Search Results

First, we need to add a Wireguard interface in the Mikrotik router to auto-generate a key pair. We will copy the private key and import it into the Mullvad device configuration page. Mullvad will use the imported private key to generate a public key. Mullvad w...

In order to push ACL enforcement to a user during authentication the below VSA must be configured and used in Clearpass Radius:Extreme    Extreme-Security-Profile    =    Internet-Only-5M Below is an example script that can be used to provide internet on...

The example configuration below shows how to configure RADIUS for both Management and Port authentication. The server, client-ip and secrets will be unique to your environment. This example also configures and enables RADIUS accounting. configure radius mgm...

The example configuration below shows how to configure RADIUS for both Management and Port authentication. The server, client-ip and secrets will be unique to your environment. This example also configures and enables RADIUS accounting and dynamic authorizatio...

In order to push ACL enforcement to a user during authentication the below VSA must be configured and used in Clearpass. You can substitute the example for any one policy name you have created to enforce that specific policy. Radius:IETF    Filter-Id    =  ...

The configuration below is an example of how I setup a site to site VPN using wireguard. I also included configuration on how to setup GRE and EoIP interfaces on top of the wireguard tunnel. If you add a wireguard interface and don't specify the private key a...

Description Starting in Aruba OS CX 10.10 a new feature called interface persona was introduced. This feature allows you to build interface templates and attach or copy a interfaces to those personas (templates). This is great for configuring multiple interfa...

Description The following configuration is an example of setting up a L2 VPN hub. In order to get this working on a SRX fireweall it requires quite a few protocols stacked together. One thing to note is that this configuration uses pppoe to connect to the int...

Description The following configuration is an example of setting up a L2 VPN spoke. In order to get this working on a SRX fireweall it requires quite a few protocols stacked together. I will also assume you understand how to apply a basic configuration to a S...

Description This example below shows you how to expand an existing filesystem that it managed by Logical Volume Manager (LVM) Examine the existing filesystem This command will to the host to rescan the host adapters after a new disk has been added. echo ...

Description The command below is an example of creating a layer 2 macvlan network in docker. In the example below, the network I am using is 10.128.140.0/24 on interface ens160. You will have to replace the subnet and interface according to your install. Con...

Description On the previous page I showed how to create a layer 2 macvlan network that allows you to deploye containers in the same network as the host itself. This example will show you how to deploye Portainer CE using the layer 2 macvlan network we created...

Below is an example of the default netplan file to add an aditional unnumberd interface. root@docker-app-1:~# cat /etc/netplan/00-installer-config.yaml# This is the network config written by 'subiquity'network:  ethernets:    ens160:      addresses:      - ...

  Configure Mikrotik DHCP Server for Aruba Mobility ADP /ip dhcp-server optionadd code=43 name=ArubaAP-43 value="'10.128.140.10'"add code=60 name=ArubaAP-60 value="'ArubaAP'"

This an example QoS configuration that will prioritize selected traffic in a class as well at rate-limit.   class ipv4 "any"     10 match ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255   exitclass ipv4 "priority-hosts"     10 match ip 10.128.0.100 0.0....

This is an example configuration showing how to apply prioritization and rate limiting on a interface level. class ip any    10 match any any anyclass ip priority-hosts    10 match any 10.128.0.120 any    20 match any any 10.128.0.120policy elan-in    10 ...

Creating a Private Key and Certificate Signing Request (CSR) Use the following OpenSSL command to generate a Private Key and a Certificate Signing Request for signing a public certificate against a public Certificate Authority openssl req -newkey rsa:2048 ...