Pages

• About Site
• Contact me
• Forum
• Partner
• Sitemap

Posts by category

• Architecture
  • From DevOps to DevSecOps – SDLC
  • Security Controls Based on NIST 800-53 Low, Medium, High Impact
  • CSF Security Tiers vs Security Maturity Level
  • A Simplified TRA (Threat and Risk Assessment) Example
  • NIST CSF Core Notes
  • Cyber Security Technology with NIST Cyber Security Framework
  • Security Architecture Roadmap Examples with Timeline
  • Cyber Security Architecture with NIST Cyber Security Framework
  • Understanding GDPR from Security Professional’s Perspective
  • Cyber Security Frameworks and Integrated with TOGAF
  • Enterprise Security Architecture Resources
  • EA (Enterprise Architecture) Framework Resources
• Blog
  • Create a Own Cloud Photo Storage Site in BackBlaze B2 Using Cloudflare and ShaerX
  • Using My Own Docker Images to Create WordPress Site in Portainer
  • Converting a Single WordPress Site to a Mulisite
  • Nginx Tips and Tricks and Security Configuration
  • Install Nginx, MariaDB, PHP (LEMP) and WordPress on CentOS 7
  • Install Nginx, MariaDB, PHP (LEMP) and WordPress on GCP Free Tier Ubuntu
  • Migrate WordPress Site from Ubuntu 16.04 to Ubuntu 18.04 at GCP VM and Cloud DB
  • Running WordPress in the Docker of AWS EC2 Instance
  • Create a MySQL Computer Engine VM Instance Using Ubuntu in Google Cloud
  • Ubuntu LAMP and WordPress Installation
  • Blogger Tips and Tricks
  • Add a Read More button to Popular Blog Platforms
  • WordPress Attitude Theme Menu Bar Customize
  • Add “Related Links” Widgets for Your Websites and Blogs
  • Use Godaddy Domain with Openshift Apps
  • Different Ways to Create a Sitemap Page or Table of Contents Page for Blogger
  • Add Dropdown Menu in Blogger Website
  • Collection of Website and Tools for Bloggers (Tips and Tricks)
• Checkpoint
  • Check Point R80.10 Test Lab in Cloud (Azure)
  • Check Point 1100 SIP Configuration and Troubleshooting Dropped the packets due to “Violated Unidirectional Connection”
  • Check Point Firewall Memory Issue
  • Check Point VPN Troubleshooting – IKEView Examples
  • Basic Check Point Gaia CLI Commands and Installation Videos (Tips and Tricks)
  • Check Point Appliance Visio Stencils for Downloading
  • Check Point Firewall USB Installation Step by Step (R77.20 and R77.30)
  • Check Point 5000 Appliance
  • Increasing Check Point Management Server Log Volume Size
  • Check Point 1100 Appliance Configuration Step by Step
  • Check Point R80 Public Released to Download – SK108623
  • Check Point R80 Management Installation – Part 2 – SmartConsole
  • Check Point R80 Management Installation – Part 1 – Basic Installation
  • Upgrading Check Point Gateway Cluster (R77.30)
  • Configuring Checkpoint Gateway Forwarding Logs to External Syslog Server
  • Check Point 600 Appliance Basic Setup
  • Check Point 600 Features Review
  • Advanced Checkpoint Gaia CLI Commands (Tips and Tricks)
  • Checkpoint Gateway SSH Connection Intermittenly Slow Issue – CONFD CPU High
  • Check Point Error: Partial Overlapping Encryption Domains When Verifying or Installing Policy
  • Checkpoint Monitord Process Consumes Excess Memory
  • Checkpoint Gateway Lost SIC After Jumbo Hotfix Installed
  • Checkpoint NAT Concepts and Server Side NAT Explanation
  • Checkpoint Standby Cluster Member Interface Not Reachable
  • 2015 Check Point’s Annual Security Report
  • Using Command Line to Do First Time Wizard on Checkpoint Appliance without WebUI
  • How to uninstall a CheckPoint Hotfix after a failed installation
  • A Quick Test to Check Point Capsule Cloud Service
  • Check Point Cluster Member Gateway Drops Ping Packets Without Log in Smartview Tracker
  • Using Symantec Verisign SSL Certificate for Check Point SSL VPN Mobile Access Portal
  • Enable Checkpoint SSL VPN Remote Access: Step by Step Part 4 – Two Factor Authentication (AD and SMS)
  • Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 3 (Certs and Two Factor Authentication)
  • Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 2 (AD Authentication)
  • Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 1 (Local User Authentication)
  • Creating Checkpoint VSX and Virtual System – Part 2 – VSX Deployment Example
  • Mac Address Flapping between ports because of Multiple Checkpoint Cluster on Same Switch and Same Vlan
  • Three Steps to Enable Checkpoint Firewall Application Control and URL Filtering
  • Check Point GO Secure Portable Workspace- Run un-approved Program in Virtual Desktop
  • Install / Upgrade Checkpoint Full HA (Gateway and Management) on Check Point Appliances
  • Export Checkpoint Firewall Policy to HTML/XML/Excel and Checkpoint Management Portal using cpdb2web tool
  • Creating Checkpoint VSX and Virtual System – Part 1
  • Checkpoint SmartConsole R77.20 Installation Issue – SmartDashboard ‘Loading local configuration’ up to 15% and then disappears
  • Pushing Policy Failed because Checkpoint Firewall “Load on module failed – no memory”
  • Resize Checkpoint Firewall’s Disk/Partition Space (Gaia and Splat Platform)
  • Script for a simple Checkpoint Firewall Integrity Check
  • Manually Fail-over in Checkpoint Firewall ClusterXL
  • Checkpoint SPLAT Upgrade to Gaia Error and Solutions
  • Checkpoint Cluster Member Down because interfaces show partially up
  • Checkpoint UTM-1 Edge X Configuration Tips and Resources
  • Enabling SNMP v3 Part 2: Checkpoint R75 (Gaia & Splat) (AES and SHA Configuration)
  • Cisco Switch Configuration to Make Multicast Load Sharing Working on Checkpoint ClusterXL Firewalls
  • Generate 2048 Bits CSR in Checkpoint Firewall
  • Checkpoint SmartDashboard Error – No Rule Bases Exist for the Policy Package
  • Checkpoint Smartview Monitor Shows Firewall Disconnected
  • Procedures to Replace failed Checkpoint Cluster Member Appliance
  • Upgrade Checkpoint from Command Line after failed from Webui
  • Using Symantec Verisign PKI to authenticate Checkpoint Site-to-Site IPSec VPN
  • Find out Linux CPU Utilization on Checkpoint Firewall
  • Factory Reset on Checkpoint EDGE X UTM ADSL firewall
  • List all the CheckPoint hotfixes
  • Enable SFTP to Checkpoint Gaia OS System
  • Backup Checkpoint Configuration in Gaia and Gaia+
  • Checkpoint Gaia FW Lost Connection to Management after a reboot
  • Enable SCP user on R75.40 Management Server
  • Enable Hidden 3D Report Tool on R75.40 SmartEvent Tool
  • Checkpoint SPLAT WebUI Error with browsers
  • Sysconfig Command without first time configure wizard completed in Checkpoint appliance
  • Checkpoint SPLAT Manual Proxy ARP Configuration Example
  • Checkpoint SPLAT Timezone Configuration Difference on WebUI and CMD
  • Checkpoint Management Center Snapshot, Backup and Log file location
  • Enable Checkpoint SmartWorkflow on Management Server
  • Checkpoint Appliance Selection Tool
  • Checkpoint UTM272 shutdown itself because of temperature reached (60 C)
  • Problem when two Checkpoint Clusters Connected on same Cisco Switch
  • Checkpoint R75 new feature violated PCI rules
  • Tcpdump or Fw Monitor, which is better ?
