WebForms Here we define table definitions used similar to databases in this web (for example to rebuild ListeChipsatz) TestForm * TestDbList * TestDbDef C...
Cisco Firewall (ASA/PIX) Best Practice work in progress das gleiche in deutsch (the same in german) Start with a policy A written policy is a security map. Wit...
graphviz, omnigraffle and the dot language Graphviz is open source graph visualization software. Graph visualization is a way of representing structural informati...
CheckPoint Firewall Export CheckPoint config in human readable or parseable format * Export Checkpoint into a readable format * http://overlaid.net/2014/02...
Shutting down Always shut down the FortiGate operating system properly before turning off the power switch to avoid potentially catastrophic hardware problems. T...
Export CheckPoint config into a readable format * use the Web Visualization Tool * Cisco self service tool to convert (still alive??) * use a Fortinet Fi...
metasploit Metasploit is a valuable tool in pen testing a network. However, it can be very confusing for a beginner. metasploit doku Here some demosessions $ ...
Configuration spanning tree and interoperability with cisco Config)# protocol spanning tree pvst Config protocol PVST)# no disable Interoperabilty on hybrid ports...
Spanning Tree enable spanning tree switch enable switch#configure terminal Enter configuration commands, one per line. End with CNTL/Z. switch(config)#spanning...
Sun Crypto Accelerator 6000 Board How to set the SCA6000 to factory default and initialize it again. I bought a Sun Crypto Accelerator 6000 Board (data sheet) fr...
scamgr No keystore data returned by card Select Keystore: 1. Create new keystore 2. Load keystore from backup Selection (0 to exit) 1 Non FIPS Keystore Name: ...
Installation of the Sun Crypto Accelerator 6000 software failed Solution The installer script searches in the wrong path. Fix it with a simple symlink cd ~/Su...
scamgr This board is uninitialized. You will now initialize the board. You may either initialize the board with a new configuration or restore the configurati...
scamgr This board is currently in failsafe mode. Boards in failsafe mode can only perform firmware upgrades. You will now be prompted for the location of the...
Templates for failover configurations steps for failover setup both interface GigabitEthernet0/3 no shutdown description LAN/STATE Failover Interface primary...
Initial Setup default password ciscoasa en Password: ciscoasa# configure terminal ciscoasa(config)# now you are ready to configure reset factory default clear...
Serial console for APU board from PCengines The board uses per default Connect serial port to a PC through null modem cable (RXD / TXD crossed over). Set terminal...
How to sort for IPs in a certain block in vim :g/ startpattern / 1,/ stoppattern / 1 #33;sort n t . k 1,1 k 2,2 k 3,3 k 4,4 For example in bind reverse loo...
How to access the SOLIDserver database SOLIDserver uses a postgresql database. You can access this database via CLI. The database is named ness2 # psql ness2 psql...
How to restart the IPM server on the CLI stop # /usr/local/etc/rc.d/ipmserver.sh stop Stopping ipmserver. Waiting for PIDS: 4523. start /usr/local/etc/rc.d/ipmser...
How to apply a patch on the CLI # /usr/local/nessy2/bin/upgrade_ipm.sh For example # /usr/local/nessy2/bin/upgrade_ipm.sh /data1/tmp/solidserver i386 5.0.3.P3c H...
Check the log of the ipmserver # tail f /var/log/ipmserver.log For example Dec 12 10:49:23 ddi ipmserver 27812 : HA no replication since 89778s, checking master....
After applying the Patch 5.0.3.P3c we are not able to login anymore # ssh admin #64;10NOSPAM.13.11.11 Password for admin #64;ddiNOSPAM.mgmt.corp.net: nothing more...
Restore backup on the CLI How to restore a backup on the SOLIDserver via CLI or serial console % su # cd /data1/backup/ # ln s solid ddi.mgmt.corp.net 20141211 0...
Solid Server WORK IN PROGRESS psql U root ness2 SELECT * FROM license; Netcapture is performing following tcpdump tcpdump w /tmp/tcpdump_file_20140320132549.p...
Process bind statistics cat /var/cache/bind/named.stats awk f ~/dns.stats.awk dns.stats.awk #!/usr/bin/awk BEGIN {a=0;aaaa=0;any=0;cname=0;mx=0;ns=0...
Was ist ein AccessPoint? Ein AccessPoint ist eine Funkstation, die für mehrere Laptops mit Funkkarte die Verbindung zum drahtgebundenen Ethernet herstellt. * W...
