TechTalkSecurity

 

##################### HA #################################### >show high-availability state                            ##HA state/configuration/ Synchronization state >show high-availability state-synchronization            ##Synchronization status/ >show high-availability control-link statistics          ##control-link statistics  >show high-availability transitions                      ##Transition Statistics counters  >show high-availability interface ha1                    ##HA interface state/counters/rx/tx/drop >show high-availability ha2_keepalive                    ##HA2 Keep-Alive statistics >show high-availability flap-statistics            ...

  #########NAT Configuration######## >set security nat source rule-set NAT-IBN description source_nat >set security nat source rule-set NAT-IBN from zone untrust >set security nat source rule-set NAT-IBN to zone untrust >set security nat source rule-set NAT-IBN rule NAT-IBN-Rule description NAT_IBN_Rule >set security nat source rule-set NAT-IBN rule NAT-IBN-Rule match source-address 10.10.10.11/32 >set security nat source rule-set NAT-IBN rule NAT-IBN-Rule match destination-address 0.0.0.0/0 >set security nat source rule-set NAT-IBN rule NAT-IBN-Rule then source-nat interface #######Firewall Policy configuration######### >set security policies from-zone untrust to-zone untrust policy allow-win-server match source-address 10.10.10.11 >set security policies from-zone untrust to-zone untrust policy allow-win-server match destination-address any >set security policies from-zone untrust to-zone untrust policy allow-win-server match application any >set s...

  Import the CA certificate: openssl x509 -in pf-ca.pem -inform PEM -out pf-ca.crt sudo cp pf-ca.crt /usr/local/share/ca-certificates sudo update-ca-certificates Import the OpenVPN client configuration: sudo nmcli connection import type openvpn file [client].ovpn OpenVPN connection via cmd: sudo openvpn --config /path/to/config.ovpn