  • SecureXL Process Details
  • WebUI port change doesn’t survive a firewall policy push or reboot
  • Checkpoint Domain Object
  • SecureXL Vs CoreXL Vs ClusterXL (Some Checkpoint Terms)
• Cisco
  • ISE Studying Notes
  • Configure Cisco Enterprise Access Point 1142N As Home AP
  • Cisco Web Security Appliance S190 – Web GUI
  • Cisco IOS Command Tips and Tricks – Part 2
  • Xen Server Switch Port is on Error Disable Mode
  • Cisco ACI (Application Centric Infrastructure) Lab Test Drive
  • Cisco 3850 Mgmt VRF Configuration
  • Upgrade Cisco 4500 Switches IOS and ROMM and Failed to Enable VSS (Virtual Switching System)
  • Cisco Catalyst 3850 Data Stack and Power Stack
  • Cisco Catalyst 2960X and 2960S Stacking
  • Cisco Wireless LAN Controller Redundancy Solutions: High Availability
  • Cisco Switch 2960x Memory Increasing Issue Troubleshooting – Memory Leak
  • Cisco Free Lab Website – dCloud
  • Cisco Active Advisor – CAA
  • Cisco ASA Tips and Tricks – 5500-X Series Software 9.x Configuration Notes
  • Native VLAN mismatch Error on Access Port
  • Cisco CCP Installation and Basic Configuration
  • Recover Cisco Device using TFTP Server or External Card from a Corrupt or Missing Image or in Rommon Mode
  • Windows Network Policy Server Basic Radius Configuration for Cisco devices
  • Password Recovery for Cisco Router 2900
  • Cisco IOS Command Tips and Tricks – Part 1
  • Installing Cisco Cloud Services Router CSR 1000V in Vmware
  • Cisco ASAv 9.5.1 200 and ASDM 7.5.1 in Workstation / ESXi
  • Cisco ASAv HA Configurations
  • O Errors During TFTP Cisco IOS Image Copying
  • Comparison of Cisco Integrated Services Routers: (1800,2800,3800) vs (1900,2900,3900) vs 4000
  • Cisco Switch 2960 / 3560 Password Recovery Procedures
  • Comparison of Cisco Switches: (2960 vs 3560), (Cisco 3560 X vs 3650 vs 3750-X vs 3850)
  • Understadning Cisco Access-Lists on Switches: PACL, VACL, RACL and MACL
  • Steps to Upgrade Cisco ASA IOS and ASDM
  • Recover Cisco 4507 Switch from a Continuous Reboot
  • Cisco IOS Router Hardening Template
  • Cisco IOS Switch Hardening Template
  • Cisco 7600 Router Got Software Forced Crash During Booting
  • Using Cisco Mini USB Console Cable to Configure Cisco Switches and Routers
  • Upgrade Cisco 3560X IOS Take 30+ Minutes
  • Cisco ASAv 9.4.1 and ASDM 7.4.1 in Workstation / ESXi (2)
  • Cisco ASAv 9.4.1 and ASDM 7.4.1 in Workstation / ESXi (1)
  • Vulnerability Mitigation – Plaintext Management Interfaces Accessible On Cisco Device
  • Error :%CERM-4-TX_BW_LIMIT: Maximum Tx Bandwidth limit of 85000 Kbps reached for Crypto functionality with securityk9 technology package license
  • Basic Cisco Tacacs+ Configuration With Free Tacacs+ Software for Windows – Part 2
  • Basic Cisco Tacacs+ Configuration With Free Tacacs+ Software for Windows – Part 1
  • Flexible Netflow (FnF) Configuration for PRTG
  • Cisco ACS Lab2: Use Tacacs+ to do Authentication and Authorization with ACS 5.6
  • Cisco ACS Lab1: Installing and Configuring ACS 5.6 in ESXi and GNS3
  • Close Cisco IOS TCP Ports 23, 2002, 4002, 6002, and 9002 from Network Ports Scanning
  • ASA 9.21 in Vmware Workstation 10
  • Enabling SNMP v3 – Part 1: Cisco IOS Devices – Disable SNMP v1 and SNMP v2c
  • Cisco Integrated Services Routers Licensing – 3945E as example
  • %PLATFORM_PBR-4-SDM_MISMATCH: PBR requires sdm template routing – Enable PBR on Cisco 3560E
  • Cisco User Privilege 15 Command does not work on switch
  • DSL Line – PPPoE on Cisco Router Configuration Template
  • Cisco Switch Radius Configuration Work With TekRADIUS AD Authentication
  • Troubleshooting Cisco Radius Configuration with Free Radius Server TekRadius
  • Cisco Switchport Mode Best Practices
  • BGP Command : soft-reconfiguration inbound & soft in
  • Meaning of different lights in switch
  • Set telnet / SSH source IP address for Cisco router
  • Cisco ASDM-IDM not able to be installed because of Java Runtime Environment is not installed
  • ASA Memory Leak
  • “GRE over IPSec” or “IPSec over GRE” ?
