You are here: Home / Archives for Blog / Security

Comment: Juniper Acquiring Mykonos Software

27th February 2012 by 1 Comment

Couple of days back, Juniper announced acquisition of Mykonos Software. After reviewing the web site I find that I’m interested in this acquisition as signal of change.

Filed Under: Blog, Opinion, Security Tagged With: ,

ASA 5520 and ASA 5540 With Only One DIMM Memory Socket – Counterfeit Hardware

20th December 2011 by 1 Comment

There is a significant numbers of ASA5110 chassis that have been reworked to look and act like ASA5520 or ASA5540 firewalls. Refer this bug toolkit for more details.

Filed Under: Blog, Cisco, Operation, Security Tagged With:

Soft Switching Fails at Scale

9th July 2011 by 29 Comments

There is a significant camp of software developers who are developing software switching solutions for hypervisors. Which is nice, I guess. The use of software switching in the hypervisor has some good points but, in my view they are heavily outweighed by the bad. I present the use case, and show that software

Filed Under: Blessay, Design, Security Tagged With: , ,

Checkpoint/Nokia Firewall Clustering. Uh Oh.

17th March 2011 by 53 Comments

I’ve been reviewing a network that has some CheckPoint firewalls that have been unstable, and while this isn’t surprising (in my experience, it’s common enough for Checkpoint firewalls to be unstable for some reason or the other), this time I’ve been faced with Checkpoint Clustering. A few years back I tried to make this work, but gave up when CheckPoint couldn’t make it work either.

A few years later, I find someone brave enough to attempt it. This time it’s different, I’m the one who has to justify why it’s a bad idea. Now that the manuals are not secret anymore I think I’ve found out why.

Filed Under: Blessay, Blog, Design, Security

Cloud Security Blanket – I’m Safe NOW

17th March 2011 by 4 Comments

I’ve got a Cloud Security Blanket. Got to know that all my data is safes now.

Filed Under: Blog, Security Tagged With: ,

End of Life Notice for Cisco CS-MARS Questions CiscoíS Commitment to Security.

8th December 2010 by 11 Comments

Cisco announces End Of Life for CS-MARS. Whither goes Cisco’s commitment to Security ?

Filed Under: Blog, Opinion, Security Tagged With:

Cisco and Their Security Strategy

3rd July 2010 by 2 Comments

Recently, the Security Strategy from Cisco has become vague and ill defined.

Filed Under: Blog, Posters, Security Tagged With: , ,

Cisco ASA Failover License Changes in Version 8.3

28th April 2010 by 5 Comments

Quick notes on the Virtual Context licensing requirements when using a Active/Standby (Failover) pair and looking for gotchas and traps.

Filed Under: Blog, Security Tagged With: , ,

F5 LTM and Tcp Timouts

15th April 2010 by 2 Comments

One of the dangers of being from a pure cisco background is assumption. You treat all devices as if they have the same defaults as ‘normal’ Cisco devices. I think I’m pretty good at avoiding this, but it gets us all sometimes. As we all know, when you run long lived TCP connections through application [...]

Filed Under: Blog, Design, Security

Blessay:Firewalls Are Like Noses:Everyone’s Got One.

7th March 2010 by 9 Comments

The thing about firewalls is that all networks have them. Once, firewall expertise was rare and a special job focus. Now, firewalls are like noses – everyone’s got one.

Filed Under: Blessay, Security Tagged With:
«Older Posts
Newer Posts»