Migrating from an old Palo Alto firewall to a new one involves a few more considerations, especially if the models or PAN-OS versions differ. Here’s a comprehensive approach: 1. Preliminary Steps: 2. Backup and Export Configuration: 3. Prepare the New Firewall: 4. Import Configuration to the New Firewall: 5. Post-Import Checks: 6. Additional Recommendations: Lastly, […]
How to Upgrade Old Palo Alto Firewall to New Model Read More »
Disabling Zero Touch Provisioning (ZTP) and setting up a basic configuration on a Palo Alto Networks firewall requires administrative access to the device, either through the command-line interface (CLI) or the web-based interface (WebUI). Disable ZTP using GUI 1.Connect to the firewall’s management IP address using a web browser.2.Login using the default credentials (username: admin,
How to Disable ZTP in Palo Alto and Setup the Basic Configuration Read More »
This post is about fixing Starlink static route issue in FortiGate Firewall Issue The issue comes when configuring Starlink in FortiGate Firewall; no matter how we configure the administrative distance and priority for the StarLink state route, one default configuration overrides the manual static route. Environment StarLink as secondary internet link, it should only kicks
How to Fix Starlink Static Route issue in FortiGate Firewall Read More »
Issue When launching a new instance, it pops error “The requested configuration is currently not supported” and instance lauch failed Possible reasons VPC’s tenancy setting is not Default Instance type is NOT supported in the zone or region, very likely local zone Troubleshooting and the fix In my case I am trying to deploy an
How to fix AWS “The requested configuration is currently not supported” Read More »
This post is about cofiguring Trunk port between Meraki and Cisco Catalyst switch. Similar “cross-vendor” trunk port configuation from another post: Standard Trunk Port Configuration Meraki side Cisco Side LACP Etherchannel Configuration Meraki Side Cisco Side Useful link https://documentation.meraki.com/MS/Port_and_VLAN_Configuration/Switch_Ports
How to Configure Trunk Port between Meraki and Cisco Catalyst Switch Read More »
Introduction To configure a SIP phone directly with Twilio, you need to follow these steps: Note: If you encounter any issues during the configuration process, consult your SIP phone’s documentation or reach out to Twilio support for assistance. Configuration example from Twilio You can follow the below link to get the basic framework ready: https://www.twilio.com/blog/registering-sip-phone-twilio-inbound-outbound
How to Configure SIP Phone Directly with Twilio Read More »
Issue Assessment Windows 10 Client with Domain User/Computer certificate Window Server 2022 with NPS role installed, network policy configured with “Smart Card or Certificate” authentication (802.1x) 2 tiers Root CA setup: 1x Offline Root CA and 1x Subordinate Root CA Windows 10 Client error “Cannot connect to this network”, Event Viewer log as below NPS
How to Fix NPS Issue that Caused by Root CA CRL Read More »
This post is about How to Configure SSH Key on SecureCRT, then connect using generated SSH key Generate the SSH Key pair From the SecureCRT menu, select “Tools” and then “Create Public Key” In the “Create Public Key” dialog box, choose the type of key you want to create. You can choose between RSA and
How to Configure SSH Key on SecureCRT Read More »
This post is about using Yubikey with OpenPGP for SSH Key Authentication. The previous post has talked about how to generate master and subkeys with OpenPGP and copy them into Yubikey The “Authentication” subkey generated there will be used for SSH Key authentication against a Linux box. Preparation on GPG4Win Go to “Kleopatra — Settings — GnuPG System — Private Keys”,
How to Use Yubikey with OpenPGP for SSH Key Authentication Read More »
This post lists a simple example of using regex to match the Radius client IPs in Windows Network Policy Server (NPS) Scenario Multiple NPS Radius clients You only want NPS to execute that particular network policy for specific subnets/IP addresses. Regex in “Client IPv4 Address” Condition First, you need to create a new network policy
How to Use Regex in Network Policy Server – for Radius Client Read More »
