Network technologies and trends:

Security


September 13, 2016  1:55 PM

What is Cisco FMW portal?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Checkpoint, Cisco, Cisco ASA, firewall, Juniper, Migration, Software

Migrating a Cisco ASA Firewall from older Cisco ASA platform to another Cisco ASA 5500 or 5500-X series platform or even from older ASA Version 7.2 (x), 8.0(x),8.1(x) or 8.2(x) to 9.1 (x) or 9.2(x) version, then one can rely on Cisco FWM portal. This web...

August 26, 2016  6:17 AM

Shadow Brokers group and Cisco exploit

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, NSA, Security, SNMP, Software, vulnerability

The recent claims by Shadow Brokers group to have stolen hacking tools which might belong to the National Security Agency (NSA) has drawn interest of major Security vendors.  Cisco did acknowledge that there is a vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive...


August 20, 2016  11:40 AM

Cisco ASA FirePOWER deployment options – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, Decryption, Encryption, IPsec, Security, Security policies, Ssl vpn, traffic

Cisco ASA FirePOWER module can be configured in promiscuous monitor-only mode also known as passive mode. As the name suggests, in passive mode the Cisco ASA FirePOWER module does nothing to the traffic passes through it. Rather the ASA just forwards a copy of the packet to Cisco ASA FirePOWER...


August 2, 2016  5:35 AM

A review for “Cisco Next-Generation Security Solutions: All-in-one Cisco ASA Firepower Services, NGIPS, and AMP”

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
CCIE, Cisco, Cisco ASA, Cisco Press, Exam, firewall, Security, threat

The newly released Cisco Press title “Cisco Next-Generation Security Solutions” seems to be a great resource which deals with Cisco ASA FirePOWER Services, NGIPS and AMP. Thanks to...


February 11, 2016  8:14 PM

Cisco ASA Firewalls can be exploited by sending crafted UDP packets

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Cisco, Cisco ASA, firewall, IPsec, IPsec VPN, LAN, UDP, vulnerabilities

Yesterday I received an email from Cisco Security Advisories about the critical vulnerability related IKE version 1 and IKE version 2 code of ASA Software which could empower an unauthenticated remote attacker to reload or even execute a code remotely on a affected ASA firewall.


January 31, 2016  5:26 AM

What are Address Objects in Palo Alto Networks Next Generation Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, FQDN, HA, Interface, IP range, IPv4, IPv6, Layer 2, LAYER3, Loopback, objects, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

Like all other firewalls , Palo Alto Networks Firewall supports Address objects. These Address Objects are basically named objects which can be configured on a Palo Alto Networks Firewall . The address object can include an IPv4 or IPv6 address or the FQDN. The address can be configured based on...


January 21, 2016  5:08 AM

What is an error “Number of interfaces…not consistent” in ASA Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco ASA, Cisco Firewall, Cisco IOS, IOS, Standby

If you are planning to do a hitless upgrade of a failover pair of ASA 5500 X Series firewall from 8.4(6) trail to 9.2(4) trail, you need to be little cautious. As you cannot do a direct upgrade, you need to rely on a interim release. Most people tend to try 9.1(2) as an interim upgrade, when you...


January 20, 2016  5:29 AM

How to configure log forwarding in Palo Alto Networks Firewall? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, logging, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

In this post we will continue the configuration of log forwarding in Palo Alto Networks Firewall, in previous post we saw how to add a Syslog Server...


January 20, 2016  5:21 AM

How to configure log forwarding in Palo Alto Networks Firewall? – Series 1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, logging, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

We all know the importance of having historical logs for any references or forensic analysis. I have personally benefitted from historical records for various reasons and  it happens to be a good practice to forward all the logs of your firewall  to a logging server. The logging server could be...


January 19, 2016  4:46 AM

How to enable logging in Palo Alto Networks Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

When it comes to live troubleshooting or to ensure certain traffic is either blocked or allowed one relies heavily on logs, Palo Alto Network Firewalls does provides very good logging options and fields. Its quite easy to read them and understands them. By default when some one creates any security...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: