Draco Cyber Security
How to create a cron job to update ipset with ip address from Dynamic Domain
Creating a cron job for IPset involves scheduling a task that updates IPset with a list of IP addresses at specified intervals. In this tutorial I will show you how to update a Update the syntax in bold and italic with your own. Here's a step-by-step guide on how to...
How to configure ipset – Ubuntu 22.04
ipset is a utility in Linux used for managing sets of IP addresses, ports, or other IP-related objects. It is a powerful tool that can be used to create and manage lists of IP addresses and related data efficiently. ipset is particularly useful for implementing...
Cron Job
A cron job is a scheduled task or automated job that runs at specified intervals on Unix-like operating systems. The name "cron" comes from the Greek word "chronos," meaning time, and it is a time-based job scheduler in Unix and Unix-like operating systems. Cron jobs...
Onboard FTDv 7.2.3 (FDM) to Cisco Defense Orchestrator (CDO)
Cisco Defense Orchestrator (CDO)/Cloud Firewall Management Center (FMC) is Cisco Cloud Management Solution for Firewalls. It provide the convenience and ease of use for managing multiple firewall from a single management console. It reduces the complexity and time to...
Configure Site to Site VPN between FTDv 7.3.0 (Using FDM) Running on KVM (Ubuntu 22.04)
Virtual Private Network (VPN) is a network connection that establishes a secure tunnel between remote peers using public ip address to connect 2 or more private networks. Encryption is use to ensure privacy and integrity of the Data. IPsec-based VPN technologies use...
Configure Remote Access (RA) VPN on FTDv 7.3.0 Managed by FDM
Remote Access Virtual Private Network (RA VPN) allows remote office / remote worker to connect back to the Head Office to gain access to resources that are not accessible from the public internet directly. Even thou more and more application are accessible from the...
Cisco FTDv 7.3.0 – Using FDM to configure HA (KVM in Ubuntu)
High Availability (HA) is a Active-Passive (Standby) setup that provide high availability for the LAN users. It is a useful setup for customer who wants to ensure that if one device fails the other device will take over while waiting for the faulty unit to be...
Cisco FTDv 7.3.0 – Configure FTDv using FDM Custom Port forwarding to SSH Client behind FTDv
In this setup I will show you how to configure FTDv using FDM to map custom SSH port 11122 to port 22, to gain access to a SSH Client behind the FTDv firewall. Below is how the setup looks like. 1. Go to Policies and select NAT and then click on ADD button. 2. In this...
Cisco FTDv 7.3 Configure Port Forwarding using FDM (RDP to the Windows 10 Client behind the Firewall)
In this tutorial I will show you how to port forward RDP to the Windows Client behind the firewall. Below is how the setup looks like. For those that are looking at using FMC / Cloud FMC to configure the port forwarding rule, the configuration is slightly different....
Configure FTDv using FMD to Allow Management from Internet (Through Outside Interface) or NAT to Management Interface
https://youtu.be/-bS8-iwhyMc Below is a graphical Diagram on how the setup looks like. To configure the FTD/FTDv to allow management from Internet/Outside interface below are the step by step guide. Configuring Cisco FTD using FDM (Firepower Device Manager) for...
Firewalls
Install ASAv in KVM (Ubuntu 22.04)
In this tutorial I will show you how to do the basic configuration to deploy ASAv in KVM in Ubuntu 22.04. There are a few things to take note. Firstly you need to configure the bridge interfaces in Ubuntu depending on how...
Basic Configuration of FTDv 7.3 (Telnet and FDM) in KVM
Do check out the article on how to deploy FTDv if you have not already done the deployment of FTDv in KVM. http://dracocybersecurity.com/deploy-ftdv-cisco-secure-firewall-threat-defense-virtual-in-kvm-ubuntu/ In this tutorial we will go...
How to configure IPTables to Port Forward RDP (3389) to Windows Machine in KVM (Cloud)
It is useful to learn how to use iptables to enable port forwarding and perform basic Network Address Translation (NAT) and Dynamic Port Address Translation (PAT). Below is a diagram and rules for a basic port forwarding example through the iptables from the internet...
Deploy FTDv Cisco Secure Firewall Threat Defense Virtual in KVM (Ubuntu)
https://youtu.be/nZ_noM6fbME In this tutorial I am going to show you how to deploy FTDv in KVM. The minimum system requirements for deploying FTDv are 4vCPU and 8GB RAM (Default). You will need to have at least 4 interfaces to successfully boot up. Create a shell...
Configure ASAv password and Management IP Address – VM on ESXi
ASAv Version: 9.16 After deploying the ASAv on ESXi. You can start the ASAv VM. There are 2 basic configuration that you need to perform to enable ASDM Access. Set a password Configure a IP address. Set a password...
Deploy ASAv in VMWare ESXi
ASAv Version: 9.16 In this tutorial I will show you how to install ASAv on VMWare ESXi. Steps Download the ASAv software. You need to have a valid Cisco Account or get a trial from a Registered Cisco Partner. You...
Umbrella SIG Tunnel with Fortigate 60F
In this tutorial, I will show you how to configure Cisco Umbrella SIG tunnel to Fortigate 60F in your lab environment. First, I will show you how to configure Cisco Umbrella SIG, followed by Fortigate 60F. I will also show you where you can see the status and the logs...
How to create a VLAN in Fortigate 60F
In this quick tutorial, I am going to show you how to create a VLAN in Fortigate 60F To create a VLAN for the lab go to Network -> Interfaces, then select the interface that the VLAN for the tunnel is going to be and click on Create New. Select Interface. Enter a name...
Configure RSyslog to log iptables log to another log file instead of kern.log/syslog.log
In this tutorial I am going to show you how to customized rsyslog to log iptables log to a different log file. This is useful if you want to look at specific iptables log and also understand how packets flow through the iptables. Create a new config file in the...
Configure Rsyslog to log multiple iptables log prefix to multiple log files – Ubuntu 20.04
In this tutorial I am going to show you how to customized rsyslog to log multiple iptables log (with different prefix) to different log files. This is useful if you want to look at specific iptables log and also understand how packets flow through the iptables. Create...
Tech
How to disable password for sudo command
Disable password for sudo command has its risk and convenience so do assess the risk for your environment before disabling it. I usually disable it in my test/lab environment as the risk is lower there and I do not want to keep entering password for sudo commands. Of...
Uptime Kuma (Docker) – Configuring Apache Reverse Proxy with Let’s Encrypt SSL(Ubuntu 22.04)
This tutorial assumes that you already have uptime kuma installed in a Docker Container and the that Apache Web Server have been installed. First let's install the certbot for apache. sudo apt install certbot python3-certbot-apache You can use the default Apache web...
Windows 10 – Create Template using Sysrep
Creating Windows machine template has become important part of automation and testing. In this tutorial I will cover different aspect of creating a VM template. This similar for VMWare, OracleBox, KVM and most general virtualization technology. Depending on how you...
Install uptime-kuma with Apache as a reverse proxy (Ubuntu 22.04)
Uptime Kuma is an open-source tools that allows you to monitor servers, websites and services that are running in your environment. It is a very useful tools for monitoring your lab environment. You can install Uptime Kuma as a standalone or in a Docker container. For...
Changing Ubuntu 22.04 Hostname through CLI
Here are the steps to change the Ubuntu hostname. To check your current hostname and summary of your machine. hostname hostnamectl There a few ways to change your hostname. sudo hostnamectl set-hostname <new hostname> # Manually changing it in the hostname file...
Deploy FTDv Cisco Secure Firewall Threat Defense Virtual in KVM (Ubuntu)
https://youtu.be/nZ_noM6fbME In this tutorial I am going to show you how to deploy FTDv in KVM. The minimum system requirements for deploying FTDv are 4vCPU and 8GB RAM (Default). You will need to have at least 4 interfaces to successfully boot up. Create a shell...
Bash Prompt in Linux – Change the prompt temporally
OS: Linux You should be familiar with Bash prompt if you are a linux user. Whenever you start a terminal the command line interface of the Linux server you should be using Bash as a default unless you have change the default shell to something else. Bash prompt is set...
Install KVM on Ubuntu 22.04 Server
Install the cpu-checker to check if your system support virtualization. sudo apt install -y cpu-checker Run the command to see if the sys kvm-ok Install all the necessary packages. sudo apt install -y qemu-kvm virt-manager libvirt-daemon-system virtinst...
Ubuntu 22.04 ssh port change additional steps
For those of you who started using Ubuntu 22.04 Jammy Jellyfish and realized the conventional way of editing /etc/ssh/sshd_config does work. Hope this tutorial is useful and nothing else changes. This works as of Feb 19 2023. I am not sure when this started but in...
Basic Network Configuration for Ubuntu 22.04
Let's start with the basic. To check the ip address assign or interface available. ip address Another command to help identify all network interfaces available to your system is lshw sudo lshw -class network ethtool is a program that displays and changes Ethernet card...