Monday, December 23, 2024

Upgrade a old DIR-850L which is running on 1.13 (Hardware version A1) to the latest version firmware 1.20



DIR-850L Firmware Release Notes
=================================

**Note: a factory reset is recommended after upgrading to ensure correct configuration is applied**


Hardware: A1
Firmware: V1.20
Date: 20/09/2017


NOTE:
THE FIRMWARE V1.15WWB04 NEEDS TO BE UPLOADED FIRST AS A TRANSITIONAL FIRMWARE V1.15, BEFORE UPGRADING TO V1.20WWB03.
Upgrade to Firmware V1.15 and then instantly go back into the web user interface and upgrade to Firmware V1.20

Problems Resolved:
1. Fixed the following security issues
- Firmware Protection
- WAN & LAN XSS exploit
- WAN - weak cloud control
- WAN & LAN - Stunnel Private Keys
- WAN & LAN - Nonce brute force for DNS configuration
- Local - WEak file permission and credentials stored in clear text
- Local - DoS attack against some daemons


Print Friendly and PDF
Share/Bookmark

Wednesday, December 4, 2024

Cisco ASA and FirePower 1000 and 1200 max VPN peers


Print Friendly and PDF
Share/Bookmark

Veeam just release a new version of Linux agent which can support Rocky linux 8.10


Print Friendly and PDF
Share/Bookmark

Thursday, November 7, 2024

Windows 11 hardening by hotcakex.github.io



Print Friendly and PDF
Share/Bookmark

Saturday, October 12, 2024

Receive OpenSSL error from one IP and another one IP is normal


SSL_ERROR_SYSCALL

One destination IP address able to connect another cannot. 
Solution: Add the URL to URL whitelist on Cloud Fortinet Fortigate Firewall

Print Friendly and PDF
Share/Bookmark

Identifying and preventing unwanted DNS queries from FortiGate's FQDN Address ObjectYES

FQDN on firewall rule to AWS service, sometime need to fine tune the DNS TTL

Reference:

Explanation of the FQDN default cache-ttl... - Fortinet Community


Print Friendly and PDF
Share/Bookmark

Fortigate DNS and Server DNS different case connection rejected on firewall

When the destination URL on CDN e.g. AWS. 

If your Fortigate DNS and Server DNS different case connection denied on firewall

Solution:
To align with those device DNS is same.

Print Friendly and PDF
Share/Bookmark