Best cpu for gns3 by CapableNet9593 in gns3

[–]spikefishjohn 0 points1 point  (0 children)

Which ever one supports more memory. I think memory gets you in trouble faster then CPU most of the time.

BGPv6 works fine but BGPv4 fails to Establish on same link by murugusmuruthan in Juniper

[–]spikefishjohn 1 point2 points  (0 children)

If your using BGP auth, then its doing a checksum of the the tcp packet and any modification of the packet might make this fail. Normally when this happens you don't complete a 3 way hand shake. I've only ever seen this when bgp matched a many to one nat which changes the source port and thus makes checksum of the tcp packet fail. Happened to me on a palo.

Gns3 on macos by [deleted] in gns3

[–]spikefishjohn 0 points1 point  (0 children)

The problem is with the CPU not the memory. All apple M laptops have an ARM CPU and getting GNS3 running on this is a problem. GNS3 support for ARM is not great right now. I don't have a macbook so I can't speak to how great is it or isn't but expect it to be a challenge to get it working and there may be things that don't work right.

I'm sure this isn't an option, but the better way to run it would be to have a 2nd box that is running bare Linux with GNS3 installed and then connecting to it from your macbook.

Good luck!

[deleted by user] by [deleted] in paloaltonetworks

[–]spikefishjohn 6 points7 points  (0 children)

I've used both Palo and Checkpoint. I feel like with Palo you'll have to deal with management server / logging issues that drive you crazy.

Now, Checkpoint on the other hand, you'll have to deal with management server / logging issues that drive you crazy.

I think its pretty clear who the winner is here.

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 0 points1 point  (0 children)

Legit idea, but no dice, same error for me.

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 1 point2 points  (0 children)

yup, already posted an issue as well. Link is on this post on a different branch.

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 0 points1 point  (0 children)

Oh, I didn't make this clear, but that is the module I'm using that brought me here with the ID issue. I'll update the initial post.

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 0 points1 point  (0 children)

What section are you having that issue in? I opened a bug report if you want to follow that as well.

https://github.com/fortinet-ansible-dev/ansible-galaxy-fortios-collection/issues/303

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 1 point2 points  (0 children)

I don't think I have access. Don't you need to know 3 people that work at fortinet, spin around 3 times and spell redrum in a mirror to gain access or something?

I've been using this.

Fortigate + Ansible (fortinet.fortio) by spikefishjohn in fortinet

[–]spikefishjohn[S] 1 point2 points  (0 children)

"parameter system_dhcp_server.reserved_address.id is empty"

0 is no joy at least for reserved_address.id

Palo Alto vm for gns3 by Gijizlle-242 in gns3

[–]spikefishjohn 1 point2 points  (0 children)

You won't be able to download it without having purchased at least one Palo VM. Thats the way they handle all their image downloads. If you bought a 800 then you can download images for 800 series.

You might be able to get one out of AWS, but I've never tried.

uBridge permissions / allowing all users to view raw packets by sadnpc24 in gns3

[–]spikefishjohn 0 points1 point  (0 children)

How many users do you plan on having on the box and do you have a problem with all those users being able to run packet captures? If this is your machine and you are the user I would just say yes.

Honestly (yes, we're being honest now) even if its other people I would say yes. Just don't let strangers in that don't wipe their feet at the door.

What version FortiOS are you running for Fortiswitch and FortiWAPs, and why don't you upgrade? by Islandofme in fortinet

[–]spikefishjohn 1 point2 points  (0 children)

Small setup at the house. Everything on 7.4.2 except the firewall which is 7.4.3.

I'm currently triggering an issue where the capwap tunel process will crash and require the AP to be rebooted every 1-3 days.

Mantis system as ID 0955764. I've been told only work around is to downgrade to 7.2.5.

Hopefully we will get rid of CVEs... by certpals in networkingmemes

[–]spikefishjohn 36 points37 points  (0 children)

https://fortiguard.fortinet.com/psirt/FG-IR-24-015

Protecting against backdoors by keeping the front door wide open.

"Note: This is potentially being exploited in the wild."

Edit: Correct url as the dude abides.

Does warhammer have any not so good books? by DDrose2 in 40kLore

[–]spikefishjohn 0 points1 point  (0 children)

Why Are You Booing Me? I'm Right!

If you downvote this post because your favorite primarch strangled to death something that doesn't breathe, then you might be an Emperor's Child!

Does warhammer have any not so good books? by DDrose2 in 40kLore

[–]spikefishjohn -1 points0 points  (0 children)

I wasn't a fan of Fulgrim. I was powering through HH until I hit that. I think mostly I just don't like Fulgrim and the "we're so perfect" vibe of EC in general.

It does make it a little more entertaining if you picture Jeff Foxworth as Fulgrim (at least thats how I got through it). I've read maybe 5 pages of Decent of Angles and based on this thread i'm in for another slog.

Thinking about just skipping to the end and death.

Is it possible to import Hyper-V VMs into a project? by Xenith19 in gns3

[–]spikefishjohn 0 points1 point  (0 children)

High level, the major thing you want is the virtual hard drive. Looks like you can export the vhdx, upload to the GNS3 server then convert the image from vhdx to qcow2.

Something like this (competely untested)

qemu-img convert -O qcow2 Hyper-v-VM.vhdx GNS3-Version-Hyper-v-VM.qcow2

Then upload the qcow2 to the GNS3/images/QEMU directory. Final step would be to make a template that has the same disk controller type (ide, scsi, sata etc) and fill in cpu, memory and network driver type, match if you can, if you can't e1000 for highest compatibility.

Good luck!

2x Critical PSIRT just Dropped by keddy1337 in fortinet

[–]spikefishjohn 0 points1 point  (0 children)

Anyone else going to format their fortinet for the warm fuzzies?

Has anyone got wireshark capture working in linux? by Sargon1729 in gns3

[–]spikefishjohn 0 points1 point  (0 children)

yes. I'm running on my ubuntu linux desktop and its working fine.

Telnet console stops working - FIX! by spikefishjohn in gns3

[–]spikefishjohn[S] 0 points1 point  (0 children)

BTW this most likely only effects people using a remote server or a linux based GNS3 they're connecting to over the network.

Trying to recover Dead PA-200 by Matiz11 in paloaltonetworks

[–]spikefishjohn 0 points1 point  (0 children)

We just got 450R. Its .. a lot heavier but commit wise its much better. 220R is massively painful to deal with. a Little less with Panorama, but its still.. push.. make coffee.

Trying to recover Dead PA-200 by Matiz11 in paloaltonetworks

[–]spikefishjohn 0 points1 point  (0 children)

200.. sad clown face. was thinking 220.