRE and multicast CME group</p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">conn CERT01B</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>leftsubnet=10.247.0.39/32</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>rightsubnet=10.247.254.1/32</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>also=CERT01</span></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>leftupdown=/etc/strongswan/cme_mcast.sh</span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p2" style="font-family: Menlo; font-size: 21px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><div class="post-body entry-content" id="post-body-1623625731704314272" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><i style="clear: left; margin-bottom: 1em; margin-right: 1em; text-align: center;"></i><br /></div><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-77993082488467196962023-02-05T01:47:00.002-08:002023-02-25T02:21:50.058-08:00Cloudflare IPs list <p> For proper protection with cloudflare CDN you should provide rules to allow only the cloudflare address to reach your server. Do not use ANY or ALL as a source address.</p><p><br /></p><p><br /></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space">1st cloud flare ORIGIN </span>AS13335 and we have a list of address that belong to CloudFlare CDN</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">kfelix@kfelixs-MacBook-Air ~ % whois -h whois.radb.net AS13335<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">aut-num:<span class="Apple-converted-space"> </span>AS13335</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">as-name:<span class="Apple-converted-space"> </span>CLOUDFLARENET-AS</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">descr:<span class="Apple-converted-space"> </span>Cloudflare, Inc.</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">descr:<span class="Apple-converted-space"> </span>101 Townsend Street, San Francisco, CA 94107, US</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">status: <span class="Apple-converted-space"> </span>OTHER</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">( output snipped ) </span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">Next, we can grab all ipv4/v6 address from one of two ways</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;">1: via curl</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">reisfelix@consultnt ~ % curl -o cdn-v4.file https://www.cloudflare.com/ips-v4 <span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">173.245.48.0/20</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">103.21.244.0/22</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">103.22.200.0/22</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">103.31.4.0/22</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">141.101.64.0/18</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">108.162.192.0/18</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">190.93.240.0/20</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">188.114.96.0/20</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">197.234.240.0/22</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">198.41.128.0/17</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">162.158.0.0/15</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">104.16.0.0/13</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">104.24.0.0/14</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">172.64.0.0/13</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">131.0.72.0/22</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">( for ipv6 if you have ipv6 hosted web servers use the below string ) </span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;">reisfelix@consultnt ~ % curl -o </span><span style="font-variant-ligatures: no-common-ligatures;">cdn-v6.file</span><span style="font-variant-ligatures: no-common-ligatures;"> https://www.cloudflare.com/ips-v6</span><span style="font-variant-ligatures: no-common-ligatures;"> </span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">or by query against the cloudflare CDN AS</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">ipv4</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">whois -h whois.radb.net '!gAS13335'</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">ipv6</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">whois -h whois.radb.net '!6AS13335'</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">Next you will use these addresses in your rule to filter and allow only cloudflare addresses to hit your public webserver.</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">e.g # fortigate </span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">config firewall policy</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>edit 10</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set name "CDN PROTECTION CLOUDFLARE"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set uuid 333cdb5a-c602-51ea-95d4-b967c36245b5</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set srcintf "wan"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set dstintf "DMZ"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set srcaddr "CLOUDFLARE_ADDRESS_GROUP"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set dstaddr "NET-WEB"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set action accept</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set schedule "always"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>set service "HTTP" "HTTPS" "HTTP8080"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>next</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">end</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">In this example above the "</span><span style="font-variant-ligatures: no-common-ligatures;">CLOUDFLARE_ADDRESS_GROUP" contains our ipv4/ipv6 addresess</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;">For adding multiple addresses at one time we can bulk create addresses or even loop them thru a API call</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;">e.g # using a bash script to make an address</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#!/bin/bash</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">#</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>for p in `cat cdn-v4.file `;</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span># cdn.file contains your ipv4 address</p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><br /></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">do</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>echo " config firewall address"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>echo " edit $p "</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>echo " set subnet $p "</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"> echo " set comment CDN_CLOUDFLARE"</span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>echo " end"</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span># let's create our group</p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><br /></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"> echo " <span style="font-variant-ligatures: no-common-ligatures;">config firewall addrgrp</span><span class="Apple-converted-space" style="font-variant-ligatures: no-common-ligatures;"> "</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="Apple-converted-space" style="font-variant-ligatures: no-common-ligatures;"> echo " edit </span><span style="font-variant-ligatures: no-common-ligatures;">CLOUDFLARE_ADDRESS_GROUP</span><span style="font-variant-ligatures: no-common-ligatures;">"</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="Apple-converted-space" style="font-variant-ligatures: no-common-ligatures;"> echo " append member $p "</span></p><p class="p2" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 24px;"><span class="Apple-converted-space" style="font-variant-ligatures: no-common-ligatures;"> echo " end"</span></p><div><span class="Apple-converted-space" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">done<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br /></span></span></p><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background: rgb(255, 255, 255); border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div class="p1" style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><i style="clear: left; margin-bottom: 1em; margin-right: 1em; text-align: center;"></i><br /></div><p class="p1" style="color: #222222; font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \</span></span></div><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 20px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-78747143111693144602022-12-29T12:49:00.038-08:002022-12-29T12:49:00.179-08:00globalprotect client tips<p> We are going thru some global protect VPN deployment, and the same issues always come up about the server certificate.