Security

2024.02.16 Security 2 min read

Debating SSL Decryption in 2024

Yet another day brings another meeting about another security product recommending SSL Decryption at our network edge.

2012.09.28 Security 3 min read

Double NAT – Cisco ASA 8.4+

Recently I was faced with an issue outside my normal expertise… those of you that know me realize I am anything but a security engineer. But in reality, you must always expand your horizons.

2012.03.30 Security 7 min read

Cisco IPS Fun

Since I’ve recently had some fun working with the Cisco 5585-X and the IPS blades, I wanted to document some of the information I learned while getting them online.

2011.11.03 Security 3 min read

Gigamon and the Great Pumpkin

I could’ve just as easily called this article Gigamon… fixing problems you didn’t know about or Why Gigamon scares the crap out of me — but I wont, because they already did!

2011.09.06 Security 8 min read

Best Practices and Securing Cisco IOS

Everyone has different views on hardening IOS, and while I do not claim to be an expert, these are the practices that I commonly use when bringing up a new device.

2011.04.25 Security 2 min read

Time-based ACLs

Ever since Cisco released IOS 12.0.1T we’ve had the ability to broaden the reach of the extended ACL to allow the influence of time.

2011.02.16 Security 4 min read

ASA v8.4

Less than a year after changing the rules with ASA version 8.3, Cisco has released a new OS version 8.4.

2010.04.20 Security 2 min read

Poor man's VPN connection

Have you ever needed to access a site that had an IP restriction, or one inside your remote network?

2009.08.11 Security 2 min read

BGP Security Tips (updated)

For some, BGP is a rather large obtrusive beast of a protocol that scares them half to death.