There are APT group list on https://www.fireeye.com/current-threats/apt-groups.html
Saturday, December 29, 2018
Firewall selection consideration
|
Product |
|
|
Company |
|
|
Certifications |
NSS
Labs Security |
|
# interfaces |
GE
RJ45 |
|
Throughput and Performance |
|
|
Firewall Throughput |
This
is raw throughput, the measurement of traffic flowing through the firewall
without necessarily being subjected to antivirus scans, content filtering,
intrusion prevention, data loss checks and similar steps. The figure can also
vary by protocol and packet size. Some vendors may cite 1500 Byte TCP whilst
others 64 Byte UDP |
|
IPS Throughput |
Gbps(Optimal traffic), Gbps(Enterprise Mix) |
|
NGFW/UTM Throughput |
Gbps(Enterprise Traffic Mix) |
|
SSL Inspection Throughput |
|
|
AV Proxy Throughput |
|
|
Sessions |
|
|
New Sessions per second |
|
|
IPSec VPN |
Gbps |
|
Tunnels |
No. of Tunnels (e.g. 10000) |
|
SSL VPN |
Gbps |
|
Firewall Policies |
|
|
Latency |
Microsecond |
|
Remark |
When compare between different vendor on performance, it need to confirm they are using the same assumption to provide the figure (e.g. Vendor A will enable all features when testing throughput but Vendor B will disable all features) |
|
Features |
|
|
SD-WAN |
|
|
DNS Filter |
|
|
Web Filter |
|
|
IPS |
(No. of signatures) |
|
Anti-Spam |
|
|
Antivirus Gateway |
|
|
Sandbox Integration |
Cloud and/or On-perm |
|
Application Control |
|
|
SSL Inspection |
443 Port only or ALL ports? |
|
Data Leak Prevention (DLP) |
|
|
Content Filtering |
|
|
Web Application Firewall (WAF) |
|
|
Reverse Proxy |
|
|
Forward Proxy |
|
|
Virtual Domain |
|
|
High Availability |
|
|
3rd Parties Security Solution Integration |
|
|
Power Supply |
Single or Dual PSU |
|
Operation |
|
|
Administration Effort |
High/Low |
|
Management |
Console/Web |
|
Reporting |
|
|
Automation |
|
|
Vendor Support |
|
|
Cost |
|
|
Licensing/Subscription |
|
|
On-going cost /Maintenance cost |
|
Reference:
https://www.manxtechgroup.com/small-business-firewall-guide/
Email migration from Rackspace mail to Gmail (G-Suite)
The source server need to select IMAP and the server address is secure.emailsrvr.com
Reference for how to setup the wizard and migration tools on Google:
Sophos SG UTM and XG Firewall
Astaro Security Gateway has been renamed Sophos UTM (Sophos SG)
Cyberoam become Sophos XG
Microsoft Internet Security and Acceleration (ISA) server 2000, 2004, 2006 or a Microsoft Forefront Threat Management Gateway (TMG) server 2010 EOL, one of the option are using Sophos SG UTM as a replacement.
Sophos SG UTM – Traditional Firewall comes with full coverage security function.
Sophos XG – Next Generation Firewall (NGFW) comes with full coverage security function PLUS heart-beat function, heat beat means firewall can be communicates with Client PC to stop threat exposure.
