advanxer.com

TACACS+ (tac_plus) with Juniper Netscreen SSG

This post shows how to configure a TACACS+ server for system authentication in Juniper Netscreen SSG with open source tac_plus software. Juniper Netscreen SSG Configuration set auth-server TACACS id 1 set auth-server TACACS server-name 192.168.1.100 set auth-server TACACS backup1 192.168.1.200 (optional) set auth-server TACACS account-type admin set auth-server TACACS type tacacs set auth-server TACACS tacacs… Read More »

TACACS+ (tac_plus) with Juniper SRX

This post shows how to configure a TACACS+ server for system authentication in Juniper SRX with open source tac_plus software. Juniper SRX configuration Connect to SRX and enter configure mode root@SRX-FW% cli {primary:node1} root@SRX-FW> configure warning: Clustering enabled; using private edit warning: uncommitted changes will be discarded on exit Entering configuration mode{primary:node1}[edit] root@SRX-FW# Add a new TACACS+… Read More »

AdBlocking using BIND DNS Server

The purpose of the tutorial is to setup an ads blocking using Bind9 DNS Server. Tutorial is divided into 2 section: Setup Pixelserv and Setup AdBlock script for Bind9. 1. Setup Pixelserv Pixelserv is a super minimal webserver, it’s one and only purpose is serving a 1×1 pixel transparent gif file. We will redirect web… Read More »

Compile and Install BIND 9.9.7 ESV in Debian

This article will guide you step by step to get Bind DNS running. Install Dependencies: root@dns:~# apt-get update root@dns:~# apt-get upgrade root@dns:~# apt-get install build-essential openssl libssl-dev libdb5.1-dev Download Bind: root@dns:~# wget ftp://ftp.isc.org/isc/bind9/9.9.7/bind-9.9.7.tar.gz Unpack Bind: root@dns:~# tar zxvf bind-9.9.7.tar.gz Configure and then compile Bind9 source pre: root@dns:~# fakeroot ./configure –prefix=/usr –mandir=/usr/share/man –infodir=/usr/share/info –sysconfdir=/etc/bind –localstatedir=/var –enable-threads… Read More »

Allowing tracert in Cisco ASA firewall

I was under impression that allowing icmp in the service policy will enable tracert to work. I was wrong. After scouting around I found below tweaks that will enable tracert to run correctly. 1. Set decrement TTL ASA# configure terminal ASA(config)# policy-map global_policy ASA(config-pmap)# class class-default ASA(config-pmap-c)# set connection decrement-ttl ASA(config-pmap-c)# exit 2. Permit icmp… Read More »

[…] https://advanxer.com/2019/12/pfsense-enabling-administration-via-the-wan-interface/ […]

[…] https://advanxer.com/2012/06/installing-iperf-on-ubuntu/ […]

[…] connections, and you have to access the PFSense router via the LAN interface.You can follow this to disable the…

[…] Step 1 The first step is to gain ssh root access to this Linkstation. Refer here. […]

[…] and the Cisco preparatory protocol PAGP are used to aggregate multiple physical links into a logical […]