</p><p><br /></p><p>1: Ideally, you want the certificate signed by a public CA or your internalCA that is already trusted</p><p>2: On Android to install the certificate, you need a file. extension that ends in <name>.crt. the extension.Cert or .cert will not work</p><p>3: On unbuntu , download the latest client and dpkg install it.</p><p><br /></p><p>e.g </p><p><span class="s1" style="font-family: Menlo; font-size: 20px; font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"><br class="Apple-interchange-newline" /> </span>sudo </span><span class="s2" style="color: #ca3323; font-family: Menlo; font-size: 20px; font-variant-ligatures: no-common-ligatures;"><b>dpk</b></span><span class="s1" style="font-family: Menlo; font-size: 20px; font-variant-ligatures: no-common-ligatures;">g -i ./GlobalProtect_deb-6.0.4.1-28.deb</span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhrBys70lCsdJ2Tjcm7fg78Vzkdfp3vO7bCyMLpkM2PPG59OTPKwXf22w-QtLhrH_bx8CQ7YePmRpsun5b_qd1S8dr-bHrx0cM7JLmQsoopBt-rEaX7lqSpkp-c_kB3-x-zw4NW-m6WAHN1OA0fQeAxOYCfBvhnkbiJIlM3CBSmW_xvBrfPfrmX37Tg1g/s1219/Screen%20Shot%202022-12-02%20at%202.56.20%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="522" data-original-width="1219" height="208" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhrBys70lCsdJ2Tjcm7fg78Vzkdfp3vO7bCyMLpkM2PPG59OTPKwXf22w-QtLhrH_bx8CQ7YePmRpsun5b_qd1S8dr-bHrx0cM7JLmQsoopBt-rEaX7lqSpkp-c_kB3-x-zw4NW-m6WAHN1OA0fQeAxOYCfBvhnkbiJIlM3CBSmW_xvBrfPfrmX37Tg1g/w487-h208/Screen%20Shot%202022-12-02%20at%202.56.20%20PM.png" width="487" /></a></div><br /><p>4: On Android it's sometimes best to use an altName and ip.address value since it's harder to trust private certificates or the DNS name check will mess you up.</p><p><br /></p><p>5: If you have a rooted phone you cand <b><i>adb get /etc/systems/hosts </i></b> and modify the file and push it back into the device</p><p><br /></p><p>6: Always check logs and cli for successful connections</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjA7-ZUPj_gb2Q5cH5X-eOGrcOEoVy7EgPo6dDy0y7xTgdb1Wt01H05YSghRuWSQ387ymHcEB1Ja-50m-1Ol7h0H3hWl3WmW7saQ4KFX9EQy7kYozjXRUF-glV5WLHHoUDgMc0B0Xn5zfOZeLxMr1wcBHk9OW4o-oXDkRsO8Alq-4Xa55H02hi8D70ndw/s1629/Screen%20Shot%202022-12-02%20at%203.04.21%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="433" data-original-width="1629" height="129" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjA7-ZUPj_gb2Q5cH5X-eOGrcOEoVy7EgPo6dDy0y7xTgdb1Wt01H05YSghRuWSQ387ymHcEB1Ja-50m-1Ol7h0H3hWl3WmW7saQ4KFX9EQy7kYozjXRUF-glV5WLHHoUDgMc0B0Xn5zfOZeLxMr1wcBHk9OW4o-oXDkRsO8Alq-4Xa55H02hi8D70ndw/w485-h129/Screen%20Shot%202022-12-02%20at%203.04.21%20PM.png" width="485" /></a></div><br /><p>7: If you need multiple gateways best practice is to use a loop back interface and set up multiple addresses with different gateways</p><p><br /></p><p>e.g</p><p><br /></p><p>loop0 IP 1.1.1.1 = gateway1</p><p>loop0 IP 1.1.1.2 = gateway2</p><p>loop0 IP 1.1.1.3 = gateway3</p><p>Doing this will let you craft different auth-profile, different gateways, pools, different rules, etc...</p><p><br /></p><p>8: Lastly, if remote authentication is required, do not forget any service routes if you are not using the mgmt-interface for the auth access</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTgdpltqonP3BhNyfTAcnls7u-1mt5IitiMY7D4E3V6TbUn3Js6gx-jAPhGyOrAp1VSPVqD19ezmxI0ci4PTFykG7xZjNoBlbXIiFX3TVa0_VutW9j82PBN0-LokoMW0UZ8p_1Wx8_Xcw_QzbAWgeYTm2kiRGhs7DYOofdAo7G4NBDjvc0zlxUh6o0uw/s617/Screen%20Shot%202022-12-02%20at%203.24.27%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="579" data-original-width="617" height="432" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTgdpltqonP3BhNyfTAcnls7u-1mt5IitiMY7D4E3V6TbUn3Js6gx-jAPhGyOrAp1VSPVqD19ezmxI0ci4PTFykG7xZjNoBlbXIiFX3TVa0_VutW9j82PBN0-LokoMW0UZ8p_1Wx8_Xcw_QzbAWgeYTm2kiRGhs7DYOofdAo7G4NBDjvc0zlxUh6o0uw/w461-h432/Screen%20Shot%202022-12-02%20at%203.24.27%20PM.png" width="461" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><p><br /></p><p><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-color: white; color: #888888; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></p><div class="post-body entry-content" id="post-body-8215039640094045050" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p style="font-size: 14.52px;"></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p style="font-size: 14.52px;"></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div></div><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"> </div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-82150396400940450502022-09-03T18:50:00.008-07:002022-09-03T18:50:00.167-07:00A blackhole mechanism using goBGP<p> This is a simple method for route-injection of /32s into BGP from a goBGP instance. Here we have a dynamic bgp configuration in gobgpd.conf so the bgp router is passively listening for connections.</p><p><br /></p><p><br /></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[global.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>as = 2</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>router-id = "0.0.0.2"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>port = 179</span></p><p class="p1" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 21px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[[mrt-dump]]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>[mrt-dump.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>dump-type = "updates"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>file-name = "/home/gobgpd/dump.dump"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>dump-interval = 180</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>rotation-interval = 28800</span></p><p class="p1" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 21px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[[peer-groups]]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>[peer-groups.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>peer-group-name = "socpuppets_core_lan"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>local-as = 2</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>peer-as = 1</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>auth-password = "socpupbgp01"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span style="font-variant-ligatures: no-common-ligatures;"> </span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[[dynamic-neighbors]]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>[dynamic-neighbors.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>prefix = "198.206.234.0/24"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>peer-group = "socpuppets_core_lan"</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">And here's log debug output in plain text</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUllnydATC6-gIJXhvJ5_isMxDfRIU1_MKtRAlsn3Z91CntFQL6cR0fyVdSpXb4JojKvargBHQ9XGrjI7kecVKWBK5mYoI632jOOPp2W8lCXZGBXeymhaAQb_ou6tYum6t-RPLBQFI04U54gHXyHtS5Qrk3aLpPFPzi7xDz7xgt_iML_6K-1p7yEKpuA/s2181/Screen%20Shot%202022-08-30%20at%208.41.41%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="956" data-original-width="2181" height="254" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUllnydATC6-gIJXhvJ5_isMxDfRIU1_MKtRAlsn3Z91CntFQL6cR0fyVdSpXb4JojKvargBHQ9XGrjI7kecVKWBK5mYoI632jOOPp2W8lCXZGBXeymhaAQb_ou6tYum6t-RPLBQFI04U54gHXyHtS5Qrk3aLpPFPzi7xDz7xgt_iML_6K-1p7yEKpuA/w582-h254/Screen%20Shot%202022-08-30%20at%208.41.41%20PM.png" width="582" /></a></div><br /><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><p></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">A 100K ft view of the components</span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6XJX7Rqh7bHp1f2rvxcmDtEx96VMFATCajxEgklDrWUfW7e4V7oBAtk1J9ylOvq6ZPqHCDKLKv7LECq9eCh8Dehk5KOSHVA-zuqF6kq_62H_rgZFNiVidpasFTbJbA7OJA8ZD3nL5XwZ3mzp5T15IiLxHRNkFoYgQyQKFYwTbPlNHyK-nysEKTPAv0w/s1437/Screen%20Shot%202022-08-30%20at%208.55.52%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="834" data-original-width="1437" height="299" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6XJX7Rqh7bHp1f2rvxcmDtEx96VMFATCajxEgklDrWUfW7e4V7oBAtk1J9ylOvq6ZPqHCDKLKv7LECq9eCh8Dehk5KOSHVA-zuqF6kq_62H_rgZFNiVidpasFTbJbA7OJA8ZD3nL5XwZ3mzp5T15IiLxHRNkFoYgQyQKFYwTbPlNHyK-nysEKTPAv0w/w515-h299/Screen%20Shot%202022-08-30%20at%208.55.52%20PM.png" width="515" /></a></div><br /><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br />GoBGP understand route-refresh initiated by the panos firewall in this example.