Latest posts
-

Mikrotik Firewall Raw Feature Test
While talking about doing a podcast on DoS protection it was brought to my attention that Mikrotik added a new firewall feature (Raw). Raw is a mechanism to less granularly, but more efficiently drop traffic in the router. Raw is configured similarly to a standard firewall rule, but it will drop traffic BEFORE it has…
-

TheBrothersWISP – Ubiquiti Exploit – Security Best Practices
Mike, Greg, Miller, and Tomas talk about the recent Ubiquiti exploit(stuff happens, right), and some best practices for securing your network. Mike gives some indepth details on what happened, and we talk about ways to mitigate. To see the video please visit the link below!!!
-

FreePBX 13 And Web Meet-me
I’ve been running an install of web meet-me on an ancient version of trixbox. Unfortunately it locks up pretty regularly, though nothing shows up in the logs…it just likes to stop working. I finally had enough and decided to do a new install. I couldn’t find an easy appliance with it installed and ready to…
-

TheBrothersWISP – Monitoring With NetXMS
Greg, Miller, Jeremy Austin, a little bit of Mike, Cox, and Tomas talk about monitoring and demo just a little of what NetXMS can do. We talk about what/how we monitoring now, and how we all wish we had a Tomas to build a system for us. Topics include: NetXMS Tomas’ NetXMS instructional videos What…
-

Ubiquiti HTTP HTTPS Exploit
As I’m sure all of you are aware(we get it Mike), UBNT has a major exploit in older versions of firmware. These allow an attacker to exploit an UBNT device via HTTP/HTTPS without the need for login credentials. I believe it currently either resets the device to default or “locks it up.” Below is a…
-

Mikrotik HTB-Token Bucket Algorithm After 6.35
You can find the wiki article here. The HTB system is a little wacky, and recently some previously hard-coded values are accessible for configuration, namely bucket size. It was previously hard coded to .1, but is now configurable from 0-10. Janis created a nifty diagram to help illustrate how everything works: If this sort of…
-
Update Cacti Syslog Alert Emails In Bulk
While cactiEZ does make some things easy, editing the syslog alerts in bulk isn’t one of them. To do it quickly, simply do the following from the Mysql CLI: update syslog_alert set email='[email protected], [email protected]' where email like '%[email protected]%'; The set command will replace the email field with whatever is entered between the single quotes. Be…