Jump to content

shadowmac

Members
  • Content Count

    477
  • Joined

  • Last visited

  • Days Won

    1

Everything posted by shadowmac

  1. shadowmac

    Cloud Storage Issues

    So many choices and yes I have tried them all and in many cases at the same time since certain applications only offer support for one or the other or a couple but never all of them. In my experience these last few years, dropbox is the clear winner when you want to talk about compatibility. If an app supports any cloud type of storage then Dropbox is always there but (always a but) its also the most expensive of all cloud storage services. I was paying $199/year for 2TB which they just upgraded to 3TB. They really don't offer a wide selection of choices. I use to use Google Drive a lot but they have been phasing Google Drive out for some BS app called Drive Stream which is part of the Google Suite and that is great if you are a business but if you just want to pay for cloud storage then Google probably won't be your choice anymore. I think its a HUGE mistake on Google's part to decomm Google Drive. It was a direct competitor to Dropbox and the fight was always very close on who won. Right now, Dropbox is still the winner since Google has removed itself and now offers this tool called backup and sync and its complete garbage. Another one bites the dust. Through the years I have become more and more an Apple fan and then Steve Jobs passes away and I can see and feel how Apple has lost a lot of its drive for innovation and being the leader of new cool stuff. iCloud Drive could be cooler and I expected it to be cooler but its slower than any of the other cloud services and its not always available as an option to store stuff or pull files from. They are also one of the more expensive cloud storage choices. Since I have an Amazon account and I thought because AWS (Amazon Web Services) is so huge and pretty much dominates the cloud services arena I thought Amazon Drive would be the coolest but its the least accepted cloud storage solution of any of them. I haven't found more than a couple applications that recoginizes Amazon Drive. It could grow but I really don't think Amazon cares if it grows or not. It feels as though Amazon threw it out there for people to use if they want but without any bells or whistles or compatibility. Now anyone who knows me knows I have a strong dislike for Microsoft. I feel they just buy other peoples inventions, puts the Microsoft sticker on it and changes the code ever so slightly to make it worse than it was. With the release of Office 365 (where if you want to use office products anymore you have to continue to pay a subscription for it) they are slowly getting away from you having the ability to just buy office products which I hate that I have to keep paying for something I already bought. Something nice with Office 365 is they give you 1TB of storage on OneDrive. I was very reluctant to use OneDrive (stupid Microsoft) but since I already paid for it with my Office 365 subscription and its accepted on just about every application I have tried and it works really well with any office apps on my iPhone or iPad, it just makes sense. Now they don't allow you to expand your storage like the others. You are locked to 1TB of drive and thats it (probably because there stupid Windows servers would roll over). So there you have it.. migrating from Dropbox and Google Drive to OneDrive and keeping some on my iCloud Drive. This saves me some money. Also I do utilize my QNAP NAS as a backup of all my old archive stuff that I don't need in the cloud.
  2. I have a need to create some PFX files from our cert and key. Does anyone know how to do this?
  3. This is more like notes on how to use Wireshark so probably won't find a very in depth discussion but hopefully enough to get you going. You should have wireshark already installed. Capturing Packets On the menu, click Capture - Options Click the name of an interface under Interface List to start capturing packets on that interface. For example, if you want to capture traffic on the wireless network, click your wireless interface. As soon as you click Start, you’ll see the packets start to appear in real time. Wireshark captures each packet sent to or from your system. If you’re capturing on a wireless interface and have promiscuous mode enabled in your capture options, you’ll also see other the other packets on the network.