</span><div><span style="font-variant-ligatures: no-common-ligatures;"><i><br /></i></span></div><div><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>test routing bgp virtual-router default restart self</i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><i><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></i></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i>test routing bgp virtual-router default refresh peer GOBGP_injector<span class="Apple-converted-space"> </span></i></span></p><div><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEizvRpGmA8oDoHxVUPAIq0-b8ce-obhju0BMxR8B9Ze2a2Go90nF8dbpeJcib3--Irv2nPefDVQnUrn2-o7_Vrv0qGv6PGZi5UB1YKY9ajK71OiXdbOCW9eYHNBVg8qHcenG7CvmwbGnPTin9ILJTIsvbCRaDYgYXNXQK1KGsbAEQa0f_kDUNlvcS_d6Q/s970/Screen%20Shot%202022-08-30%20at%209.20.36%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="403" data-original-width="970" height="208" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEizvRpGmA8oDoHxVUPAIq0-b8ce-obhju0BMxR8B9Ze2a2Go90nF8dbpeJcib3--Irv2nPefDVQnUrn2-o7_Vrv0qGv6PGZi5UB1YKY9ajK71OiXdbOCW9eYHNBVg8qHcenG7CvmwbGnPTin9ILJTIsvbCRaDYgYXNXQK1KGsbAEQa0f_kDUNlvcS_d6Q/w500-h208/Screen%20Shot%202022-08-30%20at%209.20.36%20PM.png" width="500" /></a></div><br /><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><p></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div class="p1" style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="background-color: white; color: #222222; font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p2" style="font-family: Menlo; font-size: 18px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div></div></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-23970139564801032792022-09-01T08:52:00.006-07:002022-09-01T08:52:00.164-07:00CHKPT diagnostics and cpinfo collections steps<p> Here's what CHKP support need in order to diagnose heavy cpu%. The collection of these details and cpview can help in diagnostics of high cpu utilizations</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_-GwPLwdpcdgr0Nrm-8ztDHI81AzI5PVzvimW4eNCDZNJPGnPQMXLSFUSIGySE3kjedtvOhiC7Timm5YH0X2Vtv2MOYk_9krUJRuJfqpmYOP-2vpVx9thf3kZdkw2ZdyGV1lwIkEc4bgig20VnrTNi8c44sMJ1lt3bo6j32JB-ffkUF6N9xLvAWrTWA/s1488/Screen%20Shot%202022-05-06%20at%2010.52.55%20AM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="835" data-original-width="1488" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_-GwPLwdpcdgr0Nrm-8ztDHI81AzI5PVzvimW4eNCDZNJPGnPQMXLSFUSIGySE3kjedtvOhiC7Timm5YH0X2Vtv2MOYk_9krUJRuJfqpmYOP-2vpVx9thf3kZdkw2ZdyGV1lwIkEc4bgig20VnrTNi8c44sMJ1lt3bo6j32JB-ffkUF6N9xLvAWrTWA/w568-h320/Screen%20Shot%202022-05-06%20at%2010.52.55%20AM.png" width="568" /></a></div><br /><p>https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_PerformanceTuning_AdminGuide/Topics-PTG/CPU-Spike-Detective.htm</p><p><br /></p><p>and if you are running pre R80.40 you might have to enable it manually;</p><p><br /></p><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Deploy files:</span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><div style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;"><table style="border-collapse: collapse; border-color: rgb(163, 163, 163); border-spacing: 0px; border-style: solid; border-width: 1px; overflow-wrap: normal; width: auto; word-break: normal;" valign="top"><tbody style="box-sizing: border-box;"><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="background-color: #f4f5f7; border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.7583in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="box-sizing: border-box; font-weight: bold;">File</span></span></span></span></td><td colspan="1" rowspan="1" style="background-color: #f4f5f7; border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.1506in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="box-sizing: border-box; font-weight: bold;">GW placement</span></span></span></span></td><td colspan="1" rowspan="1" style="background-color: #f4f5f7; border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.1201in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="box-sizing: border-box; font-weight: bold;">Comment</span></span></span></span></td></tr><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.7583in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;">spike_detective</span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.1506in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; font-weight: bold;">$FWDIR/bin</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.1201in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;">Execution permissions: chmod +x $FWDIR/bin/spike_detective</span></span></td></tr><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.7583in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;">spike_detective_conf.xml</span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.1506in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; font-weight: bold;">$FWDIR/conf</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.1201in;"><span style="box-sizing: border-box; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span></td></tr></tbody></table></div><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Activate:</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin start -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span> -path "$FWDIR/bin/spike_detective" -command "spike_detective"</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Check status by running 'cpwd_admin list' and validating status is 1</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">-dynamite-side-T55-main-take-</span><span style="box-sizing: border-box; color: #009900;">10</span><span style="box-sizing: border-box; color: black;">:</span><span style="box-sizing: border-box; color: #009900;">0</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin list | grep SPIKE_DETECTIVE</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">SPIKE_DETECTIVE </span><span style="box-sizing: border-box; color: #009900;">7780</span> E 1 [09:52:08] 25/11/2020 N spike_detective</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Deactivate (if needed):</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin stop -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin del -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">If we wish the tool's run will 'survive' reboot we can instead run the following commands</span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ul style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Activate</span></span></span></li></ul><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpd_sched_config add </span><span style="box-sizing: border-box; color: #003366;">'spike_detective'</span> -c "cpwd_admin start -name SPIKE_DETECTIVE -path $FWDIR/bin/spike_detective -command spike_detective" -s -r -e 604800</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpd_sched_config activate </span><span style="box-sizing: border-box; color: #003366;">'spike_detective'</span></span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ul style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Deactivate</span></span></span></li></ul><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin stop -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin del -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpd_sched_config deactivate </span><span style="box-sizing: border-box; color: #003366;">'spike_detective'</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpd_sched_config delete </span><span style="box-sizing: border-box; color: #003366;">'spike_detective'</span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 15pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">How is a spike detected?</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;">A CPU core will be consider as 'spiked' if it holds </span><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-weight: bold;">all </span></span><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;">of the following conditions:</span></span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ul style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Utilization over 80% (configurable)</span></span></span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Utilization is at least 1.5 times higher than the system average (configurable)</span></span></span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">This ensures that a broadly highly utilized system (for example: during performance testing) will not detect all cores as spiked</span></span></span></li></ul><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;">A thread/process will be consider as 'spiked' if it holds </span><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-weight: bold;">all </span></span><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;">of the following conditions:</span></span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ul style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Running on a spiked CPU</span></span></span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Utilization over 70% (configurable)</span></span></span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-family: Calibri;">Utilization is at least 1.5 times higher than the system average (configurable)</span></span></span></li></ul><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 15pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">What happens when a spike is detected?