Search Results

Problem To do administration of IPS and other modules of the check point firewall, you often need to check logs with smartlog queries.These queries are saved then to favorites for later use. Migration To migrate these queries to a new user account on the ...

Problem When you want configure remote authentication on a F5 BIG-IP system you need to decide where the traffic will be routed. You need to specify either tmm or the management interface for remote authentication traffic. tmm or management interface leads t...

Solution Check Point "Log Exporter" is an easy and secure method for exporting Check Point logs over the syslog protocol. It is integrated in Version R80.20 or higher. Example Basic Log Export to another syslog Server cp_log_export add name SyslogToSplunk ...

If you need to send all logfiles to F5 Support you need tom compress them all. You can do this like this as root user: Log in to the command line. Create a tar archive in the /var/tmp directory that contains all the files in the /var/log directory, by typ...

Matching in proxy.pac Problem The inclusion of a leading period (.) within the “host” parameter’s value seems to be ignored. In the example below, this causes "fakewebex(dot)com and “fake(dot)webex(dot)com” to both match the shExpMatch, which is not ideal. ...

Tools for checking DNS records Below are my favorite tools to check DNS records etc. Link Description https://dnsdumpster.com/ DNSdumpster.com is a FREE domain research tool that can discover hosts related to a domain. Finding visible ho...

If you need to connect directly to a tcp-port in a pod you can do this with port forwarding. So for example to access the redis pod in the namespace redis you will use this on the client: kubectl port-forward redis1-master-0 6379:6379 -n redis "redis1-maste...

If you need to integrate for example IoT devices, you need maybe to check why the device is not able to connect to the server processing your location data or other data from a LoRaWAN Tracker or any other IoT device. For this there's a very good service to s...

In this example we need to upgrade the F5 BIG-IP from 16.1.x to the actual version 16.1.3.5 (7.8.2023). Download Software Image Login to https://my.f5.com, search and download the ISO image of the version you want to upgrade: Select the release and down...

Here are the different Log File locations on a Check Point Appliance: Feature File Location Alerts /var/log/send_alert.* Command auditing /var/log/asgaudit.log* CPD $CPDIR/log/cpd.elg Distribution /...

CLI commands ConfD on F5 is the CLI tool to get and set all config of the F5. You can get the same configuration options like in the F5OS UI. Use "su admin" to start an interactive shell when you are logged in as root via ssh. Useful CLI command line troubl...

Documentation about F5OS-A used in rSeries Planning for rSeries Guide Network Architecture rSeries Networking

Documentation about F5OS-C used in VELOS Planning for VELOS Guide Network Architecture VELOS Networking

If you need to see how different protocols behave on the network here are some sample captures from Wireshark https://wiki.wireshark.org/SampleCaptures https://packetlife.net/captures/ https://www.netresec.com/?page=PcapFiles https://tshark.dev/search/pc...

tmsh load sys ucs options K14906: Overview of the UCS "no-platform-check" tmsh option K82540512: Overview of the UCS archive 'platform-migrate' option Important: In versions prior to 13.1.0 and 12.1.3, although you can bypass the platform check, F5 do...

Useful CLI command line troubleshooting tools The following is a list of CLI commands used for administering the Univention Corporate Server (UCS) UCS Show Commands Command Description ucr get server/role Show the server role ucr get...

When you use a reverse proxy like the F5 BIG-IP is, there's always a big discussion how to preserving the client ip address in any TCP session. F5 has a document describing the different possibilities: If the traffic is HTTP,  you can use x-forwarded-for f...

Useful CLI commands to do network diagnostics with tcpdump / tshark etc. tcpdump Command Description tcpdump -nni <network-interface> icmp show icmp packets tcpdump -nni <network-interface> "icmp[0] == 0" ICMP type 0 echo reply ...