Connecting the world…

enable

FortiMail – Howto enable DLP

FortiMail has the option to use Data Loss Prevention as enhanced security mechanism. This feature is introduced in firmware 5.3, according to the release notes. By default the DLP option is not visible on the GUI.

FortiMail - No DLP

DLP can be enabled via the CLI, but it is a well hidden feature. The option can be enabled from the “system global” configuration. When you do a “get” or “set ?” from the “system global” menu, you don’t see the option, but you are able to type it manually.

mail # config system global

mail (global) # set data-loss-prevention enable

mail (global) # end

This enables DLP and adds a new configuration menu to the GUI.

FortiMail - DLP enabled

HP A4800G – DHCP relay

This article isn’t very difficult and spectacular. It is just for me as a quick note to configure DHCP relaying on a HP A4800G switch. The configuration of this type of switch is a little different compared to Cisco and/or legacy HP ProCurve switches. The following steps are required to configure DHCP relaying:

<SW01>system-view
System View: return to User View with Ctrl+Z.
[SW01]dhcp enable
[SW01]dhcp relay server-group <group id> ip <DHCP server>
[SW01]interface Vlan-interface24
[SW01]dhcp select relay
[SW01]dhcp relay server-select <group id>

As said before this is very simple. But for some reason I always forget the DHCP enable and DHCP select relay configuration options.

eSafe Gateway 7.1 Forwarding Proxy with squid

My colleague over at PBSPlaza wrote a nice article about enabling squid on eSafe Gateway 7.1 Forwarding Proxy. Today I had to configure an extra step to enable squid. I followed the instructions from my colleague, but when I tried to start squid I received the following error message.

FATAL: Could not determine fully qualified hostname.  Please set ‘visible_hostname’

Squid Cache (Version 2.6.STABLE18): Terminated abnormally.
CPU Usage: 0.030 seconds = 0.000 user + 0.030 sys
Maximum Resident Size: 0 KB
Page faults with physical i/o: 244
Aborted

I added the following line to /opt/eproxy/etc/squid.conf:

visible_hostname mail.booches.nl

Now squid starts perfectly

Cacti Plugin Management and RealTime Plugin

I played a little with Cacti today and installed the Plugin Architecture 2.1. While reading some forums a lot of people are talking about the Plugin Management functionality. I looked and searched in my complete Cacti installation, checked all the configurations which can be made, but I couldn’t find anything about Plugin Management.

After some more searching on forums I found how to enable the Plugin Management. When you download the Plugin Architecture ZIP file, the ZIP contains a file called pa.sql. This file needs to be imported into the Cacti database with the following command:

mysql -u root -p cacti < pa.sql

After executing the command you can enable Plugin Management per user under User Management.

I haven’t played a lot with Cacti lately, but my colleague told me about a new plugin. This new plugin in called Realtime and I find it very useful. As you all know, Cacti only polls after a certain amount of minutes. Sometimes it is useful to get real-time bandwidth utilization statistics. In most cases I always use tools like STG or Interface Traffic Indicator (both can be found on the Tools page) to get real-time statistics. The Realtime plugin allows you to get real-time bandwidth utilization statistics through Cacti. You can download the Realtime plugin here, more information can be found at CactiUsers.org.