Network technologies and trends:

VPN


February 28, 2018  3:26 AM

Cisco announces new version of CCIE SP Written and Lab Contents with version 4.1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Access, CCIE, Cisco, Cisco IOS, Exam, Hardware, IOS, IPv4, IPv6, MPLS, QoS, router, Routing, service provider, Software, VPN

Recently Cisco updated the blueprint for the Cisco CCIE Service Provider Written & Lab exams, the new CCIE SP version 4.1 is only about 10% different than its preceding version 4.0. The exam format still remains the same, the CCIE SP written exam number also remains the same (400-201) and the...

February 5, 2018  10:19 PM

Cisco ASA Firewalls and Cisco FTDs can be – exploited remotely due to “Remote Code Execution and Denial of Service Vulnerability” updates

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Adaptive Security Device Manager, API, ASA, Cisco, Cisco ASA, Cisco Firewall, Code, Denial of Service, DOS, REMOTE, Software, SSL, VPN, vulnerability

In my previous post, I talked about the vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. On January 29,...


February 5, 2018  3:30 AM

How to ace Check Point Certified Security Administrator exam?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
CCSA, certification, Checkpoint, coaching, Exam, Firewalls, NAT, Security, VPN

Recently I was successful in passing Check Point Certified Security Administrator (CCSA) exam and now I am a Check Point Certified Security Administrator. Check Point Certified Security Administrator (CCSA) exam is a pretty straightforward exam which addresses the following topics and one need to...


February 2, 2018  12:40 AM

Cisco ASA Firewalls and Cisco FTDs can be exploited remotely due to “Remote Code Execution and Denial of Service Vulnerability”

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, Cisco, Cisco ASA, Cisco Firewall, Code, Denial of Service, DOS, REMOTE, Software, VPN, vulnerability

According to latest Cisco Security Advisories and Alerts update, Cisco ASA Firewalls, and Cisco FTDs can be exploited remotely provided WebVPN is configured on them. There is a vulnerability...


March 30, 2017  5:19 AM

Cisco ASA VPN troubleshooting  – Decaps but No encaps

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, bug, Cisco ASA, Cisco VPN, firewall, NAT, Palo Alto Networks, Policies, Proxy, Troubleshooting, tunnel, VPN

Recently we observed a strange issue while building a site to site VPN tunnel between a Cisco ASA [9.1( 5) ] and Palo Alto Next Generation firewall.(PAN-OS 7.0.9) It was observed always phase 1 part of tunnel established successfully with peer however phase 2 failed to come up. Always we were...


March 3, 2017  9:30 PM

What is an error “Subtype:Encrypt Result:Drop” in Cisco ASA Firewalls?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ACL, ASA, Cisco, Cisco ASA, DROP, firewall, Packet Tracer, Routers, Security, VPN, VPN Tunnel

After building a site to site VPN tunnel between Cisco ASA and any other firewall or router, often the tunnel is tested using the packet-tracer command in Cisco ASA firewall. While running a packet tracer when one sees an error "Subtype:Encrypt Result:Drop" as shown below

Phase:...


January 31, 2017  5:23 AM

Time to welcome CCIE Security Version 5 Written and Lab exam

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, CCIE, Cisco, cloud, CUCM, Email, Firewalls, Private Cloud, Python, Routing, Switching, UCS, virtual, VPN, Windows 2008, Windows 7, Wireless

Starting today i.e. 31st Jan 2017 , CCCIE Security Version 5 exams both lab and written are available for all CCIE aspirers all over the globe in authorised centres. The written exam known as CCIE Security Written Exam (400-251) version 5.0 is a two-hour test with 90-110 questions. However  the...


January 29, 2017  7:10 AM

Cisco launches ISE 2.2 with a promise of more visibility and control

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Cisco, Enterprise, Internet, Internet of Things, iot, ISE, NAC, Network, Rapid7, Routers, Security, visibility, VPN, Wireless

Since the introduction of Internet in early 90's to general public, no one ever imagined that Internet will grow so fast, and vast majority of organizations and consumers will be interconnected using the internet. It has expanded exponentially and still its is growing at its greatest speed. The...


September 9, 2016  10:44 AM

What is Cisco Firepower Threat Defense (FTD)?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
application, ASA, BGP, Cisco, Decryption, EIGRP, filtering, firewall, Integration, ISE, malware, Multicast, OSPF, RIP, Routing, Software, SSL, Static Routing, URL, VPN

Cisco Firepower Threat Defense (FTD) is a unified software image, which includes the Cisco ASA features and FirePOWER Services. This unified software is capable of offering the function of ASA and FirePOWER in one platform, both in terms of hardware and software features. This seems to be a good...


December 28, 2015  4:12 AM

How to configure Site-to-Site IPSec VPN on Cisco Routers? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ACL, Cisco, CRYPTO, IPsec, VPN

In my previous post we talked briefly about IPSec. We will be using the below topology for our set up. 0 Comments     RSS Feed     Email a friend


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: