fw ctl pstat Links fw ctl pstat (checkpoint.com)
Fortinet Lookup Policies
Some times you need to know which firewall policy will allow traffic and does it have be used. I had allready posted Fortigate – Policy lookup a while ago. diagnose firewall iprope lookup <src ip> <src port> <dst ip> <dst port> <protocol> <device> <src_ip> Source IP address. <src_port> Source port. <dst_ip> Destination IP address. <dst_port> Destination …
Cisco Nexus Port-channel Issue
Some strange thing we came across the other day. After the Power outage one of the Port-channels did not came up. VPC consistency showed that the Port-channel has ports assigned on both Nexus Switches there should only be local ports connected. Even the remote port was configured for a different port channel. We ended up …
LAG Groups
Some collection of LAG configurations and status commands seen over time. LinuxManually ConfigurationStatusFreeBSDConfig ExampleStatusPermanentCheckpoint ConfigStatus - Clish Status - Expert ModeFortigateConfigStatusCisco - CatalystsConfig StatusLinks Linux Manually Configuration modprobe bonding mode=802.3ad ifconfig bond1 192.168.1.1 netmask 255.255.255.0 up ifenslave bond1 eth0 ifenslave bond1 eth1 The Permanent way depends on the distribution. Status cat /proc/net/bonding/bond1 Ethernet Channel Bonding …
Fortigate – USB
List USB DevicesList disk content wrong partioningFormat the diskNo fnsysctl List the primary and secondary firmware List USB Devices FG5H0E (root) # execute usb-device list T: Bus=02 Lev=01 Prnt=01 Port=01 Cnt=01 Dev#= 2 Spd=5000 MxCh= 0 D: Ver= 3.00 Cls=00(>ifc ) Sub=00 Prot=00 MxPS= 9 #Cfgs= 1 P: Vendor=0781 ProdID=5581 Rev= 1.00 S: Manufacturer=SanDisk S: …
No more USB Sticks and CD ROMs for Booting
Recently i got a "IODD ST400 USB 3.0" this can present ISO / VHD Images as CD or USB Stick to the Host. Good thing is you can plug in any 2.5 Inch SATA Drive so no space limits. Create the underlying Filesystem on the SSDCreate a FAT32 Partition and FilesystemCreate an exFAT Partition and …
Continue reading "No more USB Sticks and CD ROMs for Booting"
MVS 3.8 – SYSTEMID / NAME / SID
Change the System Name or ID Edit SYS1.PARMLIB(SMFPRM00) and change the SID value.. OPT=2, SYSTEM,JOB AND STEP DATA COLLECTION EXT=YES, USER EXITS ARE TO BE TAKEN JWT=60, MAXIMUM WAIT TIME IS 60 MINS BUF=8192, an 8192 byte buffer is defined SID=TK5R, system id is TK5R, OPI=NO, No OPERATOR INTERVENTION DSV=3, collect data set and volume …
MVS – TK4- / TK5 add users
After a decade of absense from IBMs Big Iron. Getting Hercules with MVS 3.8J up and running with TK4- or TK5 is a no brainer. SYS2.JCLLIB(ADDUSER) //HERC01A JOB (TSO), // 'Add TSO users', // CLASS=A, // MSGCLASS=X, // COND=(0,NE), // MSGLEVEL=(1,1) //********************************************************************* //* //* Name: SYS2.JCLLIB(ADDUSER) //* //* Desc: Add new TSO users //* //* …
Cisco Catalyst 9200 – Software Update
Looks that software maintainance on newer Cisco Catalysts running IOSXE is a bit diffrence. -- TLDR -- copy http://tftpboot.example.pp52.de/cat9k_lite_iosxe.17.09.05.SPA.bin flash: install add file flash:cat9k_lite_iosxe.17.09.05.SPA.bin install activate Copy the Image to the Switch copy http://tftpboot.rd.pp52.de/cat9k_lite_iosxe.17.09.05.SPA.bin flash: Setup the Boot enviroment c9200#conf t Enter configuration commands, one per line. End with CNTL/Z. de052-ne1-rt-cisco01(config)#boot system flash:packages.conf de052-ne1-rt-cisco01(config)#no boot …
Cisco IPv6 Unicast Routing
! ipv6 unicast-routing !
CheckPoint SMS – Upgrade to 81.20
cpmg> installer upgrade** ************************************************************************* **** Checking for new available packages is in progress **** ************************************************************************* **** ************************************************************************* **** Blink Images **** ************************************************************************* **Num Display name Type1 R81.20 Security Management + JHF T41 for Appliances and Open Servers Blink Versioncpmg> installer upgrade 1Existing OS settings and Check Point database are preserved.The machine will automatically reboot after …
Patrick Marc's Networks 