routeprotocol.com

routeprotocol

  • Connecting Power over Ethernet (PoE) Devices to Wireless

    Typically in the average office there is ethernet ran to every desk providing a direct connection to whatever device may sit on the other end, including power to phones. With most people now working from home due to the pandemic ethernet may not be readily so available, so what can be done to provide a…

  • Poor ISDN call quality – Mitel / MiVoice 3300

    We were tasked to look into a MiVoice Business controller in the UK that had been recently rebuilt from backup. Incoming or outgoing calls to the controller turned any calls into almost inaudiable noise. Checking the ISDN forms against best practice it looked like nothing had been missed or mis-set, it was restored from a…

  • UPNP for firewalled Mikrotiks

    Universal Plug and Plug is a technology that can automatically open a port forward from your home router to a P.C. This is an essential technology for the likes of home games consoles and Xbox Live to get that Open NAT setting; in a business enviroment I’d rather leave it disabled. With firewall filter rules…

  • Daily crashes from Linux Server (Proxmox) and Intel CPUs

    In case this helps anyone pulling their hair out with their server or desktop crashing seemingly randomly (with no output to any /var/log files), give this a try: nano /etc/default/grub Add intel_idle.max_cstate=1 to the GRUB_CMDLINE_LINUX_DEFAULT line like below: GRUB_CMDLINE_LINUX_DEFAULT=”nomodeset consoleblank=0 intel_idle.max_cstate=1″ Save and exit, now run: sudo update-grub Reboot the device and see if it…

  • WireGuard – Minor Bumps in the Road

    A couple of issues I’ve ran into whilst using WireGuard: IPv6 preferred over IPv4 I use DDNS at home on my Mikrotik with the /ip cloud feature, it is a really simple way to map a dynamic IP address to a static host name. I used this static host name for the Wireguard server, unfortuantly…

  • Checking out Wireguard – Server Installation

    Wireguard is the new kid on the block to open source VPN servers, let’s check it out. The code base is described as slim, quick, and easy to set up. I’m starting off with a new and ready to go Ubuntu 20.04 installation, let’s check out Wireguard I start things off with installing the WireGuard…

  • Fighting DNS hijacking with DNS over HTTPs/TLS

    DNS-over-HTTPs/TLS is an up and coming technology that is slowly being adopted by different types of software, Firefox for example is beginning to enable it by default in their browsers with the DNS-over-HTTPs variant. Whilst it has been met with some critism the advantages of finally being able to encrypt DNS queries is a good…

  • Palo Alto EDU-110: Active/Passive High Availability

    Objectives: Describe the differences between active/active and active/passive high availability Define the prerequisites for creating a high availability pair Describe the metrics used to detect a firewall failure Configure the firewall interfaces used for heartbeats and hellos Configure a high availability pair Firewall High Availability Overview High availability is remains a concern for mission critical…

  • Palo Alto EDU 110: Monitoring and Reporting

    Objectives: Create an interactive, graphical summary of the applications with the ACC Export policy rules, objects, and IPS signatures using the configuration table export Create a predefined report to view traffic statistics for the previous day Describe how log files are forwarded to an external source Configure a Server Profile to forward logs to a…

  • Palo Alto EDU-110: Site to Site VPNs

    Objectives: Describe the three basic requirements for creating a VPN Configure the interface, IP addresses, and PSK for the IKE Gateway Configure the DH group, encryption methods, and authentication methods for an IKE Cryptographic profile Configure a static route in the route table for the tunnel Troubleshoot IPSec VPN issues from the responder side of…