</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: black;">Upon detecting a spike the daemon:</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Reports the spike to</span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ol style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Calibri; font-size: 10.5pt; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;" value="1"><span style="box-sizing: border-box; font-size: 10.5pt;">/var/log/spike_detective/spike_detective.log</span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;">cpview, cpview_services</span></li></ol><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;">We want to make sure the Variable for the below parameters is set to True</span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><div style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;"><table style="border-collapse: collapse; border-color: rgb(163, 163, 163); border-spacing: 0px; border-style: solid; border-width: 1px; margin-left: 32px; overflow-wrap: normal; width: auto; word-break: normal;" valign="top"><tbody style="box-sizing: border-box;"><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0868in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">profiler_config</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.5368in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">"top_conns_enable"</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.0069in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Enable collecting top connections data during fw worker spike</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 0.7715in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">BOOLEAN</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0465in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">true (Enabled)</span></span></span></td></tr><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0868in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">profiler_config</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.5368in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">"heavy_conns_enable"</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.0069in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Enable collecting heavy connections data during fw worker spike</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 0.7715in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">BOOLEAN</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0465in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">true (Enabled)</span></span></span></td></tr><tr style="box-sizing: border-box;"><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0868in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">cleaner_config</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.5368in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">"cleaner_enabled"</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 4.0069in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Enable/Disable periodic cleanup of old spikes directories</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 0.7715in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">BOOLEAN</span></span></span></td><td colspan="1" rowspan="1" style="border-color: rgb(163, 163, 163); border-style: solid; border-width: 1px; box-sizing: border-box; padding: 5px; vertical-align: top; width: 1.0465in;"><span style="box-sizing: border-box; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">true (Enabled)</span></span></span></td></tr></tbody></table></div><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;">Its located in the below conf file</span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 12pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-weight: bold;">Configurable Variables</span></span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; color: black;">The CPU Spike Monitor is configured via the file '</span></span><span style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; box-sizing: border-box;"><span style="box-sizing: border-box; font-weight: bold;"><span style="box-sizing: border-box; color: #172b4d;">$FWDIR/conf/spike_detective_conf.xml'</span></span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #172b4d;">Configuration example:</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;"><?xml version=</span><span style="box-sizing: border-box; color: #003366;">"1.0"</span> encoding="UTF-8"?></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"> <config_file></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"> <profiler_config></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"> <stat name="perf_enable" type="BOOLEAN" <span style="box-sizing: border-box; font-weight: bold;">value="false"/></span></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"> </profiler_config></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"> </config_file></span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> It should be True but we want to make sure so it captures what we are needing</span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; font-family: Calibri;"><span style="box-sizing: border-box; color: #5e6c84;">How to change the configuration values?</span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ol style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Calibri; font-size: 10.5pt; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;" value="3"><span style="box-sizing: border-box; font-size: 10.5pt;">Stop the tool </span></li></ol><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin stop -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span></span></span></span><span style="background-color: white; color: #7c7c7c; font-family: Lato; font-size: 13px;"></span></p><ol style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Calibri; font-size: 10.5pt; list-style-image: initial; list-style-position: initial; margin-block-start: 1em; margin-bottom: var(--lwc-spacingSmall,0.75rem); margin-left: 36px; margin-right: 0px; margin-top: 0px; padding: 0px; unicode-bidi: embed;"><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;" value="4"><span style="box-sizing: border-box; font-size: 10.5pt;">Change required values in $FWDIR/conf/spike_detective_conf.xml</span></li><li style="box-sizing: border-box; color: #172b4d; vertical-align: middle;"><span style="box-sizing: border-box; font-size: 10.5pt;">Restart the tool </span></li></ol><p><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 10.5pt;"><span style="box-sizing: border-box; line-height: 15pt;"><span style="box-sizing: border-box; font-family: Consolas;"><span style="box-sizing: border-box; color: black;">[Expert</span><span style="box-sizing: border-box; color: grey;">@Firewall</span><span style="box-sizing: border-box; color: black;">]# cpwd_admin start -name </span><span style="box-sizing: border-box; color: #003366;">"SPIKE_DETECTIVE"</span> -path "$FWDIR/bin/spike_detective" -command "spike_detective"</span></span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /><span style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 11pt;"><span style="box-sizing: border-box; font-family: Calibri;"> </span></span><br clear="none" style="background-color: white; box-sizing: border-box; color: #7c7c7c; font-family: Lato; font-size: 13px;" /></p><div class="post-body entry-content" id="post-body-3876127253114217300" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div class="post-body entry-content" id="post-body-5722770986768172008" itemprop="description articleBody" style="font-size: 14.52px; line-height: 1.4; position: relative; width: 570px;"><div class="separator" style="clear: both; font-family: arial, tahoma, helvetica, freesans, sans-serif; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div><div style="clear: both;"></div></div><p><br /></p><div style="clear: both;"></div></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-37416756963985837192022-08-30T08:18:00.004-07:002022-08-30T08:18:35.382-07:00null-routing for PANOS using goBGPD<p> Someone asked me to explain how to use gobgpd with palo alto firewalls based off this previous blog that was posted</p><p>http://socpuppet.blogspot.com/2022/03/gogogo-gobpd-for-rtbh-injection.html</p><p><br /></p><p>PANOS has a few pieces that you need to do</p><p><br /></p><p>1st you need to setup BGP peer in the VR-instance ( default in my case ) . Make sure to enable the peer and enable installing the routes.