Edit the/root/.vnc/xstartup file so it reads, xrdb $HOME/.Xresources xsetroot -solid grey x-terminal-emulator -geometry 80×24+10+10 -ls -title “$VNCDESKTOP Desktop” & gnome-session & After doing this kill the vnc processes and restart. Note : You may need to change the last line if you are using KDE.
Below shows you the commands for creating a read-only account on a Cisco IDS. username <username> privilege viewer password <password> copy current-config backup-config
Event Log commands packet display Traffic sniffer show statistics event-store [clear] IDS Event Logs show statistics event-store IDS Event Logs show events [type] IDS Event Logs> System commands show interfaces Show interfaces show configuration Show system config show statistics logger System Logs show statistics sdee-server Show sdee server show statistics analysis-engine Show analysis stats show … Read more
Below is a custom signature that would create an alert on traffic running from any source to any destination with a destination port of 22, on flags push and ack, every 600 seconds. alert tcp any any -> any 22 (msg:”SSH TRAFFIC”; flags:PA; classtype:not-suspicious; threshold: type limit, track by_dst, count 1 , seconds 600 ; … Read more
First of all run the command to enter the default gateway, route add default gw 10.10.10.100 Then to make sure it survives a reboot, edit the file ‘/etc/sysconfig/network‘ and add the line below. Of course changing the IP address to your default gateway – GATEWAY=10.10.10.100
This will show you the steps involved in exporting the settings of a Smart Centre Server for importing into a newly installed Smart Centre server, Download the upgrade_export utility and run it from $FWDIR/bin to export the config to a .tgz Transfer the tgz to another machine Uninstall all ngx packages and reboot Install new … Read more
Below are some of the various files and commands which you may find useful on a Check Point. Smart Centre Server $CPDIR/conf – Contains parts of the CPShared system * cp.license – license of machine * sic_cert.p12 – SIC certificate$FWDIR/lib – .def files which are used when the rulebase is complied into inspection code for … Read more
FW monitor is a great tool for troubleshooting traffic flow issues with your checkpoint. It works by using 4 inspection points, i – Pre Inbound I – Post Inbound o – Pre Outbound O – Post Outbound Examples fw monitor -e “accept dport=6000;” fw monitor -m iO -e ‘accept dport=80;’ fw monitor -e ‘accept dport;’ … Read more
If you have forgotten or lost your Windows Admin password have no fear, just follow the steps below. 1. Log into a limited account and in command prompt run the following. This will copy CMD.exe in place of the login screen, so when XP reboots it will present you with a command prompt window with … Read more
When adding an authentication action to a rule there are 3 types, User Session Client User authentication works by intercepting connects going through the FW-1 and prompting the user for authentication. To do this the firewall has to modify the traffic, so this authentication type can only be used with FTP, HTTP, Telnet and RLOGIN. … Read more