thierolf.org - Vom Hirn ins Terminal seit 1998.

Archives for 2021

Elastic-Stack for network engineers (Initial setup)

Written by Stefan on . Posted in Blog. Tags: #elastic-stack  #linux  #software 

Switching from traditional log monitoring to Elastic-Stack is like switching from a horse-drawn carriage to the Falcon 9 rocket. Join the journey!


Cisco SSM On-Prem Upgrade procedure

Written by Stefan on . Posted in Blog. Tags: #cisco  #software  #ssm 

This is another blog post for Cisco SSM On-Prem server where I'm showing the upgrade process.


Cisco ISE admin password lifecycle and reset

Written by Stefan on . Posted in Blog. Tags: #cisco  #ise  #software 

Quick notes about Cisco Identity Services Engine password lifetime and admin password reset.


Cisco SSM On-Prem password recovery procedure

Written by Stefan on . Posted in Blog. Tags: #cisco  #software  #ssm 

For a Cisco Smart Software Manager Test Drive installation I used the older version 8-202010 and I wanted to perform an upgrade to the latest version 8-202108. And of course it is a test drive, I did not save or wrote down the password :). In this document I'm describing how to perform a password recovery for a Cisco SSM On-Prem installation.


Upgrading Netbox to Version 3.0

Written by Stefan on . Modified on . Posted in Blog. Tags: #software  #netbox 

Yesterday, the version v3.0 of Netbox was released. Modernized WebUI and Off-canvas sidebar. My first impression: Version v3.0 is awesome! Note: Version v3.0.1 was released on 2021-09-01.


Gitlab AD-LDAP Integration

Written by Stefan on . Posted in Blog. Tags: #gitlab 

In this blog post I'm showing how to integrate GitLab Server with a Samba-based Active Directory.


Troubleshooting SFP transceivers and Packet captures

Written by Stefan on . Posted in Blog. Tags: #cisco 

In an older blog post I was writing about "Useful Cisco Commands for Troubleshooting cable problems". In this blog post I'm showing an additional, useful command for Fiber Optics troubleshooting and packet capturing on Cisco switches.


SiSyPHuS Win 10 Telemetry blocklist for Pi-Hole

Written by Stefan on . Posted in Blog. Tags: #security 

Based on the latest SiSyPHuS Analysis of BSI I built a small blocklist for Pi-Hole to drop Win 10 Telemetry data collection


Cisco WLC - No secured WebUI after failover switching

Written by Stefan on . Posted in Blog. Tags: #cisco  #wifi  #security 

Cisco WLC 3504 secured WebUI is not working on Secondary Unit in a failover (SSO) setup. When switched back to the Primary Unit, the secured WebUI is working again. Troubleshooting and solution of this strange behavior.


Some security settings for Apache Web Server

Written by Stefan on . Posted in Blog. Tags: #security  #apache 

I'm showing in this blog post some security settings for the Apache web server including disabling of Directory Browsing, Server Signature and Server Token.


Integration of Nextbox UI Topology Viewer in Netbox

Written by Stefan on . Posted in Blog. Tags: #software  #netbox  #cisco 

In this blog post I'm showing how to integrate NextBox UI Plugin into my Netbox installation. NextBox UI Plugin is a topology visualization plugin which is based on Cisco's neXt toolkit.


City of Erbach is ending their partnership with Odenwald gegen rechts

Written by Stefan on . Posted in Blog. Tags: #odenwald 

City of Erbach is ending their partnership with "Odenwald gegen rechts" ("Odenwald against Right")


WiFicalypse 2021

Written by Stefan on . Modified on . Posted in Blog. Tags: #wifi  #security  #wificalypse 

WiFicalypse 2021, FragAttacks. Design and Implementation flaws in WiFi.


Small Python script to quick test DMARCDKIM and SPF records

Written by Stefan on . Modified on . Posted in Blog. Tags: #python  #infosec 

For a given occasion I wrote Small Python script to test a domain for DMARC, DKIM and SPF records. Those records are managed in a DNS Zone and are typically used in Anti-SPAM techniques.


