yED – a MS Visio alternative or more?

October 25, 2016

0

yED is an alternative software for those engineers who are working with linux and dont like microsoft visio and want make network topologies faster and simplier for free :-) There is a lot of features like automatic layout and easy data import and so on it realy intuitive when you use it. One of the […]

Posted in: Graphviz, Linux, Security

Application shifting gone bad – Palo Alto Firewall

October 25, 2016

0

The App sophos-live-protection and the Palo Alto dns-proxy Affair As I first met with this problem I just thought its my first vulnerability that I have found :-), but it wasnt! It was the administrator who forgot to go to a palo alto school before touching a palo alto firewall. :-) The firewall I configured […]

Linux Proxy Settings – Kind of SSO? :-)

October 25, 2016

0

Set proxy only at login and unset at logout On some Linux Servers I must reach to the Internet through web proxy with user credentials and i dont have a so called service user everytime. Generally I must set the wget and apt-get and the system wide proxy everytime I login and delete before logout. […]

Posted in: Linux, proxy, Security

Digital Certificate types – faq

January 17, 2015

0

1. What is the difference between machine digital certificate and user certificate? 1.1 Answer Microsoft Windows specifically: ” Local machine certificate store This type of certificate store is local to the computer and is global to all users on the computer. This certificate store is located in the registry under the HKEY_LOCAL_MACHINE root. Current user […]

Palo Alto troubleshooting commands Part 2.

January 14, 2015

0

This is the part 2 of the troubleshooting commands that can help you better understand what and how you can troubleshoot on Palo Alto Next Generation Firewall in cli. The Part 1. can be found here. 1. Capture and logging specific traffic 2. Logging traffic for global counters 3. Updates 3.1 Applications and Threats update […]

Why do we use URL Filtering?

September 24, 2014

0

I try summarize shortly the reasons I collected on google for URL Filtering. I dont find the wikipedia page useful enough for that big topic. On wikipedia it is a part of content-control: http://en.wikipedia.org/wiki/Content-control_software. URL filtering is required to stop the users of an organization from accessing those websites that: – drains their productivity during […]

Custom Monitoring of Palo Alto with Perl and Cacti

August 30, 2014

5

1. The Global Counters The Palo Alto Firewall has released an API, that has some (not all) commands to issue through external programmable interface. This API is based on XML and makes it possible to issue specific commands with that you can check just for example some states of the firewall. Through the API it […]