— to-scan-list —
192.168.1.2
192.168.10.0/24
10.0.2.3

nmap -v -iL to-scan-list -P0 -oN nmap-scan-out

FREEBSD# date -v-1d +%d-%m-%y
LINUX# date -d ‘yesterday’ +%Y%m%d
#perl -le ‘print scalar localtime time - 86400’

More complicated: http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800946b7.shtml

ip radius source-interface Loopback0
radius-server host 10.90.15.1 auth-port 1645 acct-port 1646 key 7 02050D480809
For ipsec:
aaa authentication login userauthen group radius local

Radius: Reply-Success Service-Type Outbound

For cli login:
aaa authentication login default group radius local

Radius: Reply-Success Service-Type ( Login | Nas-Prompt )
Radius: Reply-Success cisco-avpair =”shell:priv-lvl=15”

1. setenv CVSROOT /usr/local/var/rancid/CVS
2. cvs checkout corecisco
3. cvs log corecisco file

cvs checkout -D ‘1 month ago’ corecisco

mkpeer vlan51: netflow lower iface0
name vlan51:lower netflow
connect vlan51: netflow: upper out0
msg netflow: setifindex { iface=0 index=100 }
msg netflow: setdlt { iface=0 dlt=1 }
connect vlan300: netflow: lower iface1
connect vlan300: netflow: upper out1
msg netflow: setifindex { iface=1 index=101 }
msg netflow: setdlt { iface=1 dlt=1 }
connect vlan302: netflow: lower iface2
connect vlan302: netflow: upper out2
msg netflow: setifindex { iface=2 index=102 }
msg netflow: setdlt { iface=2 dlt=1 }
mkpeer netflow: ksocket export inet/dgram/udp
msg netflow: export connect inet/a.b.c.d:4444

and simple sh script:

#!/bin/sh
if=0
index=100
IFLIST=’vlan51 vlan300 vlan302’
for i in $IFLIST
do
if [ $if = 0 ]
then
echo “mkpeer $i: netflow lower iface$if”
echo “name $i:lower netflow”
else
echo “connect $i: netflow: lower iface$if”
fi
echo “connect $i: netflow: upper out$if”
echo “msg netflow: setifindex { iface=$if index=$index }”
echo “msg netflow: setdlt { iface=$if dlt=1 }”

if=`expr $if + 1`
index=`expr $index + 1`
done
echo “mkpeer netflow: ksocket export inet/dgram/udp”
echo “msg netflow: export connect inet/a.b.c.d:4444”

ssh -2 -N -f -L 8888:music.example.com:8000 user@unfirewalled-system.example.org
->
http localhost 8888

ifconfig em0 inet 10.0.0.1/24 # add primary ip address
ifconfig em0 inet 10.0.2.1/24 alias # add secondary ip address
ifconfig em0 -alias # removes ip address

ifconfig vlan15 create vlan 15 vlandev em0 # create vlan, set tag and parent
ifconfig vlan15 destroy # delete vlan interface

/etc/rc.conf
cloned_interfaces=”lo1 vlan12 vlan15” # create interfaces ( see ifconfig -l )
ifconfig_vlan12=”192.168.198.100/24 vlan 12 vlandev em0”
ifconfig_vlan12_alias0=”192.168.199.1/24 vlan12 vlandev em0” # alias !!
ifconfig_vlan15=”172.16.3.27/29 vlan 15 vlandev em0”
ifconfig_lo0_alias0=”10.10.10.10/32” # additional ip int on loopback

route add 10/8 10.4.18.1
route add default a.b.c.d
route change default a.b.c.e

/etc/rc.conf
defaultrouter=”10.4.18.254”

perl –MCPAN –e ‘install DBD::PgPP’

Packages:
pkg_add -r lsof
pkg_info
pkg_delete

Obtaining the Ports Collection:
csup -L 2 -h cvsup.FreeBSD.org /usr/share/examples/cvsup/ports-supfile

Portsnap Method:
portsnap fetch # download
portsnap extract # unzip
portsnap update # update

ports-supfile:
*default host=cvsup2.ru.FreeBSD.org
*default base=/var/db
*default prefix=/usr
*default release=cvs tag=.
*default delete use-rel-suffix
*default compress
ports-all

— make && install —
cd /usr/ports/net/quagga; make install clean

— rc.conf —
echo ‘quagga_enable=”YES”’ » /etc/rc.conf
echo ‘quagga_daemons=”zebra ospfd bgpd”’ » /etc/rc.conf

— daemon conf —
: > /usr/local/etc/quagga/ospfd.conf
: > /usr/local/etc/quagga/zebra.conf
: > /usr/local/etc/quagga/bgpd.conf
chown -R quagga /usr/local/etc/quagga

— vtysh —
router ospf
router-id a.b.c.d
passive interface default
no passive-if
log-adjacency-changes
auto-cost reference-bandwidth 2000