Patrick Marc's Networks

2024-02-262024-02-27

Check Point – SNMP – SHA1 Support in R81

Check Point has removed SHA1 support from R81. It is possible to get SHA1 back. Applies up to R81.20 clish add snmp usm user myuser security-level authPriv auth-pass-phrase TEMP-AUTH-PHRASE privacy-pass-phrase TEMP-PRIV-PHRASE privacy-protocol AES authentication-protocol SHA512 expert dbset snmp:v3:user:myuser:auth:proto .1.3.6.1.6.3.10.1.1.3 clish set snmp usm user myuser security-level authPriv auth-pass-phrase REAL-AUTH-PHRASE privacy-pass-phrase REAL-PRIV-PHRASE

2024-02-062024-02-06

CheckPoint – Management Data Plane Separation (MDPS)

https://support.checkpoint.com/results/sk/sk138672

2024-01-072024-03-05

Comic Sans

I decided to my own font. https://tosche.net/fonts/comic-code https://github.com/dtinth/comic-mono-font https://github.com/shannpersand/comic-shanns https://www.youtube.com/watch?v=1zvWXT53puQ

2023-11-042023-11-04

Homelab power control form the shell

In the first part we gain the ability to control the power switches in Home Assistant. Now we can utilize the API to control the status of the power switch. For now i use the homeassistant_api in python, to do this. Below you can find an example. Looking ahead, the vision includes functionalities for power …

Continue reading "Homelab power control form the shell"

2023-11-032023-11-04

Controlling the Power in my Homelab

I’ve been using Home Assistant for a while now, and it’s time to explore automation with my Homelab equipment. Home Assistant offers integrations for a wide range of power outlets and allows for the control of PoE ports as well. Usually i power things with ZigBee Power Plugs or over PoE if possible. Raspberry PI …

Continue reading "Controlling the Power in my Homelab"

2023-11-012024-02-06

SSH Configuration

Some Notes about OpenSSH configuration that comes in handy for me. This is have settings applied on Host or Domain base, use jump servers where needed, find the console for a device or use deprecated encryption when needed. Basic Options Host Hostname Port User Apply Settings per domain Host *. Protocol 2 TCPKeepAlive yes ServerAliveInterval …

Continue reading "SSH Configuration"

2023-10-182024-05-31

Fortigate – Policy lookup

Tests is there someone listening netstat -an | findstr 0.0.0.0:80 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING UDP 0.0.0.0:80 *:* Powershell port test Test-NetConnection -ComputerName "10.55.113.101" -Port 80 -InformationLevel "Detailed" Lookup soure interface get router info routing-table details 10.255.2.250 Lookup the policy diagnose firewall iprope lookup 10.255.2.250 30000 10.137.2.104 80 tcp port1 matches policy id: 1039431 The policy …

Continue reading "Fortigate – Policy lookup"

2023-10-122023-11-04

Fortigate – Fortimanager install issues and backward compatiblity

We utilize FortiManager's Provision CLI Templates to establish common configurations on our Firewalls This approach is practical to ensure that these settings are consistently applied during every firewall installation. However, we encounter from time to time the issue with FortiManager, that the CLI Templates lack awareness of the Firewall's specific versions. Unfortunately, the FortiGate CLI …

Continue reading "Fortigate – Fortimanager install issues and backward compatiblity"

2023-10-112023-10-11

Cisco Nexus – Policy Based Routes

So after a while some basic Cisco stuff. Thanks Craig for being the Guy you are. We had to divert traffic some traffic to an dedicated line for Netscope, to an different Internet Line. configure terminal ip access-list pbr-netscope-over-second-provider permit 10.255.86.0 0.0.1.255 3.123.155.214 0.0.0.0 permit 10.255.86.0 0.0.1.255 3.123.215.247 0.0.0.0 permit 10.255.86.0 0.0.1.255 3.123.221.103 0.0.0.0 permit …

Continue reading "Cisco Nexus – Policy Based Routes"

2023-10-092023-11-01

GOLANG

go env -w GOPROXY="direct"set HOME=c:\somewhereset HOMEDRIVE=c: https://github.com/MarkusDeutschmann/ssh2plink/tags

2023-10-072024-03-05

Linux – iptables insert rules

Here’s a guide on managing your iptables rules with line numbers, including adding, appending, deleting, and moving rules: [TOC] List rules with Line numbers To view your current iptables rules with line numbers, use the following commands: iptables -t filter -L INPUT --line-numbers -n iptables -t filter -L OUTPUT --line-numbers -n iptables -t filter -L …

Continue reading "Linux – iptables insert rules"