Showing posts with label Software. Show all posts
Showing posts with label Software. Show all posts

Saturday, December 8, 2018

Free Network Performance Test tool - Iperf

According to wikipedia Iperf "is a commonly used network testing tool that can create TCP and UDP data streams and measure the throughput of a network that is carrying them. Iperf is a modern tool for network performance measurement written in C++."

This tool has to configure server side and client side to complete a test. It can test from client side to server side , also can test from both direction.

1. Download iperf 3 

The main download site is from https://iperf.fr/iperf-download.php.

2. Start it as server

Running command 'iperf -s' from command line as iperf server (ip address 100.99.136.66).
C:\Tools>iperf -s
------------------------------------------------------------
Server listening on TCP port 5001
TCP window size: 8.00 KByte (default)
------------------------------------------------------------
[188] local 100.99.136.66 port 5001 connected with 100.94.200.14 port 48410
[ ID] Interval       Transfer     Bandwidth
[188]  0.0-10.0 sec   121 MBytes   101 Mbits/sec

Tuesday, November 20, 2018

Windows Command Line Remote Troubleshooting Scripts

Here are some scripts and methods to do remote troubleshooting or running some commands in remote machines. I found they are very useful especially in a enterprise environment if you have your domain admin account.

Prerequisites to run remote commands

  • Install .NET Framework 4.5.2 from \\shareserver\it\$Install\Scripting prerequisites\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
    • or from https://www.microsoft.com/en-ca/download/details.aspx?id=42642
  • Install Windows Management Framework 5.1:
    •  copy the folder \\shareserver\it\$Install\Scripting prerequisite\Windows Management Framework 5.1 to your C drive or download from https://docs.microsoft.com/en-us/powershell/wmf/5.1/install-configure
    •  Open PowerShell as an administrator, navigate into the directory on your C drive, and run the command
      • .\Install-Wmf.ps1
  • Install Microsoft Visual C++ 2017 redistributable from \\shareserver\it\$Install\Scripting prerequisite\VC_redist.x64.exe
    • Download from https://www.microsoft.com/en-us/download/details.aspx?id=52685
  • From a PowerShell prompt running as an administrator, run the command
    • Set-ExecutionPolicy Unrestricted -Force
  • From a PowerShell prompt running as an administrator, run the command
    • winrm quickconfig

Thursday, September 27, 2018

Sysinternals Tool Sysmon Usage Tips and Tricks

Microsoft Sysinternals tool Sysmon is a service and device driver, that once installed on a system, logs indicators that can greatly help track malicious activity in addition to help with general troubleshooting.

Basic Sysmon Usage commands:

Installation:
sysmon -i -accepteula [options]

  • Extracts binaries into %systemroot%
  • Registers event log manifest
  • Enables default configuration
Note: Once this command runs, the Sysmon service is installed, running, and logging to the Event log at Applications and Service Logs > Microsoft > Windows > Sysmon > Operational. 

Viewing and updating configuration:
sysmon -c [options]

  • Updates take effect immediately
  • Options can be basic options or a configuration file

Saturday, August 25, 2018

Smallest Firewall / Router VM in My Vmware ESXi and Workstation

In my home lab virtual environment, VMware ESXi and Workstation used to host most of my testing virtual machines. To get those VMs working together in a multi networks diagram, I always need to have a router or firewall VM. I were using all kinds of virtual routers or firwealls, such as those major vendors, Cisco, CheckPoint, Juniper, Fortinet, Palo Alo, also some small vendors, such as OpenWRT,PFsense, RouterOS, etc. But recent I found one small Virtual image surprised me. The whole virtual image file is only 1.4MB. Memory only needs 16MB.



Friday, August 24, 2018

Python Scripts to Reboot / Manage Cisco Network Devices

Basically I am creating a script to build SSH connection from my Windows 7 network management computer to Cisco devices and have interactive commands with those Cisco devices. This has been done by many other network engineer. With Google's help, I am able to get their experiences to quickly implement it in my home lab environment.

It will be part of network management automation task. If
I can get this working it will prevent me from having to sign on to all of my Cisco devices and issue the command manually. Previously I used  network automation tool InfoBlox NetMRI to achieve that. Now with Python script, it can be achieved almost with a very low cost.

Step 1. Install Python and necessary components on my Windows 7 Machine.
I had a post before to describe the steps how to install Python and related module into windows system.
  • Test with the following command:
    • import paramiko


Python Tips and Tricks


1.  Install Python into Windows

1.1 Download Latest Python 2 file from https://www.python.org/downloads/windows/
1.2 Double Click download python-2.7.15.exe file to install it.

