We found this command on enterprise switches tha allow you to send an aseptic copy of the traffic passing on a switch port. You can receive this “debug copy” on a passive port or remotely to a network analyzer A network administrator configures the port mirror in many situations, including: Troubleshooting network issues Passive network probing Intrusion detection system MPLS …
HUAWEI – enable IGMP-snooping
igmp-snooping is not a protocol but a feature that switches have to control multicast traffic. In a broadcast domain, multicast is flooded on all ports so the snooping mechanism listen for an IGMP client and send multicast traffic only on the necessary ports in the multicast forwarding table. Troubleshooting commands: .glitchlist crew
FortiGate – send logon events to Syslog
logon events like Administrators accesses o SSLVPN logins can be logged and sended to an event correlator (SIEM) for further analisys. On FortiOS you should config by CLI these commands: FortiGates support up to 4 syslog server. bye .glitchlist crew
Nmap features
Nmap is an opensource software that apparently scans IPs and TCP/UDP ports. But it can do more! In association with scripts, it can able to analyze targets at layer 7. In fact Nmap is loaded with a scripting engine aka NSE (Nmap Scripting Engine) that transform this tool in a vulnerability scanner. For a complete list of scripts look here! …
OSPF silent-interface
When you want to interconnect 2 OSPF processes in static mode for design requirements or just temporary in a migration scenario you have to instruct routers to not receive routing update information and to not advertize networks to another router. By default when you start an OSPF process all interfaces of the router send Hello packets to discovery neighborships. To …
Register FortiGate device on Fortianalyzer
with these little steps you will be able to connect a Fortigate firewall on a FortiAnalyzer appliance and send them security logs. I hope this help! .glitchlist crew