  • Steps How to Add License into Cisco IOS
  • OSPF over GRE Over IPsec on GNS3
  • GRE Tunnel in GNS3
  • Cisco Pre-defined Access-list Port Number
  • Policy NAT-ing with overlap message – Order is important
  • no response when ping MS Cluster’s ip address – Solution
• Cloud
  • Configure IPv6 on AWS EC2 Instance
  • Oracle Cloud Platform (OCP) Tips and Tricks
  • Create a PHP static Page to Show NodeQuery Monitoring Server Status
  • Create UptimeRobot Monitoring Status Page
  • Mount Google Drive into NextCloud
  • Integrate Scaleway 75G Object Storage with NextCloud and ShareX
  • Cloudflare Workers and API Usage Collection
  • Cloudflare Firewall Configuration Examples
  • Easiest Way to Deploy Your Own NextCloud with your Own Domain Using Portainer
  • Enable Azure ATP (Microsoft Defender for Identity) and Install ATP Sensor
  • A List of Security Portals for Microsoft, Azure, Windows and Office 365
  • Microsoft Azure Identity Protection Respond Procedures and Action Explaination
  • Azure ATP vs Microsoft Defender ATP vs O365 ATP
  • Azure Security Best Practices
  • Microsoft 365 Certified: Security Administrator Associate & Microsoft 365 Security Administration
  • Install and Configure Docker App into KubeSail Platform
  • Build Cloud File Download & Manage Center using FileBrowser+Aria2+AriaNg+Rclone+Caddy+Google Drive
  • Use Aria2 docker+ariang to download and Rclone to Mount Google Drive and Sync
  • O365 OneDrive Usage Tips and Tricks
  • Fast OneDrive Index – A Serverless OneDrive Index Setup
  • DD a Windows OS into Cloud Linux VM (Oracle/GCP/AWS)
  • Build a Serverless Bookmark Website Use Cloudflare Worker
  • Use virt-what to Get VPS Virtualization Technology
  • Using Cloudflare Workers to Deploy A Free Google Drive Directory Indexer in 5 Minutes
  • Build a Reverse Proxy Using Cloudflare Workers
  • Gartner CASB (Cloud Access Security Brokers) Magic Quadrant (2019,2018,2017)
  • GitHub Basic Usage
  • Create Free Tier Windows/Linux Virtual Machines in Azure Cloud
  • Troubleshooting WordPress Installation or Configuration Issue
  • How to Enable Root Account and Enable Username/password Access in GCP
  • Free Tier VPS Bench Comparison for AWS, Azure and Google Cloud
  • Install OpenStack – DevStack into Ubuntu 16.04.05 Virtual Machine
  • How Much Google Cloud Platform Charges on F1-Mirco VM
  • Red hat Openshift Deploy Image Example – Create V2Ray Server
  • How to Share GCP Images with Other Users and Projects
  • Gartner Magic Quadrant for Cloud Infrastructure as a Service (Worldwide) (2018,2017,2016,2015,2014,2013,2012…)
  • Gartner’s Magic Quadrant for Public Cloud Infrastructure Managed Services Providers (2018, 2017)
  • WAMP and WordPress Install on AWS Free Tier Windows 2012 R2
  • Launch and Access Amazon AWS EC2 Instances
  • Creat AWS Diagrams Online
  • Building a 3S (Scalable, Stable and Secure) AWS Test Environment – Part 1
• CyberArk
  • Secure Access with an HTML5 Gateway
  • CyberArk EPM upgrade from V11.0 to V11.5
  • Log in as Master from CyberArk PrivateArk Client
  • Generate CSR from Windows Server and Submit to MS CA to Sign for IIS and RDP Services
  • CyberArk PSMP (PSM for SSH Proxy) Administration and Troubleshooting
  • CyberArk Service/Dependent Accounts Studying Notes
  • CyberArk PAS Configuration Issues and Troubleshooting (Vault)
  • CyberArk Impact Live 2020 Notes
  • CyberArk PSM HTML5 Gateway Installation and Configuration
  • Replace CyberArk Vault Server Self Signed Certificate with CA Signed Certificate
  • CyberArk PAS DR, HA, Backup, Failover and Failback Process
  • Configure Remote Connection Tools (RDCM, MobaXterm, mRemoteNG) Integrate with PSM
  • CyberArk PSMP – PSM for SSH Installation
  • CyberArk Free Tool Usage – PAS Reporter
  • AutoIt3 Launch MMC Snap-ins Connecting Through PSM
  • Install O365 MarketPlace Plug-in and Onboard O365 Account
  • CyberArk PAS Installation – Part 5 – PTA
  • CyberArk PAS Configuration Issues and Troubleshooting (CPM)
  • CyberArk PAS Onboard Website Account
  • CyberArk PAS Solution Issues and Troubleshooting (PSM)
  • CyberArk PAS Configuration Notes (Architecture)
  • CyberArk PAS Solution Issues and Troubleshooting (PVWA)
  • Enable Radius Authentication for CyberArk PAS
  • CyberArk PAS Installation – Part 1 – Vault PrivateArk Server and Client
  • CyberArk PAS Installation – Part 4 – PSM
  • CyberArk PAS Installation – Part 3 – CPM
  • CyberArk PASInstallation – Part 2 – PVWA
  • CyberArk Deployment Suggestions
  • CyberArk PAS v11.1 Install & Configure – 1. Infrastructure and Environment Introduction
  • CyberArk PAS Install and Configure Lab – v11.1
  • CyberArk PAS Install and Configure Lab – v10.9
  • Install PAS (Privileged Account Security) Vault High Availability
  • Configure CyberArk PVWA and PSM for SQL Server Management Studio Version 17
  • CyberArk Automatic Account Management
  • How to Upgrade a PVWA installation (version 10.8.0.1 to 11.1)
  • CyberArk PAS (Vault, PVWA, CPM, PSM) Installation
  • CyberArk PAS Lab v10.10
  • CyberArk Quick Operation Handbook
  • Microsoft Remote Desktop Connection Manager: CyberArk PSM Connection Configuration Guide
  • Enable CyberArk File Copy / Paste Function Between PSM RDP Sessions
  • CyberArk Notes
• Docker
  • Install Chevereto – Open Source Image Hosting Website Using Docker
  • Lightweight K8S Lab – Rancher + K3S Integrated Deployment
  • Quickly Deploy Two Open Source Bastion Server Projects – Webterminal and Jumpserver