  4. NAME HISTORY LESSON Trying to find what feels good. We use to be called hosang I.T. but I didn't like sharing my name because of all the spam that goes with it. Before my divorce we were called MyWiseGuys but the divorce caused a lot of bad blood and a pizza company in Flint, Wise Guys Pizza stole my registered logo. So in thinking of a new name for the tech side of the house that I could reflect my kids which I love more than anything, so I came up with ZAh Systems which stands for Zackary Alex Hosang (ZAH). In the end we are just using MyWiseGuys for everything since its truly a hobby site and not a business. It's easier to maintain one website versus several plus MyWiseGuys is a LLC so some protection is in place. What are we about? Truthfully I love helping people figure things out on there own. I don't mind receiving donations of a few dollars if you find that the information I provided just saved your job or a lot of time. The money really goes towards keeping the website up and buying me a case of good beer. I also throw some money at the site to make it a bit nicer. As you can see, I don't get much money since the site is in dire need of a face lift. Also the website is used for reference. Many of us that work on tech stuff all day can't remember everything but if we posted it on a site such as this it would help us in the future when we need to do that task or similar task again. Of course in the meantime it helps anyone else doing the same thing. Of course this relies on more than just myself to contribute to the site. It appears mostly I get spammers and hackers on the site trying to advertise crap for sale but for the few of you that register to contribute I appreciate it and so do others that rely on the site to help them do there job. Currently the information is free but there may eventually be subscriptions for a dirt cheap price for training material and tests. Not positive I'll get to this but its a possibility.
  5. A great reference is found on the F5 site, check out Chapter 02 https://thezah.com/forums/topic/7490-where-can-i-find-help-for-irules/ Here is an example of a redirect from http to https when HTTP_REQUEST { HTTP::respond 301 Location https://[getfield [HTTP::host] ":" 1][HTTP::uri] } Here is an example of a redirected website when HTTP_REQUEST { if { [string tolower [HTTP::host]] equals "www.thezah.com" } { HTTP::respond 301 Location "https://sales.thezah.com" } }
  6. I need to update the password for a user that is used in possibly multiple health monitors across multiple partitions. Anyway to search all monitors across multiple partitions for a user in health monitors?
  7. I need to update the password for a user that is used in possibly multiple health monitors across multiple partitions. Anyway to search all monitors across multiple partitions for a user in health monitors?
  8. This is what I did... On the Watch: Go to General --> Settings --> Reset --> Erase All Content and Settings Let the Watch reset back to basically the state that it came in when it first arrived. Pair the Watch again to the iPhone: Open the iPhone app and pair it to my Apple Watch. Restored my Watch from the back-up. Put my Watch on the charger. Opened the Apple Watch app and applied the update from my iPhone.
  9. Worked on resolving a persistence issue to a few Citrix gateways that are load balanced by a BIG-IP® 6400. I discovered that it is possible to use both a default persistence profile and to specify persistence in an iRule, all on the same Virtual Server. Bearing in mind that I have the “Default Persistence Profile” set to use a profile other than cookie, here is the iRule that I wrote: when HTTP_REQUEST { set header_uri [string tolower [HTTP::uri]] if { [matchclass $header_uri starts_with $::aaa_uri] } { pool aaa_Pool } elseif { [matchclass $header_uri starts_with $::bbb_uri] } { HTTP::redirect "https://bbb.companyname.com/bbb/main/Main.jsp" } elseif { [matchclass $header_uri starts_with $::CITRIX_uri] } { persist cookie insert "CITRIX_Cookie" "0d 03:00:00" pool CITRIX_Pool } else { pool ccc_Pool } } The command persist cookie insert “CITRIX_Cookie” “0d 03:00:00″, tells the BIG-IP® to create a cookie named CITRIX_Cookie, give it a duration of 3 hours and insert it into the header of traffic going to the CITRIX_Pool. If traffic going to that pool already has the CITRIX_Cookie in its header then persist the connection to the same pool member that it used last time. Traffic going to the rest of the pools will use whatever persistence method is set in the “Default Persistence Profile”. It is also possible to disable persistence to pools by using the persist nonecommand.
  10. Here is the quick and dirty way to show all the Virtual Servers that are using a certain pool tmsh list ltm virtual /Production/* |egrep 'ltm|pool' | grep -B1 'pool.blazer.int.thezah.com.80' ltm virtual /Production/vip.ci.blazer.int.thezah.com.http { pool /Production/pool.blazer.int.thezah.com.80 ltm virtual /Production/vip.ci.blazer.int.thezah.com.https { pool /Production/pool.blazer.int.thezah.com.80
  11. Here is the quick and dirty way to show all the Virtual Servers that are using a certain pool tmsh list ltm virtual /Production/* |egrep 'ltm|pool' | grep -B1 'pool.blazer.int.thezah.com.80' ltm virtual /Production/vip.ci.blazer.int.thezah.com.http { pool /Production/pool.blazer.int.thezah.com.80 ltm virtual /Production/vip.ci.blazer.int.thezah.com.https { pool /Production/pool.blazer.int.thezah.com.80
