Posts

May 8, 2020 5 min read ✎ Blog

PANOS - Configuring OSPF and Default Route Advertisement

Configure OSPF on PAN-OS and advertise a default route into a home lab — peer the firewall with a 3750G core running EIGRP for redistribution.

network-security ospf pan

May 6, 2020 3 min read ✎ Blog

Splunk Series III: System Administrator Class (Splunk Components, Processes and Installation)

Splunk admin notes — search heads, indexers, forwarders, deployment server roles — and the planning steps required before a production install.

data it-security machine-data

May 6, 2020 3 min read ✎ Blog

Splunk Series III: System Administrator Class (Splunk Deployment)

Splunk Certified Architect prep — System Admin class topics: license management, configuration files, indexers, user management, and distributed search.

data it-security machine-data

May 5, 2020 2 min read ✎ Blog

PANOS - Configuring Snapshots of Configuration

Save, load, export, and revert PAN-OS configuration snapshots — use named configs to recover from a failed firewall or migrate settings to a replacement.

configuration pan panos

April 24, 2020 2 min read ✎ Blog

Palo Alto Networks - PCNSE Certification Part 6: Basic Configuration (Destination NAT and Security Policy)

Configure destination NAT on Palo Alto — publish a DMZ FTP server with custom service objects, NAT rules, and the matching inbound security policy.

certifications network-security palo-alto-networks

April 23, 2020 3 min read ✎ Blog

Palo Alto Networks - PCNSE Certification Part 3: Basic Configuration (Admin Roles)

Configure admin roles on a Palo Alto firewall — create custom permissions, assign role-based admin accounts via GUI, then replicate the same in CLI.

certifications network-security palo-alto-networks

April 23, 2020 4 min read ✎ Blog

Palo Alto Networks - PCNSE Certification Part 4: Basic Configuration (Interfaces)

Configure Palo Alto interfaces, zones, and management profiles — set up Layer 3 interfaces with static IPs and lock down which protocols answer in-band.

certifications network-security palo-alto-networks

April 23, 2020 5 min read ✎ Blog

Palo Alto Networks - PCNSE Certification Part 5: Basic Configuration (Security Policies, source NAT)

Build Palo Alto security policies and source NAT rules — use Tags to organize objects, apply rules across zones, and verify both in GUI and CLI.

certifications network-security palo-alto-networks

April 22, 2020 3 min read ✎ Blog

Cybersecurity Tools - VERIS Incident Model

VERIS framework breakdown for incident response: actors, actions, assets, and attributes (the 4As) used to classify security incidents in the VCDB dataset.

cybersec-tools cybersecurity veris

April 20, 2020 2 min read ✎ Blog

Splunk Series II: Correlating Events

Correlate events in Splunk using transactions — group related events with maxspan, maxpause, startswith, endswith — and when to use stats instead.

data it-security machine-data