Subscribe:
RSS feed
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
The Firewall backup can be done manually day by day if we have sufficient work force or can be done automatically. In IPSO it is with the GUI and with the CLI very easy, but some question remains even if we read the official doks about it. I play again with CLI, if you need […]
December 29, 2011
I had a dualboot laptop with windows XP and Ubuntu 11.10. I had the following partitions for Ubuntu: partition for “/boot”. This was the boot partition root partition “/” swap partition and an ntfs partition for windows and another one for the data. After installing XP I have lost the partitions table and the windows […]
November 10, 2011
..!OPEnvPN!.. This is madness! It is the simpliest and cheapest ssl vpn solution I have ever seen and I can use it on my ddwrt router. I have documented here what and how I did, just in case I need it later, but shortly it is an openvpn setting on ddwrt router with certificate authentication. […]
November 8, 2011
I wanted to do some tests with only one CMA of our live Provider1 in Lab, that is why I tried to migrate just one piece. I could do a complete mds backup and restore in Lab, but if the provider has a lot of CMAs then it requires in Lab the same Hardware or […]
November 7, 2011
I have not seen such a Server with soo much opened ports like a Provider1. The communications on those ports are encrypted, but they are opened to everybody on the Lan of that server, so it should be strongly adviced to plan for a Checkpoint Firewall Management a separated Management LAN. The processes are documentet […]
November 6, 2011
privoxy I am too tired to write about privoxy so I just copy the description from privoxy.org: “Privoxy is a non-caching web proxy with advanced filtering capabilities for enhancing privacy, modifying web page data and HTTP headers, controlling access, and removing ads and other obnoxious Internet junk. Privoxy has a flexible configuration and can be […]
November 6, 2011
On a small router like Netgear WNR3500L we can install and use many security open source tools. I tested the followings free softwares just for fun: – Snort – Nmap – Tcptraceroute – Hping I do not know What performance degradation I could expect if those are running on the router, but there are some […]
November 5, 2011
1. Netgear has new routers with more CPU and memory Unfortunately the strongest router has at this time no ddwrt support. Model CPU RAM Flash Interface WLAN WNR3500L 480 MHz BCM4718 MIPS® 74K 64 MB 8 MB 5 GigEthernet 802.11 b/g/n 2.4 GHz WNR3500L v2 480 MHz MIPS® 74K 128 MB 128 MB 5 GigEthernet […]
November 5, 2011
By default there is no SWAP on the ddwrt routers, in case you need it you have to setup it on your own, but that is not so complicated, just read the documentations. Source documentation: http://www.dd-wrt.com/wiki/index.php/Linux_SWAP#Requirements Here is what I have done: 1. Create a file for the swap root@mygateway:/# dd if=/dev/zero of=/mnt/myswap.swp bs=1k count=80000 […]
September 20, 2011
In this example I configured a Site-to-Site VPN between 2 Fortigate boxes. It was realised with route based VPN and not with policy based VPN. I route everything through the tunnel here. Topology: ntp server and syslog server 192.168.1.159/24 | 192.168.1.1/24 (internal) myfirewall3 3.3.3.1/24 (wan) | 3.3.3.2 router 2.2.2.2 | 2.2.2.1 (wan) myfirewall1 1.1 Upgrade […]
itsecworks 
February 16, 2012
0