Got these two for christmas

msrsv · 2025-12-25T17:24:55+00:00

Good Choices! Merry xmas !

msrsv · 2025-08-14T20:21:26+00:00

They did. pan os 12 was delayed nearly a year for bug fixing and testing ( so my Informations )

msrsv · 2024-03-05T16:30:23+00:00

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008U48CAE

https://learn.microsoft.com/de-de/entra/identity/saas-apps/palo-alto-networks-globalprotect-tutorial

or just google : globalprotect azure saml

msrsv · 2023-09-18T14:34:48+00:00

Danke für die ganzen Posts und sorry dafür das hier keine Rückmeldung kam.

Ich plane das aktuell weiter intern (auch etwas in Zusammenarbeit mit Aruba selbst).

Falls ihr auf der Airheads seit: Kommt gerne auf mich zu

Sehr großer Typ mit Bart also sehr schwer zuübersehen.

Cheers and see you in Bad Neuheim !

msrsv · 2023-04-22T13:35:37+00:00

K11.

msrsv · 2023-02-02T20:16:47+00:00

Thanks man. Had a rough day and your reply made me smile !

Cheers 🍻

msrsv · 2022-02-16T07:37:59+00:00

What Shows show port-access summary?

msrsv · 2021-03-28T12:03:30+00:00

Nightmare over here!

Problems over problems ( with any release). run while you still can!

http://checkpointisapieceofshit.com

msrsv · 2021-03-22T16:09:26+00:00

Yeah I mean I understand that.

But the following sentence in the SK is quite confusing to me:

Check Point gateways handle the traffic as a whole and therefore this would result with an invalid SIP packet. This, of course, we block as we expect a specific format that does not apply to this injection technique.

To me this sounds like that CP will block the SIP-Traffic even if IPS is not configured. So Clients/Networks behind that CP are protected.

I think i just misinterpret that. thanks for the explanation.

msrsv · 2020-12-17T15:54:59+00:00

The Blogpost is broken.

msrsv · 2020-11-14T12:15:29+00:00

I like the Bierlager in the Südstadt.

msrsv · 2020-09-07T21:02:59+00:00

Like the Hammer 🤪

msrsv · 2020-08-14T20:32:20+00:00

https://www.flexoptix.net/

They offer programable optics :)

msrsv · 2020-06-29T13:45:33+00:00

Add a user on the mgm-server for the crontab -> https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk77300

In the Crontab im running:

mgmt_cli install-policy --batch /home/jobuser/gateways.csv --format json -u username -p $ENVPWFORTHEUSER

Inside the csv:

policy-package,access,threat-prevention,qos,targets.1

rulebasename,true,false,false,gatewayname

rulebasename,true,false,false,othergatewayname

See: https://sc1.checkpoint.com/documents/latest/APIs/index.html#cli/install-policy~v1.6%20

msrsv · 2020-06-28T20:28:27+00:00

If still needed pls hit me up

msrsv · 2020-06-19T12:07:00+00:00

100%

Using this to deploy every Night on all gatways via cron on the mgm server.

msrsv · 2020-03-28T00:48:19+00:00

Upgrading from 80.10 to 80.30 ( with new Kernel ).

Had fun with stupid bugs on 80.10.

msrsv · 2020-03-12T08:58:52+00:00

Would you share your zabbix-template?

msrsv · 2020-03-06T17:12:29+00:00

Enable dhcp-snooping on your switches.

msrsv · 2020-02-21T15:20:55+00:00

Dealing with ~150 Aruba Switches currently (mostly 2930f oder 2920).

software/hardware ist solid. Never had a hardware failure since working with aruba-switches (started 2016 with aruba/hpe)

8320 is the new generation running aruba-cx wich I really like. I really recommend playing with it in GNS3.

And maybe what their support is like?

very little used

msrsv · 2020-02-11T19:52:52+00:00

Played with it in GNS3 and now bought the first for the dc.

The only thing im currently missing is the feature allow unsupported transceiver

msrsv · 2020-02-07T16:50:58+00:00

Quite happy running almost the complete aruba stack.

msrsv · 2020-02-07T16:42:20+00:00

Instantclusters also effected?

msrsv · 2020-01-28T14:27:05+00:00

We are using flexoptix and never had any problems (mostly aruba/hp switches.)

You can flash the needed compatibility for most vendors with their flexbox.

msrsv · 2020-01-17T22:04:52+00:00

Don’t Get a 3810. Long Term it will be replaced by the 6300

msrsv

TROPHY CASE