</p><p><br /></p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgluPLuaRyeKAnmHPBlNKPdAfMrM2kn-KHo7P0TigojTpC_lKljj5hMcrWTLF_UAC5ibGvs52aji6e8GyQr9bnkTJOuR6ecGy6cr_LsqY4o6b-zy9WfhFLLcHEK3vrujhkkeCgcgKJmDrI_ocRFlb1Okdrv8J4TYcUqefk8Q_EnA151o5RfkDVGkWgctg/s1385/Screen%20Shot%202022-08-30%20at%2010.16.24%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="477" data-original-width="1385" height="110" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgluPLuaRyeKAnmHPBlNKPdAfMrM2kn-KHo7P0TigojTpC_lKljj5hMcrWTLF_UAC5ibGvs52aji6e8GyQr9bnkTJOuR6ecGy6cr_LsqY4o6b-zy9WfhFLLcHEK3vrujhkkeCgcgKJmDrI_ocRFlb1Okdrv8J4TYcUqefk8Q_EnA151o5RfkDVGkWgctg/s320/Screen%20Shot%202022-08-30%20at%2010.16.24%20AM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEipYVmtZvy3KCaNTQtN-Ek6TDqZnjf2xHCv6HTTjH6jdDBFlGyz_DWkqWby9e4LWfud4mG-OJQYuUQNc5elH2zAha8W6YgpagH7QUHOdYrciZqy8yX6HNcPLEBIJ45V3FVuPcW-3Ceo9FYH9JEDnYwPL2dpJQGQSyb9z9ONOQeAFooHR4Y9VHT7rk9BtQ/s214/Screen%20Shot%202022-08-30%20at%2010.16.40%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="55" data-original-width="214" height="55" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEipYVmtZvy3KCaNTQtN-Ek6TDqZnjf2xHCv6HTTjH6jdDBFlGyz_DWkqWby9e4LWfud4mG-OJQYuUQNc5elH2zAha8W6YgpagH7QUHOdYrciZqy8yX6HNcPLEBIJ45V3FVuPcW-3Ceo9FYH9JEDnYwPL2dpJQGQSyb9z9ONOQeAFooHR4Y9VHT7rk9BtQ/s1600/Screen%20Shot%202022-08-30%20at%2010.16.40%20AM.png" width="214" /></a></div><br /> <p></p><br /><div class="separator" style="clear: both; text-align: center;">It's best to set up a import policy ( optional ), so you can set the next-hop, weight,local-pref</div><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhhNM5rL8ce_CTUIX7Xp6rS7e_4fUfb2ZbgvQ6DNwb-gRGtSWE8zl18bDrHb4j3zOcn2-09VL8LsNb92i-IO-P8VQb_NJDQ5pYgcbcMsCLQSrED9S7mihsimOLMCtSVSfkq3NQ-6u_Zrp5zyJNovkKXhhPe25eO6kIBh3KXYDlqiYBMfjH-ee54L2EZ7w/s1129/Screen%20Shot%202022-08-30%20at%209.04.59%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="363" data-original-width="1129" height="103" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhhNM5rL8ce_CTUIX7Xp6rS7e_4fUfb2ZbgvQ6DNwb-gRGtSWE8zl18bDrHb4j3zOcn2-09VL8LsNb92i-IO-P8VQb_NJDQ5pYgcbcMsCLQSrED9S7mihsimOLMCtSVSfkq3NQ-6u_Zrp5zyJNovkKXhhPe25eO6kIBh3KXYDlqiYBMfjH-ee54L2EZ7w/s320/Screen%20Shot%202022-08-30%20at%209.04.59%20AM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi-cnyWZsGC7v0owX53h8JJf7rErw67H7QNz3YcD27kWCKg-pfVYCBsxJxpqatSe01YPlEaalxFPnBmWWxywCYMWuZkiKfx0ptLXHczCtIywkpoMKowOZhIZ6bO4DBJEjCoH2ujL1pB4-Rr9dez-iRaey46gOBzkM2ojfCp_HVgzJcdJCKMFWY6-mbmDg/s1227/Screen%20Shot%202022-08-30%20at%209.05.14%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="579" data-original-width="1227" height="151" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi-cnyWZsGC7v0owX53h8JJf7rErw67H7QNz3YcD27kWCKg-pfVYCBsxJxpqatSe01YPlEaalxFPnBmWWxywCYMWuZkiKfx0ptLXHczCtIywkpoMKowOZhIZ6bO4DBJEjCoH2ujL1pB4-Rr9dez-iRaey46gOBzkM2ojfCp_HVgzJcdJCKMFWY6-mbmDg/s320/Screen%20Shot%202022-08-30%20at%209.05.14%20AM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi49w7Udrg9b5OArsoh0zChRtZz3zialZ0NfF7l3_ugEKKGKzabdu7NClS_QemNPtFiPjjt5EQ6o8bx4uJA9wFX0uusowzdzaKRUQ_vvZgDZsyI9a8j584Glgs3JpR9-qRRWHkvXQSG0IwWaXMS_nvus2x8PM0txhIJidHHLpuVkMlzIE5tHXlIIbcq0w/s1209/Screen%20Shot%202022-08-30%20at%209.05.27%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="644" data-original-width="1209" height="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi49w7Udrg9b5OArsoh0zChRtZz3zialZ0NfF7l3_ugEKKGKzabdu7NClS_QemNPtFiPjjt5EQ6o8bx4uJA9wFX0uusowzdzaKRUQ_vvZgDZsyI9a8j584Glgs3JpR9-qRRWHkvXQSG0IwWaXMS_nvus2x8PM0txhIJidHHLpuVkMlzIE5tHXlIIbcq0w/s320/Screen%20Shot%202022-08-30%20at%209.05.27%20AM.png" width="320" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: left;">For the next-hop to null, you need a discard route installed.</div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibjOkbuspKdk5SRuhFWDEKs7ecCUm0sCP6U2qYe91Lvb1c4gr8YjFO6A32XcAhWYIuuOV1V6noudrOGlbTtzFdmu78C5zc1q6kvy0hDd9KZGv4tfuDRBEQqn3kb0FPKP0A3DIi3fNMs7qCUHGEr6S--EDfzVPh_GAHP_-W70FL9nC5AdLEf2K3elwYVA/s1046/Screen%20Shot%202022-08-30%20at%209.18.29%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="560" data-original-width="1046" height="171" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibjOkbuspKdk5SRuhFWDEKs7ecCUm0sCP6U2qYe91Lvb1c4gr8YjFO6A32XcAhWYIuuOV1V6noudrOGlbTtzFdmu78C5zc1q6kvy0hDd9KZGv4tfuDRBEQqn3kb0FPKP0A3DIi3fNMs7qCUHGEr6S--EDfzVPh_GAHP_-W70FL9nC5AdLEf2K3elwYVA/s320/Screen%20Shot%202022-08-30%20at%209.18.29%20AM.png" width="320" /></a></div><br /><p>Make sure you check logs and rib table</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj8QwfktWqtQBqvW0Q6_6oVu4rv72_EkhVnjwsYMwkolXaWNNLcCw0KEZahgl9BA_-8wKHXMZtoYjl4yK-s_2rUK2WZHEZnV-ovfhx_qZCmG83oIBsmG4RFi5sso0jjpMvdAJol11uXWhlhbdrVxxL4gIInwddG-mJjWmuuc6fV4xvfXkfN5TXeFR4WMA/s1314/Screen%20Shot%202022-08-29%20at%209.44.02%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="249" data-original-width="1314" height="61" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj8QwfktWqtQBqvW0Q6_6oVu4rv72_EkhVnjwsYMwkolXaWNNLcCw0KEZahgl9BA_-8wKHXMZtoYjl4yK-s_2rUK2WZHEZnV-ovfhx_qZCmG83oIBsmG4RFi5sso0jjpMvdAJol11uXWhlhbdrVxxL4gIInwddG-mJjWmuuc6fV4xvfXkfN5TXeFR4WMA/s320/Screen%20Shot%202022-08-29%20at%209.44.02%20PM.png" width="320" /></a></div><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4BQctDO0llXxqmXRNWwRFVz8nNyqPOJyRNrmUeO1qXQRloy66l6NwZkdqyLdUPnvz3s_S-3_wGfAC4eNlEi2k8uyRPpVZtxkeW7bvMdQABC1_fgDPacE0TAH0w3xPXeWbTtsF6a-5V0OrfY6DujWtHhntlcEeIhEVNghTXUAc9UpC0MIc0yc16PqceQ/s1959/Screen%20Shot%202022-08-30%20at%208.59.42%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="421" data-original-width="1959" height="69" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4BQctDO0llXxqmXRNWwRFVz8nNyqPOJyRNrmUeO1qXQRloy66l6NwZkdqyLdUPnvz3s_S-3_wGfAC4eNlEi2k8uyRPpVZtxkeW7bvMdQABC1_fgDPacE0TAH0w3xPXeWbTtsF6a-5V0OrfY6DujWtHhntlcEeIhEVNghTXUAc9UpC0MIc0yc16PqceQ/s320/Screen%20Shot%202022-08-30%20at%208.59.42%20AM.png" width="320" /></a></div><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9F52rWC0iiwXRf2E1-xNmm6lHGliCIb7EAkz8t0K6tYNITFQXqstWr26NRjkwVuvF7m2mNaW5gsh0AskpgyAj7KsAZ3nlPHorwmARNH8DSBV6WKcEr0kIsZqVKmgjVJTQzOjjQWT-6Dvh4WLchOSI6uVOA-h35CpzOYd2v0IpaM5d9RS8Y2J9wAwoTg/s1849/Screen%20Shot%202022-08-30%20at%209.04.18%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="910" data-original-width="1849" height="157" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9F52rWC0iiwXRf2E1-xNmm6lHGliCIb7EAkz8t0K6tYNITFQXqstWr26NRjkwVuvF7m2mNaW5gsh0AskpgyAj7KsAZ3nlPHorwmARNH8DSBV6WKcEr0kIsZqVKmgjVJTQzOjjQWT-6Dvh4WLchOSI6uVOA-h35CpzOYd2v0IpaM5d9RS8Y2J9wAwoTg/s320/Screen%20Shot%202022-08-30%20at%209.04.18%20AM.png" width="320" /></a></div><div><br /></div><div>For goBGP the configuration is still simple.</div><div><br /></div><div><br /></div><div><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[global.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>as = 2</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>router-id = "0.0.0.2"</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>port = 179</span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 18px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[[mrt-dump]]</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>[mrt-dump.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> # </span>dump-type = "updates"</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> #</span>file-name = "/home/gobgpd/dump.dump"</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> # </span>dump-interval = 180</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> # </span>rotation-interval = 28800</span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px; min-height: 18px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span><br /></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">[[neighbors]]</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>[neighbors.config]</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>peer-as = 1</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span># auth-password = "password"</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>neighbor-address = "198.206.234.255"</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span>local-as = 2</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">For route injection, we will use the typical <b>gobgp global rib</b> cmd</span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p2" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><b>for p in ` cat ip.list<span class="Apple-converted-space"> </span>` ;</b><span class="Apple-converted-space"> </span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"> #</span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"> # ip.list is our ipv4 list of harvest /32 that are to be dropped </span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"> #</span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"> # this list can be populated from loggers and parsers, outputs from a siems details, or manually created</span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"><br /></span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><span class="Apple-converted-space"><br /></span></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><br /></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i> <b> do gobgp global rib add $p/32 community 1:999 ; </b></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><b><br /></b></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><i><b>done</b></i></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">We are sending bgp-community 1:999, which the import policy uses to set its local_pref and next-hop to the discard.