Security — My EtherealMind

Why Firewalls Don’t Have Telnet or SSH Clients

13th May 2011 By Greg Ferro 14 Comments

I found this on Cyber Corner blog:

Another missing ASA-feature: telnet and ssh client: “ Every single decent Cisco-device on earth has the ability to make an CLI-user jump to another device with telnet or ssh. Except the ASA. I really wish that this feature could be added. Right now I am troubleshooting a firewall and from where I am right now the only way in is to SSH to the ASA. I can do whatever I want inside the firewall from my SSH-window, but I need to access a router inside of that firewall, and if this feature wasn´t missing i could simply run ‘ssh ip-address’ to jump to the switch´s CLI.

Am I the last CLI-.guy on this planet? Please, Cisco?

Filed Under: Blog, Netscreen, Operation Tagged With: firewalls, Operation, Security

Outburst: Cisco Catalyst 6500 ASA Services Module

31st March 2011 By Greg Ferro 20 Comments

The Cisco C6500 ASA Service Module finally announced. It’s been a long wait, here are my review notes for what little information we have on the product.

Filed Under: Blog, Opinion Tagged With: Cisco, Security

Cisco SecureX – Nothing but Empty Words ?

29th March 2011 By Greg Ferro 6 Comments

Apparently SecureX is “Context Aware Enforcement”. It’s also Cisco’s current security strategy ( is that three or four in the last three years ? ). So it’s something we should probably be aware of. Right ?

I’m coming up with nothing.

Filed Under: Blog, Featured Tagged With: Cisco, Security

Citrix Branch Repeater Authentication With Cisco TACACS+

4th March 2011 By John McManus 2 Comments

I have been looking about for documentation on how to configure TACACS authentication with a Citrix Branch Repeater, however so far I have only been able to find documentation for NetScaler. So I have setup a LAB and decided to write the documentation myself. For those who cannot be bothered to read this post there [...]

Filed Under: Blog, Operation Tagged With: Blog, management, Security

Verifiying IPsec and SSL Performance of ASA Firewall

27th February 2011 By Greg Ferro 3 Comments

It’s difficult to a get any documentation from Cisco that confirms the forwarding performance of the ASA firewall. However, once you have got a unit, the “show crypto acclerator statistics” is a handy way to verify and check the hardware performance of your ASA. I think that most of this output is self-explanatory so I’m [...]

Filed Under: Operation Tagged With: cli, Operation, Security

End of Life Notice for Cisco CS-MARS Questions CiscoíS Commitment to Security.

8th December 2010 By Greg Ferro 11 Comments

Cisco announces End Of Life for CS-MARS. Whither goes Cisco’s commitment to Security ?

Filed Under: Blog, Opinion, Security Tagged With: Security

Internets of Interest:2 Sep 10

3rd September 2010 By bookmarks Leave a Comment

Collection of useful, relevant or inane places on the the Internets for 2 Sep 10:

Filed Under: Bookmarks Tagged With: Bookmarks, certification, Design, Security

Show 15 ñ Saving the Web With Dinky Putt Putt Firewalls

8th August 2010 By Greg Ferro Leave a Comment

Web Application Firewalls, Talking Puppets, ATM to IP migration and Dinky Putt Putt Firewalls.

Filed Under: Blog Tagged With: Design, Security

Internets of Interest:30 Jul 10

30th July 2010 By bookmarks Leave a Comment

Collection of useful, relevant or inane places on the the Internets for 30 Jul 10:

Filed Under: Bookmarks Tagged With: Bookmarks, Cisco, Security