The Packets, Life and everything
freebsd# truncate -s +500G disk0.img https://man.freebsd.org/cgi/man.cgi?query=truncate&sektion=1&manpath=freebsd-release-ports [Expert@cpmg:0]# partedGNU Parted 3.1Using /dev/sdaWelcome to GNU Parted! Type 'help' to view a list of commands.(parted) printError: The backup GPT table is not at the end of the disk, as it should be.This might mean that another operating system believes the disk is smaller.Fix, by moving the backup to …
So letz move the CheckPoint SMS over to Bhyve. Basicly the same as for the FortiManager. guest=linuxloader="grub"uefi_vars="yes"grub_run_partition="1"grub_run_dir="/grub"grub_run0="root (hd0,0)"grub_run0="linux /vmlinuz-3.10.0-957.21.3cpx86_64 ro root=/dev/mapper/vg_splat-lv_current grub_mode=64bit-normal vmalloc=256M panic=15 console=SERIAL crashkernel=0M-35G:280M,35G-250G:768M,250G-:1G intel_idle.max_cstate=0 eagerfpu=on spectre_v2=off nopti 3 quiet"grub_run1="initrd /initrd-3.10.0-957.21.3cpx86_64.img"memory="8192"disk0_type="ahci-hd"disk0_name="disk0.img"network0_switch="VM"network0_type="e1000"network1_switch="VM"network2_switch="VM"network3_switch="VM"network1_type="e1000"network2_type="e1000"network3_type="e1000"cpu="2" One thing we still need to figure out how to boot this with generic entries. Based on https://github.com/churchers/vm-bhyve/blob/master/sample-templates/gentoo.conf this should load the …
Create the Switch Add an uplink port Create the VMVM Configuration Booting the KernelCPU / RAMHarddisksNetworkThe HarddisksConvert the Harddisks from vmdk to rawDisk0Disk 1 Migrating the FortiManager from VMWare ESXi to FreeBSD bhyve. Be aware you doing this on your own without any support from Fortinet. bhyve is not a supported platform. Create the Switch …
Some interestion observation over the past weeks, is that i have seen Linux is selecting only even source ports. So lets have a closer look. An exampleDoes this have any effect? How does LACP work?Does this make a difference? Yes certainly it does make a diffrence. What can we do? Where does this come from? …
Continue reading "Source Port selection on Linux results allways in even ports"
Quick setup a Central Syslog Server https://wiki.freebsd.org/Ports/sysutils/syslog-ng Install Syslog NG pkg install syslog-ng Edit the Configuration /usr/local/etc/syslog-ng.conf @version: 4.4source s_remote { tcp(port(514)); udp(port(514));};destination d_remote { file( "/var/log/remote/${HOST}/${YEAR}_${MONTH}_${DAY}.log" create-dirs(yes) );};log { source(s_remote); destination(d_remote);}; Enables the Service sysrc syslog_ng_enable="YES" Create nessesary directory mkdir /var/log/remotechown root:wheel /var/log/remotechmod g+w /var/log/remote Start the Service service syslog-ng start
src_ip=IP | stats count earliest(_time) AS Earliest, latest(_time) AS Latest by src_ip dest_ip action wanin wanout lanin lanout | eval Earliest=strftime(Earliest,"%Y-%m-%d %H:%M:%S") | eval Latest=strftime(Latest,"%Y-%m-%d %H:%M:%S")
Lately i decided to migrate my VM ESX Servers over to FreeBSD VM bhyve Installing pkg install vm-bhyve bhyve-firmware Configuration Storage zfs create zroot/bhyve zfs set recordsize=64K zroot/bhyve zfs create zroot/bhyve/.templates Add the following lines to /etc/rc.conf: # needed for virtualization support vm_enable=”YES” vm_dir=”zfs:zroot/bhyve” Now, add the following line to the end of /boot/loader.conf: # needed for …
I had again the need to calculate proxy performance. So a few notes on this topic. Time to First Byte Using Curl Jon Fox published an post how to find the time to first byte (TTFB) with curl. curl -w "Connect time: %{time_connect} Time to first byte: %{time_starttransfer} Total time: %{time_total} \n" -o /dev/null [url to …
# dbedit # http://www.cpwiki.net/index.php/Creating_objects_with_dbedit # https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=skI3301 http://msdk.fusiondementes.net/ # creating a new host create host_plain H.FW.angmar2 modify network_objects H.FW.angmar2 ipaddr 10.0.8.8 update network_objects H.FW.angmar2 modify network_objects H.FW.angmar2 comments "Created by fwadmin with dbedit" <http://dl3.checkpoint.com/paid/fd/fdd98fb831a41d62debbdf80cec0f341/CP_R77_CLI_ReferenceGuide.pdf?HashKey=1405256814_16d7518520e77124c7528f55f5372ac0&xtn=.pdf#page=12&zoom=auto,0,841> # creating a new network create network N.Trust.10.0.8.0--21 modify network_objects N.Trust.10.0.8.0--21 ipaddr 10.0.8.0 modify network_objects N.Trust.10.0.8.0--21 netmask 255.255.248.0 update network_objects N.Trust.10.0.8.0--21 # …
To enable SNMPv2 access on the Enterasys C2 Switches you have to issue following commands: If you feel this helps a bit or may be not ? Please leave a comment.
Patrick Marc's Networks 