Draco Cyber Security
How to create a cron job to update ipset with ip address from Dynamic Domain
Creating a cron job for IPset involves scheduling a task that updates IPset with a list of IP addresses at specified intervals. In this tutorial I will show you how to update a Update the syntax in bold and italic with your own. Here's a step-by-step guide on how to...
How to configure ipset – Ubuntu 22.04
ipset is a utility in Linux used for managing sets of IP addresses, ports, or other IP-related objects. It is a powerful tool that can be used to create and manage lists of IP addresses and related data efficiently. ipset is particularly useful for implementing...
Cron Job
A cron job is a scheduled task or automated job that runs at specified intervals on Unix-like operating systems. The name "cron" comes from the Greek word "chronos," meaning time, and it is a time-based job scheduler in Unix and Unix-like operating systems. Cron jobs...
Onboard FTDv 7.2.3 (FDM) to Cisco Defense Orchestrator (CDO)
Cisco Defense Orchestrator (CDO)/Cloud Firewall Management Center (FMC) is Cisco Cloud Management Solution for Firewalls. It provide the convenience and ease of use for managing multiple firewall from a single management console. It reduces the complexity and time to...
Configure Site to Site VPN between FTDv 7.3.0 (Using FDM) Running on KVM (Ubuntu 22.04)
Virtual Private Network (VPN) is a network connection that establishes a secure tunnel between remote peers using public ip address to connect 2 or more private networks. Encryption is use to ensure privacy and integrity of the Data. IPsec-based VPN technologies use...
Configure Remote Access (RA) VPN on FTDv 7.3.0 Managed by FDM
Remote Access Virtual Private Network (RA VPN) allows remote office / remote worker to connect back to the Head Office to gain access to resources that are not accessible from the public internet directly. Even thou more and more application are accessible from the...
Cisco FTDv 7.3.0 – Using FDM to configure HA (KVM in Ubuntu)
High Availability (HA) is a Active-Passive (Standby) setup that provide high availability for the LAN users. It is a useful setup for customer who wants to ensure that if one device fails the other device will take over while waiting for the faulty unit to be...
Cisco FTDv 7.3.0 – Configure FTDv using FDM Custom Port forwarding to SSH Client behind FTDv
In this setup I will show you how to configure FTDv using FDM to map custom SSH port 11122 to port 22, to gain access to a SSH Client behind the FTDv firewall. Below is how the setup looks like. 1. Go to Policies and select NAT and then click on ADD button. 2. In this...
Cisco FTDv 7.3 Configure Port Forwarding using FDM (RDP to the Windows 10 Client behind the Firewall)
In this tutorial I will show you how to port forward RDP to the Windows Client behind the firewall. Below is how the setup looks like. For those that are looking at using FMC / Cloud FMC to configure the port forwarding rule, the configuration is slightly different....
Configure FTDv using FMD to Allow Management from Internet (Through Outside Interface) or NAT to Management Interface
https://youtu.be/-bS8-iwhyMc Below is a graphical Diagram on how the setup looks like. To configure the FTD/FTDv to allow management from Internet/Outside interface below are the step by step guide. Configuring Cisco FTD using FDM (Firepower Device Manager) for...
Firewalls
How to configure ipset – Ubuntu 22.04
ipset is a utility in Linux used for managing sets of IP addresses, ports, or other IP-related objects. It is a powerful tool that can be used to create and manage lists of IP addresses and related data efficiently. ipset is particularly useful for implementing...
Onboard FTDv 7.2.3 (FDM) to Cisco Defense Orchestrator (CDO)
Cisco Defense Orchestrator (CDO)/Cloud Firewall Management Center (FMC) is Cisco Cloud Management Solution for Firewalls. It provide the convenience and ease of use for managing multiple firewall from a single management console. It reduces the complexity and time to...
Configure Remote Access (RA) VPN on FTDv 7.3.0 Managed by FDM
Remote Access Virtual Private Network (RA VPN) allows remote office / remote worker to connect back to the Head Office to gain access to resources that are not accessible from the public internet directly. Even thou more and more application are accessible from the...
Cisco FTDv 7.3.0 – Using FDM to configure HA (KVM in Ubuntu)
High Availability (HA) is a Active-Passive (Standby) setup that provide high availability for the LAN users. It is a useful setup for customer who wants to ensure that if one device fails the other device will take over while waiting for the faulty unit to be...
Cisco FTDv 7.3.0 – Configure FTDv using FDM Custom Port forwarding to SSH Client behind FTDv
In this setup I will show you how to configure FTDv using FDM to map custom SSH port 11122 to port 22, to gain access to a SSH Client behind the FTDv firewall. Below is how the setup looks like. 1. Go to Policies and select NAT and then click on ADD button. 2. In this...