1.3 Run Python
By Default, it will be installed at c:\Python27 folder


C:\Users\John>cd \

C:\>cd Python27

C:\Python27>python --version
Python 2.7.15

C:\Python27>python
Python 2.7.15 (v2.7.15:ca079a3ea3, Apr 30 2018, 16:22:17) [MSC v.1500 32 bit (In
tel)] on win32
Type "help", "copyright", "credits" or "license" for more information.
>>> 

Wednesday, July 25, 2018

Windows Server 2012 Tips and Tricks

Building a lab to test some Windows services , AD, DNS, DHCP, ADCS, etc. in my VMware ESXi 6 environment, to get it running smoothly and reduce some headache, I used following tricks to make my life easier.

Most of work has to be done by Group Policy Management Editor. If you are running in a domain environment, create this setting accordingly in a GPO, otherwise configure the local GPO (gpedit.msc):

Edit Default Group Policy
Launch Group Policy Management

Thursday, February 22, 2018

Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 2. Configuration

Continue with previous post "Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 1. Installation"


Steps: 
After the installation of the Sophos Enterprise Console you had logged off.
Now you logged in and the Console starts automatically.
This Windows will appear:


image001


Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 1. Installation

This post is a detail documentation how to install Sophos Enterprise Console 5.1 in your networks.


Pre-Requirements:
  1. copy the Sophos Enterprise Console to the Server (ProdInstall\Sophos\Sophos Console\sec_5.1.exe)
  2. check if you are able to connect to the infrastructure server like this: http://IP Server:8085
  3. A webpage like this should be shown to you:



Friday, January 26, 2018

Sophos Update Error - Troubleshooting with Palo Alto Firewall

Our Sophos Management Server is installed behind a Palo Alto firewall, which is used to centrally update and manage all internal Sophos clients.


After new installation of this Sophos Management Server, we found update from Internet always failed. The Palo Alto firewall rule was configured to use FQDN addresses as destination. Based on Sophos support site,
"The Sophos Update Manager (SUM) server uses port 80 (http) and requires access to the following eight addresses:
  • dci.sophosupd.com
  • d1.sophosupd.com
  • d2.sophosupd.com
  • d3.sophosupd.com
  • dci.sophosupd.net
  • d1.sophosupd.net
  • d2.sophosupd.net
  • d3.sophosupd.net
"

Sunday, October 29, 2017

Windows 10 Tweaks, Tips and Tricks

Here are some simple but effective windows tweaks, tips and tricks to streamline your windows computing experience. Here are list of my collections (still keep adding):
1. Fix High CPU Usage by Windows Software Protect Service (Sppsvc.exe)
2. Install Telnet Client
3. Check System Uptime
4. Hiding Windows Folder
5. 上帝模式一键开启
6. 历史问题一目了然 (Reliability Monitor)
7. 一Click锁定电脑 Other than WIN+L
8. 常用程序快捷启动
9. 快速以管理员方式启动程序
10. 无盘符分区,保护/访问两相宜
11. 双击任意窗口的最左上角都能关闭该窗口
12. Ctrl+Alt+Del=Ctrl+Shift+Esc to open Task Manager
13. Issue: Microsoft Office can't find your license for this application or Windows is not activated

Wednesday, September 20, 2017

My Top Internet / Network Tools

There are lots of useful sites which helps the troubleshooting procedures. I listed some common tools or websites used by myself. Please let me know what you are using and I would like to try them and add them into this list.
  1. Internet/Network Tools Portal
  2. Internet/Network Speed Test
  3. IP Subnet Calculator
  4. Network Monitoring Related
  5. DNS and Domain Name Related
  6. BGP Toolkit
  7. Your Public IP Address
  8. Online Diagram Drawing Sites
  9. Snmp tools
  10. HTTP and HTTPS Check Tools
  11. Email Diagnostic Tools
  12. Proxy Sites
  13. Remote Support / Online Meeting
  14. Remote (SSH / Telnet) Access Tools
  15. NTP Server
  16. Portable Software
  17. Online PDF Tools
  18. Network Management
    • 18.1 Log Management
    • 18.2 Configuration Management
    • 18.3 System Image Management
    • 18.4 Network Documentation
    • 18.5 Network Access Control
  19. Network Performance Monitoring
  20. Lab Environment
  21. WIFI
  22. Compliance ,Documents Mgmt, Project Mgmt

Thursday, May 18, 2017

Using Artica Squid Open Source Project to Build Powerful and Safe but Simple to Use Proxy

Looking for a pre-installed GUI based Proxy for a while and found Artica recently. The feature is pretty attractive and GUI interface looks cool.

What is Artica?
"Artica Proxy is an appliance that claim to manage Squid-cache proxy with all features that Squid Cache provides.With the Artica Web interface you can monitor, manage get statistics of your proxy service.
Artica Proxy provides ISOs in order to build a full proxy appliance without any technical skills.
Artica Proxy allows to enable Web filtering engine with more than 30.000.000 categorized websites.

Other features included such as reverse-proxy, RDP proxy, VPN, DHCP, DNS..."
Here are some my experience on it.

1. Download Link:
 http://artica-proxy.com/telechargements/

There are ISO, ESXi, Hyperv, Xen versions to download.

Wednesday, December 23, 2015

USB to Serial Cable Driver Issue on Windows 10

I have been using a Usb-to-Serial cable for many years without problem at windows xp and windows 7 system. Just recently upgraded to windows 10 , the cable does not work properly any more.

The Prolific USB-to-Serial Comm Port shows not working properly in the system Device Manager. There is a yellow exclamation mark next to my Prolific USB in device manager as shown below screenshots:
Device Status of the Device's Property shows:

Sunday, December 20, 2015

Firefox Warning Message -"This Connection is Untrusted" Caused by Proxy Server Certificate

I am getting the "This Connection Is Untrusted" message in Firefox for all security website using https even when I go to the Mozilla support page. Any secure site is viewed as an untrusted connection only in Firefox browser, but IE and Chrome are fine. The certificate is not trusted because the issuer certificate is unknown. Here is a screenshot when I tried to browse Google website from Firefox.


Sunday, December 6, 2015

Use Endpoint Sandbox Software to Protect Your Windows Computers

There are so many malicious websites, software and hackers in this cyber world which are aiming to get our information, hijack your computer or browsers. Even after you patched your computer, installed anti-virus/anti-spam/anti-spy/anti-bot/firewall/intrusion protection software on your computer, they will still find a way to come in to ruin your computer by alluring you click a link, open an attachment, or install a valid software.

Is there a way we could keep our computer completely free from those threats? No, the answer of course is no. But we could use some software provides from those security vendors to help us, such as  anti-virus/anti-spam/anti-spy/anti-bot/firewall/intrusion protection software. There is another different technology we could use too to exempt some kinds of those threats away from your computers.

I call it Sandbox Endpoint software. It use Sandbox technology to isolate the threats in certain scope. Once you completed your tasks, just close that scope to delete all trails left by those tasks. Recently i found some of them are pretty helpful and evaluated them in my personal computer:

1. Sandboxie Works at File System Level

This software has been recommended by LifeHacker as #1 Windows Utility:

"Let's admit it: sometimes, even though we know it's wrong, we all open the occasional sketchy program or file. We're not judging, but if you're going to do it, at least use protection. Enter Sandboxie, which lets you run programs independent of the rest of your system. That way they can't infect, access, or otherwise interfere with your Windows installation. It's also great for testing apps you aren't sure of or running multiple instances of an app that won't let you, so it's fun for the whole family."

Latest Sandboxie version is 5.06, which released on 23 October 2015. Now it supports windows 10. This small software installer is only 2.5MB and it is for Windows XP SP 3 through Windows 10 including 32-bit and 64-bit.

Basically Sandboxie runs your programs in an isolated space which prevents them from making permanent changes to other programs and data in your computer.


Saturday, November 28, 2015

Build WordPress Application Under Your Own Domain Name With Openshift and Cloudflare

Note: Openshift online 2.0 has been discontinued for their new launch 3.0. The openshift part in this post is for 2.0 only.

Since 2011, Blogger is used to host my technical blog - http://51sec.blogspot.com. But during last a couple of years, wordpress is getting more and more popular and powerful. This post recorded the steps how to use Redhat Cloud Platform OpenShift with Cloud Service Company CloudFlare to build a wordpress site under your domain.

1. Register your plan at Openshift.com

OpenShift is built on OpenStack and Red Hat's open-source technologies. These include Red Hat
Enterprise Linux (RHEL), JBoss Enterprise Application Platform, and OpenShift Origin. OpenShift offers a choice of programming languages, frameworks, databases and development tools enabling you to get the job done, using the languages and tools you already know and trust. It provides free plan for 1G storage for each of at most three web application in the cloud at this moment.

Thursday, September 24, 2015

VanDyke SecureCRT Settings Tips

VanDyke SecureCRT provides  IT pros a very user-friendly client to manage command line devices and SSH hosts with. Connecting to devices securely is one thing, and there are other products that can achieve this goal, but with SecureCRT, multiple connections can be managed in tabs to allow you to work between sessions without changing windows.

Here are some my favourite settings to customize SecureCRT:
1. Edit Default Settings for terminal Emulation
If you are using Linux devices, please choose Linux as your Terminal. For network / security devices, use VT100 will be best choice.

I also like to set Scrollback Buffer to 5000. If you choose ANSI color, the appearance color will be depending on the color codes sent by the remote application.


Monday, August 17, 2015

Update to Windows 10 Immediately Without Wait Validating from Microsoft

One of my windows 7 laptop is still waiting Microsoft to validate my computer's specific but my another one has been notified and successfully automatically updated. After a couple of  weeks waiting, this weekend I lost patience and decided to find other ways to update my windows 7 to windows 10.

Validating Windows 10 for your PC