Netbox Active Directory/LDAP Integration

Written by Stefan on . Modified on . Posted in Blog. Tags: #software  #netbox  #django  #active directory  #ldap 

In my newest blog post I show how to setup Netbox with Active Directory as backend for users and groups.


Concept for DNS security with Bind9, Pi-hole and OpenDNS

Written by Stefan on . Modified on . Posted in Blog. Tags: #security  #dns  #pi-hole  #asa 

This is my new concept for DNS security with Bind9, Pi-hole and OpenDNS in my network. Bind9 is used as Enterprise DNS to resolve hostnames and IP addresses in the local area network, Pi-hole and OpenDNS are used for Internet DNS traffic. DNS traffic is passed by Cisco ASA Firewall ACL.


Album: Pi-hole installation on Debian Linux

Written by Stefan on . Posted in albums. Tags: #album  #software  #pi-hole  #security 

Screenshots of Pi-hole installation on Debian Linux


Humble Book Bundle - The Ultimate Python Bookshelf by Packt

Written by Stefan on . Posted in Blog. Tags: #books  #python 

Humble Book Bundle - The Ultimate Python Bookshelf by Packt including Data Analysis, Artificial Intelligence, Machine Learning, Django, Automation


Blocking of Google Chrome FLoC

Written by Stefan on . Posted in Blog. Tags: #security 

Blocking of Google Chrome FLoC (Federated Learning of Cohorts) on my web server


Weeks of the data leaks

Written by Stefan on . Posted in Blog. Tags: #security 

Weeks of the data leaks and my approach after data leaks or breaches


Debian Unattended upgrades

Written by Stefan on . Posted in Blog. Tags: #linux  #debian  #security 

Automatically install security-related upgrades on Debian Linux with unattended-upgrades


Most useful tip from Cisco Live 2021

Written by Stefan on . Posted in Blog. Tags: #ciscolive  #cisco  #wifi  #fun 

Most useful tip from Cisco Live 2021 and it's implementation


Fritzbox rack mounted

Written by Stefan on . Posted in Blog. Tags: #fritzbox  #fun 

Fritzbox rack mounted on a 19" shelf and it's hardware issues: white description on a white box, no LED on ports for activity, height unit issues, Square wood and Velcro to fix ;)


Check in of configuration files to a Gitlab server

Written by Stefan on . Posted in blog. Tags: #python  #netbox  #gitlab  #software 

This is the third part of a series of blog posts about Cisco configuration backup with Netbox and Gitlab. This blog post covers the check in of configuration files to a Gitlab server


Low Level Device functions for backup with Netbox and Gitlab

Written by Stefan on . Modified on . Posted in blog. Tags: #python  #netbox  #gitlab  #software 

This is the second part of a series of blog posts about Cisco configuration backup with Netbox and Gitlab. This blog post covers the low level functions to connect to network devices with pexpect.


Cisco configuration backup with Netbox and Gitlab

Written by Stefan on . Modified on . Posted in blog. Tags: #python  #netbox  #gitlab  #software 

This is the first part of a series of blog posts about Cisco configuration backup with Netbox and Gitlab. It covers the connection to the Netbox API and to get the data of network devices with the pynetbox filter function.


In case of fire

Written by Stefan on . Posted in Blog. Tags: #fun 

In case of fire: Leave the building before posting it on social media


Fritzbox on redundant ASA Firewall

Written by Stefan on . Modified on . Posted in Blog. Tags: #cisco  #asa  #fritzbox 

Setup of two redundant Cisco ASA firewalls on a Fritzbox cable modem with Non-routed transfer network to keep the "PC-MAC"/"exposed host" configuration on Fritzbox during ASA failover switching


Cisco Smart Software Manager Test Drive

Written by Stefan on . Modified on . Posted in Blog. Tags: #cisco  #software  #ssm 

Cisco Smart Software Manager (SSM) On-Prem Test Drive installation, Virtual Machine setup and first steps in the Web UI


Humble Book Bundle Programming Fundamentals

Written by Stefan on . Posted in Blog. Tags: #books  #programming 

Humblebundle.com has a nice books bundle of Programming Fundamentals, available as PDF and as EPUB, DRM-free