Guyana Linux Users Group Snort installation July 7, 2009
Posted by daakeung in IT, Linux, Uncategorized.Tags: centos snort, glug, ids, intrusion detection, intrusion preventation, ips, snort
add a comment
Every month now, GLUG meets up to discuss and share ideas. Last GLUG meeting I volunteered to do an installation of SNORT on CENTOS and live demonstration. It was a privilege to contribute to such a growing community in Guyana. Also Mike Harrison of Utiliflex took part to offer us his valuable experience and motivation.
Download: snort_installation_presentation
Quick guide how to Setup a linux dhcp server (Centos 5.2) July 3, 2009
Posted by daakeung in Uncategorized.Tags: centos dhcp server, dhcp server, linux dhcp
2 comments
Quick guide to setup a linux DHCP server on a 10.0.0.0/24 network, you can modify this to work with your own design.
[root@dhcp ~]# yum install dhcp
[root@dhcp ~]cp /usr/share/doc/dhcp-3.0.5/dhcpd.conf.sample /etc/dhcpd.conf
cp: overwrite `/etc/dhcpd.conf’? y
[root@dhcp ~]vi /etc/dhcpd.conf
ddns-update-style interim;
ignore client-updates;
subnet 10.0.0.0 netmask 255.255.255.0 {
# — default gateway
option routers 10.0.0.1;
option subnet-mask 255.255.255.0;
#option nis-domain “akeung.com”;
option domain-name “akeung.com”;
option domain-name-servers 10.0.0.25;
option time-offset -18000; # Eastern Standard Time
# option ntp-servers 192.168.1.1;
# option netbios-name-servers 192.168.1.1;
# — Selects point-to-point node (default is hybrid). Don’t change this unless
# — you understand Netbios very well
# option netbios-node-type 2;
range dynamic-bootp 10.0.0.2 10.0.0.254;
default-lease-time 21600;
max-lease-time 43200;
# we want the nameserver to appear at a fixed address
# host ns {
# next-server marvin.redhat.com;
# hardware ethernet 12:34:56:78:AB:CD;
# fixed-address 207.175.42.254;
# }
}
Then esc, press
:wq
To start the service :
service dhcpd start
To enable it at bootup :
chkconfig dhcpd on
You can locate the leases at :
/var/lib/dhcpd/dhcpd.leases
Also, if a reservation is needed. Simply add the following to /etc/dhcpd.conf
host daakeung {
option host-name “daakeung.akeung.com”;
hardware ethernet 00:00:00:00:00:00; #<—-Replace with Client’s MAC address
fixed-address 10.0.0.7;
}
Seizing all FSMO roles (FLEXIBLE SINGLE MASTER OPERATIONS) June 13, 2009
Posted by daakeung in Uncategorized.Tags: active directory roles, domain naming master, flexible single master operations, fsmo, infrastructure master, pdc, rid master, seize roles
add a comment
If you need to seize roles from a failed server, you can do so by :
Opening run, type cmd then ntdsutil.
ntdsutil: roles
fsmo maintenance: connections
server connections: connect to dc1.akeung.com
Binding to dc1.akeung.com … Connected to dc1.akeung.com using credentials of locally logged on user.
server connections: q
fsmo maintenance: help
Seize domain naming master – Overwrite domain role on connected server
Seize infrastructure master – Overwrite infrastructure role on connected server
Seize PDC – Overwrite PDC role on connected server
Seize RID master – Overwrite RID role on connected server
Seize schema master – Overwrite schema role on connected server
Select operation target – Select sites, servers, domains, roles and naming contexts
Transfer domain naming master – Make connected server the domain naming master
Transfer infrastructure master – Make connected server the infrastructure master
Transfer PDC – Make connected server the PDC
Transfer RID master – Make connected server the RID master
Transfer schema master – Make connected server the schema master
—————————————————————————————————————————
This is the interesting part, to seize the roles to the connected server, issue the commands as follows:
fsmo maintenance: seize schema master
fsmo maintenance: Seize PDC
fsmo maintenance: Seize RID master
fsmo maintenance: Seize domain naming master
fsmo maintenance: Seize infrastructure master
A prompt will confirm the change you will be making to active directory. Please only use role seizure as a last resort when you cannot “TRANFER” a role.
Using CISCO IOS AUX port to access the console port on another device (reverse telnet) May 16, 2009
Posted by daakeung in Uncategorized.Tags: aux console, Cisco, ios, reverse telnet
4 comments
Setup a loopback interface:
int lo 1
ip address 10.1.1.1 255.255.255.255
line aux 0
transport input telnet
speed 9600
To access the aux interface, you telnet to the loopback address on port 2000+line#
for example:
sh line
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise Overruns Int
0 CTY – – – – – 0 0 0/0 –
I 1 TTY – inout – – – 0 0 0/0 –
5 AUX 9600/9600 – inout – – – 0 0 0/0 –
* 6 VTY – – – – – 78 0 0/0 –
7 VTY – – – – – 2 0 0/0 –
8 VTY – – – – – 0 0 0/0 –
9 VTY – – – – – 0 0 0/0 –
10 VTY – – – – – 0 0 0/0 –
telnet 10.1.1.1 2005
***UPDATED***
VMWARE ESX Command Line Guide March 13, 2009
Posted by daakeung in Uncategorized, Virtualization, Vmware ESX.Tags: ESX, esx cli, esx cmd, Vmware
add a comment
I came across this useful list of command line tutorials for various ESX configuration and diagnostic utilities.