Posts

  • Feb 24, 2017

    Discovery and monitor meru AP with icinga2

    I want to monitor all the wireless access points in our Meru installation (1 controller, ~250 AP) using one of our monitor systems: icinga2 (a evolution of nagios).

  • Feb 1, 2017

    Icinga network interfaces check with caching

    In our configuration of icinga2 we refer to interfaces with their name (since it is easier to configure) while the SNMP query uses the interface index.

  • Dec 24, 2016

    Upgrade HikVision firmware at boot time

    It is possible to flash a HikVision NVR (and probably also the cameras) during early boot (so that it is effective also when the device is bricked) using a TFTP server with the right configuration

  • Mar 16, 2016

    ntlm auth in FreeRADIUS using userPrincipalName instead of sAMAccountName (or both)

    Theory of operations

  • Jan 23, 2016

    Palo Alto firewall user identification with Meru wireless controller

    When a user connects on a WPA2 Enterprise network the 802.1x mechanism identifies him, we may want to transfer this information to the firewall because that would give us two advantages: we would be able to create ad-hoc rules for the user and the session would be logged with the username field (a useful feature during debugging). Let's see how to do it with a Meru (now I should say Fortinet) wireless controller and a Palo Alto firewall.

  • May 15, 2015

    Monitoring Juniper EX switches with nagios and SNMP

    I want to monitor some juniper EX 2200 and EX4200 switches, in particular i want to know: if all members of the virtual chassis are online, if their temperatures are OK and if some particular interfaces are up (and if the speed is correct).

  • Apr 13, 2014

    Enabling HTTPS redirect in Coova Chilli

    In the default configuration Coova Chilli redirects to the captive portal only HTTP connections, if it receives a HTTPS connection it simply drop it (with a "it doesn't work" feeling for the user). You can tell Chilli to redirect also HTTPS connections, but it may be a bad idea, so here some pros and cons:

  • Apr 13, 2014

    Installing Coova Chilli

    Coova Chilli is a open-source captive portal software evolved from the ChilliSpot project (that is no longer maintained). For more information see the Coova Chilli page.

  • Mar 8, 2014

    Passwordless SSH login with kerberos and AFS

    Suppose that you have a valid account in a kerberos-afs system (like UZ with ssh access and you want to connect without typing the password every time. The standard method is to use a ssh key pair for the authentication. But this simply doesn't work with AFS.

subscribe via RSS