</span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div class="p1" style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><p class="p1" style="font-family: Menlo; font-size: 15px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-24668040074085413392022-05-20T11:51:00.002-07:002022-05-20T11:51:47.732-07:00fortiso 7.2.0 is out<p> Okay I finally have some time to push some new details and got around in updating my fortios gear. </p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjDrwrerjKqNNtZx6FSWoNaWyxhFMq7ek2ob4YaJJvpNPQi2uOyibWPB5nWltP_Qu92oSrbD3mYN09WKnYz14BZZq-EbGRcWUagYiohzGpnz-qkRy8WK-ZjLFhVRtPh4-eFyAJ_hNGpR5zItTBPajaufzNBEkxJvxnHtVzpVz0jNenVYZRl54JPvRBBCg/s1074/Screen%20Shot%202022-05-20%20at%201.46.26%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="746" data-original-width="1074" height="222" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjDrwrerjKqNNtZx6FSWoNaWyxhFMq7ek2ob4YaJJvpNPQi2uOyibWPB5nWltP_Qu92oSrbD3mYN09WKnYz14BZZq-EbGRcWUagYiohzGpnz-qkRy8WK-ZjLFhVRtPh4-eFyAJ_hNGpR5zItTBPajaufzNBEkxJvxnHtVzpVz0jNenVYZRl54JPvRBBCg/s320/Screen%20Shot%202022-05-20%20at%201.46.26%20PM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEggHJBtiWQw0JNNn7wRAW-1PzWt0Gi0IQ_duUVpjtVUd7Chq4W-tnUQHglRt4M1jCqji6tJY80kh1_Mfd8sfQP3ifvYThAN-or3T3tFXLS9KXIjr-Ven9_csKUCIz_04320zsR72wz9Atl8ev2YCWYWTdL4jtNjTZKzlSTabhtXlihqLMB-J2PEwWxLcA/s1205/Screen%20Shot%202022-05-20%20at%2012.12.54%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="844" data-original-width="1205" height="224" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEggHJBtiWQw0JNNn7wRAW-1PzWt0Gi0IQ_duUVpjtVUd7Chq4W-tnUQHglRt4M1jCqji6tJY80kh1_Mfd8sfQP3ifvYThAN-or3T3tFXLS9KXIjr-Ven9_csKUCIz_04320zsR72wz9Atl8ev2YCWYWTdL4jtNjTZKzlSTabhtXlihqLMB-J2PEwWxLcA/s320/Screen%20Shot%202022-05-20%20at%2012.12.54%20PM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjb7YHxwWtyW-iB597_Mk1COFVycGRjSReroz4H1fQrxZuAMd5XWubu1N-KWrRbnmCS9AmF1Vu0RjhtCVyiBWNJPPmi8fnB2RdcgoyOiyFVOHhIg2HeubZJNOMV2C-Owo6Ht5bVmemNUt-h19pEj5y2yL0211LuAVBTP5ZJAm11RHjNpBjEmkLBUGSFCg/s1444/Screen%20Shot%202022-05-20%20at%2012.59.13%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="595" data-original-width="1444" height="132" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjb7YHxwWtyW-iB597_Mk1COFVycGRjSReroz4H1fQrxZuAMd5XWubu1N-KWrRbnmCS9AmF1Vu0RjhtCVyiBWNJPPmi8fnB2RdcgoyOiyFVOHhIg2HeubZJNOMV2C-Owo6Ht5bVmemNUt-h19pEj5y2yL0211LuAVBTP5ZJAm11RHjNpBjEmkLBUGSFCg/s320/Screen%20Shot%202022-05-20%20at%2012.59.13%20PM.png" width="320" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_qRJEBBX-w_EQgZA97h9mWSNHsikGm8ls3rudxJRYvSE466sJymJ6TFq3WSRw0yEJWARHKv2OG9g-sGK_jYEJc8hneZhVgLZxQZ55m-_4w-yU0zUJg0iMSAOONOyRPQR92_8WUdmZJGqTmnuklgigiYO-L5BOms8eXXnWM6RrF-M8Cy8I9t5Rue7QhQ/s424/Screen%20Shot%202022-05-20%20at%2012.59.41%20PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="206" data-original-width="424" height="155" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_qRJEBBX-w_EQgZA97h9mWSNHsikGm8ls3rudxJRYvSE466sJymJ6TFq3WSRw0yEJWARHKv2OG9g-sGK_jYEJc8hneZhVgLZxQZ55m-_4w-yU0zUJg0iMSAOONOyRPQR92_8WUdmZJGqTmnuklgigiYO-L5BOms8eXXnWM6RrF-M8Cy8I9t5Rue7QhQ/s320/Screen%20Shot%202022-05-20%20at%2012.59.41%20PM.png" width="320" /></a></div><br /><p>https://docs.fortinet.com/document/fortigate/7.2.0/new-features/770045/overview</p><p><br /></p><div class="separator" style="background-color: white; clear: both; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div class="p1" style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;"></p><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 14.52px;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-38231661201446254812022-04-30T12:50:00.008-07:002022-04-30T12:50:00.158-07:00DUO on checkpoint for remote access tips from vault<p>Just assisted in a DUO-MFA for vpn clients in a checkpoint DUO MFA setup </p><p> <a href="https://help.okta.com/en/prod/Content/Topics/integrations/check-point-radius-intg-test.htm">https://help.okta.com/en/prod/Content/Topics/integrations/check-point-radius-intg-test.htm</a></p><p><br /></p><p>I wanted to point out a few items that are easily missed</p><p><br /></p><p>When setting up the DUO-PRoxy the service port must be relay to the firewall admin. It's typically 1812 or 1645.</p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8DOPQ5M3NleAmdEQ-JrImihHW9Pc33JzvNdFCB1-AQc7_NrvgE5geb8vsydWuHrt9AYnNKNHMvUrWmENXFN5x8RRQGQcs6oD5AMjvs5CjbDIkzHWV3CRc_lhvwDErWcCst7mUfy316B_uY-WnoAjhYpsaQkRrRj4t0S1rqT2NFg-icdpBRNFrvgg0xQ/s734/Screen%20Shot%202022-04-01%20at%202.48.28%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="394" data-original-width="734" height="172" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8DOPQ5M3NleAmdEQ-JrImihHW9Pc33JzvNdFCB1-AQc7_NrvgE5geb8vsydWuHrt9AYnNKNHMvUrWmENXFN5x8RRQGQcs6oD5AMjvs5CjbDIkzHWV3CRc_lhvwDErWcCst7mUfy316B_uY-WnoAjhYpsaQkRrRj4t0S1rqT2NFg-icdpBRNFrvgg0xQ/s320/Screen%20Shot%202022-04-01%20at%202.48.28%20PM.png" width="320" /></a></div><div class="separator" style="clear: both; text-align: center;"><br /></div><div class="separator" style="clear: both; text-align: left;">Make sure to set the proper SERVICE in your radius object </div><p></p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisXgYF9LY2vRXAEHfokcSkkJnq5pFBBQdIUItxjKIvQPXvo-MKH9L2S1fKMXTbdo-qb8-JSfKcvbNY-kIdd8jq6ib3KjZY7N9s51Inwbb1iOmBTF6jYMjKIahOmziSD6yNSK4A7R2h3P8fDf8eoOWWD1VPSnhsT6GPUCM3WRIZyra9bn3uOF7e3TftxA/s333/Screen%20Shot%202022-04-01%20at%202.48.54%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="135" data-original-width="333" height="130" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisXgYF9LY2vRXAEHfokcSkkJnq5pFBBQdIUItxjKIvQPXvo-MKH9L2S1fKMXTbdo-qb8-JSfKcvbNY-kIdd8jq6ib3KjZY7N9s51Inwbb1iOmBTF6jYMjKIahOmziSD6yNSK4A7R2h3P8fDf8eoOWWD1VPSnhsT6GPUCM3WRIZyra9bn3uOF7e3TftxA/s320/Screen%20Shot%202022-04-01%20at%202.48.54%20PM.png" width="320" /></a></div><br /><p></p><p>When diagnosing connectivity from the checkpoint security gateway, the interfaces that faces the DUO-PROXY should have a pcap create to witness the traffic, You can always decode the radsniff datagram and see the user details to include password.</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh0XTGp-OwfZ8YnzlX8P6YrMx0HSQmKKpmRe9o4vaWhUlnRfJmHS2dNEErtC59sKXdFeI1IwSWp4BYK-9TfwP3oYTYcFO2iQSY_QSujSj68kq_XSxwJTsi8_lYpDN9ViWkkwwko8LxfB-ef0fWU8uh2mazVogUpe0NqlpBaSXEGhWXlmvouDfa83ZCwCQ/s1081/Screen%20Shot%202022-04-01%20at%202.47.22%20PM.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="283" data-original-width="1081" height="84" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh0XTGp-OwfZ8YnzlX8P6YrMx0HSQmKKpmRe9o4vaWhUlnRfJmHS2dNEErtC59sKXdFeI1IwSWp4BYK-9TfwP3oYTYcFO2iQSY_QSujSj68kq_XSxwJTsi8_lYpDN9ViWkkwwko8LxfB-ef0fWU8uh2mazVogUpe0NqlpBaSXEGhWXlmvouDfa83ZCwCQ/s320/Screen%20Shot%202022-04-01%20at%202.47.22%20PM.png" width="320" /></a></div><br /><br />Tips<div><ul style="text-align: left;"><li><i> if no response ; check service_port ( 1645 or 1812 ) and radius server ip.address</i></li><li><i> if the body of the request has a "chap" challenge you need to convert the radius-client to "PAP"</i></li><li><i> the response for valid logins would be a "Access-Accept" reply </i></li></ul></div><div><br /></div><div>You can read more here ;</div><div><br /></div><div>http://socpuppet.blogspot.com/2017/04/securing-fortigate-sslvpn-with-mfa-by.html</div><div><br /></div><div><div class="post-body entry-content" id="post-body-3876127253114217300" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div class="post-body entry-content" id="post-body-5722770986768172008" itemprop="description articleBody" style="line-height: 1.4; position: relative; width: 570px;"><div class="separator" style="clear: both; font-family: arial, tahoma, helvetica, freesans, sans-serif; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div><div style="clear: both;"></div></div><p><br /></p><div style="clear: both;"></div></div><div class="post-footer" style="background-color: #f9f9f9; border-bottom: 1px solid rgb(238, 238, 238); color: #666666; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 20px -2px 0px; padding: 5px 10px;"></div></div><div><br /></div><div><br /></div><div><br /><br /><p><br /></p></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-38761272531142173002022-03-28T22:59:00.001-07:002022-03-28T22:59:23.283-07:00JUNIPER SECURITY certification<p> My day job has to maintain a few juniper certifications, so I took the JNCIA-SEC exam and pass. The exam should be called juniper ATP since most the exam focus was in ATP.