UTM: Unified Threat Management
NGFW: Next Generation Firewall
Huawei Firewall USG 6305 – Basic Setup and Upgrade Firmware
1. Set fixed IP on laptop (e.g. 192.168.0.2 /24) and connect to ETH 0/0 (Port 0)
2. Open browser access https://192.168.0.1:8443
3. Default login : Username: admin Password: Admin@123
4. Force change password
5. Follow the setup Wizard to complete the basic setup
![clip_image002[4]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMNjNiNuQNKAHiRY1ItP31r3FS3A1dUmSbLD52NDMwCJHfVwwN5fL0lVw5LAomor-hqg_hMfuqPThobYQgAS3uwOZX4kZGsRAEKVr6cqTLKR4aZCCIBVHN1_XSB7i_3cag6J4JYDWJQ3vH/?imgmax=800 "clip_image002[4]")
Remark:
1. Download firmware (You need to register a free customer account by using the product SN or contract number)
![clip_image002[6]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhTPkvPdtgqhaVHbgWEy78gUNIte0YQppOBgfAKP6KDFGB2_4DReTD7jMmpsG7ZB-xIwMrgMaymzFaxwnsdYVgSo1PxPkpTSIQ_VYcVJcrhitmpBehsYiMl7q-eEFhjUqSbxQm0UDG3f-6j/?imgmax=800 "clip_image002[6]")
For USG 6305, you need to use the mini one
2. After upgrade , delete the old one (To free up space)
![clip_image002[8]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvPhmxyabtQQOPpk4dPLHfOcdcWU13tdwcccEmKJsoFXFId4k2g4fQiACVu56-qpQromd9eTssZUvyXPEATg9AlE-86VSoozX5r21yNHllV3mERqppVXYluJiRNX7VA2tkx5ueaQgMlOdS/?imgmax=800 "clip_image002[8]")
Dell Inspiron 15-3567 replace hard disk to 2.5” 7mm SSD
1. Remove all Screw under bottom and under the battery
2. Remove the keyboard
![IMG_20180723_151526989[5959]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwkKy0GPPlKnqpdFM_QK-Bzyauepc_fubEauLYPcHFue5erYrjoEaQclXHyVnu36Fw2CkjsQQ_39CVOmOFvYLPKTySiXJlPkcb9ZDKyBO5Yoy8sRnfC30XDrdtJtqwwUsDKfTq2qoK7sR2/?imgmax=800 "IMG_20180723_151526989[5959]")
3. Remove all Screw under the keyboard
![IMG_20180723_151704386[5958]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj3hTNuIgI-OvEhw5UHsp488MMOA6_Up1QF4gm9BE2yWtIi-lvQoJpaQnkTRXo_64wqD82s8p2NZq1TyclEWHgxwJ1kQKi55F2eJGvRHTVkDgYMlTqGzCEGXcG0nlGCSFwRNKOu4pDOQCiK/?imgmax=800 "IMG_20180723_151704386[5958]")
4. Remove the cover and you will see the hard disk
![IMG_20180723_162152152[5960]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjzHaZqD4xzY6KsK5ZhNbvh-pX4e3TwUxsELyx3rrWiKu97wUJXC3GtES6uD_vSGA28QGUItd-OqfT69P5Obv-uEJ1f1KfcxSx8MurGxroFz6zvBN5bmr36Ru2F0brm0yzwASrvl8U_upOE/?imgmax=800 "IMG_20180723_162152152[5960]")
Friday, December 28, 2018
How to find a log of Microsoft Store on Windows 10?
Open Command Prompt and run “wscollect”
The logs will be store at your desktop:
Unzip it by using 7zip:
You will able access to those logs
#Logs
#Troubleshooting
Reference:
https://superuser.com/questions/1257486/windows-10-app-store-where-are-logs
北斗衞星導航系統(Beidou Navigation Satellite System, BDS)provide service globally and how to check your mobile device is it support?
One of the sample method is install GPS Test on your Android phone (https://play.google.com/store/apps/details?id=com.chartcross.gpstest&hl=zh_HK)
Use the GPS test filter to show Beidou only, if there are no satellite signal being receive, it is probably your phone did not support.