  12. F5 LTM can log failure messages for a specific pool member by setting the big process logging level to debug. When set to debug, the bigd process will log error messages for specific pool members to the /var/log/bigdlog file Steps are as follows from the CLI Enable Debug tmsh modify sys db bigd.debug { value enable } Monitor the /var/log/bigdlog file tail -f /var/log/bigdlog |grep 'return ssl false' You are looking for the member is a message similar to this Disable debug logging tmsh modify sys db bigd.debug { value disable } Verify that debug logging has been disabled by running tmsh list sys db bigd.debug Now you know the culprit, go get em. Common reasons for failures include: Pool Member doesn't support the same SSL/TLS properties as the HTTPs monitor. EXAMPLE: Pool Member doesn't support any version of TLS A HTTPs monitor is applied to a non-HTTPS pool member in which case an HTTP monitor may mark the pool member status as available.
  13. It is quite simple to see if a pool member failed it’s health check by checking the pool status via GUI/CLI and the ltm logs also give you more information on the time lines when the pool went down/up; cat /var/log/ltm | grep But what if you’ve configured a custom health monitor for a particular pool and now that pool is down and you know it’s the monitor that is failing it. You’ve verified that the F5 is indeed sending the F5 monitor traffic to the nodes. You run some captures on the interface or on an intermediary firewall and see the node is sending replies as well. Now, what if you want to check the contents of the server’s response during that time from the F5 itself? So here’s the step-by-step instructions you need to follow to effectively get that information; 1. Enable the debug on F5 tmsh modify sys db bigd.debug value enable 2. Check if debug is enabled tmsh list sys db bigd.debug 3. Check the debug logs from bigdlog file for particular node tail -f /var/log/bigdlog | grep 4. Disable debug! The file size gets huge pretty quickly! tmsh modify sys db bigd.debug value disable 5. Navigate to the log folder cd /var/log 6. This will list the bigdlog log file with details like date, time and size ls –ltr 7. Remove the log file if you’ve copied the information you wanted or you can keep it there if you’ve a good size of flash on the device. rm bigdlog Here’s an example of a custom HTTPS monitor; In the debugs you capture, you should be able to see similar output as below when everything is working fine (will need to go through a lot of crap before you actually find this stuff that is related to your monitor). If your send string gets you the desired output that your receive string is expecting to see, your monitor shouldn’t fail. If you don’t see the receive string in the output of the bigdlog file, your server is sending something else or your receive string on the F5 is wrong.
  14. It is quite simple to see if a pool member failed it’s health check by checking the pool status via GUI/CLI and the ltm logs also give you more information on the time lines when the pool went down/up; cat /var/log/ltm | grep But what if you’ve configured a custom health monitor for a particular pool and now that pool is down and you know it’s the monitor that is failing it. You’ve verified that the F5 is indeed sending the F5 monitor traffic to the nodes. You run some captures on the interface or on an intermediary firewall and see the node is sending replies as well. Now, what if you want to check the contents of the server’s response during that time from the F5 itself? So here’s the step-by-step instructions you need to follow to effectively get that information; 1. Enable the debug on F5 tmsh modify sys db bigd.debug value enable 2. Check if debug is enabled tmsh list sys db bigd.debug 3. Check the debug logs from bigdlog file for particular node tail -f /var/log/bigdlog | grep 4. Disable debug! The file size gets huge pretty quickly! tmsh modify sys db bigd.debug value disable 5. Navigate to the log folder cd /var/log 6. This will list the bigdlog log file with details like date, time and size ls –ltr 7. Remove the log file if you’ve copied the information you wanted or you can keep it there if you’ve a good size of flash on the device. rm bigdlog Here’s an example of a custom HTTPS monitor; In the debugs you capture, you should be able to see similar output as below when everything is working fine (will need to go through a lot of crap before you actually find this stuff that is related to your monitor). If your send string gets you the desired output that your receive string is expecting to see, your monitor shouldn’t fail. If you don’t see the receive string in the output of the bigdlog file, your server is sending something else or your receive string on the F5 is wrong.
  15. Most likely you are only after objects in the bigip.conf. You can extract big.conf file and move it to /config on the vCMP guest. Load it with: tmsh load sys config Here are a few issues you may have: 1) Route Domain IP addresses (route domain not on VCMP guest).2) VLAN enabled on a config object (VLAN doesn't exist on the VCMP guest).3) Partition enabled on a config object (Partition doesn't exist on VCMP guest).3) Missing SSL keys (these are easy to get from the UCS).4) Missing External Monitor (these are easy to get from the UCS). My Experience migrating, I was able to migrate the config to vCMP guest using an old UCS file.. only thing is I have to modify the bigip_base.conf file. Basically, I removed physical interfaces from the old UCS file (for obvious reasons, the interfaces aren't present on the vCMP guest)
  16. Thanks for the info. I use these commands a lot. Quickly show all certificate information tmsh list sys file ssl-cert /Common/* Now show just the certificate names tmsh list sys file ssl-cert /Common/* | grep '^sys' Something I use that I didn't see was looking for certification Information like Serial Number. Many times a customer will want to know what certificate has a certain serial number and the following commands works well for me. tmsh list sys file ssl-cert /Common/* | egrep 'sys|serial-number' | grep -B1 1277369427 Expiration Data is also good to know for the certificates tmsh list sys file ssl-cert /Common/* | egrep 'sys|expiration-string' | grep -B1 expiration-string
  17. You can also use an other option of OLM to PST Conversion software which is OLM to PST Converter Tool ,With the help this Efficient and Outstanding features of OLM to Outlook converter you can instantly move MAC Outlook mailbox into useable Outlook PST without any errors. A Free Demo version of this software also available here: http://www.filesrepairtool.com/olm-to-pst-converter.html
  18. You can also use an other option of OLM to PST Conversion software which is OLM to PST Converter Tool ,With the help this Efficient and Outstanding features of OLM to Outlook converter you can instantly move MAC Outlook mailbox into useable Outlook PST without any errors. A Free Demo version of this software also available here: http://www.filesrepairtool.com/olm-to-pst-converter.html
  19. Now a days there are a lot of third party conversion application available for Apple Mail to Outlook. I would also like to refer such one software, it is Kernel for EML to PST Converter that can easily convert EML file of different email client like Windows Live Mail, Microsoft Outlook Express, Mozilla Thunderbird and Apple Mail into Outlook PST format without facing any hassle. For more information visit http://www.applemailtopst.emltopstconversion.org/
  20. Now a days there are a lot of third party conversion application available for Apple Mail to Outlook. I would also like to refer such one software, it is Kernel for EML to PST Converter that can easily convert EML file of different email client like Windows Live Mail, Microsoft Outlook Express, Mozilla Thunderbird and Apple Mail into Outlook PST format without facing any hassle. For more information visit http://www.applemailtopst.emltopstconversion.org/
  21. To be very frank, I never faced such situation where I need to convert my PST file to MBOX format. Last week some of my .pst files became corrupted due to their overiszed issues. After trying many things, I got a third-party app named as SysInfoTools PST File Repair. It helped me repair my corrupt .pst files and restored my emails and crucial mailbox data. I was really impressed with its saving feature that allowed me to save the recovered data into different other formats. The MBOX format is also available. If you are looking for a third-party solution for converting PST to MBOX, I would like to recommend you this software. It performs file recover along with PST file converstion into different formats. To know more about this software, you must try its free demo versionl. You can download demo from here: software. Hope it will help you. Thanks.
  22. To be very frank, I never faced such situation where I need to convert my PST file to MBOX format. Last week some of my .pst files became corrupted due to their overiszed issues. After trying many things, I got a third-party app named as SysInfoTools PST File Repair. It helped me repair my corrupt .pst files and restored my emails and crucial mailbox data. I was really impressed with its saving feature that allowed me to save the recovered data into different other formats. The MBOX format is also available. If you are looking for a third-party solution for converting PST to MBOX, I would like to recommend you this software. It performs file recover along with PST file converstion into different formats. To know more about this software, you must try its free demo versionl. You can download demo from here: software. Hope it will help you. Thanks.
  23. There have been similar queries, have a look:- Why can't I important mail from Apple Mail to Outlook 2011? Apple mail to outlook 2011 I hope you will find what you are looking for. Thank you
  24. There have been similar queries, have a look:- Why can't I important mail from Apple Mail to Outlook 2011? Apple mail to outlook 2011 I hope you will find what you are looking for. Thank you
  25. You can use Kernel for OLM to PST Conversion tool to export your Outlook 2011 Mac mails to Windows Outlook mails, to know more about olm to pst converison tool and download the demo versin of the software go to http://www.olmtopstconversion.com
×
×
  • Create New...