</p><p><br /></p><p>The believe screenshot shows the exam objectives</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjnQVOnVihLpKRoZIcXp0Ihm2ieVVBInhCP2EYiHfw7SQ0eX1PFUvgISXFDTWG6ilyYfVIycYVE3nC-6v44JBJFNP4yIFAx5010HEB7MHPRofvTG1NDdRIRkaY83bp6vY4dePjbRU8st3V4X-9x-9AhlMV_8SrtDfmICC7mPGVX7pLuUQcamtISl0AL6A/s1354/Screen%20Shot%202022-03-29%20at%2012.29.52%20AM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1143" data-original-width="1354" height="407" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjnQVOnVihLpKRoZIcXp0Ihm2ieVVBInhCP2EYiHfw7SQ0eX1PFUvgISXFDTWG6ilyYfVIycYVE3nC-6v44JBJFNP4yIFAx5010HEB7MHPRofvTG1NDdRIRkaY83bp6vY4dePjbRU8st3V4X-9x-9AhlMV_8SrtDfmICC7mPGVX7pLuUQcamtISl0AL6A/w482-h407/Screen%20Shot%202022-03-29%20at%2012.29.52%20AM.png" width="482" /></a></div><br /><p><br /></p><p>One thing I found interesting is the exam did not really have a lot diagnostic or troubleshooting exhibits. Most of the items where straight forward questions & about practical use.</p><p><br /></p><p><br /></p><div class="post-body entry-content" id="post-body-5722770986768172008" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div class="separator" style="clear: both; font-family: arial, tahoma, helvetica, freesans, sans-serif; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div><div style="clear: both;"></div></div><p><br style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" /></p>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-44697998586499124012022-03-13T17:09:00.000-07:002022-03-13T17:09:00.154-07:00GoGoGo goBPD for RTBH injection<p> In most big enterprise and MSSP , the need exist for bgp-route-injection for blackhole. I wrote about a opensource pyhton BGP daemon earlier, <a href="http://socpuppet.blogspot.com/2020/12/using-yabgp-for-blackhole-injection.html">http://socpuppet.blogspot.com/2020/12/using-yabgp-for-blackhole-injection.html</a>. Here is goBGPD which is the next evolution for opensource routing</p><p><a href="https://osrg.github.io/gobgp/">https://osrg.github.io/gobgp/</a></p><p>goBGPD is another simple means and is great if you want to inject routes. Most of the time we collect C&C and malicious address from IDS from IPS/IDS/SIEM and then run them thru a check and injector the ip.list </p><p>Let's look at a simple configuration file</p><p><br /></p><p>/* 192.168.1.99 is a FGT firewall fwiw</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEjGTbnOGjRqy9_l1rKXUrRtXQkLc7d2gyHUzO0r8gE_w9VBKT62VM12u5sCWiIOY_pw2tXEtjrai1_2cybhIY-kovyUSDRJ5wGGO0iQrHCxzt2aw0-oPlmAtY5rBQ1NZ8yqFKoGIC68FllkeovK1dTpdLdm2BQJ4LCxSsaIZeidK3-hoExqrJQq7pRt6Q=s748" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="591" data-original-width="748" height="396" src="https://blogger.googleusercontent.com/img/a/AVvXsEjGTbnOGjRqy9_l1rKXUrRtXQkLc7d2gyHUzO0r8gE_w9VBKT62VM12u5sCWiIOY_pw2tXEtjrai1_2cybhIY-kovyUSDRJ5wGGO0iQrHCxzt2aw0-oPlmAtY5rBQ1NZ8yqFKoGIC68FllkeovK1dTpdLdm2BQJ4LCxSsaIZeidK3-hoExqrJQq7pRt6Q=w501-h396" width="501" /></a></div><br /><p><br /></p><p>Now to craft routes, we can do a simple for loop and read in a list of address from a file</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhAmcb0LUBhpcgpIDo2hXuXN-WzQlkTnR_1LFO2xDaPT3SUKQ0erwAQBmYXDTwi2784G6pkpgCo2pQmYk4AB-TzBQPr4vsRUmlmIhzx57pUssWI0fktfriOkGgTGJF7NpbbIVY_fx_HJRynWG13BqhxKs27Vh862syEEbcLtuCxB6GnXlvB34fjSCCF5w=s1648" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="63" data-original-width="1648" height="47" src="https://blogger.googleusercontent.com/img/a/AVvXsEhAmcb0LUBhpcgpIDo2hXuXN-WzQlkTnR_1LFO2xDaPT3SUKQ0erwAQBmYXDTwi2784G6pkpgCo2pQmYk4AB-TzBQPr4vsRUmlmIhzx57pUssWI0fktfriOkGgTGJF7NpbbIVY_fx_HJRynWG13BqhxKs27Vh862syEEbcLtuCxB6GnXlvB34fjSCCF5w=w1253-h47" width="1253" /></a></div><br /><p>Gobgp has a cli-cmd controller which is simple and mimic the classic legacy Merit gateD just type <b><i>gobgp --help</i></b> to see your options</p><p><br /></p><p>You can do many of everything, see just a few samples below;</p><p><br /></p><p>disable and reenable a bgp-peer</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEiFUjBPU3aSABTq3CtTbQAYerXyE9VSDSwA4oZwtDf5tETHh7BUOfW9FfADWulw45f_Qrg0RC_dHG2WnJHOFLB7SqydzGPS2Ch_FjfJTRVOmAU_jJmjCS_idmV3yvC0p4dL3l3kJ5nZo-9wvNOpb-OsxGjwCy_PI8FKBnWxwVi46sRf99F6LQ-uzTcGkQ=s1593" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="385" data-original-width="1593" height="117" src="https://blogger.googleusercontent.com/img/a/AVvXsEiFUjBPU3aSABTq3CtTbQAYerXyE9VSDSwA4oZwtDf5tETHh7BUOfW9FfADWulw45f_Qrg0RC_dHG2WnJHOFLB7SqydzGPS2Ch_FjfJTRVOmAU_jJmjCS_idmV3yvC0p4dL3l3kJ5nZo-9wvNOpb-OsxGjwCy_PI8FKBnWxwVi46sRf99F6LQ-uzTcGkQ=w488-h117" width="488" /></a></div><div><br /></div><div>monitor actively RIB updates</div><div><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhcD-wRWaptIQD2mePfKS1r8UG0J8Tj3AiJhIZMEwwS3G_d5jG2-FoKjQgIjDO8oNhKXeFwkl3KaGd4alpR9WIB52mCLy1RS5MmuQf9IIeB3zHXrTjTX4_Gdq3lQr46EXjr30j3awicho9CbEss-C4WLiVVcMx_82tZl-oSCfpJAtQIwFngsCdyp06hEQ=s1609" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="742" data-original-width="1609" height="230" src="https://blogger.googleusercontent.com/img/a/AVvXsEhcD-wRWaptIQD2mePfKS1r8UG0J8Tj3AiJhIZMEwwS3G_d5jG2-FoKjQgIjDO8oNhKXeFwkl3KaGd4alpR9WIB52mCLy1RS5MmuQf9IIeB3zHXrTjTX4_Gdq3lQr46EXjr30j3awicho9CbEss-C4WLiVVcMx_82tZl-oSCfpJAtQIwFngsCdyp06hEQ=w497-h230" width="497" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: left;">check our cfg global</div><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhAdhrBndZDupELQ1XCrJ8bLEnNE1wJM3G9COvfi0-tdwn1KQ_4_kE18Dmn1MaJLBi8HdzW9jzeDoujFKxu3dngfwkeKIbD8s-kJQ1tsTH66m9ZFK7e_p78NnaOYOr9vrU8NSAVPN4m28q8GVzbpV60wyibqkxt7W3oLd67hjyasaxPdWelRSXFocW56g=s1258" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="420" data-original-width="1258" height="173" src="https://blogger.googleusercontent.com/img/a/AVvXsEhAdhrBndZDupELQ1XCrJ8bLEnNE1wJM3G9COvfi0-tdwn1KQ_4_kE18Dmn1MaJLBi8HdzW9jzeDoujFKxu3dngfwkeKIbD8s-kJQ1tsTH66m9ZFK7e_p78NnaOYOr9vrU8NSAVPN4m28q8GVzbpV60wyibqkxt7W3oLd67hjyasaxPdWelRSXFocW56g=w518-h173" width="518" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhnNhS7HArv8sv0xpudJVlP5Go5Kgi1R-zMbHk-8ugs0lFQwnMVYfS46Eyun7WtlSqySyEuWC35aHUyVU3EJDZISIWwSutqnHO0I5F209LJGg-ZpCHASEfUSjup2I01Q-9WB2bgqins0TpNpGd9dkKLSXwgu7YB9Tp8WW7NxDmEWsp39m7jJ-FnawYPMg=s1034" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="697" data-original-width="1034" height="319" src="https://blogger.googleusercontent.com/img/a/AVvXsEhnNhS7HArv8sv0xpudJVlP5Go5Kgi1R-zMbHk-8ugs0lFQwnMVYfS46Eyun7WtlSqySyEuWC35aHUyVU3EJDZISIWwSutqnHO0I5F209LJGg-ZpCHASEfUSjup2I01Q-9WB2bgqins0TpNpGd9dkKLSXwgu7YB9Tp8WW7NxDmEWsp39m7jJ-FnawYPMg=w472-h319" width="472" /></a></div><div><br /></div><div><br /></div>If you need to drop ( withdrawn ) a address you can del all or specific prefixes<div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEgJmCvfLlnbQ0kCcbBS4CwYakcYHaeJWJD8B5xKB06FxpdnmaSRR6_ZSYRm1aMxkty3VOOZ5lJVsG-V2vnkF7Ud0HrsKQ2_zu_9LyIEgGDyepfDBnqYRtpFEzXFSIPmwfpStyLyYA82VB_RVJAzXG8DoQDIT2YsgrLEdRoNT94jeBMGgUdZj7GubuHuGw=s1465" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="143" data-original-width="1465" height="59" src="https://blogger.googleusercontent.com/img/a/AVvXsEgJmCvfLlnbQ0kCcbBS4CwYakcYHaeJWJD8B5xKB06FxpdnmaSRR6_ZSYRm1aMxkty3VOOZ5lJVsG-V2vnkF7Ud0HrsKQ2_zu_9LyIEgGDyepfDBnqYRtpFEzXFSIPmwfpStyLyYA82VB_RVJAzXG8DoQDIT2YsgrLEdRoNT94jeBMGgUdZj7GubuHuGw=w607-h59" width="607" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEjnITJxKIrfNImFS6kYB_iS1zIuwyLrNuIV9hLCDWN9ERq4UpnjpscSNVOvwyi5Z26YG4ZqrdZeLzG5sSvJTmhjmxpVy_jqfk4FEdVvErE8AJRRhV8a6ickynNUo0XGKYYbVYVIWysRWo73M_GDkV0N6O8hRZC22HumtqrU3uWzEuq7YoW5_tDxLwcVAQ=s1792" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="947" data-original-width="1792" height="257" src="https://blogger.googleusercontent.com/img/a/AVvXsEjnITJxKIrfNImFS6kYB_iS1zIuwyLrNuIV9hLCDWN9ERq4UpnjpscSNVOvwyi5Z26YG4ZqrdZeLzG5sSvJTmhjmxpVy_jqfk4FEdVvErE8AJRRhV8a6ickynNUo0XGKYYbVYVIWysRWo73M_GDkV0N6O8hRZC22HumtqrU3uWzEuq7YoW5_tDxLwcVAQ=w486-h257" width="486" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div>routes