Network technologies and trends:

ASA


September 9, 2016  10:44 AM

What is Cisco Firepower Threat Defense (FTD)?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
application, ASA, BGP, Cisco, Decryption, EIGRP, filtering, firewall, Integration, ISE, malware, Multicast, OSPF, RIP, Routing, Software, SSL, Static Routing, URL, VPN

Cisco Firepower Threat Defense (FTD) is a unified software image, which includes the Cisco ASA features and FirePOWER Services. This unified software is capable of offering the function of ASA and FirePOWER in one platform, both in terms of hardware and software features. This seems to be a good...

August 29, 2016  3:53 PM

Cisco ASA FirePOWER Services Licensing

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, detection, firewall, License, malware, URL

In order to have the full Next Generation Features enabled on the Cisco ASA FirePOWER Module one should ensure that they have appropriate licenses. Currently Cisco is offering follow licenses for Cisco ASA FirePOWER Services License Types


August 26, 2016  6:17 AM

Shadow Brokers group and Cisco exploit

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, NSA, Security, SNMP, Software, vulnerability

The recent claims by Shadow Brokers group to have stolen hacking tools which might belong to the National Security Agency (NSA) has drawn interest of major Security vendors.  Cisco did acknowledge that there is a vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive...


August 20, 2016  11:40 AM

Cisco ASA FirePOWER deployment options – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, Decryption, Encryption, IPsec, Security, Security policies, Ssl vpn, traffic

Cisco ASA FirePOWER module can be configured in promiscuous monitor-only mode also known as passive mode. As the name suggests, in passive mode the Cisco ASA FirePOWER module does nothing to the traffic passes through it. Rather the ASA just forwards a copy of the packet to Cisco ASA FirePOWER...


August 19, 2016  5:55 PM

Cisco ASA FirePOWER deployment options – Series 1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, Decryption, Encryption, Security policies

When it comes to deploying the Cisco ASA FirePOWER module, it can be configured in one of the following modes

  • Inline Mode
  • Promiscuous monitor-only (passive) mode
Inline Mode In an inline mode, the traffic passes through the configured ASA...


February 29, 2016  12:45 PM

Things to consider before introducing Palo Alto Firewall into routing domain- Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, BGP, Cisco, firewall, Network design, OSPF, Routing

In my previous post , I did mentioned Palo Alto Networks Firewall having issues in...


February 29, 2016  12:07 PM

How does Palo Alto Firewall identify an App?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
app, application, ASA, BGP, Cisco, firewall, HTTP, IP address, Network design, OSPF, Routing, Signatures, Technology

When it comes to identifying an application  Palo Alto Firewall is quite accurate and yield great results in either allowing or dropping the traffic based on security policy applied.  I believe App-ID is the strongest point of Palo Alto Firewalls and it makes them leaders in the Next Generation...


February 28, 2016  6:15 AM

Things to consider before introducing Palo Alto Firewall into routing domain- Series 1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, BGP, Cisco, firewall, Gartner, Gartner Magic Quadrant, Network design, OSPF, Routing

When it comes to routing, most of us are quite comfortable in using dedicated routers in Enterprise networks.  Some time the Business need or the existing network design forces an Organisation to use a traditional firewall not only as a firewall but also as a router. Well this works well, if some...


January 21, 2016  5:08 AM

What is an error “Number of interfaces…not consistent” in ASA Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco ASA, Cisco Firewall, Cisco IOS, IOS, Standby

If you are planning to do a hitless upgrade of a failover pair of ASA 5500 X Series firewall from 8.4(6) trail to 9.2(4) trail, you need to be little cautious. As you cannot do a direct upgrade, you need to rely on a interim release. Most people tend to try 9.1(2) as an interim upgrade, when you...


May 25, 2015  4:43 AM

What is Cisco IOS Software Checker?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, Cisco Nexus, firewall, IOS, Nexus, Security, Switches

We are all leaving in the age, where Network Security is given upmost importance; almost every major Organization does have a good Security team who are even responsible for looking at the vulnerabilities reported in their Network Security products. Cisco does have a great tool called


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: