Advanced Search
Search Results
24 total results found
How to migrate Custom Queries from one SmartView Tracker to another
Problem To do administration of IPS and other modules of the check point firewall, you often need to check logs with smartlog queries.These queries are saved then to favorites for later use. Migration To migrate these queries to a new user account on the ...
The Big-IP can be configured to use either tmm or mgmt interfaces for remote authentication (LDAP, TACACS, RADIUS, etc.) traffic.
Problem When you want configure remote authentication on a F5 BIG-IP system you need to decide where the traffic will be routed. You need to specify either tmm or the management interface for remote authentication traffic. tmm or management interface leads t...
Check Point Log Export
Solution Check Point "Log Exporter" is an easy and secure method for exporting Check Point logs over the syslog protocol. It is integrated in Version R80.20 or higher. Example Basic Log Export to another syslog Server cp_log_export add name SyslogToSplunk ...
Send Logfiles to F5 Support and compress them
If you need to send all logfiles to F5 Support you need tom compress them all. You can do this like this as root user: Log in to the command line. Create a tar archive in the /var/tmp directory that contains all the files in the /var/log directory, by typ...
Proxy PAC Files
Matching in proxy.pac Problem The inclusion of a leading period (.) within the “host” parameter’s value seems to be ignored. In the example below, this causes "fakewebex(dot)com and “fake(dot)webex(dot)com” to both match the shExpMatch, which is not ideal. ...
DNS - Links & Tools
Tools for checking DNS records Below are my favorite tools to check DNS records etc. Link Description https://dnslytics.com/ Find out everything about a domain name, IP address or provider. Discover relations between them and see histori...
Use Port Forwarding to Access Applications in a Cluster
If you need to connect directly to a tcp-port in a pod you can do this with port forwarding. So for example to access the redis pod in the namespace redis you will use this on the client: kubectl port-forward redis1-master-0 6379:6379 -n redis "redis1-maste...
Debugging RESTful API
If you need to integrate for example IoT devices, you need maybe to check why the device is not able to connect to the server processing your location data or other data from a LoRaWAN Tracker or any other IoT device. For this there's a very good service to s...
Upgrade an Active-Standby Cluster
In this example we need to upgrade the F5 BIG-IP from 16.1.x to the actual version 16.1.3.5 (7.8.2023). Download Software Image Login to https://my.f5.com, search and download the ISO image of the version you want to upgrade: Select the release and down...
Log Files location Check Point
Here are the different Log File locations on a Check Point Appliance: Feature File Location Alerts /var/log/send_alert.* Command auditing /var/log/asgaudit.log* CPD $CPDIR/log/cpd.elg Distribution /...
Useful CLI commands F5OS
CLI commands ConfD on F5 is the CLI tool to get and set all config of the F5. You can get the same configuration options like in the F5OS UI. Use "su admin" to start an interactive shell when you are logged in as root via ssh. Useful CLI command line troubl...
F5OS-A for rSeries Architecture
Documentation about F5OS-A used in rSeries Planning for rSeries Guide Network Architecture rSeries Networking
F5OS-C for VELOS Architecture
Documentation about F5OS-C used in VELOS Planning for VELOS Guide Network Architecture VELOS Networking
Wireshark Sample Captures
If you need to see how different protocols behave on the network here are some sample captures from Wireshark https://wiki.wireshark.org/SampleCaptures https://packetlife.net/captures/ https://www.netresec.com/?page=PcapFiles https://tshark.dev/search/pc...
Migration to F5OS Tenant with Archive File
tmsh load sys ucs options K14906: Overview of the UCS "no-platform-check" tmsh option K82540512: Overview of the UCS archive 'platform-migrate' option Important: In versions prior to 13.1.0 and 12.1.3, although you can bypass the platform check, F5 do...
Useful CLI Commands Univention Corporate Server
Useful CLI command line troubleshooting tools The following is a list of CLI commands used for administering the Univention Corporate Server (UCS) UCS Show Commands Command Description ucr get server/role Show the server role ucr get...
Preserving client IP address in any TCP session
When you use a reverse proxy like the F5 BIG-IP is, there's always a big discussion how to preserving the client ip address in any TCP session. F5 has a document describing the different possibilities: If the traffic is HTTP, you can use x-forwarded-for f...
Useful Network Diagnostic CLI commands
Useful CLI commands to do network diagnostics with tcpdump / tshark etc. tcpdump Command Description tcpdump -nni <network-interface> icmp show icmp packets tcpdump -nni <network-interface> "icmp[0] == 0" ICMP type 0 echo reply ...
Online Rule Set Library
Introduction The online rule set library provides rule sets for you to import into your implemented rule set system of Web Gateway. Problem Description You can do this to add a function that is missing in your system or when the implemented rule sets do not...
Documentation
Introduction The following are documentation links for operating the Skyhigh Secure Web Gateway Links https://contentsecurity.skyhigh.cloud/home https://success.skyhighsecurity.com/Skyhigh_Secure_Web_Gateway_(On_Prem) https://success.skyhighsecurity.com...