Showing posts with label Software. Show all posts
Showing posts with label Software. Show all posts

Thursday, June 27, 2019

VanDyke SecureCRT and Putty Usage Tips and Tricks

VanDyke SecureCRT provides  IT pros a very user-friendly client to manage command line devices and SSH hosts with. Connecting to devices securely is one thing, and there are other products that can achieve this goal, but with SecureCRT, multiple connections can be managed in tabs to allow you to work between sessions without changing windows.

Here are some my favourite settings to customize SecureCRT:

1. Edit Default Settings for terminal Emulation
If you are using Linux devices, please choose Linux as your Terminal. For network / security devices, use VT100 will be best choice.

I also like to set Scrollback Buffer to 5000. If you choose ANSI color, the appearance color will be depending on the color codes sent by the remote application.


Monday, May 13, 2019

Using Group Policy to Deploy Software Packages (MSI, MST, EXE)

Group Policy is a feature of Windows Server using which admins can install software on all user computers. It can be done remotely without manual intervention. GPO is short for Group Policy. It becomes so popular among companies because it can make deployment clear and easy due to the technology of group policy. 


1. Deploy Windows MSI or MST package Using Group Policy Software Installation
YouTube GPO Deployment Video:

Saturday, April 27, 2019

Windows Server Configuration Tips and Tricks

Building a lab to test some Windows services , AD, DNS, DHCP, ADCS, etc. in my VMware ESXi 6 environment, to get it running smoothly and reduce some headache, I used following tricks to make my life easier.

Most of work has to be done by Group Policy Management Editor. If you are running in a domain environment, create this setting accordingly in a GPO, otherwise configure the local GPO (gpedit.msc):

Edit Default Group Policy
Launch Group Policy Management

Sunday, April 7, 2019

Deploy Symantec Endpoint Encryption 11.2.1 and Configure SEE to Encrypt Client Machines

Symantec Endpoint Encryption protects sensitive information and ensures regulatory compliance. It encrypts all files on the hard drive, sector-by-sector, for maximum security. It supports Windows, Mac, tablets, self-encrypting drives, and removable media (USB drives, external hard drives, and DVDs).

I had a chance to install it in my lab environment for a testing. This post is kind of recording all steps including all mistakes I had made, especially in the YouTube video.


1. Pre-Installation System Requirements:

1.1 OS Requirements

  • Microsoft Windows Server 2016 Datacenter, with updates
  • Microsoft Windows Server 2016 Standard, with updates
  • Microsoft Windows Server 2012 R2 Datacenter, with updates
  • Microsoft Windows Server 2012 R2 Standard, with updates
  • Microsoft Windows Server 2008 R2 Enterprise SP1 (Deprecated in SEE 11.2.1 MP1)
  • Microsoft Windows Server 2008 R2 Standard SP1 (Deprecated in SEE 11.2.1 MP1)

Saturday, April 6, 2019

Basic Steps to Deploy and Config Symantec DLP 15.5 with Installation Videos


I were working on Symantec DLP project and had some experience with it. This post is going to review what I have been done and how I managed to install it in my home lab environment. It will not be alike a step by step installation tutorial since Symantec documents have explained details enough. It mostly high level lists all related steps. But I recorded my screen with what I have done and what kind of issues I have met , and how I resolved it. All are in those YouTube videos for future references, which will be helpful if you have same lab project for Symantec DLP products.

The Symantec Data Loss Prevention suite is designed to meets the needs of large enterprises, as well as small and medium-sized enterprises. The product covers a variety of areas, including endpoint data in use, network data in transit, and files and databases at rest. Symantec Data Loss Prevention addresses on-premises, mobile and cloud data and can be deployed on both physical servers -- Windows Server, Red Hat Enterprise Linux and others -- and cloud infrastructures, such as AWS.


1. Download Installation Files from Symantec File Connect

You will need a Serial Number to download all DLP related software from Symantec File Connect web site : https://symantec.flexnetoperations.com/control/symc/registeranonymouslicensetoken


Saturday, March 23, 2019

Windows 10 Tweaks, Tips and Tricks

Here are some simple but effective windows tweaks, tips and tricks to streamline your windows computing experience. Here are list of my collections (still keep adding):
1. Fix High CPU Usage by Windows Software Protect Service (Sppsvc.exe)
2. Install Telnet Client
3. Check System Uptime
4. Hiding Windows Folder
5. 上帝模式一键开启
6. 历史问题一目了然 (Reliability Monitor)
7. 一Click锁定电脑 Other than WIN+L
8. 常用程序快捷启动
9. 快速以管理员方式启动程序
10. 无盘符分区,保护/访问两相宜
11. 双击任意窗口的最左上角都能关闭该窗口
12. Ctrl+Alt+Del=Ctrl+Shift+Esc to open Task Manager
13. Issue: Microsoft Office can't find your license for this application or Windows is not activated
14. Windows 10 Battery Report
15. RDP Port Change to TCP 443
16. Windows 10 Defaultuser0 password Issue