Reference:
The Hong Kong Satellite Positioning Reference Station Network (SatRef):
https://www.geodetic.gov.hk/tc/satref/rawstream.htm
Example of support tracking system:
Thursday, December 27, 2018
Allow Microsoft Windows Update (Windows 10) pass-thru Sophos XG Firewall proxy (SFOS 17.1)
Add the following exclusion URL under Microsoft Windows Updates exception list:
^([A-Za-z0-9.-]*\.)?tlu.dl.delivery.mp.microsoft\.com/
^([A-Za-z0-9.-]*\.)?au.windowsupdate\.com/
^([A-Za-z0-9.-]*\.)? download.windowsupdate\.com/
Reference:
https://docs.microsoft.com/en-us/windows/deployment/update/windows-update-troubleshooting
Allow Kaspersky Update pass-thru Sophos XG Firewall proxy (SFOS 17.1)
Add the exceptions policy, ^([A-Za-z0-9.-]*\.)?geo.kaspersky\.com/
Reference:
https://support.kaspersky.com/6105
Create firewall service for proxy only on Sophos XG Firewall (SFOS 17.1)
You need to Add TCP and UDP from ALL Source Port to Destination Port which is your proxy server for connect
Sunday, December 23, 2018
![Screenshot_20181222-234307[5945]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEikkYb1EC8dlF2LpTfrrgGDTyeSqEbg-7TUGsK8VfU9TmXA75STZt_9bR2S6ztrH7yPg_oJdLV37G_745pZzKdM0VITr56c-tyN4hu63HOUpZJ6Q8G4vcnOVaVh-WCzOZbvDTcvtO6VRWtC/?imgmax=800 "Screenshot_20181222-234307[5945]")
Friday, December 21, 2018
Thursday, December 20, 2018
Wednesday, December 19, 2018
New Control Panel on Windows 10 Insider Preview 18298
It show your Microsoft account status on the top of the panel.
Tuesday, December 18, 2018
![Screenshot_20181217-072309[5938]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJHSfErF0qFq4GKberiOFiKRooRWIlpaNWo_GsfLnEi4dpBiZMGXHyGaeZdmkL48IU0kqUPFy246Nyq5gYXh51c9rIQcMN7Lxr9WPRgrtZIwoSsV29-3uRyMuYBjPcd2_v7JuXgP3y9cqj/?imgmax=800 "Screenshot_20181217-072309[5938]")
Friday, December 14, 2018
Tuesday, December 11, 2018
Sunday, December 9, 2018
MacOS VM on Virtualbox on Lububutu – Upgrade MacOS
A few notes from another users and forum:
1. Updates – this image is 10.13 and the latest is 10.13.6, but the update install never finishes after a reboot and it just tries to install the update, reboots, etc. Here is the fix:
1.a Install the update but shutdown instead of reboot. It will update a few things and then shut down, turning the VM off.
1.b Start the VM again, but as soon as the screen turns black, start to hammer the F12 key. Make sure your keyboard is grabbed by the VM. If you managed to hit F12 at the right time, the VirtualBox EFI should pop up. If the VM starts up normally, go back to step 3.a (yes, you have to download and reinstall the update again)
1.c Now use your arrow keys to select “Boot Manager” and hit Return, then launch the “EFI Internal Shell” from there.
Inside the shell, type the following commands:
Shell> fs1:
FS1:\> cd “macOS Install Data”
FS1:\macOS Install Data\> cd “Locked Files”
FS1:\macOS Install Data\Locked Files\> cd “Boot Files”
FS1:\macOS Install Data\Locked Files\Boot Files\> boot.efi
Essentially, Apple moved the update boot.efi and Virtualbox is running the regular boot.efi and the update doesn’t finish.
If you get “Installing High Sierra” and then a progress bar that takes about 50 minutes, you are golden. Anything else and something is messed. I successfully got the latest xCode running on the latest High Sierra in virtualbox.
![IMG_20180802_151447017[3781]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjIt0r0DDZ4Z1lpCzftIuYp0qJyzfQ0si1wcSgfD-ECMpD0LKvL6Vqo4NpOMjT6_w00azmT42w9e57UQz9CgQo9zej_Ohmuynx_9JEw3LY9avz4JmN_3-qKKki8N1D9asKdxJhHAA2GwQIP/?imgmax=800 "IMG_20180802_151447017[3781]")
Until Virtualbox fixes where it looks for the boot.efi, you will have to do this for every update.