Wireless Hardware für den Enterprisebereich Die Hardware für den professionellen Enterprise Bereich unterscheidet sich nicht grundsätzlich von normalen Wireless K...
Mobile Device Management (MDM) Mobile Device Management enables businesses to manage large scale deployments. Several (commercial) MDM Server in conjunction with ...
OpenType font / Schrift Use XeLaTeX and add following code to your document ... \usepackage{xltxtra} \setromanfont Mapping=tex text {Palatino Com Light} ... a bit...
Easy money transfer with QR Code / Einfache Überweisung mit Bezahlcode You can generate your first QR code here and use it as a template. For example you get thi...
tnftp has a serious vulnerability The tnftp FTP client is fairly old, but it's still widely used. It can be found in Red Hat's Fedora, Debian, Ubuntu, Suse, Gent...
Kommentare und Rückmeldungen Diese Seite kann man als Board für Kommentare, Rückmeldungen und Kritik nutzen. Zwar ist diese Webseite als WikiWeb organisiert, so d...
mod perl crashes with core dump I had no success to get mod perl working von Solaris 10 and pkgsrc. I switched to fcgi. But for documentation, here the debugging ...
How to use DHCP requests for passive OS fingerprinting Overview Most devices are able to use dynamic host configuration protocoll for ip configuration. Allthroug...
S/MIME for mails in Mac OS X and iOS Links * http://www.heise.de/ct/artikel/Brief mit Siegel 1911842.html * http://.cacert.org * http://wiki.cacert.org/...
obsolet da diese Infos in MonitorIng bestehen zentrale Netzwerk Management Software * HP OpenView * CiscoWorks * Wie heißt die Software von Sun * IBM...
Impressum Dieses Wiki über WirelessLAN wird von Stephan Pietzko administriert. Da diese Webseiten als sog. WikiWeb organisiert sind, kann jeder die Webseiten anpa...
IEEE 802.11d The current 802.11 standard defines operation in only a few regulatory domains (countries). This supplement will add the requirements and defin...
Planung von WirelessLANs im Enterprisebereich 1 Zuerst sollte man sich die Funkhoheit sichern und das bekanntgeben. 1 Dann sollte man die Abdeckung testen. ...
How to change the (admin) password in Arbor Peakflow X or Pravail NSI You should change the default Password admin@arbor:/# / services aaa local password admin in...
enable shell Lets show your attributes: admin@arbor:/# / system att System attributes: none If they are not set: admin@arbor:/# / system att set shell.enable = ...
set license After a reinstall the license key was gone and i got admin@arbos:/system/license# / service nsi start 000: This product does not have a valid license...
How to upgrade Arbor Pravail (Peakflow X) The Release Notes are important, but a little bit diffuse about the exact upgrade procedure.You may find this example he...
Two firewall blades in one ASA 5585 X chassi This only work since realease 8.4. But i tried it with 8.2.5 and got some errors in while booting. Output from the se...
packet tracer packet tracer is a very good tool to test your setup packet tracer input INTERFACE tcp SourceIP SourcePORT DestIP DestPORT detailed Examples * Deny...
Enable telnet on Fritzbox Enable Telnet on you FritzBox Pick up the phone connected to you FritzBox and dial #96*7* to enable Telnet. You can later on dial #96*8...
How to set up IPv6 on a strato root server with Solaris Activated the extended IPv6 support 2.2.1 IPv6 Subnetz an Loopback Interface binden Editieren Sie die Dat...
IPv6 on Solaris In the doku you have ifconfig inet6 interface plumb up ifconfig inet6 e1000g2 plumb up fconfig: e1000g2: bad address but you have to use ifconfig ...
Change Hostname or IP For changing hostname edit following files: /etc/hosts /etc/nodename /etc/hostname. and rename directory under /var/crash. To change a sta...
Disable auto logout (ssh and console) In /etc/default/login set TIMEOUT to 0 ... # TIMEOUT sets the number of seconds (between 0 and 900) to wait before # abandon...
System has findroot enabled GRUB Generating boot sign, partition and slice information for PBE A Live Upgrade Sync operation will be performed on startup of boot...
A Live Upgrade Sync operation will be performed on startup of boot environment . ****************************************************************** The target b...
Hier ein Tip von Bernd Hallo erst mal Gratulation zu deinem gelungenen Artikel Solaris auf Strato. Ein paar Ergänzungen noch, Die einfachste Möglichkeit das die B...
