Rabu, 31 Januari 2024
Kamis, 10 Agustus 2023
Minggu, 06 Agustus 2023
Import ZFS to Another Machine (case: proxmox backup server)
irham taufik Agustus 06, 2023 Proxmox, Server No comments
1. Move HDD/SAS to new server
2. Check pool with command "zpool import"
3. Command "zpool import -f namepool" (Eg: zpool import -f pooltest)
4. If you backup file datastore.cfg (/etc/proxmox-backup/datastore.cfg) restore to new server or you add manually
DONE
Ref: https://openzfs.github.io/openzfs-docs/msg/ZFS-8000-EY/
Rabu, 12 Juli 2023
Sabtu, 01 Juli 2023
AWS Identity and Access Management (IAM) #3
irham taufik Juli 01, 2023 AWS, Cisco No comments
AWS IAM
- Free
- Mengatur apa saja yang bisa di akses/lakukan di dalam AWS
- Bisa membuat user, group da roles
- Principals = user, group, roles (yaitu subjek yang melakukan)
- Polices = Permissions (Hak akses)
- Resources = RDS, EC2, dll (objek atau targetnya)
- Root user adalah saat pertama kali kita daftar ke AWS
- Bisa melakukan apapun
- Tidak disarankan untuk pengunaan daily
- Praktik terbaiknya digunakan sekali saja untuk membuat user admin
- Akun adalah saat pertama sekali kita mendaftar di AWS
- Dalam satu akun kita bisa membuat banyak user
- Setiap akun memiliki akun id yg unik
- User bisa login ke aws dengan account alias, contoh url https://irham.signin.aws.amazon.com/console
Kamis, 29 Juni 2023
AWS Service #2
irham taufik Juni 29, 2023 AWS, Cloud No comments
AWS Service
- AWS Global Service (Semua Region sama/ada, tidak ada pilihan region karena global service)
- Identity and Access Management (IAM)
- Route 53 (DNS)
- CloudFront (Content Delivery Network)
- WAF (Web Application firewall) - AWS per-Region Service (Sebagian besar service-service di AWS per Region)
- EC2 (Infrasturcture as a Service)
- Lambda (Function as a Service)
AWS Global Infrastructure #1
irham taufik Juni 29, 2023 AWS, Cloud No comments
- AWS Regions
- AWS Availability Zones
- AWS Data Centers
- AWS Edge Locations/Points of Presence
- AWS Regions
- Lokasi fisik server yang ada di seluruh dunia
- Contoh: us-east-1, ap-south-1, dll
- Cluster dari beberapa data center
- Sebagian service di AWS dikelompokan berdasarkan region - AWS Availability Zones
- Setiap region memiliki beberapa beberapa AZ (rata-rata 3, minimal 2, maksimal 6)
- Contoh: us-east-1a, us-east-1b, us-east-1c, us-east-1d, us-east-1e, us-east-1f (huruf di belakang menandakan AZ, dalam satu AZ bisa lebih dari satu data center untuk kebutuhan redudansi)
- AZ terdiri dari satu atau lebih data center
- Setiap AZ terhubung dengan bandwidth yang sangat besar dan latency yang sangat kecil
Rabu, 28 Juni 2023
Install Zerotier on Kali Linux 2023.2a (problem error while loading shared libraries: libssl.so.1.1)
irham taufik Juni 28, 2023 Network, Tools No comments
1. Uninstall zerotier
- sudo apt remove zerotier-one -y
2. install again (copy paste script, sudo user)
# save /etc/debian-version
# (which will be something like kali-rolling)
DV_SAVE=$(cat /etc/debian_version)
# pretend we're Debian buster
echo testing | sudo tee /etc/debian_version >/dev/null
# follow ZeroTier install instructions from:
# https://www.zerotier.com/download/
# for example, if you don't care about checking gpg signatures:
curl -s https://install.zerotier.com | sudo bash
# restore /etc/debian-version
echo $DV_SAVE | sudo tee /etc/debian_version >/dev/null
3. DONE
Selasa, 06 Juni 2023
How to convert or installing pfSense to PnetLab or Eve-ng
irham taufik Juni 06, 2023 Network No comments
- Download pfSense
/opt/qemu/bin/qemu-img create -f qcow2 virtioa.qcow2 3G
- Launch the installer
/opt/qemu/bin/qemu-system-x86_64 -hda install.img -hdb virtioa.qcow2 -nographic
- Following the installation process, if finish do not reboot, choose shell and command poweroff
- Rename file from virtioa.qcow2 to hda.qcow2
- Fix Permission
/opt/unetlab/wrappers/unl_wrapper -a fixpermissions
- DONE :)
Minggu, 04 Juni 2023
Basic Config Fortigate - Set IP with CLI
irham taufik Juni 04, 2023 Network No comments
Set IP static, role wan
Fortigate # config system interface
Fortigate (interface) # edit port1
Fortigate (port1) # set mode static
Fortigate (port1) # set ip 10.17.0.10 255.255.255.0
Fortigate (port1) # set allowaccess ping https
Fortigate (port1) # set type physical
Fortigate (port1) # set role wan
Fortigate (port1) # set snmp-index 1
Fortigate (port1) # next
Fortigate (interface) # end
Set Gateway
Fortigate # config router static
Fortigate (static) # edit 1
Fortigate (1) # set gateway 10.17.0.1
Fortigate (1) # set device port1
Fortigate (1) # set comment "to WAN"
Fortigate (1) # next
Fortigate (static) #end