  • Use KMS to Activate Windows/Office (Run KMS Docker / Install KMS)
  • Collections for Cyber Security Related Dockers
  • Using Docker to Run Python Script
  • Collection for Cloud Storage and Downloading Docker
  • Collection for Some Interesting Docker Images
  • Portainer Usage
  • Docker Usage
  • Doker Run Some Popular Application Images (MySql, ElasticSearch, RabbitMQ, Kafka, Zookeeper, Nginx, MongoDB, Tomcat)
  • Run a Simple Docker Image to Test Internet Speed – Speedtest-cli
  • Simplest Steps to Install Docker and Docker Compose into Ubuntu 16.04 and 18.04
  • Using Portainer to Deploy Guacamole Docker- Web-based Remote Access Gateway
• F5
  • Basic F5 LTM HTTP Load Balance Configuration (With Firewall)
  • F5 LTM / GTM Best Practice Deisgn With Routers and Firewalls
  • F5 (Tips and Tricks)
  • F5 Big IP 2000s Appliance Configuration Step by Step Guide – 2. Configure BIG-IP Objects and HA
  • F5 Big IP 2000s Appliance Configuration Step by Step Guide – 1. Initial Configuration
  • F5 BigIP LTM v11.5.3 Virtual Appliance HA Configuration – Part 2
  • F5 BigIP LTM v11.5.3 Virtual Appliance HA Configuration – Part 1
  • F5 Study Materials: 101 Application Delivery Fundamentals and Others
  • F5 Big-IP 2500 Appliance System Initial Configuration
  • Basic F5 LTM HTTP Load Balance Configuration (Without Firewall)
  • Download and Install F5 BIG-IP v11.x / Virtual Edition 11.3.x into Vmware Workstation
• Fortigate
  • Configure Fortigate DDNS with free DDNS service noip.net
  • FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 2
  • FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 1
  • FortiOS 5.4.1 IPSec Phase 2 for AutoConf-enabled Phase1 Issue
  • Fortigate Firewall Configuration Migrate to Different Device
  • Fortigate 60D High Availability Configuration Steps
  • Fortigate Firewall Console TFTP Image Recovery
  • Fortigate File Syste Check Recommendation After Logged in Web UI
  • Set Up IPSec Site to Site VPN Between Fortigate 60D (4) – SSL VPN
  • Set Up IPSec Site to Site VPN Between Fortigate 60D (3) – Concentrator and Troubleshooting
  • Set Up IPSec Site to Site VPN Between Fortigate 60D (2) – Policy-Based VPNs
  • Set Up IPSec Site to Site VPN Between Fortigate 60D (1) – Route-Based VPNs
  • Free Forticloud Service for FortiGate and FortiWiFi
  • Fortinet Firewall Fortigate-30D Basic Configuration and NAT Set up Steps
• Guardium
  • IBM Guardium v11.2 Collector Installation Notes
  • Install Guardium GIM & STAP into Linux Servers (Ubuntu and CentOS)
  • IBM Guardium Tips and Tricks
  • Install and Configure CAS (Configuration Audit System) in Guardium v11.2
  • IBM Guardium: Configure a Database Vulnerability Assessment
  • IBM Guardium Upgrade and Patch Installation (GIM, STAP, SNIFFER, GUP, DPS, HealthCheck)
  • IBM Guardium v11.2 Collector Installation Notes
  • IBM Guardium GIM & S-TAP Installation and Upgrade
  • IBM Guardium Tasks List to Onboard new DB servers
  • IBM Guardium Installation and Upgrade
  • IBM Guardium Studying Notes & Health Check Steps
  • IBM Guardium Studying Notes
  • IBM Guardium v11 GIM & S-TAP Download, Install, Validation and Verification
  • IBM Guardium V11.0 Project Implementation Notes
  • IBM Guardium Installation and Upgrade Configuration
  • IBM Guardium: Basic Configuration(License, NTP, SMTP, Data Related, Backup, Schedule, LDAP, Syslog)
  • IBM Guardium: Create an Alert / Policy / Classification
  • IBM Data Security Product Guardium Resources
• Juniper
  • Configure a RMA-ed SRX340 with a JunOS Upgrade and Joining it into a Existing Cluster
  • Enable IDP on Juniper SRX Devices Managed by Juniper Space
  • Juniper SRX Commnit Error “No rulebase configured for active policy”
  • Juniper SRX DB mode (Debug mode)
  • Juniper Space Security Director Policy Hit Counts Not Updated Automatically
  • Juniper Space License Issue on Citrix Xen Environment
  • Add Juniper SRX Cluster into JunOS Space 16.1 Security Director
  • Juniper JUNOS Commands (Tips and Tricks)
  • JunOS Space Network Management Platform Basic Configuration including Log Collector
  • Juniper JunOS Space Upgrade Procedures from 14.1 to 16.1
  • Procedures to Deploy RMA device into Juniper SRX Chassis Cluster
  • Juniper Firewall SRX240H Crashed with Error ‘nearing maxproc limit by uid 0,please see tuning(7) and login.conf(5)’
  • Juniper SRX340 HA Configuraiton
  • JunOS SRX Cluster Upgrade Failed
  • Juniper SRX Minor Alarm Messages – Autorecovery and Rescue Information
  • JunOS Space – Warning Message for Consolidated Configuration
  • Understanding Juniper SRX TCP Security Check
  • Juniper SRX Logging Methods and Configuration: Stream Mode vs Event Mode
  • SRX Load Rescue Configuration After Reboot
  • Import Existing Juniper SRX Cluster into JunOS Space Security Director
  • JunOS Space Radius Authentication with Free Radius Server TekRADIUS
  • Configure SRX 240 cluster Step by Step
  • Pulse Secure (formerly Juniper Pulse) – UAC Configuration Summary
  • Industry’s Fastest Firewall – Juniper SRX5800 Delivers Two Terabits Throughput
  • Installation of Junos Space Security Director and Managing Juniper Firewall
  • Juniper vSRX Firewall (Firefly Perimeter) installation in ESXi and Managed by JunOS Space
  • Install JUNOS Space Virtual Appliance at ESXi 5.5
  • Troubleshooting Symantec Verisign SSL Certificates Issue on PKI VPN Tunnel between Juniper SRX Firewalls (Cont.)