Meteor The Next Big Thing Meteor is a agil, cool framework for web applications. It uses javascript, node.js and mongodb. Some sort of Javascript on Rails, but ...
TOTP with YubiKey WORK IN PROGRESS The TOTP with YubiKey does not work. The Base32 calculator.xlsx does not calculate the right HEX Code. Here is an online conve...
connect screen to a serial interface If you didn't have kermit or minicom on your system, you can use screen to connect to your serial port. Open the connection ...
print every second, third ... 10th line sed n e '0~10p' file # print every 10th line sed n e '1~2p' file # print every other line starting with line 1 Examp...
Common error messages in the dhcpd log peer holds all free leases dhcpd: DHCPDISCOVER from 3c:c9:3b:a0:58:2b via 10.123.23.129: peer holds all free leases A stat...
Different DHCP Options for Windows XP and Windows 7 work in progress * http://technet.microsoft.com/en us/library/dd183656(v=ws.10).aspx * http://social.tec...
Query flows in Arbor Peakflow X via ssh Sometimes (for example in scripts) it is useful to access flows via ssh. # Arbor Direkt Zugriff ssh admin@controller 'serv...
Netflow config example for Cisco Catalyst version 12.1(13)E or later mls aging long 64 mls flow ip interface full mls nde sender version 5 (or 9) ip flow export s...
bootptab for PXE boot PC123:ha=d4c9eff389ac:ip=192.168.1.10:gw=192.168.1.1:sm=255.255.255.0:sa=192.168.1.20:hn:ht=ethernet:td=\\smsboot\\x86:hd=\\smsboot\\x86:bf=...
Ist Wireless LAN gesundheitsschädlich? FAQ Im Wesentlichen läßt sich sagen, daß es keine physikalischen Argumente gibt, die nahelegen würden, daß die Strahlung de...
How to build perl with pkgsrc on solaris With the default options (PKG_OPTIONS.perl = 64bitauto dtrace threads) i get a dtrace error LD_LIBRARY_PATH=/usr/pkgsrc/l...
How to list open ports on Solaris The classical unix command is netstat an A better tool is lsof i An alternative is pfiles /proc/* ggrep "\(^ 0 9 \ INET\)" ...
How to compile rtorrent on Solaris 10 WORK IN PROGRESS rtorrent compiles, but seems to be unstable. Use the older version 0.12.6/0.8.6 for a stabil version. I...
How to build libtorrent / rtorrent 0.12.6 / 0.8.6 on Solaris 10 I used the instructions on page Building rTorrent on Solaris and modified it. Getting rTorrent/li...
sed replace newline sed 's/\n/ /g' sed 's/$^/ /g' doesn't work You have to use sed ':a;N;$ba;s/\n/ /g' 1 create a label via :a 1 append the current and next...
# # It needs the 4 directories # downloaded download.incomplete session watch # # This is an example resource file for rTorrent. Copy to # ~/.rtorrent.rc and e...
How to Set a Zip Password in Mac OS X You can create password protected archives of files and folders: Launch the Terminal from the Applications Utilities folde...
How to colorize dhcpd logs On some linux grep will make some colors. With export GREP_COLOR='01;34' you can change the grep color. tail f /var/log/messages gre...
How to PXE boot clients via external (ISC) dhcpd Important are next server (the SCCM PXE Server) and filename. And you have to escape the Windows specific backsla...
How to check the syntax of a dhcpd.conf file Sometimes it is very usefull to check the syntax befor just make a killall HUP. dhcpd t cf /path/to/dhcpd.conf doe...
How to enable SSL on solaris 10 create a certificate or a certificate signing request openssl req new nodes newkey rsa:2048 keyout foo.com.key out foo.com.c...
renumber Solaris device instance numbers In /etc/path_to_inst you can renumber the device instance numbers "/pci@0,0/pci8086,340a@3/pci1734,11a9@0" 4 "ixgbe" "/pc...
solaris 10 vlan configuration dladm show link dladm show dev VLAN 235 Interface ixgbe0 driver name VID * 1000 device instance ifconfig ixgbe235000 plumb up if...
slow ssh login with Solaris You have to wait 30 sec or 60 sec till you get your login prompt. with ssh v user@host you can see ... debug1: Next authentication m...
Backup your Mac on board * Time Machine local disk * Time Machine via Mac OS X Server or Time Capsule * TimeMachineEditor change the default interval ...
