Skip to content
IP-Life.net

IP-Life.net

The Adventures of a Network Security Engineer

Menu

  • About IP-Life.net
  • BGP Information
  • Contact
  • Technical Resources

Security

Updating Netfilter Firewall Rules

Updating Netfilter Firewall Rules

Very rarely do I have to do any modification of Linux netfilter firewall rules directly using iptables. I generally use Debian based Linux distributions personally e.g. Ubuntu which come preinstalled with UFW as an abstraction layer to iptables but there

David Messenger 13th April 202113th April 2021 Console Switch, Firewall, Iptables, Linux, Raritan, Security No Comments Read more

Palo Alto Useful Links and Commands

Palo Alto Useful Links and Commands

I’m forever needing docs for Palo Alto considering that is now my weapon of choice in the fight against bad actors. The problem is that it can sometimes take me an age to find some of those useful docs that

David Messenger 12th April 20211st August 2022 Firewall, Palo Alto, Security No Comments Read more

Firewall Vendor Transitioning

Introduction This is quite a complex topic and can still be a tricky one to get right but I have developed a proven methodology that can be used very successfully.I have now used this methodology multiple times to transition from

David Messenger 22nd April 202022nd April 2020 Firewall, Juniper, Netscreen, Networking, Palo Alto, Security No Comments Read more

Upgrading SSH Keys

Putting this here as I always forget the commands when I need them! For more details see Gerts blog post linked below. Commands Create new ed25519 keys: Create secure rsa keys: Find all keys on your system: Change or add

David Messenger 17th November 201917th November 2019 Security, SSH No Comments Read more

Palo Alto Dual WAN branch office to Netscreen HQ

Palo Alto Dual WAN branch office to Netscreen HQ

Introduction The deployment of dual WAN firewall solutions in branch offices is often required to ensure fail-over for unreliable WAN connections. This type of deployment however can add additional complexity compared to a full BGP setup using capable routers. With

David Messenger 6th February 2018 Firewall, Networking, Palo Alto No Comments Read more

Juniper Netscreen Track IP

Juniper Netscreen Track IP

Introduction IP tracking can be used to change routing based on the connectivity of configured IP addresses. This can be used with either default routes or static routes which in normal circumstances would not change in the event of reachability

David Messenger 12th June 201712th June 2017 Firewall, Juniper, Netscreen, Netscreen, Networking, Security No Comments Read more

Troubleshooting Juniper Netscreen VPNs Down

Troubleshooting Juniper Netscreen VPNs Down

Introduction If you’ve ever needed to investigate a site to site tunnel which is down at 05:00 in the morning, this might just help you get to the bottom of it a bit faster. Steps to take Access your firewall

David Messenger 6th April 2017 Firewall, Juniper, Netscreen, Security No Comments Read more

Rancid Logins Fail After ASA Upgrade to 9.1(7)

Introduction You’ve performed a code upgrade on an ASA firewall and suddenly Rancid decides it won’t login. You’ll get the message: spawn ssh -c 3des -x -l <user> <device> no matching cipher found: client 3des-cbc server aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr Error: Couldn’t login:

David Messenger 21st February 2017 ASA, Cisco, Firewall, RANCID No Comments Read more

Sophos UTM9 Reverse Proxy Certificates

Sophos UTM9 Reverse Proxy Certificates

Introduction If you’re using the Sophos UTM9 as a reverse proxy then you will need to install certificates on the UTM to present to the client when they are browsing those secured sites. The UTM will need the file in

David Messenger 28th November 2016 Certificates, openssl, Sophos UTM9, SSL No Comments Read more

Sophos UTM9 Reset Used IP count

Sophos UTM9 Reset Used IP count

Introduction If you’ve got the Sophos UTM up and running in your home network then you may come across this issue at some point. I was using UTM9’s web protection for quite some time and suddenly starting receiving emails to

David Messenger 12th October 201618th May 2017 Firewall, Networking, Security, Sophos UTM9 No Comments Read more
  • « Previous

Recent Posts

  • Panorama Push Failure
  • Loading Environment Variables in a Cron Job
  • Advertising a non-existent route to BGP in PAN-OS
  • Network Design – VDSL
  • NetBox Automation
  • Testing DNS Glue Records
  • Updating Netfilter Firewall Rules
  • Palo Alto Useful Links and Commands
  • Useful Python Snippets
  • Find & Replace Multiple Files

Categories

Tags

Active Directory Apache ASA bash Cacti CentOS Certificates chown Cisco CRON Drivers EMC Excel Firewall FreeBSD grep IPv6 Isilon Juniper Linux Microsoft Mint Netscreen Networking Network Monitoring Notepad++ Palo Alto PaloAltoNetworks Python RANCID Regex Routing Secure Copy Security Sophos UTM9 SSH SSL Text editors TFTP Ubuntu vim VMware Windows Wordpress yaml

Archives

  • October 2024
  • March 2022
  • February 2022
  • January 2022
  • November 2021
  • April 2021
  • February 2021
  • August 2020
  • June 2020
  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • June 2019
  • May 2019
  • January 2019
  • December 2018
  • October 2018
  • July 2018
  • May 2018
  • April 2018
  • February 2018
  • January 2018
  • December 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • February 2017
  • January 2017
  • November 2016
  • October 2016
  • September 2016
  • August 2016
  • July 2016
  • June 2016
  • May 2016
  • April 2016
  • March 2016
  • February 2016
  • January 2016
  • December 2015
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015
  • April 2015
  • March 2015
  • February 2015
IPv6 Certification Badge for davidkmessenger

Copyright © 2025 IP-Life.net. All rights reserved. Theme Spacious by ThemeGrill. Powered by: WordPress.