If you success upgrade, you will found the OS version become 10.13.6
![IMG_20180802_155337222[3780]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiTObx5zx4TiBmigCohgvytmvREKzT0Gr_sU1EYGoxDDqbHPGOxpnX2v-KJTdoTtVN7jM_X5mJUdsIjVzCPS1i_RHkFdUdnIyC0qwloALlYDJA2550vGUj_EKvnX_Src6VjYq-8oI7dqm7l/?imgmax=800 "IMG_20180802_155337222[3780]")
Reference:
http://archive.is/Stfe5#selection-2709.0-2759.98
https://www.wikigain.com/fix-virtualbox-macos-high-sierra-screen-resolution-1920x1080-4k-5k/
https://www.wikigain.com/fix-macos-high-sierra-screen-resolution-virtualbox/
https://mysolutions.tech/2018/04/virtual-sierra/
The base VM
https://techsviewer.com/install-macos-high-sierra-virtualbox-windows/
![IMG_20180731_182541637[3787]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjoia9Y-0g2TqO-fy3CWawWSmtmJpMFLVRyV0Gw254AV2HkgErhNFZmthEHdd4E8hvQr-8Kb5-Jt98MAh2SpG6QFcMjGOWox1qhnz-aDZZxWUWfdgkT7BJrjvTrWojQdqrF5aCOtleMaUBE/?imgmax=800 "IMG_20180731_182541637[3787]")
Wednesday, December 5, 2018
Saturday, December 1, 2018
Dell Support Assist for Non-Admin Users login pop up to request administrator privilege resolution
Solution: Change the service startup to “manual”
![IMG_20180628_173102858[2143]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBhO_epb9teqPjmDuEMdN4ISm2FpTio1Mm6SC2mGd63bVoMjPvAzxx8WcA8F8tzch7V3T-iUDwqF_S2bHUfqtzkkoWYXfgVDUiFkfMxSG_n1Ef2Gji902nf6fPrEUQATYaykwdshD7DfEg/?imgmax=800 "IMG_20180628_173102858[2143]")
Reference:
English Office 2016 Home and Business install Proofing tools for Taiwan Chinese
Step 1: Go to download the Proofing tools for Taiwan Chinese:
https://www.microsoft.com/zh-TW/download/details.aspx?id=52668
Step 2: Install this "proofingtools2016_zh-tw-x86.exe"
Step 3: Done.
Reference:
To resolve the RSS feed exceeds 512KB Size Limit
Add “?max-results=3” after the RSS feed URL
e.g. http://billyfung2010.blogspot.com/feeds/posts/default?max-results=3
The issue have been fixed.
Reference:
Windows Movie Maker on Windows 10 and alternative and also good software to reduce video size on Windows 10
Good software to reduce video size:
Shotcut
https://www.shotcut.org/download/
https://www.techradar.com/reviews/shotcut
https://www.techradar.com/news/the-best-free-windows-movie-maker-alternative
Download Windows Movie Maker Free Archived
Netgear R6400 - WiFi 5GHz channel disappear regularly
Symptom:
5GHz channel disappear after few days
Solution:
change the wireless channel to another less interface with nearby AP.
Reference:
https://kb.netgear.com/25182/Resolving-poor-5GHz-wireless-range-signal-from-my-NETGEAR-router
Cannot enter " " when using US - international keyboard in outlook 2016 on Windows 10 1803
If you are using the English (Hong Kong SAR) with US - international keyboard, you will not able to enter “ “ in Microsoft Office Outlook 2016 on Windows 10 1803
![IMG_20180630_231240052_LL[2134]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj0bHd2R3h5j5S3I6y6HwDJI3_coUpJMQB4NBkG8yX2urZZ2WwoMbcVjGAx1CJvNcIZ3aipAUSheabLi6ybVNzl13puqMcZ-91O8IDscMtYM6R-z4VxX4Iqt-OqJoCNoqErucbbL7HUQ0-N/?imgmax=800 "IMG_20180630_231240052_LL[2134]")
Subscribe to:
Posts (Atom)