Enable jumbo frames on cisco asa multicontext mode per context changeto context foo mtu inside 9200 mtu outside 9200 You get the message: INFO: Jumbo frames sho...
HiperLAN/2 von Panasonic Auf der CeBIT 2002 stellte Panasonic zusammen mit Telia einen funktionstüchtigen Prototypen eines HiperLAN/2 AccessPoints mit passenden F...
Howto use colors in the terminal with Solaris PuTTY connect to solaris 10 or 11 without color I tried xterm, xtermc, sun color, xterm color on both sides (PuTTY a...
MySQL with Solaris 10 preinstalled MySQL MySQL is installed as sfw package. You can find some infos under /etc/sfw/mysql/README.solaris.mysql groupadd g 600 my...
Solaris 10 auf einem Strato root Server Wir erfüllen uns den Traum eines eigenen root Servers unter Solaris. Solaris ist auf Strato root Servern nicht supportet...
Net Install and JumpStart Netinstall, Jumpstart Solaris Is is very usefull to install your Suns via net. For example my older Suns have no DVD, but the latest So...
ping utilities pingtest #!/bin/sh if $# eq 3 then cat This tool needs one ip as a parameter and a second with a shortname/comment and will just answer w...
How to configure a Port Channel on a ASA (Ether channel nexus) For a failover LAN link interface GigabitEthernet0/4 description GEC Po1 LAN Failover to FW01 g...
sh: rsync: not found add rsync path=/path/to/rsync to the rsync command root@host:/root rsync avz /var/lib/synctool/synctool.conf 192.168.111.12:/tmp sh: rsyn...
Upgrade ASA os 9.0.1 no boot system disk0:/asa861 2 smp k8.bin no asdm image disk0:/asdm 66114.bin boot system disk0:/asa901 smp k8.bin asdm image disk0:/asdm 702...
Cisco ASA5520 Default config In this example we show the default settings and the difference to a clean blank config. If you are setting up a new firewall, start ...
ciscoasa# show version Cisco Adaptive Security Appliance Software Version 8.6(1)2 Device Manager Version 6.6(1) Compiled on Fri 01 Jun 12 02:16 by builders System...
Emulation of cisco asa 8.4 on a Mac Environment * Mac OS X 10.7.5 * GNS3 0.8.3.1 * qemu 1.2.0 via MacPorts ASA 8.4.2 in GNS3 You need a prepared and sp...
Start ASA directly on the cli with qemu qemu system i386 m 1024 nographic cpu coreduo icount auto hdachs 980,16,32 kernel asa842 vmlinuz initrd asa842 init...
Failed or only partly successfull configuration options for asa 8.4.2 on GNS3 on Mac qemu system i386 m 1024 nographic cpu coreduo icount auto hdachs 980,16,...
$ qemu system i386 h QEMU emulator version 1.2.0, Copyright (c) 2003 2008 Fabrice Bellard usage: qemu system i386 options disk_image 'disk_image' is a raw ha...
GNS3 is a testing and learning evironment You can emulate several cisco routers, links and switches in a hole network. You can also emulate cisco asa firewalls, ...
Configure an anycast service von solaris WORK IN PROGRESS Create virtual loopback interface ifconfig lo0:1 plump up ifconfig lo0:1 172.16.0.1 netmask 255.255.2...
# # Copyright 2007 Sun Microsystems, Inc. All rights reserved. # Use is subject to license terms. # #pragma ident "@(#)README.Solaris 1.3 07/03/30 SMI"...
Solaris 10 authentication via tacacs (pam, radius?) * http://echelon.pl/pubs/pam_tacplus.html dead? * Forum https://forums.oracle.com/forums/thread.jspa...
#!/bin/sh # awfull hacked script # a modification of the check_soa script from the book "dns and bind" # if test "$1" = "" then echo usage: $0 server exit...
Enable SNMP snmp server host management 10.11.56.51 community * version 2c snmp server host management 10.15.88.17 community * version 2c snmp server host man...
To use mysql a number of post install procedures need to be made by root. The following steps are derived from the mysql manual (manual.ps, manual.txt or manual_t...
Synctool http://www.heiho.net/synctool/ WORK IN PROGRESS Simple steps 1 Setup working ssh keys, so that you need no password or you can save the password in a...
authenticate Solaris with TACACS You have to compile tacplus, a TACACS protocol client library and PAM module in C. This PAM module support authentication, autho...