F5 tmsh config backup

cd /Orange
create /net vlan Vlan_207 interfaces add { 1/1.2 { tagged }} tag 207
create /net vlan Vlan_215 interfaces add { 1/1.2 { tagged }} tag 215
create /net vlan Vlan_216 interfaces add { 1/1.2 { tagged }} tag 216
create /net vlan Vlan_219 interfaces add { 1/1.2 { tagged }} tag 219
create /net vlan Vlan_218 interfaces add { 1/1.2 { tagged }} tag 218
create /net vlan Vlan_220 interfaces add { 1/1.2 { tagged }} tag 220
create /net vlan Vlan_221 interfaces add { 1/1.2 { tagged }} tag 221
create /net vlan Vlan_224 interfaces add { 1/1.2 { tagged }} tag 224

create /net vlan Vlan_225 interfaces add { 1/1.2 { tagged }} tag 225
create /net vlan Vlan_226 interfaces add { 1/1.2 { tagged }} tag 226
create /net vlan Vlan_227 interfaces add { 1/1.2 { tagged }} tag 227

create /net vlan Vlan_228 interfaces add { 1/1.2 { tagged }} tag 228
create /net vlan Vlan_229 interfaces add { 1/1.2 { tagged }} tag 229
create /net vlan Vlan_230 interfaces add { 1/1.2 { tagged }} tag 230

create /net vlan Vlan_998 interfaces add { 1/1.2 { tagged }} tag 998
create /net vlan Vlan_999 interfaces add { 1/1.2 { tagged }} tag 999

cd /Green
create /net vlan Valn_250 interfaces add { 1/1.1 { tagged }} tag 250
create /net vlan Vlan_264 interfaces add { 1/1.1 { tagged }} tag 264
create /net vlan Vlan_298 interfaces add { 1/1.1 { tagged }} tag 298
create /net vlan Vlan_300 interfaces add { 1/1.1 { tagged }} tag 300

cd /Orange
create net self Int_207_IPv6 address 2001:4958:4:2:0:0:0:102/ffff:ffff:ffff:0:0:0:0:0 vlan Vlan_207
create net self Int_207 address 10.240.8.102/22 vlan Vlan_207
create net self Int_215 address 10.240.14.19/255.255.255.240 vlan Vlan_215
create net self Int_216 address 10.240.14.35/255.255.255.240 vlan Vlan_216
create net self Int_218 address 10.240.14.3/255.255.255.240 vlan Vlan_218
create net self Int_219 address 10.240.14.67/255.255.255.240 vlan Vlan_219
create net self Int_229 address 10.240.14.115/255.255.255.240 vlan Vlan_229
create net self Int_230 address 10.240.14.131/255.255.255.240 vlan Vlan_230
create net self Int_216_IPv6 address 2001:4958:4:3:0:0:1:3/ffff:ffff:ffff:ffff:ffff:ffff:ffff:0 vlan Vlan_216
create net self Int_229_IPv6 address 2605:b100:f4ff:1002:0:0:0:3/64 vlan Vlan_229
create net self Int_220 address 10.240.14.83/255.255.255.240 vlan Vlan_220
create net self Int_221 address 10.240.13.35/255.255.255.224 vlan Vlan_221
create net self Int_224 address 10.240.14.111/255.255.255.240 vlan Vlan_224
create net self Int_225 address 10.240.13.194/255.255.255.240 vlan Vlan_225
create net self Int_226 address 10.240.13.67/255.255.255.224 vlan Vlan_226
create net self Int_227 address 10.240.13.98/255.255.255.224 vlan Vlan_227
create net self Int_228 address 10.240.13.147/255.255.255.240 vlan Vlan_228

cd /Green
create net self Int_250 address 10.240.17.162/255.255.254.0 vlan Valn_250
create net self Int_264 address 192.168.64.72/255.255.255.0 vlan Vlan_264
create net self Int_298 address 10.239.253.15/255.255.255.0 vlan Vlan_298
create net self Int_300 address 10.240.0.252/255.255.252.0 vlan Vlan_300

fortinet troubleshoot

diag debug flow filter add 10.212.134.200
diag debug flow show console enable
diag debug flow show function-name enable
diag debug flow trace start 10000
diag debug enable

diag debug reset
diag debug flow filter clear
diag debug flow show function console disable
diag debug flow show function-name disable

Opencart memo

To fix country loading error under fastor theme 1.4, under catalog/view/theme/fastor/template/account change register.tpl last part “account/account/country&country_id=” to “localisation/country&country_id=”.

To enable opencart mail service, need to install ssmtp on server first, otherwise port 465 and smtp module won’t work.

import .pem cert into windows

certutil –addstore –f “Root” *path*

generate haproxy cert/key file.

openssl req -x509 -newkey rsa:4096 -keyout cert.crt -out cert.crt -days 365 -nodes

haproxy redirect http to https

docker run -d -e FORCE_SSL=yes -e CERT_FOLDER='/cert/' --name webapp dockercloud/hello-world
docker run -d --link webapp:webapp -p 443:443 dockercloud/haproxy