ipset is a utility in Linux used for managing sets of IP addresses, ports, or other IP-related objects. It is a powerful tool that can be used to create and manage lists of IP addresses and related data efficiently. ipset is particularly useful for implementing...
Cyber Security
Onboard FTDv 7.2.3 (FDM) to Cisco Defense Orchestrator (CDO)
Cisco Defense Orchestrator (CDO)/Cloud Firewall Management Center (FMC) is Cisco Cloud Management Solution for Firewalls. It provide the convenience and ease of use for managing multiple firewall from a single management console. It reduces the complexity and time to...
Configure Remote Access (RA) VPN on FTDv 7.3.0 Managed by FDM
Remote Access Virtual Private Network (RA VPN) allows remote office / remote worker to connect back to the Head Office to gain access to resources that are not accessible from the public internet directly. Even thou more and more application are accessible from the...
Cisco FTDv 7.3.0 – Using FDM to configure HA (KVM in Ubuntu)
High Availability (HA) is a Active-Passive (Standby) setup that provide high availability for the LAN users. It is a useful setup for customer who wants to ensure that if one device fails the other device will take over while waiting for the faulty unit to be...
Cisco FTDv 7.3.0 – Configure FTDv using FDM Custom Port forwarding to SSH Client behind FTDv
In this setup I will show you how to configure FTDv using FDM to map custom SSH port 11122 to port 22, to gain access to a SSH Client behind the FTDv firewall. Below is how the setup looks like. 1. Go to Policies and select NAT and then click on ADD button. 2. In this...
Cisco FTDv 7.3 Configure Port Forwarding using FDM (RDP to the Windows 10 Client behind the Firewall)
In this tutorial I will show you how to port forward RDP to the Windows Client behind the firewall. Below is how the setup looks like. For those that are looking at using FMC / Cloud FMC to configure the port forwarding rule, the configuration is slightly different....
Configure FTDv using FMD to Allow Management from Internet (Through Outside Interface) or NAT to Management Interface
https://youtu.be/-bS8-iwhyMc Below is a graphical Diagram on how the setup looks like. To configure the FTD/FTDv to allow management from Internet/Outside interface below are the step by step guide. Configuring Cisco FTD using FDM (Firepower Device Manager) for...
Configure FTDv using FMD to Allow Management from Internet to the outside interface
Below is the Interface assignment and IP Addresses of the setup. At the end of this setup we will allow the Windows 10 Client (UMB SIG IP) to Managed the FTDv using FDM from the outside interface for the FTD. 1. Login to the FDM from the inside Windows 10 Client...
Configure ASAv Inside and Outside Interface with Dynamic PAT for internet Access
ASAv Version: 9.16 In this tutorial I will show you how to configure the ASAv Inside and Outside Interface. To allow access to the internet from a workstation in the LAN. We will be using the GigabitEthernet0/0 interface (GE0/0) as the outside interface for connection...
How to activate ASAv SMART Licensing
In this tutorial I will provide the step by step guide on how to activate Cisco ASAv Smart License. A common error that happens for beginners when you are unable to reached the licensing server is that you have not configured DNS name server in the ASAv virtual...
Install ASAv in KVM (Ubuntu 22.04)
In this tutorial I will show you how to do the basic configuration to deploy ASAv in KVM in Ubuntu 22.04. There are a few things to take note. Firstly you need to configure the bridge interfaces in Ubuntu depending on how...
Basic Configuration of FTDv 7.3 (Telnet and FDM) in KVM
Do check out the article on how to deploy FTDv if you have not already done the deployment of FTDv in KVM. https://dracocybersecurity.com/deploy-ftdv-cisco-secure-firewall-threat-defense-virtual-in-kvm-ubuntu/ In this tutorial we will go...
How to configure IPTables to Port Forward RDP (3389) to Windows Machine in KVM (Cloud)
It is useful to learn how to use iptables to enable port forwarding and perform basic Network Address Translation (NAT) and Dynamic Port Address Translation (PAT). Below is a diagram and rules for a basic port forwarding example through the iptables from the internet...
How to disable password for sudo command
Disable password for sudo command has its risk and convenience so do assess the risk for your environment before disabling it. I usually disable it in my test/lab environment as the risk is lower there and I do not want to keep entering password for sudo commands. Of...
Deploy FTDv Cisco Secure Firewall Threat Defense Virtual in KVM (Ubuntu)
https://youtu.be/nZ_noM6fbME In this tutorial I am going to show you how to deploy FTDv in KVM. The minimum system requirements for deploying FTDv are 4vCPU and 8GB RAM (Default). You will need to have at least 4 interfaces to successfully boot up. Create a shell...
Configure ASAv password and Management IP Address – VM on ESXi
ASAv Version: 9.16 After deploying the ASAv on ESXi. You can start the ASAv VM. There are 2 basic configuration that you need to perform to enable ASDM Access. Set a password Configure a IP address. Set a password...
