VirtualBox and GNS3 (Smoothwall Virtual Test Labs) GNS3 Test Labs (Smoothwall Labs): Lab Scenarios: (Please add more Lab scenarios that you think could be useful) 1. Cisco IOS Router (7200 series) with NATTing connected to the internet (ACLs configured for specific subnets being used behind the Smoothwall). 2. Smoothwall UTM Master and FailoverContinue reading “Smoothwall GNS3 step by step Lab setup”
Category Archives: Smoothwall
Script to grab all the domain groups for a user on a Linux system with Active Directory connection
#!/bin/sh clear USIDTEMP=”/var/tmp/USIDstr.tmp” GSIDTEMP=”/var/tmp/GSIDstr.tmp” NAMETEMP=”/var/tmp/NAMEstr.tmp” #Reseting String storage veribles >$USIDTEMP >$GSIDTEMP >$NAMETEMP echo “command line to usergroup checker please supply the domain you wish to check” read DOM DOMAIN=$(echo $DOM | tr [a-z] [A-Z]) clear echo “What username do you wish to list groups for?” read USERNAME clear USERSID=$(WINBINDD_SOCKET_DIR=/var/samba/$DOMAIN/ wbinfo –name-to-sid=$USERNAME &> $USIDTEMP) echo “checkContinue reading “Script to grab all the domain groups for a user on a Linux system with Active Directory connection”
Distributing Smoothwall’s (https) mitm self-signed CA certificate to BYOD (mobile) client devices (unmanaged device other than Windows clietns)
If you wish to use ‘decrypt and inspect’ for BYOD devices, the users will need to have the Smoothwall’s HTTPS MiTM CA cert sent out to them so that they can install it on their systems. The best ways to get this CA to the clients is to either: – Email the CA to themContinue reading “Distributing Smoothwall’s (https) mitm self-signed CA certificate to BYOD (mobile) client devices (unmanaged device other than Windows clietns)”
Smoothwall IPSec (Openswan) VPN to Microsoft Azure (Site-to-Site VPN)
Smoothwall can only be set to use Diffie Hellman group 5 in Phase 1 when initiating the VPN, however when offered by the other device the smoothwall can downgrade to DH2. All the other encryption settings can be done on the smoothwall. So when setting up the connection on the smoothwall’s end, it would lookContinue reading “Smoothwall IPSec (Openswan) VPN to Microsoft Azure (Site-to-Site VPN)”
Block a single domain through DNS on windows server 2003/2008/2012
We just got a phishing attempt and I felt really bad that I could not stop people from accessing a domain. Isn’t there a way to override a domain in our DNS just for a while so I can stop people from accessing a domain? Yes, you could create a zone for that domain. NoContinue reading “Block a single domain through DNS on windows server 2003/2008/2012”
Configure DNS forwarders in Windows Server 2012 R2
In the first article in our series on DNS forwarders, we looked at some best practices for DNS forwarding. In this second article I’ll show you how to configure a DNS server with forwarders in Windows Server 2012 R2. As always with Windows, you can change, add, and remove forwarders by using either the Windows GUIContinue reading “Configure DNS forwarders in Windows Server 2012 R2”
Configure a DNS Server on Windows Server 2012 or 2012 R2 to use OpenDNS
First, make sure that your clients are pointing to your Windows DNS server. I know this sounds pretty obvious, but you’d be surprised how many people miss this step. If you’re in an Active Directory (AD) environment, your clients really need to be pointing to DNS that is running on your Domain Controller (DC). IfContinue reading “Configure a DNS Server on Windows Server 2012 or 2012 R2 to use OpenDNS”
Deep Packet inspection (DPI) / Layer 7 application recognition / Network Based application recognition (NBAR)
Deep packet inspection (DPI) is an advanced method of packet filtering that functions at the Application layer of the OSI (Open Systems Interconnection) reference model. The use of DPI makes it possible to find, identify, classify, reroute or block packets with specific data or code payloads that conventional packet filtering, which examines only packet headers,Continue reading “Deep Packet inspection (DPI) / Layer 7 application recognition / Network Based application recognition (NBAR)”
Distribute Certificates to Client Computers by Using Group Policy
Applies To: Windows Server 2012 You can use the following procedure to push down the appropriate Secure Sockets Layer (SSL) certificates (or equivalent certificates that chain to a trusted root) for account federation servers, resource federation servers, and Web servers to each client computer in the account partner forest by using Group Policy. Membership in DomainContinue reading “Distribute Certificates to Client Computers by Using Group Policy”
CBWFQ + LLQ – VoIP/Voice priority traffic – Bandwidth management template
Low-Latency Queuing (Congestion Management and Queuing) Neither WFQ nor CBWFQ can provide guaranteed bandwidth and low-delay guarantee to selected applications such as VoIP; that is because those queuing models have no priority queue. Certain applications such as VoIP have a small end-to-end delay budget and little tolerance to jitter (delay variation among packets of aContinue reading “CBWFQ + LLQ – VoIP/Voice priority traffic – Bandwidth management template”
Network and CyberSecurity Professional 