I have noticed that Sophos 16 seems to have a problem with the way it’s captive portal works. If enabled (firewall policy set to drop), it seems to generate excessive amounts of traffic over my links to the remote branches. Screenshot below shows the traffic when captive portal is enabled, and you can see the…
Proxmox – Remove LVM local-data
I’m a big Proxmox fan, having deployed more than 20 systems both at customers and on my home lab this year without drama. However, the Proxmox LVM structure bugs the heck out of me. I prefer to utilize a single LVM Volume due to some weird glitches with LXC images and small root LVM partitions….
Howto reset Mac OS X User Password
Recently had to reset a password on a macbook. Here’s the TL;DR of it Hold Command + S on startup to get to single user mode. Wait for the root prompt. Enter the following commands. Replace ‘username’ with your account name. e.g Keith # mount -uw / # launchctl load /System/Library/LaunchDaemons/com.apple.opendirectoryd.plist # password username #…
FreePBX – Yealink Phonebook Generator | BASH
After deploying a few PBX’s, you get bored of manually generating the required XML for remote phonebooks on Yealink Handsets. Here’s the first version of the phonebook.xml creation script. (Works on FPBX without any hitches) Observe the notes in the code please. If you’d like a more updated version, please check my github repo here….
Fedora 24 – Mounting EX-fat partitions
Recently, i migrated back to FC after a prolonged use of Windows-8 & Windows-10. After trying to use a Flash drive formatted with the EXFAT filesystem, i discovered FC does not have the necessary drivers installed natively due to some licensing drama with Microsoft. (Typical) Use the following commands to install the Fuse EXFAT handler,…
Bulk add the MS Office 365 subnets to Sophos XG Firewall.
Recently, i needed to white list Office365 from SSL Inspection. However, FQDN matching on a firewall policy was not fixing the issue. I had to resort to adding the subnets manually, but the list of subnets is HUGE and would take hours to add manually. As per usual, i hate to do repetitive work (Normal Engineer behavior…
Zimbra SASL Errors – Users unable to authenticate
If you’re observing errors on your Zimbra servers’ mail-log similar to the one below, and your users are reporting password prompts on ‘sending’ e-mails. Nov 24 17:12:07 areto postfix/smtpd[5528]: warning: SASL authentication failure: cannot connect to saslauthd server: Connection refused Run the following commands under your servers root user. ln -s /var/spool/postfix/var/run/saslauthd /var/run/saslauthd zmcontrol restart…
Sophos XG Firewall – Interfaces that won’t remove!
Occasionally, I’ve found interfaces on the Sophos XG firewall that won’t or can’t be removed. (Sometimes the name shows blank, with nothing in it) DISCLAIMER – THE STEPS BELOW WILL LIKELY VOID YOUR WARRANTY. USE AT YOUR OWN DISCRETION. Here are some steps to quickly remove the ‘faulty’ interface. #1 – SSH into the appliance…
Networking Tips – Blocking Whatsapp On Cisco IOS/Mikrotik ROS
Sometimes you may need to configure filtering of whatsapp at a customer network. Here is a quick & painless method. Mikrotik RouterOS Step #1 – Configure the Address List /ip firewall address-list add address=31.13.64.51 list=whatsapp add address=31.13.65.49 list=whatsapp add address=31.13.66.49 list=whatsapp add address=31.13.67.51 list=whatsapp add address=31.13.68.52 list=whatsapp add address=31.13.69.240 list=whatsapp add address=31.13.70.49 list=whatsapp add address=31.13.71.49…
Kill All Putty Processes – Fast!
If you’re anything like me, you have several dozen Putty sessions open at any given time. At some point, they time-out and become “inactive”. Right clicking the group on the taskbar and trying to close all the sessions fails.. Which normally leaves you to close them one at a time – Tedious! Running the below…
Perl Get Active Queue Size – NetXMS scripts
The following Perl script gets the size of the Postfix Active queue and outputs it. (Used for queue monitoring on our NMS via SSH sensors, but might be useful in your environment) #!/usr/bin/env perl use strict; use warnings; use Symbol; sub count { my ($dir) = @_; my $dh = gensym(); my $c = 0;…
FreePBX – Strip Incoming Country Code
This short & simple dial-plan removes the 3 digit country code from incoming calls and then pushes it to our FPBX IVR. nano /etc/asterisk/extensions_custom.conf After opening the above ^, modify and paste the below into the bottom of the file. Modify your SIP trunk context to reflect the name below. [trunk-in] exten=>_X.,1,Verbose(Incoming call via SIP…
The Art Of Awareness 