First Download GNS3 and install it on your OS
Then Download below essentials
- Initrd: C:\ASA\asa842-initrd.gz
- Kernel: C:\ASA\asa842-vmlinuz
Then need to create a FLASH file
Friday, December 30, 2016
Configure ASA device in GNS3
This post is about how you can emulate ASA on GNS3
First Download GNS3 and install it on your OS
Then Download below essentials
Then need to create a FLASH file
First Download GNS3 and install it on your OS
Then Download below essentials
Then need to create a FLASH file
Thursday, December 29, 2016
ASA Failover Configuration
For this configuration I'm going to use GNS3 with QEMU emulator to run a ASA in a virtual environment.
First get the files downloaded
GNS3 : https://www.gns3.com/
ASA Images :
ASA842-Intrid and ASA842vmlinuz
I'm not going to describe how to set the ASA in GNS3
For failover configuration
Node 01 :
(config)#failover lan unit primary
(config)#failover lan interface FOLINK Gi0/0
(config)#failover interface ip FOLINK 10.1.1.1 255.255.255.0 standby 10.1.1.2
(config)#failover
Node 02 :
(config)#failover lan unit secondary
(config)#failover lan interface FOLINK Gi0/0
(config)#failover interface ip FOLINK 10.1.1.1 255.255.255.0 standby 10.1.1.2
(config)#failover
Tuesday, October 6, 2015
Configuring DNS Servers in Open Source
Issue : nslookup was working fine, but when pinging to a host, it says ping : Unknown host
Initially, I couldn't get domain names resolved in this specific node.
So, I created the resolv.conf file in /etc / location
Monday, August 18, 2014
Upload Service Request files to User Center
After initiating the SR, you would need to upload files such as, *.cpinfo, configurations, Interface detials, messages files etc, to the Check Point user center for, more investigation.
For that you need to have a Check Point account with the Service Contracts
Below are the steps for a upload from a windows PC
Tuesday, July 22, 2014
How to check System Information in Linux
In Linux, there are several commands to get the system information/memory depending on the kernel. Below are some commands that works with most of the systems.
[Root]# dmidecode -t
Friday, June 27, 2014
Cisco ASA Debug Commands for Log Collection
In Site to Site VPNs, it is necessary to do debugging in order to get some idea about tunnels, which are not coming UP.
If you use debugging, memory and CPU will be highly utilized, so that there's a workaround, which is you can set up a crypto condition only for a peer for debigging. Below are the CLI commands
SETUP (CLI)
===========
If you use debugging, memory and CPU will be highly utilized, so that there's a workaround, which is you can set up a crypto condition only for a peer for debigging. Below are the CLI commands
SETUP (CLI)
===========
Sunday, April 13, 2014
Check Point Interface Traffic Counters
1) Through SMART view monitor
Selecting top interfaces
2)Through command line
[Expert@Gateway]# Sar -n DEV 1 1