Security

Interop: Firewalls, Booth Babes and Unicorn Poop

12 May 2013 by Mrs. Y 1 Comment

Now that I've returned from the whirlwind that was Interop Las Vegas, I thought I'd share some thoughts about my experience … [Read more...]

Filed Under: Blogs, SDN, Security, Work Life Tagged With: cisco, data center, firewall, firewalls, management, mrs. y, network, network security, networking, SDN, security, tech field day, worklife

Machine Fragile

27 April 2013 by Russ White 3 Comments

Yesterday, a “breaking news” tweet at 1:07 PM EDT from the Associated Press reported that two explosions had occurred at … [Read more...]

Filed Under: Blogs, Routing, Security Tagged With: network complexity

Firewalls: Expensive, Broken Routers

22 March 2013 by Neil Anderson 36 Comments

In a previous post on IPS, I made a fairly negative comment on the value that you get from enterprise firewalls in the modern … [Read more...]

Filed Under: Blogs, Security Tagged With: firewall, nat, ngfw, squirrel leprosy, utm

Surprised by Spam

20 March 2013 by Russ White 3 Comments

I attended my first in person meeting of the ISOC Advisory Council this last week — I'm a newly minted co-chair, and … [Read more...]

Filed Under: Security Tagged With: isoc, maawg, spam

NetCitadel and Software Defined Security

21 February 2013 by Neil Anderson 5 Comments

OneControl uses a common policy definition language to define security policies

It's been an exciting couple of weeks in the security realm, with a number of innovative startups appearing. That's … [Read more...]

Filed Under: Blogs, Data Center, Network Management, SDN, Security, Virtualization Tagged With: firewall, netcitadel, sds, security

Cisco ASA: High CPU in Dispatch Unit

12 February 2013 by Ethan Banks 8 Comments

I ran into an issue of unexpectedly high CPU utilization on a Cisco ASA firewall running 8.4.x family code; the CPU was … [Read more...]

Filed Under: Blogs, Security Tagged With: cisco asa, dispatch unit, firewall, high cpu

How to Build an IPSec VPN With Cisco ASAs & Overlapping Address Space

6 February 2013 by Eric Flores 4 Comments

There are times your company will partner with another to provide a resource to them. Often, this interaction is … [Read more...]

Filed Under: Blogs, Security Tagged With: b2b, cisco asa, cisco ios, extranet, gns3, IPsec, l2l

Network Visibility for Flexible Security Architectures

30 January 2013 by Neil Anderson 6 Comments

Deploying aggregation switches for better network visibility

Inline security appliances are a fact of modern network security architectures. There are a number of compliance drivers to … [Read more...]

Filed Under: Blogs, Data Center, Network Management, Security Tagged With: anue, gigamon, ips, ixia, netoptics, visibility, visibility fabric, waf

Using SSL Intercept With ADCs + Firewalls to Inspect & Clean Encrypted Traffic

26 January 2013 by Michael Schipp 12 Comments

The Problem Let’s take a typical enterprise. We have our internet connection going to our router (or ISP’s router), then … [Read more...]

Filed Under: Blogs, Security Tagged With: A10 Networks, application delivery controllers, f5, palo alto networks, SSL forward proxy, SSL Intercept, ssl offload

Security Superstition

20 January 2013 by Mrs. Y 2 Comments

A scientist is never certain. We all know that. We know that all our statements are approximate statements with different … [Read more...]

Filed Under: Blogs, Security Tagged With: firewall, firewalls, healthy paranoia, incident response, intrusion detection, mrs. y, network security, security, URL Categorization, URL classification, virtualization, web reputation

Interacting With the Cisco ASA CLI Using the HTTPS Interface

5 December 2012 by iggdawg 5 Comments

Most people are familiar with interacting with the ASA over HTTPS to get captures off the box, but every CLI mode is … [Read more...]

Filed Under: Blogs, Network Management, Security Tagged With: asa, management, security, tips

12 Tips for Effective IPS Deployment (Goats Optional)

4 December 2012 by Neil Anderson 4 Comments

Fresh from a conversation so frustrating that I could have cheerfully punched a goat today, I thought I'd jot down my … [Read more...]

Filed Under: Blogs, Security Tagged With: hints, ips, security, tips

Ode to a Network Engineer (in the Style of Bukowski)*

29 November 2012 by Mrs. Y 7 Comments

You are not a technical sink. You are not an infant made to passively suck up the pabulum from a vendor. Do your … [Read more...]

Filed Under: Blogs, Security, Work Life Tagged With: Employment, healthy paranoia, mrs. y, network, network security, networking, security, worklife

The Scorched Earth LAN & A Better Enterprise Security Model

21 November 2012 by Neil Anderson 6 Comments

The enterprise LAN is a blasted wasteland of dead and dying technologies. I call for a strategic retreat. It seems to me … [Read more...]

Filed Under: Blogs, Security Tagged With: lan, policy, security, software defined security, strategy, wireless

Cisco ASA 9.0 Clustering: Technical Highlights

13 November 2012 by Ethan Banks 4 Comments

Cisco has released OS version 9.0.1 for the popular and ubiquitous ASA firewall. One of the new features Cisco is touting is … [Read more...]

Filed Under: Blogs, Security Tagged With: cisco asa 9.0, cisco asa clustering, firewall

Who is Greg Ferro?

Greg Ferro is a Network Engineer/Architect, mostly focussed on Data Centre, Security Infrastructure, and recently Virtualization. He has over 20 years in IT, in wide range of employers working as a freelance consultant including Finance, Service Providers and Online Companies. He is CCIE#6920 and has a few ideas about the world, but not enough to really count.

He is a host on the Packet Pushers Podcast, blogger at EtherealMind.com and on Twitter @etherealmind and Google Plus.

View My Blog Posts

Who is Ethan Banks?

Ethan Banks, CCIE #20655, is a hands-on networking practitioner who has designed, built and maintained networks for higher education, state government, financial institutions, and technology corporations. Ethan is a host of the Packet Pushers Podcast, which has seen over one million unique downloads, and today reaches a global audience of over ten thousand listeners. Also a writer, Ethan covers network engineering and the networking industry for a variety of IT publications. He is also the editor for the independent community of bloggers at PacketPushers.net. Follow @ecbanks.