Deploy ASAv in VMWare ESXi
ASAv Version: 9.16 In this tutorial I will show you how to install ASAv on VMWare ESXi. Steps Download the ASAv software. You need to have a valid Cisco Account or get a trial from a Registered Cisco Partner. You...
SSH Tunneling – Remote Port Forwarding – Debian 11
OS: Debian 11 (Bullseye) https://youtu.be/SRAr0eaWZBs You have seen my tutorial of Local Port Forwarding and should have a basic understanding of how SSH Tunneling work. If you have not seen the tutorial you can go to the link below on how to setup local port...
SSH Tunneling -Local Port Forwarding – Debian 11
SSH Tunneling or SSH port forwarding is a way where you can access application leveraging on the SSH ports and tunnel in the event that you do not want to open additional ports on your firewall. In this tutorial I am going to show you how...
Enabling SSH Key Login
OS: DebianSSH: OpenSSH 8.2p1 Enabling SSH Key Login is a great way of protecting your SSH access to the cloud server. In the event that you still prefer password login (For convenience if you access the SSH server from multiple machine and does not want to port your...
Umbrella SIG Tunnel with Fortigate 60F
In this tutorial, I will show you how to configure Cisco Umbrella SIG tunnel to Fortigate 60F in your lab environment. First, I will show you how to configure Cisco Umbrella SIG, followed by Fortigate 60F. I will also show you where you can see the status and the logs...
How to create a VLAN in Fortigate 60F
In this quick tutorial, I am going to show you how to create a VLAN in Fortigate 60F To create a VLAN for the lab go to Network -> Interfaces, then select the interface that the VLAN for the tunnel is going to be and click on Create New. Select Interface. Enter a name...
Configure RSyslog to log iptables log to another log file instead of kern.log/syslog.log
In this tutorial I am going to show you how to customized rsyslog to log iptables log to a different log file. This is useful if you want to look at specific iptables log and also understand how packets flow through the iptables. Create a new config file in the...
Configure Rsyslog to log multiple iptables log prefix to multiple log files – Ubuntu 20.04
In this tutorial I am going to show you how to customized rsyslog to log multiple iptables log (with different prefix) to different log files. This is useful if you want to look at specific iptables log and also understand how packets flow through the iptables. Create...
Iptables Basic Configurations – Ubuntu 20.04
Iptables is a very useful linux firewall for protection and learning of how the ip packets transverse the linux system. Although the newer nftables is starting to gain popularity as well as ufw and firewalld due its simplicity as well as add GUI capabilities it is...
Configure IPTABLES port forwarding to nested Guest VM in KVM (Default NAT virtual bridge) – Ubuntu 20.04
For those using iptables and would like to configure iptables allow http and RDP access to the Guest VMs. Here are the steps to configure and explanation of the rules. 1. Configure the iptables use the nat table to route the mapped port to the guest VM IP address and...
IPTABLES Basics Understanding – Ubuntu 20.04
In this tutorial, I will share my learning and understanding of IPTABLES. There are a few things that will help in your understanding and configuration of: . TABLESTables form the basis of the IPTABLES where chains and rules are created base on the tables that the...
Install pfSense on VMWare ESXi 7.0 U2
This is quick tutorial to setup pfSense. I decide to try out pfSense for routing. Was deciding between VyOS and pfSense and since I have used pfSense before, I have decide to try out pfSense. For those who are looking at using vSphere vCenter. This video does not do...
UFW basics – Debian 11
OS: Debian 11 (Bullseye) In this tutorial I will show you how to quickly install ufw in Debian 11. Do take note that if you do not specific the protocol by default both TCP and UDP protocol will be enabled Install ufw in Debian. sudo apt install ufw First lets allow...
UFW basics – Ubuntu
OS: Ubuntu 20.04.3 LTSUFW: 0.36 UFW (uncomplicated firewall) is the default firewall configuration tool that runs on top of iptables, included in Ubuntu distributions. For those that are looking at using the GUI configuration option. You can check out Gufw. By default...
Nmap Quick Guide
In this tutorial I have list down the list of common Nmap commands that might be useful. Target Specific SwitchExampleDescriptionnmap 192.168.33.200Scan a single IPnmap 192.168.33.200 192.168.33.203Scan specific IPsnmap 192.168.33.1-254nmap 192.168.33.*Scan a...
Nmap – Target Specific – Demo
Demo on Nmap Target Specific Commands. Target Specific SwitchExampleDescriptionnmap 192.168.33.200Scan a single IPnmap 192.168.33.200 192.168.33.203Scan specific IPsnmap 192.168.33.1-254nmap 192.168.33.*Scan a rangenmap www.dracocybersecurity.comScan a domainnmap...
NFTables Beginners Guide
OS: Debian 11 (bullseye)nftables version: 0.9.8 (E.D.S.) For those of you that are familiar with iptables by Netfilter. You might be interested to learn nftables which is available in linux kernels >= 3.13. The good news is it comes with a compatible layer that...