Why do we use URL Filtering?

September 24, 2014


I try summarize shortly the reasons I collected on google for URL Filtering. I dont find the wikipedia page useful enough for that big topic. On wikipedia it is a part of content-control: http://en.wikipedia.org/wiki/Content-control_software. URL filtering is required to stop the users of an organization from accessing those websites that: – drains their productivity during […]

Custom Monitoring of Palo Alto with Perl and Cacti

August 30, 2014


1. The Global Counters The Palo Alto Firewall has released an API, that has some (not all) commands to issue through external programmable interface. This API is based on XML and makes it possible to issue specific commands with that you can check just for example some states of the firewall. Through the API it […]

Custom Monitoring of Cisco ASA with Lynx and Cacti

May 6, 2014


On packetpushers.net somebody wrote an articel about automatically get the outputs of show command of the cisco asa with lynx. That makes it possible to see if a specific counter for a feature, service or process or just interface counter changes, mainly increases, but you cannot see the size of the increase. In troubleshooting it […]

Query IPSEC VPNs with snmpwalk on Cisco ASA

May 5, 2014


The followings links can be used for the list of Cisco ASA SNMP MIBs. Cisco ASA SNMP MIBs: ftp://ftp.cisco.com/pub/mibs/supportlists/asa/asa-supportlist.html ftp://ftp.cisco.com/pub/mibs/v2/CISCO-IPSEC-FLOW-MONITOR-MIB.my OIDs Information page: http://www.mibdepot.com/cgi-bin/getmib3.cgi?win=mib_av&i=1&n=CISCO-IPSEC-FLOW-MONITOR-MIB&r=hp&f=ipsec-flow.mi2&v=v2&t=tree IKE SNMP Queries example 1. Check my IP in the firewall that terminates vpns. OID OID NAME cikeTunRemoteValue OID Description The value of the local peer identity. If the local […]

Posted in: ASA, Cisco, Linux, Security, VPN

Triathlon Ingolstadt

February 7, 2014


Trainings road for triathlon/10 km running Run for your life! New road: Trainings road for triathlon/40 km biking Bike for your life!

Posted in: Uncategorized

Palo Alto troubleshooting commands

December 10, 2013


Its now a beautiful saturday afternoon outside and I sit here in this boring room and made this post about useful palo alto commands, that can help us in case of a problem arises. There is no wind, I wanted today go to windsurf… With my requirements for any networking layer 3 security device I […]

Lynx for Cisco ASA Management

December 10, 2013


Yes this is madness! A really old school browser can help me in managing cisco asa firewalls! I have just found this link, since I am developing perl scripts to manage cisco asa firewalls. http://packetpushers.net/interacting-with-the-cisco-asa-cli-using-the-https-interface/ Lynx saves about 50 lines of perl code for me and works much more faster as my perl script with […]