featured articles
Fortigate CLI Tips and ...
I am a CLI guy. Make no mistake, I like the GUI but at the end of the day, I...
Syslog Server running ‘...
Although I run FortiSIEM on my home lab, I wanted to have a quick & dirty,...
Forticloud 3.2 for APs
Fortinet’s FortiCloud was introduced to provide customers the ability to...
IKEv1 & IKEv2
I have been dealing with VPNs for the past 20 Years. Primarily I have used...
popular articles
random articles

Upgrading Observium Commun...

Observium is an amazing quasi-opensource solution used to monitor up/down and performance of your networks. It allows you to monitor things such as interface usage, CPU, memory, disk, temperature, BGP, SLA etc. To upgrade your existing Obervium installation, you will need to Connect to your Observium server using either ssh or Hyper Visor ‘console’ feature. I recommend ssh as it will be easier to...

Configuring FortiAnalyzer ...

When configuring your FortiAuthenticator for email alerts, there is no section in the GUI to enable/disable STARTTLS. However as most things Fortinet, when you cannot do it via the GUI, head over to the CLI. Below are the steps. Once in the CLI (connect either from inside the GUI Under ‘Dashboad —> CLI Console’ or via standard SSH v2. There you can enter into the mail settings by enteting ‘config...

Upgrading FortiSIEM from 4...

You will need:• Internet access• SSH or Console Access to the FortiSIEM VM• A licensed 4.9 FortiSIEM implementation.• 4.10 License File• Snapshot of the VM before you make changes (optional but recommended)• FortiSIEM 4.10 User Guide (Page 166) SSH into the FortiSIEM VM. The default username is root and the default password is ProspectHills which hopefully was changed. Once logged onto the box, ensure you...

My SecureCRT Tweaks

I love SecureCRT by Van Dyke Software. I used it when I was running Windows as my main desktop, then used it when I was running Linux as my main desktop (for 8 years), and now for the past 4 years on my Mac. I love it to death. Here are some of the features I am using and the tweaks I have done for my specific workflow. When I am working with Cisco ASA, I want to be able to identify ‘interface’ as it is...

HSRP Using SLA with Boolea...

Recently, I was at a cutomer’s location that wanted to track an ISP based on multiple locations (e.g. 4.2.2.2 and 8.8.8.8). The customer wanted to make sure that IF 1 of the 2 DNS servers we were pinging, it would not fail-over, however if BOTH pings were lost, then initiate the fail-over. Scenario: Router 1LAN Side: 1.1.68.1/24Standby IP 1.1.68.254 Router 2LAN Side: 1.1.68.2/24 Standby IP 1.1.68.254...

Windows Logging Cheat

Yesterday, I attaended Hack Miami Con and had a great time. Met Michael Gough of Log-MD. He gave the keynote named “What I have learned the past 20 Years as a Blue Teamer, done some red teaming too that you should know”. He talked, among other things about the “Windows Logging Cheat Sheet” he developped. For any Blue Teamer, this is required reading in my opinion. He went into artifacts you should...

Data Breaches – Apri...

HealthNow Networks Date of Breach: Unknown – Exposed for Many MonthsDate Made Public: April 10, 2017 Records Affected: 918,000 Data Compromised: The data of 918,000 patients who provided sensitive information to HealthNow Networks in Boca Raton, FL has been exposed online for many months. Information exposed included names, addresses, email addresses, telephone numbers, Social Security numbers, dates of...

« Older Entries Next Entries »