sent is easy just check the adj-out<br /><div class="separator" style="clear: both; text-align: center;"><br /></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEg-9iuHX5YrazOhnni207tfen_f-nuJlDnC8WRtJDuokPFApQl7LedgMdFhQ8-wRuKvHfi80g8Du-acT1EXyoI1WXeWh_4ElHb8acMvSCfLVGU2LnrOEMeJy9Ql_51aW1tZk02Rqw9mKteNzSu2YTB8Sxl1NvBWP3GwNjaagj727xniAgXpBbuwulycXw=s1634" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="651" data-original-width="1634" height="190" src="https://blogger.googleusercontent.com/img/a/AVvXsEg-9iuHX5YrazOhnni207tfen_f-nuJlDnC8WRtJDuokPFApQl7LedgMdFhQ8-wRuKvHfi80g8Du-acT1EXyoI1WXeWh_4ElHb8acMvSCfLVGU2LnrOEMeJy9Ql_51aW1tZk02Rqw9mKteNzSu2YTB8Sxl1NvBWP3GwNjaagj727xniAgXpBbuwulycXw=w480-h190" width="480" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><br /></div>Or just see bgp-neighbor establishment state</div><div><br /></div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEhd_OLBzo3-EwBmVEBJ_2pgenWO7HyAC794KbKgDtvezCocJZO74fLeAXe1tsH2dxXdo50C7er3jpTTCr5fVntbvtWqh_5QY08mYwBVHHdBwvGZHCZRAomuXxBBoBSc3UbQQcbrtBd6tRtD9A8W1crT2PGMYn5t2ASHP_BqTlygSyJ_5ewO-tru886s2A=s2115" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="641" data-original-width="2115" height="156" src="https://blogger.googleusercontent.com/img/a/AVvXsEhd_OLBzo3-EwBmVEBJ_2pgenWO7HyAC794KbKgDtvezCocJZO74fLeAXe1tsH2dxXdo50C7er3jpTTCr5fVntbvtWqh_5QY08mYwBVHHdBwvGZHCZRAomuXxBBoBSc3UbQQcbrtBd6tRtD9A8W1crT2PGMYn5t2ASHP_BqTlygSyJ_5ewO-tru886s2A=w515-h156" width="515" /></a></div><br /><div><br /><p>GoBGP has been around for some time and support numerous SAFI and is easy to manage for RTBH or to inject specific /32 into a firewall so uRPF and introduce failure and traffic to or from the firewall will be drop. </p><p><br /></p><p>A list of 1000k /32 only took me 9 seconds to advertise via goBGP on a small foot print ubuntu server and a FGT100D</p><p><br /></p><div class="post-body entry-content" id="post-body-5722770986768172008" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div class="separator" style="clear: both; font-family: arial, tahoma, helvetica, freesans, sans-serif; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><br class="Apple-interchange-newline" /><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div><div style="clear: both;"></div></div><p><br /></p></div>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-8889285000186294932.post-36435701555074166172022-03-11T16:20:00.002-08:002022-03-11T16:20:19.261-08:00howto send rpc cmd via junos and netconf and ssh<p> Within junos you can send cmds from a list via netconf . 1st thing you need to looking at the display xmk rpc out for the command and then use that in your file</p><p><br /></p><p>Here's a "show system interface" in rpc syntax</p><p><br /></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">supports-MacBook-Pro:~ ken$ cat sys</span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><rpc></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span><get-system-information></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span></get-system-information></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></rpc></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><br /></p><p><br /></p><p>Here's a "show arp" in rpc syntax</p><p><br /></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">supports-MacBook-Pro:~ ken$ cat arp<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><rpc></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><span class="Apple-converted-space"> </span><get-arp-table-information/></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></rpc></span></p><div> </div><div><br /></div><div>You could easily just pipe the above redirect into via ssh and netconf the juniper device;</div><div><br /></div><div><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">supports-MacBook-Pro:~ ken$<span class="Apple-converted-space"> </span></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">supports-MacBook-Pro:~ ken$ cat sys arp<span class="Apple-converted-space"> </span>| ssh -6<span class="Apple-converted-space"> </span>root@2001:1258:727:12::1 -s netconf</span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">The output will be dump back in xml format;</span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">e.g </span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><rpc-reply xmlns="urn:ietf:params:xml:ns:netconf:base:1.0" xmlns:junos="http://xml.juniper.net/junos/19.4R3/junos"></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><system-information></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><hardware-model>mx104</hardware-model></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><os-name>junos</os-name></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><os-version>19.4R3-S11</os-version></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><serial-number>T623</serial-number></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><host-name>core1.usme</host-name></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></system-information></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></rpc-reply></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">]]>]]></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><rpc-reply xmlns="urn</span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;">( output snipped ) </span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></p><p class="p1" style="font-family: Menlo; font-size: 16px; font-stretch: normal; font-variant-east-asian: normal; font-variant-numeric: normal; line-height: normal; margin: 0px;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></p><div class="post-body entry-content" id="post-body-5722770986768172008" itemprop="description articleBody" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px; line-height: 1.4; position: relative; width: 570px;"><div class="separator" style="clear: both; font-family: arial, tahoma, helvetica, freesans, sans-serif; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="color: #888888; margin-left: 1em; margin-right: 1em; text-decoration-line: none;"><img border="0" data-original-height="170" data-original-width="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEX7C4_dme5KeErTWAb8gd_L-iD0w53h90aMeG0n8vDLTw-j0dUH-zdyuMMPHcexZooYihy4ZL9V3TArvnkyzGylwst0G0S-Qh1IIwFAjbyO9sZ0Ak_9G33eIXX-vOjyHCPDMWKHuVAfwt/s1600/QRickit%25284%2529.gif" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: calibri, helvetica, sans-serif, emojifont, "apple color emoji", "segoe ui emoji", notocoloremoji, "segoe ui symbol", "android emoji", emojisymbols; font-size: 16px;"></div><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br style="font-variant-ligatures: normal;" /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span><span class="s1" style="font-variant-ligatures: no-common-ligatures;"><br /></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s1600/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="color: #888888; text-decoration-line: none;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYa857d2LFTWbnykeszDF7qcmmlLr0QGtwEAa58XtpyhZNmNSFY-ZE4l6z2Fqrby-TZ-2W5jF0ntf-p7LiwyMNpz1OKwiubJGWkH0TJojWaJWBX6k2I2kOTRys4F7bXhvxgKRfWfBUVSw/s400/Screen+Shot+2016-12-25+at+11.47.40+PM.png" style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; border: 1px solid rgb(238, 238, 238); box-shadow: rgba(0, 0, 0, 0.098) 1px 1px 5px; padding: 5px; position: relative;" /></a></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;"><br /></span><span style="font-size: 13px;">NSE ( network security expert) and Route/Switching Engineer</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="font-size: 13px;">kfelix -----a----t---- socpuppets ---dot---com</span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> ^ ^</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;">=( @ @ )=</span></span></div><p></p><div class="p1" style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span class="s1" style="font-variant-ligatures: no-common-ligatures;"></span></div><p></p><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> o</span></span></div><div style="font-family: arial, tahoma, helvetica, freesans, sans-serif;"><span style="color: #660000; font-size: 13px;"><span style="color: black;"> / \ </span></span></div><div><span style="color: #660000; font-size: 13px;"><span style="color: black;"><br /></span></span></div><div style="clear: both;"></div></div></div>Unknownnoreply@blogger.com0