Learning Achievements as at 22nd May 2019

1. Got SSL VPN to work on Watchguard Firebox T30 Firewall.

2. Installed 90-day free Let's Encrypt Certification Authority SSL certificate on Ubuntu 16.04 LTS /testing/ server for customer successfully.

3. Successfully setup Azure Active Directory Synchronization with Office 365 for Business.

4. Learnt setting up Ubiquiti Cloud Key Controller and UniFi Access Point in a Local Area Network (LAN).

5. Got Internet Protocol Security (IPsec) VPN to work on Fortinet Fortigate 60E Next Generation Firewall (NGFW).

6. Learnt Ping Plotter 5, which is a GUI frontend for traceroute(Linux)/tracert(Windows).

7. Learnt tcping command line utility.

8. Learnt Sophos Cloud and Sophos Endpoint Security (Sophos Intercept X Advanced).

9. Successfully setup Active Directory Domain Controller (testing only) for British-based company within a few hours. With Active directory users and security groups.

10. Installed Duplicati Backup 2.0.4.5 in Ubuntu 16.04 LTS Linux Server

11. Installed X Windowing server and GNOME desktop manager in Ubuntu 16.04 LTS Linux Server

sudo apt-get install xorg gnome

12. Installed 90-day free SSL cert on Internet Information Services 10 Web Server on Windows Server 2016 Standard.

13. Learnt a tiny wee bit (0.001%) about Group Policy in Windows Servers (automatically map network drives/shared folders in computers and laptops that join Windows domains).

14. Learning how to deploy Fortigate-VM64 firewall virtual appliance in VMware Workstation Player from scratch (learning in progress).

15. Successfully deployed NextCloudPi VM Private Cloud Server in VMware ESXi 5.5.0 host (the user interface is a bit like Google Drive).

16. Successfully integrated NextCloud Private Cloud user authentication with LDAP/Active Directory.

17. Successfully implemented two-factor authentication (2FA) for NextCloud Private Cloud using TOTP.

18. Successfully deployed FORTIGATE-VM64 virtual firewall appliance latest version 6.0.4 with only one firewall policy and one default static route.

19. Successfully implemented site-to-site IPsec VPN tunnel between Watchguard Firebox T30 Firewall (Headquarters) and Sophos UTM (SG) Firewall in the Cloud. IPsec Phase 1 and Phase 2 settings are all correct.

20. Successfully connected to Java Virtual Console in Dell IDRAC6 for Dell Enterprise Servers with Windows command batch file, Java JAR files, Java Dynamic Link Libraries and Java Runtime Environment 6 Update 45.

21. Successfully deployed NextCloud SME/Enterprise Appliance (based on Univention Corporate Server). Successfully integrated with non-UCS Microsoft Windows Active Directory.

22. Successfully deployed site-to-site IPsec VPN tunnel between two units of Fortigate-VM64 version 5.6.8 virtual firewall appliances and VMware Workstation Pro 15.0.4.

23. Activities on 11th April 2019

a. Configured Fortigate 90D firewall (firmware version 6.0.4) from scratch

b. Re-configured Cisco 881 Router

c. Re-configured 2X Cisco Catalyst 2960X switches

d. Re-configured 3X Cisco Aironet 1600 Wireless Access Points

24. Looked into /var/log/ on Ubuntu 16.04 LTS Server for customer

25. Successfully installed and configured automysqlbackup v3.0-rc6 on Ubuntu 16.04 LTS production server. Created cron jobs.

26. Successfully deployed ModSecurity 2.9.0 Web Application Firewall (WAF) in blocking mode on Ubuntu 16.04 LTS testing server.

27. Successfully implemented Two-factor Authentication for IPsec Remote Access VPN in Fortigate firewall.

28. Introduction to Deep Packet Inspection for firewalls, eg. ndpi-netfilter Linux Kernel module.

29. Learnt how to upgrade firmware for Watchguard Firebox T10 firewall.

30. Learnt Cobian 11 Gravity backup software for Windows.

31. Successfully configured HPE FlexNetwork MSR954-W router with basic routing and SSH access.

32. Successfully upgraded firmware of HPE FlexNetwork MSR954-W router from version 7.1.059 to 7.1.064 and enabled Web UI (https only).

33. Successfully configured Ubiquity Edge Router Lite 3 router from scratch.

34. Learnt a bit about Juniper Netscreen firewall.

35. Successfully configured Cisco 881 Router with DYNDNS Dynamic DNS Update from scratch.

36. Completed 2-hour Introduction to Fortinet and Fortigate Firewalls online course at Udemy with Certificate of Completion.

37. Learnt that UniFi Cloud Key Controller is based on Debian Linux OS. UniFi Controller cannot start due to MONGODB database error. Solved by copying out backup config files using WINSCP, upgrading the firmware from 0.6 to 0.13.10, reset to factory defaults, and finally restoring backup config file.

38. Successfully integrated Fortigate 60E firewall with LDAP Server/Active Directory Domain Controller using regular binding.