Wednesday, February 20, 2019

Sysinternals Tool Sysmon Usage Tips and Tricks

Microsoft Sysinternals tool Sysmon is a service and device driver, that once installed on a system, logs indicators that can greatly help track malicious activity in addition to help with general troubleshooting.
Sysinternals from Web Browser:

Basic Sysmon Usage commands:

Installation:
sysmon -i -accepteula [options]
  • Extracts binaries into %systemroot%
  • Registers event log manifest
  • Enables default configuration

Thursday, January 10, 2019

Windows Remote Command Line Troubleshooting Tips and Tricks

Here are some scripts and methods to do remote troubleshooting or running some commands in remote machines. I found they are very useful especially in a enterprise environment if you have your domain admin account.
Prerequisites to run remote commands:
  • Install .NET Framework 4.5.2 from \\shareserver\it\$Install\Scripting prerequisites\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
    • or from https://www.microsoft.com/en-ca/download/details.aspx?id=42642
  • Install Windows Management Framework 5.1:
    •  copy the folder \\shareserver\it\$Install\Scripting prerequisite\Windows Management Framework 5.1 to your C drive or download from https://docs.microsoft.com/en-us/powershell/wmf/5.1/install-configure
    •  Open PowerShell as an administrator, navigate into the directory on your C drive, and run the command
      • .\Install-Wmf.ps1
  • Install Microsoft Visual C++ 2017 redistributable from \\shareserver\it\$Install\Scripting prerequisite\VC_redist.x64.exe
    • Download from https://www.microsoft.com/en-us/download/details.aspx?id=52685
  • From a PowerShell prompt running as an administrator, run the command
    • Set-ExecutionPolicy Unrestricted -Force
  • From a PowerShell prompt running as an administrator, run the command
    • winrm quickconfig

Sunday, December 30, 2018

Step by Step Installation Python IDE - PyCharm

Based on Wikipedia, PyCharm is an integrated development environment (IDE) used in computer programming, specifically for the Python language. It is developed by the Czech company JetBrains. It provides code analysis, a graphical debugger, an integrated unit tester, integration with version control systems (VCSes), and supports web development with Django.

PyCharm is cross-platform, with Windows, macOS and Linux versions. The Community Edition is released under the Apache License, and there is also Professional Edition with extra features, released under a proprietary license.

This post and related YouTube video will show you the step by step installation.

1. Download Free Community Version 

From download URL: https://www.jetbrains.com/pycharm/download/#section=windows, we will get a 212MB file : pycharm-community-2018.3.2.exe.



Saturday, December 8, 2018

Free Network Performance Test tool - Iperf

According to wikipedia Iperf "is a commonly used network testing tool that can create TCP and UDP data streams and measure the throughput of a network that is carrying them. Iperf is a modern tool for network performance measurement written in C++."

This tool has to configure server side and client side to complete a test. It can test from client side to server side , also can test from both direction.

1. Download iperf 3 

The main download site is from https://iperf.fr/iperf-download.php.

2. Start it as server

Running command 'iperf -s' from command line as iperf server (ip address 100.99.136.66).
C:\Tools>iperf -s
------------------------------------------------------------
Server listening on TCP port 5001
TCP window size: 8.00 KByte (default)
------------------------------------------------------------
[188] local 100.99.136.66 port 5001 connected with 100.94.200.14 port 48410
[ ID] Interval       Transfer     Bandwidth
[188]  0.0-10.0 sec   121 MBytes   101 Mbits/sec

Saturday, August 25, 2018

Smallest Firewall / Router VM in My Vmware ESXi and Workstation

In my home lab virtual environment, VMware ESXi and Workstation used to host most of my testing virtual machines. To get those VMs working together in a multi networks diagram, I always need to have a router or firewall VM. I were using all kinds of virtual routers or firwealls, such as those major vendors, Cisco, CheckPoint, Juniper, Fortinet, Palo Alo, also some small vendors, such as OpenWRT,PFsense, RouterOS, etc. But recent I found one small Virtual image surprised me. The whole virtual image file is only 1.4MB. Memory only needs 16MB.



Friday, August 24, 2018

Python Scripts Examples - Reboot/Manage/Monitor Network Devices

Basically I am creating a script to build SSH connection from my Windows 7 network management computer to Cisco devices and have interactive commands with those Cisco devices. This has been done by many other network engineer. With Google's help, I am able to get their experiences to quickly implement it in my home lab environment.

It will be part of network management automation task. If
I can get this working it will prevent me from having to sign on to all of my Cisco devices and issue the command manually. Previously I used  network automation tool InfoBlox NetMRI to achieve that. Now with Python script, it can be achieved almost with a very low cost.

Step 1. Install Python and necessary components on my Windows 7 Machine.
I had a post before to describe the steps how to install Python and related module into windows system.
  • Test with the following command:
    • import paramiko


Python Tips and Tricks


1.  Install Python into Windows

1.1 Download Latest Python 2 file from https://www.python.org/downloads/windows/
1.2 Double Click download python-2.7.15.exe file to install it.

1.3 Run Python
By Default, it will be installed at c:\Python27 folder


C:\Users\John>cd \

C:\>cd Python27

C:\Python27>python --version
Python 2.7.15

C:\Python27>python
Python 2.7.15 (v2.7.15:ca079a3ea3, Apr 30 2018, 16:22:17) [MSC v.1500 32 bit (In
tel)] on win32
Type "help", "copyright", "credits" or "license" for more information.
>>> 

Thursday, February 22, 2018

Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 2. Configuration

Continue with previous post "Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 1. Installation"


Steps: 
After the installation of the Sophos Enterprise Console you had logged off.
Now you logged in and the Console starts automatically.
This Windows will appear:


image001


Installation and Configuration of Sophos Enterprise Console 5.1 in your Networks - 1. Installation

This post is a detail documentation how to install Sophos Enterprise Console 5.1 in your networks.


Pre-Requirements:
  1. copy the Sophos Enterprise Console to the Server (ProdInstall\Sophos\Sophos Console\sec_5.1.exe)
  2. check if you are able to connect to the infrastructure server like this: http://IP Server:8085
  3. A webpage like this should be shown to you:



Friday, January 26, 2018

Sophos Update Error - Troubleshooting with Palo Alto Firewall

Our Sophos Management Server is installed behind a Palo Alto firewall, which is used to centrally update and manage all internal Sophos clients.


After new installation of this Sophos Management Server, we found update from Internet always failed. The Palo Alto firewall rule was configured to use FQDN addresses as destination. Based on Sophos support site,
"The Sophos Update Manager (SUM) server uses port 80 (http) and requires access to the following eight addresses:
  • dci.sophosupd.com
  • d1.sophosupd.com
  • d2.sophosupd.com
  • d3.sophosupd.com
  • dci.sophosupd.net
  • d1.sophosupd.net
  • d2.sophosupd.net
  • d3.sophosupd.net
"

Wednesday, September 20, 2017

My Top Internet / Network Tools

There are lots of useful sites which helps the troubleshooting procedures. I listed some common tools or websites used by myself. Please let me know what you are using and I would like to try them and add them into this list.
  1. Internet/Network Tools Portal
  2. Internet/Network Speed Test
  3. IP Subnet Calculator
  4. Network Monitoring Related
  5. DNS and Domain Name Related
  6. BGP Toolkit
  7. Your Public IP Address
  8. Online Diagram Drawing Sites
  9. Snmp tools
  10. HTTP and HTTPS Check Tools
  11. Email Diagnostic Tools
  12. Proxy Sites
  13. Remote Support / Online Meeting
  14. Remote (SSH / Telnet) Access Tools
  15. NTP Server
  16. Portable Software
  17. Online PDF Tools
  18. Network Management
    • 18.1 Log Management
    • 18.2 Configuration Management
    • 18.3 System Image Management
    • 18.4 Network Documentation
    • 18.5 Network Access Control
  19. Network Performance Monitoring
  20. Lab Environment
  21. WIFI
  22. Compliance ,Documents Mgmt, Project Mgmt

Thursday, May 18, 2017

Using Artica Squid Open Source Project to Build Powerful and Safe but Simple to Use Proxy

Looking for a pre-installed GUI based Proxy for a while and found Artica recently. The feature is pretty attractive and GUI interface looks cool.

What is Artica?
"Artica Proxy is an appliance that claim to manage Squid-cache proxy with all features that Squid Cache provides.With the Artica Web interface you can monitor, manage get statistics of your proxy service.
Artica Proxy provides ISOs in order to build a full proxy appliance without any technical skills.
Artica Proxy allows to enable Web filtering engine with more than 30.000.000 categorized websites.

Other features included such as reverse-proxy, RDP proxy, VPN, DHCP, DNS..."
Here are some my experience on it.

1. Download Link:
 http://artica-proxy.com/telechargements/

There are ISO, ESXi, Hyperv, Xen versions to download.

Wednesday, December 23, 2015

USB to Serial Cable Driver Issue on Windows 10

I have been using a Usb-to-Serial cable for many years without problem at windows xp and windows 7 system. Just recently upgraded to windows 10 , the cable does not work properly any more.

The Prolific USB-to-Serial Comm Port shows not working properly in the system Device Manager. There is a yellow exclamation mark next to my Prolific USB in device manager as shown below screenshots:
Device Status of the Device's Property shows:

Sunday, December 20, 2015

Firefox Warning Message -"This Connection is Untrusted" Caused by Proxy Server Certificate

I am getting the "This Connection Is Untrusted" message in Firefox for all security website using https even when I go to the Mozilla support page. Any secure site is viewed as an untrusted connection only in Firefox browser, but IE and Chrome are fine. The certificate is not trusted because the issuer certificate is unknown. Here is a screenshot when I tried to browse Google website from Firefox.