  • Configuration DHCP Relay in routing instance on Juniper SRX Devices
  • Using PKI Build Route-Based IPSec VPN between Juniper SRX
  • Monitoring Juniper SRX Firewall CPU, Memory and Flow Session Information from PRTG
  • Configure High End Juniper SRX 1400 as Chassis Cluster Steps
  • Juniper UAC Appliance IC4500 Step by Step Configuration (Part 2) – Certificate Based Authentication
  • Juniper UAC Appliance IC4500 Step by Step Configuration (Part 1) – Basic Configuration
  • Juniper Junos pre-defined Applications and Application-Sets details
  • Only Primary SRX Cluster Member Got IDP Signature Update from NSM with Virtual Chassis
  • File Copy Between Two Juniper SRX Cluster Members
  • Remove one JunOS cache file to free space for upgrading JUNOS system on SRX240H
  • Juniper NSM Schema Upgrade Failed
  • Copy certificates after RE replacement in JunOS HA cluster
  • Juniper Hidden Command : set chassis cluster control-link-vlan enable
  • Upgrade Juniper JUNOS on SRX using USB Storage
  • NSM Shows License Validation Exception even with new license added in.
  • Enable Traceoption and manually update security update on Juniper JunOS SRX
  • SRX alarm: Autorecovery information needs to be saved
  • How to recover from database failures for Juniper SRX IDP?
  • Upgrade JunOS from RAM Disk
  • How to Clean-up Space on Juniper SRX Devices
  • NSM Server shows warning when Disk is getting full
  • Juniper SRX 240H Bootable USB Backup
  • JunOS SRX Source Routing, PBR, FBF
  • JUNOS Olive GRE Tunnel Configuration
  • JUNOS Olive Dual ISP OSPF Configuration
  • OSPF between two JunOS routing instances
  • Junos Oliver Logical Router OSPF Lab
  • Set Juniper SRX into Debug mode when crashed
  • Juniper SRX 240 Chassis Cluster (High Availability) Configuration
  • Free Juniper Training Materials and Courses
  • IEEE STANDARD 802.3AD – JunOS Configuration
  • Steps to Set up Juniper Secure Access (SA) / SSL Virtual Appliance
• Linux
  • Using X2Go to Remote Desktop Into Linux Server
  • Install MySQL 8 on Linux and Create a New DB & Populate DB with Sensitive Records
  • Install / Configure Xfce and VNC Server on CentOS7
  • Enable Linux Password Authentication on Cloud VPS
  • Install and Configure ngx_lua_waf Based on Nginx+Lua ( OpenResty)
  • Set Up Let’s Encrypt Certs with Nginx Server Using CertBot
  • Change Linux SSH Port from 22 to 2222
  • CentOS Change Kernel
  • Useful Linux Network Analysis/ Monitoring/ Shell Scripts Collection
  • Change Linux CentOS Ethernet Interface Name to Default eth0
  • Connect to GNOME desktop environment via XRDP on CentOS 7 & Ubuntu 18
  • Linux CentOS/Ubuntu Firewall and SELinux
  • Linux System Performance Analytics
  • Change SWAP Size to Improve Low Memory Cloud VM Performance
  • Deploy Zabbix Agent into CentOS and Add into Zabbix Server
  • Quickly Deploy Zabbix in CentOS7
  • Benchmark Linux Disk Read/Write Speed
  • Some Popular Linux VPS Bench Scripts
  • Using SSMTP to Send Email From Linux VPS Command Line Through Gmail Account
  • Monit – Linux Open Source System or Process Monitor Program
  • Linux Virtual Machine PHP Invoked OOM-killer (Out of Memory) Issue
  • Ubuntu Basic System and Service Configuration Commands
  • Install Portainer to Manage Containers – Nginx, MySQL, WordPress
  • Kali Usage Tips and Tricks
  • CentOS Basic Configuration and Services/Software Installation (Docker, Vsftp, Samba, etc)
  • Ubuntu 16.04.5 LTS (Xenial Xerus) Installation Step by Step in VMWare Workstation (Not Easy Installation)
  • Install OpenVAS on Ubuntu
  • OpenVAS Virtual Appliance / GreenBone Installation
  • Metasploit Installation on Windows 7 and 10
  • Kali Virtual Appliance Installation and Usage
  • CentOS Basic Configuration
  • Basic Linux Commands (Tips and Tricks)
  • Linux : find big file in the all directories
  • Use your ssh key to encrypt / decrypt files
• Network
  • Configure OpenWRT Allow All Traffic (Routing All Traffic with Stateful Firewall)
  • Ansible Tutorial – Install Ansible and Run Simple Command Remotely
  • Adding Windows Host into Zabbix (Active Check Mode)
  • Understanding Ping Command
  • Gartner Magic Quadrant for the Wired and Wireless LAN Access Infrastructure (2018, 2017, 2016, 2015, 2014, 2013, 2012, 2011, 2010)
  • Free DNS Server 1.1.1.1 and 1.0.0.1 (from CloudFlare) – Fastest and Easiest to Remember
  • Cisco Wireless Controller 5508 Configuration – Tips and Tricks
  • Gartner Magic Quadrant for Network Performance Monitoring and Diagnostics (2017, 2016, 2015, 2014 )
  • Gartner Magic Quadrant for Data Center Infrastructure Management (DCIM) (2016, 2015,2014)
  • Cisco Wireless Controller 5508 Configuration Step by Step – Part 1 (CLI and GUI Access, Upgrade)
  • Avocent® ACS 8000 Advanced Console System Configuration
  • Brocade Switch Access Through SSH and Web Tools
  • Gartner Magic Quadrant for WAN Optimization (2016, 2015, 2014, 2013, 2012, 2011)
  • Gartner Magic Quadrant for Application Delivery Controllers (2016, 2015,2014,2013,2012,2010)
  • Infoblox NetMRI 1400 Appliance with Network Automation OS Configuration Steps
  • Gartner Magic Quadrant for Cloud-Enabled Managed Hosting, North America (2015, 2014)
  • Cisco Wireless Controller 5508 Configuration Step by Step – Part 3 (Certs Auth and Other Settings)
  • Cisco Wireless Controller 5508 Configuration Step by Step – Part 2 (User/Machine Auth)
  • Mobile Iron Sentry VM Installation
  • Updating InfoBlox Network Automation Product NetMRI
  • My Top Internet / Network Tools
  • Use Network Automation Tool Infoblox NetMRI Push Configuration to Multiple Network Devices
  • Layer 2 / Layer 3 IP Packets Switching Procedures
  • Linux Service Configuration – NTP
  • Bridge Your Home Routers to Extend Your Wireless Network
  • Build NTP Windows Server for Network Devices (not Win32Time)
  • GNS3 VoIP Lab (Cisco 3725 and CME 4.3)
  • Gartner Magic Quadrant for User Authentication (2014, 2013, 2012)
  • OpenWRT in Vmware as a light weight router and virtual host
  • FTP Active mode vs Passive Mode
  • Understanding TCPDUMP Output
  • GNS3 V1.0 Alpha for Linux in Vmware Workstation
  • Basic MPLS Lab on GNS3
  • Cisco MPLS IOS for GNS3
  • Check Cisco Device Interface Throughput with load-interval Command
  • VRRP and Object Tracking
  • Why Cisco Devices refused SSH connection
  • How to gracefully shutdown network devices
  • JFlow, CFlow, NetFlow and SFlow
  • Gartner Magic Quadrant for SSL VPN (2012, 2011 and 2008)
  • Send email out to Internet with a Blat Command
  • BSD Router Project (BSDRP) on Vmware
  • Add static route in Smoothwall
• Others
  • Why You Should Get Amazon AWS Certified Solutions Architect Professional Certification This Year?
  • Tips and Tricks to Run Android Emulator BlueStacks
  • Install Ubuntu 20.04 on Raspberry Pi
  • Download Web Video Without Third Party Tools
  • Install WordPress on Raspberry Pi
  • Remote Access Raspberry Pi from Anywhere and Dynamic DNS Update with Dynu.com
  • 2016 Technology Salary Report (GTA) from Lannick
  • Raspberry Pi 2 Model B Basic Configuration Part 2
  • Raspberry Pi 2 Model B Basic Configuration Part 1
  • 2015 Canada IT Skills & Salary Report
  • Free Dynamic DNS Service Site – http://duckdns.org/
  • TekRADIUS Usage for AD Authentication
  • Configuring Polycom Video Conference System – HDX 8000
• Palo Alto
  • Palo Alto UserID Agent Configure Steps
  • Palo Alto Firewall Migration Plan Tasks List
  • Sophos Update Error – Troubleshooting with Palo Alto Firewall
  • Install and Configure Palo Alto VM in Vmware Workstation / ESXi
  • Palo Alto Study Notes: Firewall Configuration Essentials I (101) PAN-OS v.6.1
  • Configure Palo Alto VM 6.0.0 in Vmware Workstation and ESXi
  • Palo Alto for NGFW facts from Checkpoint view
• Qualys
  • QualysGuard Scan Finding- “Subject Common Name Does Not Match Server FQDN”
  • Qualys Scanner Appliance and Qualys Guard Service Tips and Tricks
  • Qualys Guard Tips and Tricks
• Raspberry Pi
• Security
  • DarkTrace Usage Tips and Tricks
  • Gartner Magic Quadrant for Privileged Access Management (2020, 2018)
  • Gartner Magic Quadrant for Access Management (2020,2019,2018,2017,2016,2015)
  • Computer System Health Checklist
  • Install AD CS (Certification Service) on Windows Server 2016 to Deploy Enterprise PKI
  • Quick Install FreeRadius on CentOS7
  • Install FreeRadius and Daloradius on CentOS 7
  • Use Hihttps WAF to Protect Your Web Application
  • Install Vulture WAF Cluster in VMWare Workstation
  • Installation Steps for Free WAF Firewall – Shadow Daemon
  • Gartner Magic Quadrant for Endpoint Protection Platforms (2019,2018,2017,2016,2015)
  • Cyber Security TRA (Threat and Risk Assessment) Resources Research
  • PFsense Configuration with Topology and Screenshots
  • Proofpoint Wombat Security Education Platform Usage – Create Training Assignment
  • Proofpoint Wombat Security Awareness Training – Phishing Campaign Step by Step
  • Gartner Magic Quadrant for Enterprise Network Firewall (2018,2017,2016,2015,2014,2013,2011,2010)
  • Gartner Magic Quadrant for Unified Threat Management (2018,2017,2016,2015,2014,2013,2012,…)
  • Gartner Magic Quadrant for Access Management (2017,2016,2015 )
  • Gartner Magic Quadrant for Security Awareness Computer-Based Training (2018,2017,2016,2015,2014)
  • Security Events and Data Breaches in 2018, 2017, 2016, 2015, 2014
  • Threat Modeling Resources
  • Canada CRA Email / Message Scam Example and Phone Call Scam Fraud Recording 2018
  • Gartner Magic Quadrant for Intrusion Detection and Prevention Systems (2018, 2017, 2015, 2013, 2012, 2010 …)
  • Gartner Magic Quadrant for Web Application Firewalls (2018,2017,2016)
  • Install T-Pot into Google Cloud Platform VM Instance
  • Sumuri Paladin 7 Forensics Suite Basic Usage
  • NSS Labs NGFW Security Value Map Report (2017, 2016, 2014, 2013, 2012, 2011)
  • Gartner Magic Quadrant for Identity Governance and Administration (2018,2017,2016,2015,2013)
  • CISO Leadership Mind Map
  • How to Find Out Windows Process Sending ICMP Packets
  • Top Security Events / Vulnerabilities in 2018, 2017, 2016, 2015, 2014
  • Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks – 2. Configuration
  • Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks – 1. Installation
  • OWASP Top 10 (2010, 2013, 2017)
  • Cisco IOS Internet Key Exchange version 1 (IKEv1) Vulnerability and Fix
  • Real-Time Cyber Attack Threat Map
  • Ransomware Locked Files on My Test Machine
  • How Firewalls (Security Gateways) Handle the Packets? (Traffic Flow)
  • Gartner Magic Quadrant for Mobile Data Protection (2015, 2014, 2013, 2012, 2011…, 2006)
  • My Top Network Security Tools
  • Troubleshooting Java HTTPS Security Warning Message
  • CVE-2015-0235: GHOST – A Critical Vulnerability in the Glibc Library
  • Poodle : New SSL 3.0 Bug (CVE-2014-3566)
  • Shellshock (Bash Computer Bug) Exploited – Responding from Venders
  • Reset SonicWall NSA 4500 to Factory Default Configuration
  • PKI Basic Flow Chart
• SIEM
  • AlienVault Installation and Configuration
  • Gartner Magic Quadrant for SIEM Products (2010-2020)
  • LogRhythm Remote Windows Log Collection Integration with Symantec SEPM MS SQL DB
  • Forward System and App logs to Papertrail – Cloud Log Management
  • Cloud SIEM – LogRhythm Configuration Notes
  • SIEM System Use Cases
  • The rocket-fast Syslog Server – Rsyslog Client and Server Configuration
  • Easily Deploy ELK into CentOS 7
  • Using NXLog to Collect Windows Event Logs
  • Forwarding Windows Event Logs to Syslog Server (Kiwi Syslog)
  • ArcSight SIEM Logger Web, Search Examples, Use Case Reports
  • ArcSight SIEM Logger Web Gui and Search Tips and Tricks
  • Install Latest Splunk 7.2.0 on Ubuntu 18.04 LTS at Google Cloud Platform
  • Splunk Tips and Tricks
  • ArcSight SIEM Logger
  • Configure Netflow on network devices for PRTG Netflow Monitoring
  • Using PRTG SNMPv3 Monitoring Juniper SRX 240H Alarm andTemperature
  • Archive Juniper STRM (IBM Qradar) Logs to remote server
  • Installation Steps of LOG Storm Free Virtual SIEM Appliance
  • Forwarding Checkpoint Management Server Firewall logs to an external syslog server STRM/Qradar SIEM
  • Forward Logs from Checkpoint SmartCenter Management Server and Juniper NSM / IDP to Syslog Server
• Software
  • ShareX Configuration – The Best Free & Powerful Screenshot Tools
  • My Favorite Google Chrome Plug-ins
  • Best Free Network Performance Test tool – Iperf
  • Windows Free Email Server -MailEnable Installation and Configuration
  • Install and Use Webbench to Benchmark Web Servers
  • Putty Tips and Tricks
  • VanDyke SecureCRT Settings (Tips and Tricks)
  • Using Group Policy to Deploy Software Packages (MSI, MST, EXE)
  • Windows Server Configuration Tips and Tricks
  • Common Used Excel Formulas
  • Windows 10 Tweaks, Tips and Tricks
  • Step by Step Installation Python IDE – PyCharm
  • Microsoft Office Tips and Tricks (Word, Excel, Visio, PowerPoint)
  • Python Cyber Security Testing Tool Collection
  • Smallest Firewall / Router VM in My Vmware ESXi and Workstation
  • Python Scripts to Reboot / Manage Cisco Network Devices
  • Python Tips and Tricks
  • Using Artica Squid Open Source Project to Build Powerful and Safe but Simple to Use Proxy
  • USB to Serial Cable Driver Issue on Windows 10
  • Firefox Warning Message -“This Connection is Untrusted” Caused by Proxy Server Certificate
  • Build WordPress Application Under Your Own Domain Name With Openshift and Cloudflare
  • Update to Windows 10 Immediately Without Wait Validating from Microsoft
  • Excel Formula: Search a Column of Strings to Match Another Column
  • Free Software Across the Great Firewall (免费翻墙软件）
  • Bypass China GFW
  • Tripwire Enterprise 8.3 Basic Configuration Steps
  • Free SNMP Software Suit in Windows Environment – Net-SNMP (Snmpv3 Support)
  • Excel Formula : Convert a text to Number
  • What’s the Best Antivirus for home users at Win7, Win8 and Winxp OS
• Symantec
  • Symantec Endpoint Encryption 11.3.x Issues, Tips and Tricks
  • Check Symantec SEPM Health Status
  • Windows 10 Security Center Shows Red x Icon On Firewall & Network Protection with SEP Installed Machine
  • Symantec Endpoint Protection Design and Architecture
  • Symantec Endpoint Protection Found Web Attack: Malicious Theme or Plugin Download 2 detected
  • Symantec SEPM Configuration and Client Deployment Notes
  • Symantec Endpoint Protection Manager (SEPM) Performance Tuning
  • Deploy and Configure Symantec Endpoint Encryption 11.x
