Network – 第 2 頁 – 傻瓜的日記

Imperva WAF OS Upgrade

Tim Ng 2024-05-04

先更新gateway, 然後更新mx md5sum SecureSphere-WAF-Update-Q4_23-14.7.0.41_0.46930.x cat SecureSphere-WAF-Update-Q4_23-14.7.0.41_0.46930.x.md5 chmod +x ...

Cisco Network

Cisco ISE NAC Dot1x

Tim Ng 2024-04-24

請先看ISE NAC MAB再看ISE NAC 802.11x https://www.stupid.hk/wordpress/?p=2284 我們首先安裝CA Server 選擇Active Directory Certificate Services 一直Next, 然後除了原有的Certifi...

Cisco Network

Cisco Switch copy ftp

Tim Ng 2024-04-24

ip ftp username ftpuser ip ftp password ftpuserpassword copy flash:xxx.bin ftp://xxx.xxx.xxx.xxx/ copy ftp://xxx.xxx.xxx.xxx/xxx.bin flash: no ip ftp ...

Cisco Network

Cisco ISE Setup

Tim Ng 2024-03-05

Setup

Cisco Network

Cisco ISE NAC MAB

Tim Ng 2023-11-24

由於這個只是實驗性質, 以免測試過程中, Lock了這個Mac address, 影響結果, 可以先停用這個Suppress Repeated Failed Clients Administration -> System -> Settings -> Protocols ->...

Cisco Network

Cisco Switch 使用 Cisco ISE 驗証

Tim Ng 2023-10-27

在Switch上的設定 hostname R6 enable algorithm-type scrypt secret {Password} ip domain name abc.com username admin algorithm-type scrypt secret {Password} l...

F5 BIG-IP SCP Backup 在BIG-IP保留一個月

Tim Ng 2023-08-23

在BIG-IP bash vi /root/backup.sh #!/bin/bash hostname=BIG-IP1 date=`date "+%Y%m%d"` retention=`date --date="1 month ago" +"%Y%m%d"` tmsh save sys ucs "...

F5 BIG-IP Multi Wan & Multi Node Persistence

Tim Ng 2023-08-17

有一個Web Server有3個Public IP, GSLB有一個Pool, 裏面有3個members 所以即是有3個Virtual Server, 3個Virtual Server都是指到同一個Pool, 而這個Pool只有一個member 今天因應需求而需要增加一個Web Server, 當增...

Palo Alto

Paloalto External Dynamic Lists with Certificate Profile and Client Authentication

Tim Ng 2023-08-16

首先當然要建立一個URL, 沒有HTML純文字然後到Certificate裏Import上面網址的root certificate和intermediate certificate然後當然要Import上面domain的certificate 接著建立一個Certificate Profile 我...

Cisco Network

Cisco send logging to syslog server

Tim Ng 2023-06-28

service timestamps log datetime localtime show-timezone clock timezone HK 8 0 logging host xxx.xxx.xxx.xxx transport udp port 514