Category: IT-security

  • GlobalProtect + Client Certificate

    Setup the client certificate deployment by following this guide : https://www.virtuallyboring.com/setup-microsoft-active-directory-certificate-services-ad-cs/ Start of by exporting the CA certificate: Install the certificate on you Palo Alto Firewall: the certificate should look something like this: Create a Certificate profile: Add this profile to your Authentication settings on the GlobalProtect gateway: Now you can access your globalprotect vpn…

  • Setting up Palo Alto GlobalProtect VPN 2fa-authentication using Google Authenticator

    TL;DR : Enable free 2FA using an Ubuntu server, Google authenticator and FreeRadius on service supporting radius authentication. So, I’ve been messing around with this for a while, and I decided I’d create a post showing how to do it. Basicly i have a small Ubuntu Server, with Free radius, and Google authenticator module. Using…

  • Blocking malicius IP’s automaticly with Palo Alto Firewalls

    So I’ve been thinking of creating a post of how to block ips when they try to do something bad to your system, for example a exploit related to a wordpress plugin on your dmz-webserver. It’s quite easy and extremely effective. Just setup a profile that will automaticly block the ip when it tries to…

  • Using DHCP on PAN device as User-ID, based on device-name

      If you’re using DHCP on a PAN device, and want to get a simple way to identify users machines / phone based on device names, you can do so easylie with syslog. This setup will convert this logline from DHCP: DHCP lease started ip 192.168.18.140 –> mac 34:02:86:XX:XX:XX – hostname PCNO00198, interface ethernet1/2 To…