geekmungus – The ramblings of a computer geek

Microsoft Exchange On-Premise Management Tools – Microsoft Windows 10 Installation

November 20, 2025 by Tristan Self

Late to the game, but here’s how you do it. To manage the on-premise Exchange Servers from your workstation, you can use the following procedure to setup these tools for use on your workstation. 1. You will need to install Microsoft Visual C++ 2012 Redistributable (x64): https://www.microsoft.com/download/details.aspx?id=30679 2. Then install these Windows Optional Features: Reboot machine, … Read more

InfoBlox Silently Removing Records named as Subzone

November 14, 2025 by Tristan Self

A weird one that we came across today, around how InfoBlox handles a record in a parent zone which is named in such a way that it falls within scope of a subzone, then you later “cut” the zone by formally creating the subzone (i.e. delegating); in our case these records just disappear. i.e. they … Read more

Change of Behaviour Extreme Networks X690 for QSFP Ports

November 10, 2025 by Tristan Self

An unexpected change in behaviour was observed in terms of the interlink ports 57,65. The default beheaviour of the ports on previous software version: 22.6.1.4 was that being they are QSFP (40Gbit) ports that they operated at 40Gbit being that the QSFP DAC cable was 40Gbit, i.e. there was no specific port configuration for the … Read more

Billing and Cost Management – Basic Configuration (and NagiosXI Budget Check Script)

November 8, 2025 by Tristan Self

Billing and Cost Management is a significant topic, however there are some basic baseline configurations that can be added to minimise the risk of ending up with unexpected bills. The configuration below provides the mandatory standard baseline configuration, note however within your particular use case the actual threshold values (for cost and/or percentage) may differ … Read more

VPC Endpoints for SSM without Internet Access

November 8, 2025 by Tristan Self

AWS SSM Web (Services System Manager), is a way to manage your EC2 instances via the SSM tool, this provides a number of different features, the one I commonly use is SSM for reaching the console of an EC2 instance; without needing SSH. With SSM you can get to the console and a command line, … Read more

Simple AWS Secrets Manager Example

November 4, 2025 by Tristan Self

A simple example using AWS CloudFormation that creates an IAM User and then stores the user’s AccessKey and SecretKey within AWS Secrets Manager to get a hold of the value (which otherwise only exists once at creation). Assuming your user account has access to AWS Secrets Manager, you’ll then find it available here: Click “Retrieve … Read more

Palo Alto Firewall – Obtain API Key

November 1, 2025 by Tristan Self

There is an available Palo Alto firewall NagiosXI check which utilises the REST API to obtain state information from the firewall, this includes things such as PSU and FAN health. The plugin uses an API Key to allow access but to ensure you only allow the minimal privileges’ to get the information you need please … Read more

Palo Alto Firewall – VPN Status Monitoring via REST API

November 1, 2025 by Tristan Self

A plugin has been developed to allow the monitoring of the status of VPN Tunnels on the Palo Alto Firewall. The script uses the Palo Alto Firewall API to access the relevant part of the API “tree” to find the status of the VPN Tunnel(s). You can find the current version of the plugin here: … Read more

Keeper – Using with Terraform

October 19, 2025 by Tristan Self

When using with Terraform with Keeper Secrets Manager (KSM) a provider is needed to be configured, the Keeper documentation details how this can be configured. Keeper: Terraform Provider Documentation. However, a short version can be found below. https://docs.keeper.io/en/keeperpam/secrets-manager/integrations/terraform You need to have already created a Keeper Secrets Manager (KSM) profile which you can use for authentication, this … Read more

BGP AS Number Conversion

October 12, 2025 by Tristan Self

An Autonomous System Number (ASN) uniquely identifies a network or group of IP prefixes under a single administrative control that uses BGP to exchange routing information with other networks. Each ASN is used to tag routes in BGP so that routers can make loop-prevention and policy decisions. When two networks peer, they exchange routes with … Read more