Security

2024.02.16 Security 2 min read

Debating SSL Decryption in 2024

Yet another day brings another meeting about another security product recommending SSL Decryption at our network edge.

2017.02.15 Security 2 min read

Ixia Vision ONE – Tap the Planet

Whenever I start talking about network visibility and aggreagation taps I can’t help but think of The Matrix.

2012.09.28 Security 3 min read

Double NAT – Cisco ASA 8.4+

Recently I was faced with an issue outside my normal expertise… those of you that know me realize I am anything but a security engineer. But in reality, you must always expand your horizons.

2012.03.30 Security 7 min read

Cisco IPS Fun

Since I’ve recently had some fun working with the Cisco 5585-X and the IPS blades, I wanted to document some of the information I learned while getting them online.

2011.11.03 Security 3 min read

Gigamon and the Great Pumpkin

I could’ve just as easily called this article Gigamon… fixing problems you didn’t know about or Why Gigamon scares the crap out of me — but I wont, because they already did!

2011.09.06 Security 8 min read

Best Practices and Securing Cisco IOS

Everyone has different views on hardening IOS, and while I do not claim to be an expert, these are the practices that I commonly use when bringing up a new device.

2011.04.25 Security 2 min read

Time-based ACLs

Ever since Cisco released IOS 12.0.1T we’ve had the ability to broaden the reach of the extended ACL to allow the influence of time.

2011.02.16 Security 4 min read

ASA v8.4

Less than a year after changing the rules with ASA version 8.3, Cisco has released a new OS version 8.4.

2010.04.20 Security 2 min read

Poor man's VPN connection

Have you ever needed to access a site that had an IP restriction, or one inside your remote network?

2009.11.23 Security 4 min read

IOS ACL Resequencing

This is one of those tricks you wish you learned about 10 years ago, but never did. You know how easy it is to mess up a nice looking access list.