Cisco FTDv 7.3 Configure Port Forwarding using FDM (RDP to the Windows 10 Client behind the Firewall)
In this tutorial I will show you how to port forward RDP to the Windows Client behind the firewall. Below is how the setup looks like. For those that are looking at using FMC / Cloud FMC to configure the port forwarding rule, the configuration is slightly different....
Configure FTDv using FMD to Allow Management from Internet (Through Outside Interface) or NAT to Management Interface
https://youtu.be/-bS8-iwhyMc Below is a graphical Diagram on how the setup looks like. To configure the FTD/FTDv to allow management from Internet/Outside interface below are the step by step guide. Configuring Cisco FTD using FDM (Firepower Device Manager) for...
Configure FTDv using FMD to Allow Management from Internet to the outside interface
Below is the Interface assignment and IP Addresses of the setup. At the end of this setup we will allow the Windows 10 Client (UMB SIG IP) to Managed the FTDv using FDM from the outside interface for the FTD. 1. Login to the FDM from the inside Windows 10 Client...
Configure ASAv Inside and Outside Interface with Dynamic PAT for internet Access
ASAv Version: 9.16 In this tutorial I will show you how to configure the ASAv Inside and Outside Interface. To allow access to the internet from a workstation in the LAN. We will be using the GigabitEthernet0/0 interface (GE0/0) as the outside interface for connection...
How to activate ASAv SMART Licensing
In this tutorial I will provide the step by step guide on how to activate Cisco ASAv Smart License. A common error that happens for beginners when you are unable to reached the licensing server is that you have not configured DNS name server in the ASAv virtual...
Tech
Onboard FTDv 7.2.3 (FDM) to Cisco Defense Orchestrator (CDO)
Cisco Defense Orchestrator (CDO)/Cloud Firewall Management Center (FMC) is Cisco Cloud Management Solution for Firewalls. It provide the convenience and ease of use for managing multiple firewall from a single management console. It reduces the complexity and time to...
Configure Remote Access (RA) VPN on FTDv 7.3.0 Managed by FDM
Remote Access Virtual Private Network (RA VPN) allows remote office / remote worker to connect back to the Head Office to gain access to resources that are not accessible from the public internet directly. Even thou more and more application are accessible from the...
Cisco FTDv 7.3.0 – Using FDM to configure HA (KVM in Ubuntu)
High Availability (HA) is a Active-Passive (Standby) setup that provide high availability for the LAN users. It is a useful setup for customer who wants to ensure that if one device fails the other device will take over while waiting for the faulty unit to be...
Cisco FTDv 7.3.0 – Configure FTDv using FDM Custom Port forwarding to SSH Client behind FTDv
In this setup I will show you how to configure FTDv using FDM to map custom SSH port 11122 to port 22, to gain access to a SSH Client behind the FTDv firewall. Below is how the setup looks like. 1. Go to Policies and select NAT and then click on ADD button. 2. In this...
Cisco FTDv 7.3 Configure Port Forwarding using FDM (RDP to the Windows 10 Client behind the Firewall)
In this tutorial I will show you how to port forward RDP to the Windows Client behind the firewall. Below is how the setup looks like. For those that are looking at using FMC / Cloud FMC to configure the port forwarding rule, the configuration is slightly different....
Configure FTDv using FMD to Allow Management from Internet (Through Outside Interface) or NAT to Management Interface
https://youtu.be/-bS8-iwhyMc Below is a graphical Diagram on how the setup looks like. To configure the FTD/FTDv to allow management from Internet/Outside interface below are the step by step guide. Configuring Cisco FTD using FDM (Firepower Device Manager) for...
Configure FTDv using FMD to Allow Management from Internet to the outside interface
Below is the Interface assignment and IP Addresses of the setup. At the end of this setup we will allow the Windows 10 Client (UMB SIG IP) to Managed the FTDv using FDM from the outside interface for the FTD. 1. Login to the FDM from the inside Windows 10 Client...
Install Windows 11 on KVM (Ubuntu 22.04) with software TPM 2.0
To install Windows 11 on KVM you want to make sure that you have swtmp install and in your KVM environment. Like its name suggest is a software that emulates TPM 2.0 in your virtual environment. You can do a quick check by running the following command. swtpm...
Basic Configuration of FTDv 7.3 (Telnet and FDM) in KVM
Do check out the article on how to deploy FTDv if you have not already done the deployment of FTDv in KVM. https://dracocybersecurity.com/deploy-ftdv-cisco-secure-firewall-threat-defense-virtual-in-kvm-ubuntu/ In this tutorial we will go...
How to configure IPTables to Port Forward RDP (3389) to Windows Machine in KVM (Cloud)
It is useful to learn how to use iptables to enable port forwarding and perform basic Network Address Translation (NAT) and Dynamic Port Address Translation (PAT). Below is a diagram and rules for a basic port forwarding example through the iptables from the internet...