Category Archives: FIXES

Allowing tracert in Cisco ASA firewall

I was under impression that allowing icmp in the service policy will enable tracert to work. I was wrong. After scouting around I found below tweaks that will enable tracert to run correctly. 1. Set decrement TTL ASA# configure terminal ASA(config)# policy-map global_policy ASA(config-pmap)# class class-default ASA(config-pmap-c)# set connection decrement-ttl ASA(config-pmap-c)# exit 2. Permit icmp… Read More »

Loading

Force apt-get to use IPv4 instead of IPv6

It seems that Ubuntu/Debian (or perhaps other distros as well) prefer IPv6 DNS records instead of IPv4 when applicable and some times this results in loss of connectivity or similar problems. I ran into this issue today while trying to update an old VPS with apt-get/aptitude. Specifically, security.ubuntu.com was being resolved in an unreachable IPv6… Read More »

Loading

Microsoft VPN PPTP client through Cisco ASA Firewall

Scenario: Using Microsoft Windows built in VPN Client to connect to remote PPTP VPN server through Cisco ASA firewall. Symptom: Error 619 Solution: In ASA Firewall, enter below command. ASA-active#conf t ASA-active(config)#policy-map global_policy ASA-active(config-pmap)# class inspection_default ASA-active(config-pmap-c)#inspect pptp ASA-active(config-pmap-c)#exit ASA-active(config)#access-list $Inbound_Interface_ACL permit gre $source_ip/network any ASA-active(config)#access-list $Inbound_Interface_ACL permit permit tcp $source_ip/network any eq pptp Common… Read More »

Loading

Graylog2: “Could not bind UDP syslog input to address /0.0.0.0:514”

Problem Received error “Could not bind UDP syslog input to address /0.0.0.0:514, Failed to bind to: /0.0.0.0:514, Address already in use” when adding log input using UDP 514 (default syslog port). Explanation In UNIX/LINUX, assigned port 1024 and below require root privilege. Either you run graylog2 as root (not recommended) or follow below workaround. Solution… Read More »

Loading

Cisco Insight Reporter: Sybase DB issue

Problem: Upgraded Insight Reporter from v3.2.0 to 3.4.0, existing traffic database show disconnected Workaround/Solution: 1) To get Sybase JDBC Connector Download JConnect from this link http://www.sybase.com/products/allproductsa-z/softwaredeveloperkit/jconnect Extract and Install it in Insight Server ./setup.bin -i console Go to /opt/sybase/jConnect-7_0/classes and copy conn4.jar and  jTDS3.jar into Cisco Insight directory (/home/user/Insight/apache-tomcat-6.0.20/webapps/insight/WEB-INF/lib/) Restart tomcat /etc/init.d/tomcat-user stop /etc/init.d/tomcat-user start 2) To determine… Read More »

Loading