“The problem with ‘covering your tracks’ in network security is that your ‘covering’ becomes more conspicuous than your ‘tracks’,” says Ed Koehler, Distinguished Engineer for Avaya’s Networking Division. Ed joins Greg Ferro and Ethan Banks for a ninja nerd-fest outlining a set of technologies that not only offer some innovative ways to set up your security architecture, but also simplifies the way that you do it.
The Packet Pushers team specifically discusses with Ed how to segment for greater anomaly identification, how to streamline your firewall strategy, and how an ISID-VLAN-VRF combination can create truly independent stealth networks. Ed also outlines how customers are using this technology in healthcare, government, retail, and transportation to comply with industry regulations such as PCI and HIPAA.
This show gets fairly nerdy, digging into L2 and L3 segmentation and exactly how that gets done with Shortest Path Bridging in the Avaya implementation. Ed is an unapologetic details guy, and the conversation gets into the weeds (in the best possible way) regarding just how frames traverse an SPB fabric in the context of “stealth.”
- 802.1aq (Wikipedia)
- Ed’s blog
- Ed’s YouTube channel
- Avaya – Stealth Networks Overview (PPT – right-click and “Save Link As…”)
- Avaya Technology Forum – Stealth PCI Networking Presentation (PPT – right-click and “Save Link As…”)