This guide will outline the steps to set up VPN Remote Access in FortiGate. Although you do not need FortiClient EMS, VPN with Fortinet is best used with it. Create a loopback interface and Virtual IP Although you can always just use the default outside interface, setting up a loopback and virtual IP (VIP) allows…
FortiGate / ArubaOS-Switch Reference Guide
This is a work in progress. Command ArubaOS-Switch FortiGate Show LLDP Neighbors # show lldp info remote-device # diagnose lldprx neighbor summary Set global remote auth timeout # config system global# set remoteauthtimeout <seconds> Show route table # show ip route # get router info routing-table all
Allow Python to use ICMP raw packets
icmplib uses raw packets to create ICMP packets. While this is not an issue in Windows, ping on Linux always runs as root to create those packets. icmplib will throw the following error if it is unable to get permissions to create raw network packets. Use the following command to allow Python to manipulate raw…
“agent refused operation” when logging in with ssh keys
Copying your SSH keys to a new server is usually accomplished by However, on Fedora 40, I encountered the following error after adding my keys. This appears to just be a permissions issue. To fix this, use the following commands.
Service check / Port check in LibreNMS
LibreNMS offers a way to check for services and/or ports. In this example, we will check for HTTPS/SSL. First we need to enable services. Make sure the value for show_services is “1”. If not, change it to “1”. We then need to install the nagios-plugins. Let’s add a dummy device. In this case, we will…
CrowdStrike: Update to supported kernel to remove RFM status in Ubuntu
To get the full benefits of the falcon-sensor on Ubuntu, you need to use a supported kernel, or your system will be in “RFM”. To remove the RFM status we will need to update to a kernel supported by your version of falcon-sensor. First verify your RFM status. You should see the following in the…
Essential Linux/Mac/WSL Terminal Apps
I usually forget what apps I regularly use on a Linux terminal until I get a command not found error. This will act as my reference to remember to install these apps when using a new terminal. This is a work in progress and apps may be added or removed. Most of these apps are…
Useful Linux CLI Commands
Edit crontab of user where www-data is the user Sync two directories. This overwrites files with the same names Show information about a file or directory Show file or directory size Zip up a directory Unzip file to current directory List files and directories in a zip file Search for “whatever” in file.txt Run last…
Only allow certain IPs to access your Apache2/nginx web server
Use the following statements in your conf files. IPs are in CIDR format. Replace with your IP ranges as needed. Apache 2.4 Apache 2.2 nginx