ArcSight SIEM Logger

ArcSight Logger is one of products from Micro Focus SIEM platform. It streams real-time data and categorizes them into specific logs and easily integrates with Security Operations. As a result, organizations of any size can use this high performance log data repository to aid in faster forensic analysis of IT operations, application development, and cyber security issues, and to simultaneously…
Read more
Red hat Openshift Deploy Image Example – Create V2Ray Server

Red Hat® OpenShift® is a comprehensive enterprise-grade application platform, built for containers with Kubernetes. It can automate the build, deployment, and management of applications so that you can focus on writing the code for your next big idea. Basically OpenShift is Red Hat’s Cloud platform as a service (PaaS). It provides a free and open source cloud-based platform allows developers…
Read more
Configure Fortigate DDNS with free DDNS service noip.net

Using a Dynamic Domain Name Service (DDNS) means that users can reach your network by means of a domain name that remains constant even when its IP address changes. FortiOS has supported this feature in Network – DNS settings – Fortiguard DDNS service, which sounds great. Unfortunately, it does not work well in my home lab environment. My FortiGate is…
Read more
FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 2

FortiGate firewall always surprise me with his rich embedded features, prices and performance. FortiOS is a security-hardened, purpose-built operating system that is the software foundation of FortiGate products. With this one unified intuitive OS, we can control all the security and networking capabilities across all of your Fortigate products. I put some of useful commands or configurations in following two…
Read more
Smallest Firewall / Router VM in My Vmware ESXi and Workstation

In my home lab virtual environment, VMware ESXi and Workstation used to host most of my testing virtual machines. To get those VMs working together in a multi networks diagram, I always need to have a router or firewall VM. I were using all kinds of virtual routers or firwealls, such as those major vendors, Cisco, CheckPoint, Juniper, Fortinet, Palo…
Read more
Python Scripts to Reboot / Manage Cisco Network Devices

Basically I am creating a script to build SSH connection from my Windows 7 network management computer to Cisco devices and have interactive commands with those Cisco devices. This has been done by many other network engineer. With Google’s help, I am able to get their experiences to quickly implement it in my home lab environment. It will be part…
Read more
Python Tips and Tricks

1. Install Python into Windows 1.1 Download Latest Python 2 file from https://www.python.org/downloads/windows/ Latest Python 3 Release – Python 3.7.0 Latest Python 2 Release – Python 2.7.15 1.2 Double Click download python-2.7.15.exe file to install it. 1.3 Run Python By Default, it will be installed at c:\Python27 folder C:\Users\John>cd \ C:\>cd Python27 C:\Python27>python --version Python 2.7.15 C:\Python27>python Python 2.7.15 (v2.7.15:ca079a3ea3, Apr 30…
Read more
FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 1

FortiGate firewall always surprise me with his rich embedded features, prices and performance. FortiOS is a security-hardened, purpose-built operating system that is the software foundation of FortiGate products. With this one unified intuitive OS, we can control all the security and networking capabilities across all of your Fortigate products. I put some of useful commands or configurations in following two…
Read more

Posts published in “VPN”

CISCO ASA VPN Tips and Tricks

Published August 25, 2018 by john yan

1. Clear VPN Configuration： clear configure crypto map VPN_AAAA 2. Debug and show commands: Enable logging: ciscoasa#terminal monitor ciscoasa(config)# logging buffer-size 1048576 ciscoasa(config)# logging buffered 7 ciscoasa(config)# logging monitor 7 ciscoasa(config)# debug crypto condition peer 10.10.10.10 ciscoasaa(config)# ciscoasa(config)# debug crypto ipsec 127

Install Mac OSX AnyConnect Package on Cisco Router

Published October 24, 2017 by john

Install Mac OSX AnyConnect Package on Cisco Router

Symptoms: One of my clients reported a Cisco AnyConnect issue. It only happened to his machine and later we found that is because he is using Mac machine. His credential works fine if he uses it at windows machine. From following screenshot, obviously there is Mac AnyConnect package missing from vpn gateway. Error Messages: “VPNThe AnyConnect package on the secure…

Cisco Router IKEv2 IPSec VPN Configuration

Published September 19, 2017 by john

Cisco Router IKEv2 IPSec VPN Configuration

What is Differences between IKEv1 and IKE v2? 1. Different negotiation processes − IKEv1 IKEv1 SA negotiation consists of two phases. IKEv1 phase 1 negotiation aims to establish the IKE SA. This process supports the main mode and aggressive mode. Main mode uses six ISAKMP messages to establish the IKE SA, but aggressive mode uses only three. Therefore, aggressive mode…

Troubleshooting Cisco IPSec Site to Site VPN – “QM Rejected”

Published September 19, 2017 by john

Troubleshooting Cisco IPSec Site to Site VPN – “QM Rejected”

There was a VPN issue to troubleshoot recently. It was between Juniper SRX and Cisco Router. It seems straightforward but it took quite a long time to troubleshoot because of communication. All steps listed here for my future reference. Some other related posts: Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed Troubleshooting…

Renew Cisco IOS IPSec VPN Certificates from Symantec

Published February 22, 2017 by john

I am not sure if there is other better way to do it. There is no good documentation from Cisco or somewhere else regarding how you should do on renewing your ssl certificates once it is expired. Every a couple of years, I have to face this problem, renewing all routers ssl certificates. As far as I know, you can…

Cisco IOS Router Configuration: IPSec over GRE or GRE over IPSec(1)

Published October 29, 2016 by john

IPSec over GRE means Outer Header is GRE. In other words, IPSec is riding over GRE. Please refer: Chapter: Point-to-Point GRE over IPSec Design and Implementation IPSEC over GRE Tunnel IPsec over GRE – Configuration and Explanation (CCIE Notes) The order for IPsec over GRE is IPsec first, GRE second. This order will result in these operations: 1.) Original header…

Cisco Configuration Professional (CCP) Configure IOS SSL VPN (AnyConnect SSL VPN)

Published August 5, 2016 by john

Basic Cisco Configuration Professional (CCP) configuration has been posted before at following link: Cisco CCP Installation and Basic Configuration This Post will demonstrate how to use CCP to configure SSL VPN on an IOS Router. 1. Confirm SSL-VPN License Installed You can review another post regarding how to add Cisco license into a router. From Command Line: VPN-1#show license detailIndex:…

Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed

Published May 22, 2016 by john

It is always not easy when troubleshooting a vpn issue. You will meet many situations. Here is one of examples I used to meet during configuring ipsec vpn.Other examples to troubleshoot IPSec VPN issue: Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed Troubleshooting Cisco IPSec Site to Site VPN – “IPSec policy…

Troubleshooting Cisco IPSec Site to Site VPN – “IPSec policy invalidated proposal with error 32”

Published April 27, 2016 by john

There was vpn set up recently using Cisco Router to connect Check Point firewall. It seems quite simple task but “IPSec policy invalidated proposal with error 32” made me go through all troubleshooting steps which shows below. Other examples to troubleshoot IPSec VPN issue: Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed…