Table of Contents
Pages
Posts by category
- Architecture
- From DevOps to DevSecOps – SDLC
- Security Controls Based on NIST 800-53 Low, Medium, High Impact
- CSF Security Tiers vs Security Maturity Level
- A Simplified TRA (Threat and Risk Assessment) Example
- NIST CSF Core Notes
- Cyber Security Technology with NIST Cyber Security Framework
- Security Architecture Roadmap Examples with Timeline
- Cyber Security Architecture with NIST Cyber Security Framework
- Understanding GDPR from Security Professional’s Perspective
- Cyber Security Frameworks and Integrated with TOGAF
- Enterprise Security Architecture Resources
- EA (Enterprise Architecture) Framework Resources
- Blog
- Create a Own Cloud Photo Storage Site in BackBlaze B2 Using Cloudflare and ShaerX
- Using My Own Docker Images to Create WordPress Site in Portainer
- Converting a Single WordPress Site to a Mulisite
- Nginx Tips and Tricks and Security Configuration
- Install Nginx, MariaDB, PHP (LEMP) and WordPress on CentOS 7
- Install Nginx, MariaDB, PHP (LEMP) and WordPress on GCP Free Tier Ubuntu
- Migrate WordPress Site from Ubuntu 16.04 to Ubuntu 18.04 at GCP VM and Cloud DB
- Running WordPress in the Docker of AWS EC2 Instance
- Create a MySQL Computer Engine VM Instance Using Ubuntu in Google Cloud
- Ubuntu LAMP and WordPress Installation
- Blogger Tips and Tricks
- Add a Read More button to Popular Blog Platforms
- WordPress Attitude Theme Menu Bar Customize
- Add “Related Links” Widgets for Your Websites and Blogs
- Use Godaddy Domain with Openshift Apps
- Different Ways to Create a Sitemap Page or Table of Contents Page for Blogger
- Add Dropdown Menu in Blogger Website
- Collection of Website and Tools for Bloggers (Tips and Tricks)
- Checkpoint
- Check Point R80.10 Test Lab in Cloud (Azure)
- Check Point 1100 SIP Configuration and Troubleshooting Dropped the packets due to “Violated Unidirectional Connection”
- Check Point Firewall Memory Issue
- Check Point VPN Troubleshooting – IKEView Examples
- Basic Check Point Gaia CLI Commands and Installation Videos (Tips and Tricks)
- Check Point Appliance Visio Stencils for Downloading
- Check Point Firewall USB Installation Step by Step (R77.20 and R77.30)
- Check Point 5000 Appliance
- Increasing Check Point Management Server Log Volume Size
- Check Point 1100 Appliance Configuration Step by Step
- Check Point R80 Public Released to Download – SK108623
- Check Point R80 Management Installation – Part 2 – SmartConsole
- Check Point R80 Management Installation – Part 1 – Basic Installation
- Upgrading Check Point Gateway Cluster (R77.30)
- Configuring Checkpoint Gateway Forwarding Logs to External Syslog Server
- Check Point 600 Appliance Basic Setup
- Check Point 600 Features Review
- Advanced Checkpoint Gaia CLI Commands (Tips and Tricks)
- Checkpoint Gateway SSH Connection Intermittenly Slow Issue – CONFD CPU High
- Check Point Error: Partial Overlapping Encryption Domains When Verifying or Installing Policy
- Checkpoint Monitord Process Consumes Excess Memory
- Checkpoint Gateway Lost SIC After Jumbo Hotfix Installed
- Checkpoint NAT Concepts and Server Side NAT Explanation
- Checkpoint Standby Cluster Member Interface Not Reachable
- 2015 Check Point’s Annual Security Report
- Using Command Line to Do First Time Wizard on Checkpoint Appliance without WebUI
- How to uninstall a CheckPoint Hotfix after a failed installation
- A Quick Test to Check Point Capsule Cloud Service
- Check Point Cluster Member Gateway Drops Ping Packets Without Log in Smartview Tracker
- Using Symantec Verisign SSL Certificate for Check Point SSL VPN Mobile Access Portal
- Enable Checkpoint SSL VPN Remote Access: Step by Step Part 4 – Two Factor Authentication (AD and SMS)
- Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 3 (Certs and Two Factor Authentication)
- Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 2 (AD Authentication)
- Enable Checkpoint SSL VPN Remote Access: Step by Step Instruction Part 1 (Local User Authentication)
- Creating Checkpoint VSX and Virtual System – Part 2 – VSX Deployment Example
- Mac Address Flapping between ports because of Multiple Checkpoint Cluster on Same Switch and Same Vlan
- Three Steps to Enable Checkpoint Firewall Application Control and URL Filtering
- Check Point GO Secure Portable Workspace- Run un-approved Program in Virtual Desktop
- Install / Upgrade Checkpoint Full HA (Gateway and Management) on Check Point Appliances
- Export Checkpoint Firewall Policy to HTML/XML/Excel and Checkpoint Management Portal using cpdb2web tool
- Creating Checkpoint VSX and Virtual System – Part 1
- Checkpoint SmartConsole R77.20 Installation Issue – SmartDashboard ‘Loading local configuration’ up to 15% and then disappears
- Pushing Policy Failed because Checkpoint Firewall “Load on module failed – no memory”
- Resize Checkpoint Firewall’s Disk/Partition Space (Gaia and Splat Platform)
- Script for a simple Checkpoint Firewall Integrity Check
- Manually Fail-over in Checkpoint Firewall ClusterXL
- Checkpoint SPLAT Upgrade to Gaia Error and Solutions
- Checkpoint Cluster Member Down because interfaces show partially up
- Checkpoint UTM-1 Edge X Configuration Tips and Resources
- Enabling SNMP v3 Part 2: Checkpoint R75 (Gaia & Splat) (AES and SHA Configuration)
- Cisco Switch Configuration to Make Multicast Load Sharing Working on Checkpoint ClusterXL Firewalls
- Generate 2048 Bits CSR in Checkpoint Firewall
- Checkpoint SmartDashboard Error – No Rule Bases Exist for the Policy Package
- Checkpoint Smartview Monitor Shows Firewall Disconnected
- Procedures to Replace failed Checkpoint Cluster Member Appliance
- Upgrade Checkpoint from Command Line after failed from Webui
- Using Symantec Verisign PKI to authenticate Checkpoint Site-to-Site IPSec VPN
- Find out Linux CPU Utilization on Checkpoint Firewall
- Factory Reset on Checkpoint EDGE X UTM ADSL firewall
- List all the CheckPoint hotfixes
- Enable SFTP to Checkpoint Gaia OS System
- Backup Checkpoint Configuration in Gaia and Gaia+
- Checkpoint Gaia FW Lost Connection to Management after a reboot
- Enable SCP user on R75.40 Management Server
- Enable Hidden 3D Report Tool on R75.40 SmartEvent Tool
- Checkpoint SPLAT WebUI Error with browsers
- Sysconfig Command without first time configure wizard completed in Checkpoint appliance
- Checkpoint SPLAT Manual Proxy ARP Configuration Example
- Checkpoint SPLAT Timezone Configuration Difference on WebUI and CMD
- Checkpoint Management Center Snapshot, Backup and Log file location
- Enable Checkpoint SmartWorkflow on Management Server
- Checkpoint Appliance Selection Tool
- Checkpoint UTM272 shutdown itself because of temperature reached (60 C)
- Problem when two Checkpoint Clusters Connected on same Cisco Switch
- Checkpoint R75 new feature violated PCI rules
- Tcpdump or Fw Monitor, which is better ?
- SecureXL Process Details
- WebUI port change doesn’t survive a firewall policy push or reboot
- Checkpoint Domain Object
- SecureXL Vs CoreXL Vs ClusterXL (Some Checkpoint Terms)
- Cisco
- ISE Studying Notes
- Configure Cisco Enterprise Access Point 1142N As Home AP
- Cisco Web Security Appliance S190 – Web GUI
- Cisco IOS Command Tips and Tricks – Part 2
- Xen Server Switch Port is on Error Disable Mode
- Cisco ACI (Application Centric Infrastructure) Lab Test Drive
- Cisco 3850 Mgmt VRF Configuration
- Upgrade Cisco 4500 Switches IOS and ROMM and Failed to Enable VSS (Virtual Switching System)
- Cisco Catalyst 3850 Data Stack and Power Stack
- Cisco Catalyst 2960X and 2960S Stacking
- Cisco Wireless LAN Controller Redundancy Solutions: High Availability
- Cisco Switch 2960x Memory Increasing Issue Troubleshooting – Memory Leak
- Cisco Free Lab Website – dCloud
- Cisco Active Advisor – CAA
- Cisco ASA Tips and Tricks – 5500-X Series Software 9.x Configuration Notes
- Native VLAN mismatch Error on Access Port
- Cisco CCP Installation and Basic Configuration
- Recover Cisco Device using TFTP Server or External Card from a Corrupt or Missing Image or in Rommon Mode
- Windows Network Policy Server Basic Radius Configuration for Cisco devices
- Password Recovery for Cisco Router 2900
- Cisco IOS Command Tips and Tricks – Part 1
- Installing Cisco Cloud Services Router CSR 1000V in Vmware
- Cisco ASAv 9.5.1 200 and ASDM 7.5.1 in Workstation / ESXi
- Cisco ASAv HA Configurations
- O Errors During TFTP Cisco IOS Image Copying
- Comparison of Cisco Integrated Services Routers: (1800,2800,3800) vs (1900,2900,3900) vs 4000
- Cisco Switch 2960 / 3560 Password Recovery Procedures
- Comparison of Cisco Switches: (2960 vs 3560), (Cisco 3560 X vs 3650 vs 3750-X vs 3850)
- Understadning Cisco Access-Lists on Switches: PACL, VACL, RACL and MACL
- Steps to Upgrade Cisco ASA IOS and ASDM
- Recover Cisco 4507 Switch from a Continuous Reboot
- Cisco IOS Router Hardening Template
- Cisco IOS Switch Hardening Template
- Cisco 7600 Router Got Software Forced Crash During Booting
- Using Cisco Mini USB Console Cable to Configure Cisco Switches and Routers
- Upgrade Cisco 3560X IOS Take 30+ Minutes
- Cisco ASAv 9.4.1 and ASDM 7.4.1 in Workstation / ESXi (2)
- Cisco ASAv 9.4.1 and ASDM 7.4.1 in Workstation / ESXi (1)
- Vulnerability Mitigation – Plaintext Management Interfaces Accessible On Cisco Device
- Error :%CERM-4-TX_BW_LIMIT: Maximum Tx Bandwidth limit of 85000 Kbps reached for Crypto functionality with securityk9 technology package license
- Basic Cisco Tacacs+ Configuration With Free Tacacs+ Software for Windows – Part 2
- Basic Cisco Tacacs+ Configuration With Free Tacacs+ Software for Windows – Part 1
- Flexible Netflow (FnF) Configuration for PRTG
- Cisco ACS Lab2: Use Tacacs+ to do Authentication and Authorization with ACS 5.6
- Cisco ACS Lab1: Installing and Configuring ACS 5.6 in ESXi and GNS3
- Close Cisco IOS TCP Ports 23, 2002, 4002, 6002, and 9002 from Network Ports Scanning
- ASA 9.21 in Vmware Workstation 10
- Enabling SNMP v3 – Part 1: Cisco IOS Devices – Disable SNMP v1 and SNMP v2c
- Cisco Integrated Services Routers Licensing – 3945E as example
- %PLATFORM_PBR-4-SDM_MISMATCH: PBR requires sdm template routing – Enable PBR on Cisco 3560E
- Cisco User Privilege 15 Command does not work on switch
- DSL Line – PPPoE on Cisco Router Configuration Template
- Cisco Switch Radius Configuration Work With TekRADIUS AD Authentication
- Troubleshooting Cisco Radius Configuration with Free Radius Server TekRadius
- Cisco Switchport Mode Best Practices
- BGP Command : soft-reconfiguration inbound & soft in
- Meaning of different lights in switch
- Set telnet / SSH source IP address for Cisco router
- Cisco ASDM-IDM not able to be installed because of Java Runtime Environment is not installed
- ASA Memory Leak
- “GRE over IPSec” or “IPSec over GRE” ?
- Steps How to Add License into Cisco IOS
- OSPF over GRE Over IPsec on GNS3
- GRE Tunnel in GNS3
- Cisco Pre-defined Access-list Port Number
- Policy NAT-ing with overlap message – Order is important
- no response when ping MS Cluster’s ip address – Solution
- Cloud
- Configure IPv6 on AWS EC2 Instance
- Oracle Cloud Platform (OCP) Tips and Tricks
- Create a PHP static Page to Show NodeQuery Monitoring Server Status
- Create UptimeRobot Monitoring Status Page
- Mount Google Drive into NextCloud
- Integrate Scaleway 75G Object Storage with NextCloud and ShareX
- Cloudflare Workers and API Usage Collection
- Cloudflare Firewall Configuration Examples
- Easiest Way to Deploy Your Own NextCloud with your Own Domain Using Portainer
- Enable Azure ATP (Microsoft Defender for Identity) and Install ATP Sensor
- A List of Security Portals for Microsoft, Azure, Windows and Office 365
- Microsoft Azure Identity Protection Respond Procedures and Action Explaination
- Azure ATP vs Microsoft Defender ATP vs O365 ATP
- Azure Security Best Practices
- Microsoft 365 Certified: Security Administrator Associate & Microsoft 365 Security Administration
- Install and Configure Docker App into KubeSail Platform
- Build Cloud File Download & Manage Center using FileBrowser+Aria2+AriaNg+Rclone+Caddy+Google Drive
- Use Aria2 docker+ariang to download and Rclone to Mount Google Drive and Sync
- O365 OneDrive Usage Tips and Tricks
- Fast OneDrive Index – A Serverless OneDrive Index Setup
- DD a Windows OS into Cloud Linux VM (Oracle/GCP/AWS)
- Build a Serverless Bookmark Website Use Cloudflare Worker
- Use virt-what to Get VPS Virtualization Technology
- Using Cloudflare Workers to Deploy A Free Google Drive Directory Indexer in 5 Minutes
- Build a Reverse Proxy Using Cloudflare Workers
- Gartner CASB (Cloud Access Security Brokers) Magic Quadrant (2019,2018,2017)
- GitHub Basic Usage
- Create Free Tier Windows/Linux Virtual Machines in Azure Cloud
- Troubleshooting WordPress Installation or Configuration Issue
- How to Enable Root Account and Enable Username/password Access in GCP
- Free Tier VPS Bench Comparison for AWS, Azure and Google Cloud
- Install OpenStack – DevStack into Ubuntu 16.04.05 Virtual Machine
- How Much Google Cloud Platform Charges on F1-Mirco VM
- Red hat Openshift Deploy Image Example – Create V2Ray Server
- How to Share GCP Images with Other Users and Projects
- Gartner Magic Quadrant for Cloud Infrastructure as a Service (Worldwide) (2018,2017,2016,2015,2014,2013,2012…)
- Gartner’s Magic Quadrant for Public Cloud Infrastructure Managed Services Providers (2018, 2017)
- WAMP and WordPress Install on AWS Free Tier Windows 2012 R2
- Launch and Access Amazon AWS EC2 Instances
- Creat AWS Diagrams Online
- Building a 3S (Scalable, Stable and Secure) AWS Test Environment – Part 1
- CyberArk
- Secure Access with an HTML5 Gateway
- CyberArk EPM upgrade from V11.0 to V11.5
- Log in as Master from CyberArk PrivateArk Client
- Generate CSR from Windows Server and Submit to MS CA to Sign for IIS and RDP Services
- CyberArk PSMP (PSM for SSH Proxy) Administration and Troubleshooting
- CyberArk Service/Dependent Accounts Studying Notes
- CyberArk PAS Configuration Issues and Troubleshooting (Vault)
- CyberArk Impact Live 2020 Notes
- CyberArk PSM HTML5 Gateway Installation and Configuration
- Replace CyberArk Vault Server Self Signed Certificate with CA Signed Certificate
- CyberArk PAS DR, HA, Backup, Failover and Failback Process
- Configure Remote Connection Tools (RDCM, MobaXterm, mRemoteNG) Integrate with PSM
- CyberArk PSMP – PSM for SSH Installation
- CyberArk Free Tool Usage – PAS Reporter
- AutoIt3 Launch MMC Snap-ins Connecting Through PSM
- Install O365 MarketPlace Plug-in and Onboard O365 Account
- CyberArk PAS Installation – Part 5 – PTA
- CyberArk PAS Configuration Issues and Troubleshooting (CPM)
- CyberArk PAS Onboard Website Account
- CyberArk PAS Solution Issues and Troubleshooting (PSM)
- CyberArk PAS Configuration Notes (Architecture)
- CyberArk PAS Solution Issues and Troubleshooting (PVWA)
- Enable Radius Authentication for CyberArk PAS
- CyberArk PAS Installation – Part 1 – Vault PrivateArk Server and Client
- CyberArk PAS Installation – Part 4 – PSM
- CyberArk PAS Installation – Part 3 – CPM
- CyberArk PASInstallation – Part 2 – PVWA
- CyberArk Deployment Suggestions
- CyberArk PAS v11.1 Install & Configure – 1. Infrastructure and Environment Introduction
- CyberArk PAS Install and Configure Lab – v11.1
- CyberArk PAS Install and Configure Lab – v10.9
- Install PAS (Privileged Account Security) Vault High Availability
- Configure CyberArk PVWA and PSM for SQL Server Management Studio Version 17
- CyberArk Automatic Account Management
- How to Upgrade a PVWA installation (version 10.8.0.1 to 11.1)
- CyberArk PAS (Vault, PVWA, CPM, PSM) Installation
- CyberArk PAS Lab v10.10
- CyberArk Quick Operation Handbook
- Microsoft Remote Desktop Connection Manager: CyberArk PSM Connection Configuration Guide
- Enable CyberArk File Copy / Paste Function Between PSM RDP Sessions
- CyberArk Notes
- Docker
- Install Chevereto – Open Source Image Hosting Website Using Docker
- Lightweight K8S Lab – Rancher + K3S Integrated Deployment
- Quickly Deploy Two Open Source Bastion Server Projects – Webterminal and Jumpserver
- Use KMS to Activate Windows/Office (Run KMS Docker / Install KMS)
- Collections for Cyber Security Related Dockers
- Using Docker to Run Python Script
- Collection for Cloud Storage and Downloading Docker
- Collection for Some Interesting Docker Images
- Portainer Usage
- Docker Usage
- Doker Run Some Popular Application Images (MySql, ElasticSearch, RabbitMQ, Kafka, Zookeeper, Nginx, MongoDB, Tomcat)
- Run a Simple Docker Image to Test Internet Speed – Speedtest-cli
- Simplest Steps to Install Docker and Docker Compose into Ubuntu 16.04 and 18.04
- Using Portainer to Deploy Guacamole Docker- Web-based Remote Access Gateway
- F5
- Basic F5 LTM HTTP Load Balance Configuration (With Firewall)
- F5 LTM / GTM Best Practice Deisgn With Routers and Firewalls
- F5 (Tips and Tricks)
- F5 Big IP 2000s Appliance Configuration Step by Step Guide – 2. Configure BIG-IP Objects and HA
- F5 Big IP 2000s Appliance Configuration Step by Step Guide – 1. Initial Configuration
- F5 BigIP LTM v11.5.3 Virtual Appliance HA Configuration – Part 2
- F5 BigIP LTM v11.5.3 Virtual Appliance HA Configuration – Part 1
- F5 Study Materials: 101 Application Delivery Fundamentals and Others
- F5 Big-IP 2500 Appliance System Initial Configuration
- Basic F5 LTM HTTP Load Balance Configuration (Without Firewall)
- Download and Install F5 BIG-IP v11.x / Virtual Edition 11.3.x into Vmware Workstation
- Fortigate
- Configure Fortigate DDNS with free DDNS service noip.net
- FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 2
- FortiOS Configuration for FortiGate Firewalls (Tips and Tricks) 1
- FortiOS 5.4.1 IPSec Phase 2 for AutoConf-enabled Phase1 Issue
- Fortigate Firewall Configuration Migrate to Different Device
- Fortigate 60D High Availability Configuration Steps
- Fortigate Firewall Console TFTP Image Recovery
- Fortigate File Syste Check Recommendation After Logged in Web UI
- Set Up IPSec Site to Site VPN Between Fortigate 60D (4) – SSL VPN
- Set Up IPSec Site to Site VPN Between Fortigate 60D (3) – Concentrator and Troubleshooting
- Set Up IPSec Site to Site VPN Between Fortigate 60D (2) – Policy-Based VPNs
- Set Up IPSec Site to Site VPN Between Fortigate 60D (1) – Route-Based VPNs
- Free Forticloud Service for FortiGate and FortiWiFi
- Fortinet Firewall Fortigate-30D Basic Configuration and NAT Set up Steps
- Guardium
- IBM Guardium v11.2 Collector Installation Notes
- Install Guardium GIM & STAP into Linux Servers (Ubuntu and CentOS)
- IBM Guardium Tips and Tricks
- Install and Configure CAS (Configuration Audit System) in Guardium v11.2
- IBM Guardium: Configure a Database Vulnerability Assessment
- IBM Guardium Upgrade and Patch Installation (GIM, STAP, SNIFFER, GUP, DPS, HealthCheck)
- IBM Guardium v11.2 Collector Installation Notes
- IBM Guardium GIM & S-TAP Installation and Upgrade
- IBM Guardium Tasks List to Onboard new DB servers
- IBM Guardium Installation and Upgrade
- IBM Guardium Studying Notes & Health Check Steps
- IBM Guardium Studying Notes
- IBM Guardium v11 GIM & S-TAP Download, Install, Validation and Verification
- IBM Guardium V11.0 Project Implementation Notes
- IBM Guardium Installation and Upgrade Configuration
- IBM Guardium: Basic Configuration(License, NTP, SMTP, Data Related, Backup, Schedule, LDAP, Syslog)
- IBM Guardium: Create an Alert / Policy / Classification
- IBM Data Security Product Guardium Resources
- Juniper
- Configure a RMA-ed SRX340 with a JunOS Upgrade and Joining it into a Existing Cluster
- Enable IDP on Juniper SRX Devices Managed by Juniper Space
- Juniper SRX Commnit Error “No rulebase configured for active policy”
- Juniper SRX DB mode (Debug mode)
- Juniper Space Security Director Policy Hit Counts Not Updated Automatically
- Juniper Space License Issue on Citrix Xen Environment
- Add Juniper SRX Cluster into JunOS Space 16.1 Security Director
- Juniper JUNOS Commands (Tips and Tricks)
- JunOS Space Network Management Platform Basic Configuration including Log Collector
- Juniper JunOS Space Upgrade Procedures from 14.1 to 16.1
- Procedures to Deploy RMA device into Juniper SRX Chassis Cluster
- Juniper Firewall SRX240H Crashed with Error ‘nearing maxproc limit by uid 0,please see tuning(7) and login.conf(5)’
- Juniper SRX340 HA Configuraiton
- JunOS SRX Cluster Upgrade Failed
- Juniper SRX Minor Alarm Messages – Autorecovery and Rescue Information
- JunOS Space – Warning Message for Consolidated Configuration
- Understanding Juniper SRX TCP Security Check
- Juniper SRX Logging Methods and Configuration: Stream Mode vs Event Mode
- SRX Load Rescue Configuration After Reboot
- Import Existing Juniper SRX Cluster into JunOS Space Security Director
- JunOS Space Radius Authentication with Free Radius Server TekRADIUS
- Configure SRX 240 cluster Step by Step
- Pulse Secure (formerly Juniper Pulse) – UAC Configuration Summary
- Industry’s Fastest Firewall – Juniper SRX5800 Delivers Two Terabits Throughput
- Installation of Junos Space Security Director and Managing Juniper Firewall
- Juniper vSRX Firewall (Firefly Perimeter) installation in ESXi and Managed by JunOS Space
- Install JUNOS Space Virtual Appliance at ESXi 5.5
- Troubleshooting Symantec Verisign SSL Certificates Issue on PKI VPN Tunnel between Juniper SRX Firewalls (Cont.)
- Configuration DHCP Relay in routing instance on Juniper SRX Devices
- Using PKI Build Route-Based IPSec VPN between Juniper SRX
- Monitoring Juniper SRX Firewall CPU, Memory and Flow Session Information from PRTG
- Configure High End Juniper SRX 1400 as Chassis Cluster Steps
- Juniper UAC Appliance IC4500 Step by Step Configuration (Part 2) – Certificate Based Authentication
- Juniper UAC Appliance IC4500 Step by Step Configuration (Part 1) – Basic Configuration
- Juniper Junos pre-defined Applications and Application-Sets details
- Only Primary SRX Cluster Member Got IDP Signature Update from NSM with Virtual Chassis
- File Copy Between Two Juniper SRX Cluster Members
- Remove one JunOS cache file to free space for upgrading JUNOS system on SRX240H
- Juniper NSM Schema Upgrade Failed
- Copy certificates after RE replacement in JunOS HA cluster
- Juniper Hidden Command : set chassis cluster control-link-vlan enable
- Upgrade Juniper JUNOS on SRX using USB Storage
- NSM Shows License Validation Exception even with new license added in.
- Enable Traceoption and manually update security update on Juniper JunOS SRX
- SRX alarm: Autorecovery information needs to be saved
- How to recover from database failures for Juniper SRX IDP?
- Upgrade JunOS from RAM Disk
- How to Clean-up Space on Juniper SRX Devices
- NSM Server shows warning when Disk is getting full
- Juniper SRX 240H Bootable USB Backup
- JunOS SRX Source Routing, PBR, FBF
- JUNOS Olive GRE Tunnel Configuration
- JUNOS Olive Dual ISP OSPF Configuration
- OSPF between two JunOS routing instances
- Junos Oliver Logical Router OSPF Lab
- Set Juniper SRX into Debug mode when crashed
- Juniper SRX 240 Chassis Cluster (High Availability) Configuration
- Free Juniper Training Materials and Courses
- IEEE STANDARD 802.3AD – JunOS Configuration
- Steps to Set up Juniper Secure Access (SA) / SSL Virtual Appliance
- Linux
- Using X2Go to Remote Desktop Into Linux Server
- Install MySQL 8 on Linux and Create a New DB & Populate DB with Sensitive Records
- Install / Configure Xfce and VNC Server on CentOS7
- Enable Linux Password Authentication on Cloud VPS
- Install and Configure ngx_lua_waf Based on Nginx+Lua ( OpenResty)
- Set Up Let’s Encrypt Certs with Nginx Server Using CertBot
- Change Linux SSH Port from 22 to 2222
- CentOS Change Kernel
- Useful Linux Network Analysis/ Monitoring/ Shell Scripts Collection
- Change Linux CentOS Ethernet Interface Name to Default eth0
- Connect to GNOME desktop environment via XRDP on CentOS 7 & Ubuntu 18
- Linux CentOS/Ubuntu Firewall and SELinux
- Linux System Performance Analytics
- Change SWAP Size to Improve Low Memory Cloud VM Performance
- Deploy Zabbix Agent into CentOS and Add into Zabbix Server
- Quickly Deploy Zabbix in CentOS7
- Benchmark Linux Disk Read/Write Speed
- Some Popular Linux VPS Bench Scripts
- Using SSMTP to Send Email From Linux VPS Command Line Through Gmail Account
- Monit – Linux Open Source System or Process Monitor Program
- Linux Virtual Machine PHP Invoked OOM-killer (Out of Memory) Issue
- Ubuntu Basic System and Service Configuration Commands
- Install Portainer to Manage Containers – Nginx, MySQL, WordPress
- Kali Usage Tips and Tricks
- CentOS Basic Configuration and Services/Software Installation (Docker, Vsftp, Samba, etc)
- Ubuntu 16.04.5 LTS (Xenial Xerus) Installation Step by Step in VMWare Workstation (Not Easy Installation)
- Install OpenVAS on Ubuntu
- OpenVAS Virtual Appliance / GreenBone Installation
- Metasploit Installation on Windows 7 and 10
- Kali Virtual Appliance Installation and Usage
- CentOS Basic Configuration
- Basic Linux Commands (Tips and Tricks)
- Linux : find big file in the all directories
- Use your ssh key to encrypt / decrypt files
- Network
- Configure OpenWRT Allow All Traffic (Routing All Traffic with Stateful Firewall)
- Ansible Tutorial – Install Ansible and Run Simple Command Remotely
- Adding Windows Host into Zabbix (Active Check Mode)
- Understanding Ping Command
- Gartner Magic Quadrant for the Wired and Wireless LAN Access Infrastructure (2018, 2017, 2016, 2015, 2014, 2013, 2012, 2011, 2010)
- Free DNS Server 1.1.1.1 and 1.0.0.1 (from CloudFlare) – Fastest and Easiest to Remember
- Cisco Wireless Controller 5508 Configuration – Tips and Tricks
- Gartner Magic Quadrant for Network Performance Monitoring and Diagnostics (2017, 2016, 2015, 2014 )
- Gartner Magic Quadrant for Data Center Infrastructure Management (DCIM) (2016, 2015,2014)
- Cisco Wireless Controller 5508 Configuration Step by Step – Part 1 (CLI and GUI Access, Upgrade)
- Avocent® ACS 8000 Advanced Console System Configuration
- Brocade Switch Access Through SSH and Web Tools
- Gartner Magic Quadrant for WAN Optimization (2016, 2015, 2014, 2013, 2012, 2011)
- Gartner Magic Quadrant for Application Delivery Controllers (2016, 2015,2014,2013,2012,2010)
- Infoblox NetMRI 1400 Appliance with Network Automation OS Configuration Steps
- Gartner Magic Quadrant for Cloud-Enabled Managed Hosting, North America (2015, 2014)
- Cisco Wireless Controller 5508 Configuration Step by Step – Part 3 (Certs Auth and Other Settings)
- Cisco Wireless Controller 5508 Configuration Step by Step – Part 2 (User/Machine Auth)
- Mobile Iron Sentry VM Installation
- Updating InfoBlox Network Automation Product NetMRI
- My Top Internet / Network Tools
- Use Network Automation Tool Infoblox NetMRI Push Configuration to Multiple Network Devices
- Layer 2 / Layer 3 IP Packets Switching Procedures
- Linux Service Configuration – NTP
- Bridge Your Home Routers to Extend Your Wireless Network
- Build NTP Windows Server for Network Devices (not Win32Time)
- GNS3 VoIP Lab (Cisco 3725 and CME 4.3)
- Gartner Magic Quadrant for User Authentication (2014, 2013, 2012)
- OpenWRT in Vmware as a light weight router and virtual host
- FTP Active mode vs Passive Mode
- Understanding TCPDUMP Output
- GNS3 V1.0 Alpha for Linux in Vmware Workstation
- Basic MPLS Lab on GNS3
- Cisco MPLS IOS for GNS3
- Check Cisco Device Interface Throughput with load-interval Command
- VRRP and Object Tracking
- Why Cisco Devices refused SSH connection
- How to gracefully shutdown network devices
- JFlow, CFlow, NetFlow and SFlow
- Gartner Magic Quadrant for SSL VPN (2012, 2011 and 2008)
- Send email out to Internet with a Blat Command
- BSD Router Project (BSDRP) on Vmware
- Add static route in Smoothwall
- Others
- Why You Should Get Amazon AWS Certified Solutions Architect Professional Certification This Year?
- Tips and Tricks to Run Android Emulator BlueStacks
- Install Ubuntu 20.04 on Raspberry Pi
- Download Web Video Without Third Party Tools
- Install WordPress on Raspberry Pi
- Remote Access Raspberry Pi from Anywhere and Dynamic DNS Update with Dynu.com
- 2016 Technology Salary Report (GTA) from Lannick
- Raspberry Pi 2 Model B Basic Configuration Part 2
- Raspberry Pi 2 Model B Basic Configuration Part 1
- 2015 Canada IT Skills & Salary Report
- Free Dynamic DNS Service Site – http://duckdns.org/
- TekRADIUS Usage for AD Authentication
- Configuring Polycom Video Conference System – HDX 8000
- Palo Alto
- Palo Alto UserID Agent Configure Steps
- Palo Alto Firewall Migration Plan Tasks List
- Sophos Update Error – Troubleshooting with Palo Alto Firewall
- Install and Configure Palo Alto VM in Vmware Workstation / ESXi
- Palo Alto Study Notes: Firewall Configuration Essentials I (101) PAN-OS v.6.1
- Configure Palo Alto VM 6.0.0 in Vmware Workstation and ESXi
- Palo Alto for NGFW facts from Checkpoint view
- Qualys
- Raspberry Pi
- Security
- DarkTrace Usage Tips and Tricks
- Gartner Magic Quadrant for Privileged Access Management (2020, 2018)
- Gartner Magic Quadrant for Access Management (2020,2019,2018,2017,2016,2015)
- Computer System Health Checklist
- Install AD CS (Certification Service) on Windows Server 2016 to Deploy Enterprise PKI
- Quick Install FreeRadius on CentOS7
- Install FreeRadius and Daloradius on CentOS 7
- Use Hihttps WAF to Protect Your Web Application
- Install Vulture WAF Cluster in VMWare Workstation
- Installation Steps for Free WAF Firewall – Shadow Daemon
- Gartner Magic Quadrant for Endpoint Protection Platforms (2019,2018,2017,2016,2015)
- Cyber Security TRA (Threat and Risk Assessment) Resources Research
- PFsense Configuration with Topology and Screenshots
- Proofpoint Wombat Security Education Platform Usage – Create Training Assignment
- Proofpoint Wombat Security Awareness Training – Phishing Campaign Step by Step
- Gartner Magic Quadrant for Enterprise Network Firewall (2018,2017,2016,2015,2014,2013,2011,2010)
- Gartner Magic Quadrant for Unified Threat Management (2018,2017,2016,2015,2014,2013,2012,…)
- Gartner Magic Quadrant for Access Management (2017,2016,2015 )
- Gartner Magic Quadrant for Security Awareness Computer-Based Training (2018,2017,2016,2015,2014)
- Security Events and Data Breaches in 2018, 2017, 2016, 2015, 2014
- Threat Modeling Resources
- Canada CRA Email / Message Scam Example and Phone Call Scam Fraud Recording 2018
- Gartner Magic Quadrant for Intrusion Detection and Prevention Systems (2018, 2017, 2015, 2013, 2012, 2010 …)
- Gartner Magic Quadrant for Web Application Firewalls (2018,2017,2016)
- Install T-Pot into Google Cloud Platform VM Instance
- Sumuri Paladin 7 Forensics Suite Basic Usage
- NSS Labs NGFW Security Value Map Report (2017, 2016, 2014, 2013, 2012, 2011)
- Gartner Magic Quadrant for Identity Governance and Administration (2018,2017,2016,2015,2013)
- CISO Leadership Mind Map
- How to Find Out Windows Process Sending ICMP Packets
- Top Security Events / Vulnerabilities in 2018, 2017, 2016, 2015, 2014
- Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks – 2. Configuration
- Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks – 1. Installation
- OWASP Top 10 (2010, 2013, 2017)
- Cisco IOS Internet Key Exchange version 1 (IKEv1) Vulnerability and Fix
- Real-Time Cyber Attack Threat Map
- Ransomware Locked Files on My Test Machine
- How Firewalls (Security Gateways) Handle the Packets? (Traffic Flow)
- Gartner Magic Quadrant for Mobile Data Protection (2015, 2014, 2013, 2012, 2011…, 2006)
- My Top Network Security Tools
- Troubleshooting Java HTTPS Security Warning Message
- CVE-2015-0235: GHOST – A Critical Vulnerability in the Glibc Library
- Poodle : New SSL 3.0 Bug (CVE-2014-3566)
- Shellshock (Bash Computer Bug) Exploited – Responding from Venders
- Reset SonicWall NSA 4500 to Factory Default Configuration
- PKI Basic Flow Chart
- SIEM
- AlienVault Installation and Configuration
- Gartner Magic Quadrant for SIEM Products (2010-2020)
- LogRhythm Remote Windows Log Collection Integration with Symantec SEPM MS SQL DB
- Forward System and App logs to Papertrail – Cloud Log Management
- Cloud SIEM – LogRhythm Configuration Notes
- SIEM System Use Cases
- The rocket-fast Syslog Server – Rsyslog Client and Server Configuration
- Easily Deploy ELK into CentOS 7
- Using NXLog to Collect Windows Event Logs
- Forwarding Windows Event Logs to Syslog Server (Kiwi Syslog)
- ArcSight SIEM Logger Web, Search Examples, Use Case Reports
- ArcSight SIEM Logger Web Gui and Search Tips and Tricks
- Install Latest Splunk 7.2.0 on Ubuntu 18.04 LTS at Google Cloud Platform
- Splunk Tips and Tricks
- ArcSight SIEM Logger
- Configure Netflow on network devices for PRTG Netflow Monitoring
- Using PRTG SNMPv3 Monitoring Juniper SRX 240H Alarm andTemperature
- Archive Juniper STRM (IBM Qradar) Logs to remote server
- Installation Steps of LOG Storm Free Virtual SIEM Appliance
- Forwarding Checkpoint Management Server Firewall logs to an external syslog server STRM/Qradar SIEM
- Forward Logs from Checkpoint SmartCenter Management Server and Juniper NSM / IDP to Syslog Server
- Software
- ShareX Configuration – The Best Free & Powerful Screenshot Tools
- My Favorite Google Chrome Plug-ins
- Best Free Network Performance Test tool – Iperf
- Windows Free Email Server -MailEnable Installation and Configuration
- Install and Use Webbench to Benchmark Web Servers
- Putty Tips and Tricks
- VanDyke SecureCRT Settings (Tips and Tricks)
- Using Group Policy to Deploy Software Packages (MSI, MST, EXE)
- Windows Server Configuration Tips and Tricks
- Common Used Excel Formulas
- Windows 10 Tweaks, Tips and Tricks
- Step by Step Installation Python IDE – PyCharm
- Microsoft Office Tips and Tricks (Word, Excel, Visio, PowerPoint)
- Python Cyber Security Testing Tool Collection
- Smallest Firewall / Router VM in My Vmware ESXi and Workstation
- Python Scripts to Reboot / Manage Cisco Network Devices
- Python Tips and Tricks
- Using Artica Squid Open Source Project to Build Powerful and Safe but Simple to Use Proxy
- USB to Serial Cable Driver Issue on Windows 10
- Firefox Warning Message -“This Connection is Untrusted” Caused by Proxy Server Certificate
- Build WordPress Application Under Your Own Domain Name With Openshift and Cloudflare
- Update to Windows 10 Immediately Without Wait Validating from Microsoft
- Excel Formula: Search a Column of Strings to Match Another Column
- Free Software Across the Great Firewall (免费翻墙软件)
- Bypass China GFW
- Tripwire Enterprise 8.3 Basic Configuration Steps
- Free SNMP Software Suit in Windows Environment – Net-SNMP (Snmpv3 Support)
- Excel Formula : Convert a text to Number
- What’s the Best Antivirus for home users at Win7, Win8 and Winxp OS
- Symantec
- Symantec Endpoint Encryption 11.3.x Issues, Tips and Tricks
- Check Symantec SEPM Health Status
- Windows 10 Security Center Shows Red x Icon On Firewall & Network Protection with SEP Installed Machine
- Symantec Endpoint Protection Design and Architecture
- Symantec Endpoint Protection Found Web Attack: Malicious Theme or Plugin Download 2 detected
- Symantec SEPM Configuration and Client Deployment Notes
- Symantec Endpoint Protection Manager (SEPM) Performance Tuning
- Deploy and Configure Symantec Endpoint Encryption 11.x
- Symantec DLP Operation Notes
- Symantec Endpoint Detection & Response (EDR) Notes
- Symantec ATP (Advance Threat Protection) EDR Configuration Notes
- Basic Steps to Deploy and Config Symantec DLP 15.5 with Installation Videos
- Symantec Diagnostic Tool – SymDiag Usage Guide
- Threat Hunting
- DarkTrace Investigation Steps
- Vulnerability Remediation – QID: 91017 and QID: 100269
- PID 4 listening on Port 80 or Port 12345
- Vulnerability: SSL/TLS use of weak RC4(Arcfour) cipher port 3389/tcp over SSL
- Bulk IP Reputation Check using Security Websites and Open Source Scripts
- Find Real IP of a Website Behind CDN
- Windows Remote Command Line Troubleshooting Tips and Tricks
- Sysinternals Tool Sysmon Usage Tips and Tricks
- Threat Hunting Tools
- How to Find Out Windows Process Sending Traffic, Especially ICMP Packets
- Check Your Site Vulnerability if Listing on Bounty Site
- Basic Procedures to Troubleshoot an Infected Computer
- Use Endpoint Sandbox Software to Protect Your Windows Computers
- Thycotic
- Vmware
- Credential Guard Incompatible Solution for VMware Workstation on Win10
- Install ESXi 5.1/5.5/6.0 into Mac Mini 3.1 (Later 2009)
- Install ProxMox 5.3 into VMware Workstation 14
- Install Vmware vCenter into ESXi 5.5 and Reset ESXi into Evaluation Mode
- Workaround for Windows XP VMware vSphere Client Connecting to ESXi 5.5
- Workaround for can not Edit Virtual Machine Settings in VMware vSphere ESXi 5.5
- Cisco L2 L3 IOU Rack V5 (newer version from Cisco L2 L3 IOU Rack V3)
- Use Serial Port in Virtual Machines Running on Vmware Workstation and ESXi
- My Cisco IOU Racks – from flyxj IOUv3
- How to upgrade Nexus 7K NX-OS Emulator Titanium VMware image to 6.1.1
- Nexus 7K NX-OS Emulator Titanium 5.1(2) VM
- Increase IOU NVRAM Size
- ASA 8.42 in VMware Workstation
- ASA 8.02 in Vmware Workstation
- VPN
- Create VPN Tunnel Between CheckPoint FIrewall and WatchGuard FireBox Firewall
- Install Mac OSX AnyConnect Package on Cisco Router and on Mac Machine
- Expose your local service to public: Ngrok, FRP, localtunnel
- CISCO ASA VPN Tips and Tricks
- Cisco Router IKEv2 IPSec VPN Configuration
- Troubleshooting Cisco IPSec Site to Site VPN – “QM Rejected”
- Renew Cisco IOS IPSec VPN Certificates from Symantec
- Cisco IOS Router Configuration: IPSec over GRE or GRE over IPSec(1)
- Cisco Configuration Professional (CCP) Configure IOS SSL VPN (AnyConnect SSL VPN)
- Troubleshooting Cisco IPSec Site to Site VPN – “reason: Unknown delete reason!” after Phase 1 Completed
- Troubleshooting Cisco IPSec Site to Site VPN – “IPSec policy invalidated proposal with error 32”
- Cisco ASA Remote Access VPN Configuration 2 – AnyConnect VPN
- Cisco ASA Remote Access VPN Configuration 1 – Clientless SSL VPN
- Cisco IKEv1 Site-to-Site IPSec Configuration on IOS Routers (1) – High Availability IPSec
- Using Symantec SSL PKI to Authenticate Cisco IOS IPSec VPN – HA Deployment
- Cisco IKEv1 Site-to-Site IPSec Configuration on IOS Routers (2) – Using Two Different CA Certificates
- Policy Based IPSec VPN Configuration Between SRX Firewalls
- Certificate Import Failed with “% Failed to parse or verify imported certificate” because of Verisign Using new Intermediate CA Certs G4
- Certification based Cisco IPSec VPN Down caused by ‘signature invalid’
- VPN Lab between Cisco Router and Checkpoint Firewall
- Cisco VPN LAB 3 : A Simple DMVPN Configuration Example
- IPSec VPN Basic Configuration between two ASA 8.4.2
- CISCO ASA VPN Troubleshooting Tips
- Cisco VPN LAB 4 : EZ VPN Between ASA 8.4.2, IOS Router and EZVPN Client Software
- Free VPN Service on SSL Connection – PacketiX™ VPN
- Cisco VPN LAB 2 : IPSec VPN Example Between two ASA 8.4.2
- Cisco VPN LAB 1: Simple Easy VPN Example between Routers
- Cisco IOS IPSec VPN with External Trusted PKI Certs – Verisign
- Cisco IOU IPsec Site to Site VPN with External Third Party CA (XCA) – Part 3
- Cisco IOU IPsec Site to Site VPN with Pre-shared key, RSA Key, or CA Part 2
- Cisco IOU IPsec Site to Site VPN with Pre-shared key, RSA Key, or CA Part 1
- Real Full Functional Free VPN over browsing port 80/443/8080
- Free VPN – cross firewall or proxy limitation to access Internet
- Route-based VPN between Juniper and Cisco
- Windows
- Wireless
Collected Online IT Resources:
- A Firewall Engineer
- Afroz Ahmady Official Blog
- Alfred Tong Tech blog for Sysadmins
- Amit’s Knowledge Base
- Circuit Basics
- Ciscoinferno
- CiscoZine | Daily reporting on Cisco technology
- Cocheno (Reading => aKnowledge => +Power)
- http://cyberspaceandtime.com/
- Darren’s Blog-Google Engineer
- DataCenterPro
- DEVILWAH’s BLOG – CISCO, LINUX and all thing DEVILISH
- DreezSecurityBlog
- Expert Mode from CCMA#50
- Fir3net.com
- Firewall Tips
- FirstDigest
- Free Javascript Hosting
- Fryguy.net
- http://checkpointdblink.blogspot.com/
- integrating IT
- IT Security News
- IT Blogtorials
- IT Governance
- itsecworks
- LoveMyTool.com
- LTLNETWORKER – IT networks, security, Cisco
- Lusongsong Blog
- Network Fun!!! — An IT Technical Blog (Cisco/Brocade/Check Point/etc)
- NetworkOC -Network Operation Center
- Ming Jiao Jiao Zhu’s Video and Blog
- My Check Point blog – Notes from a CCSE+ – blog.lachmann.org
- My Network Lab by John
- My work help blog
- QOS Technology
- Robert Penz Blog
- Router Jockey – a network engineering blog
- rtoodtoo.net – Tech Notes & Juniper / RtooDtoo.net
- Sam Hobbs | Free Software Tutorials
- Security Vibes and IT Stuff
- Sysadmin Tutorials
- Team Cymru
- what-when-how In Depth Tutorials and Information
- 编程随想的博客
Answers:
- Ask
- Baidu Knows
- Expert Exchange
- IT Technology Exchange : Security
- Reddit: the front page of Internet
- Quora
- The Expert Network
- Yahoo Answers