Friday, May 31, 2013

Last week I had to configure a Fortigate with IPv6. Also the firewall was needed to works as DHCPv6 Server.

Within two weeks, we will have around 200-300 network administrators in a conference room connected by WIFI. We want this users only get IPv6 addresses. So, if the network administrators haven't just implemented the IPv6 in their remote networks, they will not be able to connect to them. We want they to keep in mind the importance of IPv6 in the near future.

The next configuration is running on the v5.0.2 Fortigate firmware version. This version is only recommended for testing propourses. I recommend you the v4.3.10 firmware version. In this case we want to test the last firmware version in an "production environment" too.




How to configure the external Interface:

config system interface
    edit "wan1"
        set alias "External"
            config ipv6
                set ip6-address xxxx:xxx:xxx:113::2/64
                set ip6-allowaccess ping
                set ip6-manage-flag enable
                set ip6-other-flag enable
            end
    next



How to configure the static6 route:
 
config router static6
    edit 1
        set device "wan1"
        set gateway xxxx:xxx:xxx:113::1
    next
end


Posted on Friday, May 31, 2013 by Javier Nieto

No comments

Friday, May 17, 2013

ByEge has published a new weakness on wp-FileManager plugin. If you take advantage of this vulnerability, you could download for example the wp-config.php file where you can find out the database name, user name and password for the Wordpress site.

Google Dorks: inurl:wp-content/plugins/wp-filemanager/

Test : http://server/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download



Only  works if "Allow Download" setting is checked in the FileManager's settings on the server.

Original source here.

Posted on Friday, May 17, 2013 by Javier Nieto

No comments