I hereby claim:
- I am mitchya1 on github.
- I am mitchya1 (https://keybase.io/mitchya1) on keybase.
- I have a public key whose fingerprint is 8266 53C6 86AD 723B 9B3C 4240 2C51 8DCB EA0F 759E
To claim this, I am signing this object:
Mitchell chilledornaments
chilledornaments
/ TD-Agent-GELF.sh
Created
March 29, 2019 21:13
Installing the GELF plugin for td-agent on CentOS 7
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # I've spent too much time banging my head against the wall trying to do this to not document it | |
| cd /etc/td-agent/plugin/ && sudo wget https://raw.githubusercontent.com/emsearcy/fluent-plugin-gelf/master/lib/fluent/plugin/out_gelf.rb | |
| sudo /usr/sbin/td-agent-gem install gelf | |
| echo "Installed td-agent GELF plugin" | |
| exit 0 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Rate limiting specific traffic/services on WatchGuard | |
| Firewall > Traffic Management > Add Policy | |
| Name Policy | |
| Set 'Type' to 'Per Policy' | |
| Set bandwidth limitations |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Monitoring a WatchGuard with Zabbix via SNMP isn't as well documented as you'd hope, but it's also not difficult. | |
| Step 1) Install this template into Zabbix: https://share.zabbix.com/network_devices/watchguard/firebox-watchguard-m400 | |
| Step 2) In your WatchGuard, go to System > SNMP. Select SNMP v1/v2c. Create a community string. | |
| Step 3) In your WatchGuard, go to Firewall > Firewall Policies. Create a new policy allowing SNMP from your Zabbix server. | |
| Step 4) Create the host in Zabbix. Remove the Zabbix agent entry. Add an SNMP entry. Leave port 161. Assign the WatchGuard to a group. | |
| Add the "Halley Firewall Watchguard M400" template (unless you renamed it). Go to "Macros". Add "{$SNMP_COMMUNITY}" and |
chilledornaments
/ WatchGuardGraylogExtractors.txt
Last active
February 20, 2019 18:08
Graylog Regex Extractors for WatchGuard Logs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| protocol: | |
| (tcp|udp) | |
| srcIP: | |
| (?:tcp|udp)\s(\d{1,3}.\d{1,3}.\d{1,3}.\d{1,3}) | |
| dstIP: | |
| (?:\d{1,3}.\d{1,3}.\d{1,3}.\d{1,3}\s(\d{1,3}.\d{1,3}.\d{1,3}.\d{1,3})) | |
| insideInterface: |
chilledornaments
/ check-certs.sh
Last active
January 20, 2020 08:48
— forked from cgmartin/check-certs.sh
Bash SSL Certificate Expiration Check
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| TARGETS=( | |
| 'example.com' | |
| 'example.net' | |
| 'example.org' | |
| ) | |
| SLACK_URL='Your incoming webhook'. # 'https://hooks.slack.com/services/SOMETHING/SOMETHING ELSE' | |
| emoji=":terminator:" | |
| uname="CERT CHECKER" | |
| channel="#alerts" |
chilledornaments
/ keybase.md
Created
February 27, 2018 20:13
NewerOlder