  • Symantec DLP Operation Notes
  • Symantec Endpoint Detection & Response (EDR) Notes
  • Symantec ATP (Advance Threat Protection) EDR Configuration Notes
  • Basic Steps to Deploy and Config Symantec DLP 15.5 with Installation Videos
  • Symantec Diagnostic Tool – SymDiag Usage Guide
• Threat Hunting
  • DarkTrace Investigation Steps
  • Vulnerability Remediation – QID: 91017 and QID: 100269
  • PID 4 listening on Port 80 or Port 12345
  • Vulnerability: SSL/TLS use of weak RC4(Arcfour) cipher port 3389/tcp over SSL
  • Bulk IP Reputation Check using Security Websites and Open Source Scripts
  • Find Real IP of a Website Behind CDN
  • Windows Remote Command Line Troubleshooting Tips and Tricks
  • Sysinternals Tool Sysmon Usage Tips and Tricks
  • Threat Hunting Tools
  • How to Find Out Windows Process Sending Traffic, Especially ICMP Packets
  • Check Your Site Vulnerability if Listing on Bounty Site
  • Basic Procedures to Troubleshoot an Infected Computer
  • Use Endpoint Sandbox Software to Protect Your Windows Computers
• Thycotic
  • Thycotic Secret Server – SSH Proxy (Tunneling) & RDP Proxy
  • Thycotic Secret Server v10.9 Installation and Configuration Notes
  • Thycotic Secret Server System Operation Tasks
  • Thycotic Secret Server Basic Onboarding Tasks
• Vmware
  • Credential Guard Incompatible Solution for VMware Workstation on Win10
  • Install ESXi 5.1/5.5/6.0 into Mac Mini 3.1 (Later 2009)
  • Install ProxMox 5.3 into VMware Workstation 14
  • Install Vmware vCenter into ESXi 5.5 and Reset ESXi into Evaluation Mode
  • Workaround for Windows XP VMware vSphere Client Connecting to ESXi 5.5
  • Workaround for can not Edit Virtual Machine Settings in VMware vSphere ESXi 5.5
  • Cisco L2 L3 IOU Rack V5 (newer version from Cisco L2 L3 IOU Rack V3)
  • Use Serial Port in Virtual Machines Running on Vmware Workstation and ESXi
  • My Cisco IOU Racks – from flyxj IOUv3
  • How to upgrade Nexus 7K NX-OS Emulator Titanium VMware image to 6.1.1
  • Nexus 7K NX-OS Emulator Titanium 5.1(2) VM
  • Increase IOU NVRAM Size
  • ASA 8.42 in VMware Workstation
  • ASA 8.02 in Vmware Workstation
• VPN
  • Create VPN Tunnel Between CheckPoint FIrewall and WatchGuard FireBox Firewall
  • Install Mac OSX AnyConnect Package on Cisco Router and on Mac Machine
  • Expose your local service to public: Ngrok, FRP, localtunnel
  • CISCO ASA VPN Tips and Tricks
  • Cisco Router IKEv2 IPSec VPN Configuration
  • Troubleshooting Cisco IPSec Site to Site VPN – “QM Rejected”
  • Renew Cisco IOS IPSec VPN Certificates from Symantec
  • Cisco IOS Router Configuration: IPSec over GRE or GRE over IPSec(1)
  • Cisco Configuration Professional (CCP) Configure IOS SSL VPN (AnyConnect SSL VPN)
  • Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed
  • Troubleshooting Cisco IPSec Site to Site VPN – “IPSec policy invalidated proposal with error 32”
  • Cisco ASA Remote Access VPN Configuration 2 – AnyConnect VPN
  • Cisco ASA Remote Access VPN Configuration 1 – Clientless SSL VPN
  • Cisco IKEv1 Site-to-Site IPSec Configuration on IOS Routers (1) – High Availability IPSec
  • Using Symantec SSL PKI to Authenticate Cisco IOS IPSec VPN – HA Deployment
  • Cisco IKEv1 Site-to-Site IPSec Configuration on IOS Routers (2) – Using Two Different CA Certificates
  • Policy Based IPSec VPN Configuration Between SRX Firewalls
  • Certificate Import Failed with “% Failed to parse or verify imported certificate” because of Verisign Using new Intermediate CA Certs G4
  • Certification based Cisco IPSec VPN Down caused by ‘signature invalid’
  • VPN Lab between Cisco Router and Checkpoint Firewall
  • Cisco VPN LAB 3 : A Simple DMVPN Configuration Example
  • IPSec VPN Basic Configuration between two ASA 8.4.2
  • CISCO ASA VPN Troubleshooting Tips
  • Cisco VPN LAB 4 : EZ VPN Between ASA 8.4.2, IOS Router and EZVPN Client Software
  • Free VPN Service on SSL Connection – PacketiX™ VPN
  • Cisco VPN LAB 2 : IPSec VPN Example Between two ASA 8.4.2
  • Cisco VPN LAB 1: Simple Easy VPN Example between Routers
  • Cisco IOS IPSec VPN with External Trusted PKI Certs – Verisign
  • Cisco IOU IPsec Site to Site VPN with External Third Party CA (XCA) – Part 3
  • Cisco IOU IPsec Site to Site VPN with Pre-shared key, RSA Key, or CA Part 2
  • Cisco IOU IPsec Site to Site VPN with Pre-shared key, RSA Key, or CA Part 1
  • Real Full Functional Free VPN over browsing port 80/443/8080
  • Free VPN – cross firewall or proxy limitation to access Internet
  • Route-based VPN between Juniper and Cisco
• Windows
  • Windows 10 Issues and Solutions
  • Windows Script to Change Administrator Password, Change RDP Port and Restart Machine
  • HP ThinClient 620 Upgrade to Windows 7 64 Bit and Windows 10 64Bit
  • Run Commands as Administrator in Windows 10 Command Line and PowerShell
• Wireless