Off The Cuff – Engineering In The Enterprise
Is engineering talent disappearing from the enterprise? Our panel thinks so, and has a conversation about the implications for both businesses and individuals. This episode was recorded at Cisco Live 2017 in Las Vegas, NV.
Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/
Denise Donohue
Guest
Mike Zsiga
Guest
Daniel Dib
Guest
Jeff Fry
Guest
Jordan Martin
Host
Audio Only Podcast Feed:
The post Off The Cuff – Engineering In The Enterprise appeared first on Network Collective.
Using Geolocation in Firepower Access Control Policies
The use of geolocation is fairly obvious in monitoring networks with Firepower Management Center. What may be less obvious is that Continents and Countries can also be specified as the source or destination of connections in an Access Control Policy. Basically, this geographical information becomes one more match criteria that can be used to identify traffic for a block or allow action.
To get to this capability, open the Access Control Policy that is in use by the Firepower device. Within the policy, open or create an applicable rule. On the network tab (where you configure the source and destination addresses) a Geolocation tab can also be found. Clicking on this tab exposes Continents and Countries. These can be added as sources and/or destinations.
Note to reader: All Firepower content can be accessed by clicking here (or choosing Firepower from the menu at the top of the page).
As can be seen in the diagram above, I am creating a rule to block traffic to France. Before I save and deploy the policy changes to the device, I will confirm reachability to an IP address that exists in that part of Europe.
Last login: Mon Jul 17 11:48:29 on ttys000 PAULS:~ pauls$ Continue reading
Tools for TE with EIGRP
In response to my article about what would cause a directly connected route to be overridden, Matt Love (@showflogi) made a good observation:
Good stuff - LPM rule can be a useful tool if you want to manipulate paths without mucking with metrics, esp if using multiple protocols
— Matt Love (@checktheroads) July 13, 2017
What Matt is saying is that longest prefix match (LPM) is a mechanism that can be used to steer traffic around the network in order to meet a technical or business need. This type of traffic steering is called traffic engineering (TE).
Juniper Networks Snatches its New CTO Bikash Koley from Google
Juniper’s former CTO was the founder of the company.
Ixia Brings in ProtectWise to Strengthen Cloud Visibility Product
This partnership has been in the works since Ixia announced the availability of CloudLens for the public cloud.
Rackspace Partners with Google Cloud, Pivotal Cloud Foundry
It struck managed services deals with the two companies.
Geek Summer Camp Review – Cisco Live 2017 Recap
It has been a few weeks since Geek Summer Camp has ended, oh how I miss seeing everyone. Now that …
The post Geek Summer Camp Review – Cisco Live 2017 Recap appeared first on Fryguy's Blog.
Worth Reading: Secure the Grid
The post Worth Reading: Secure the Grid appeared first on rule 11 reader.
Ninth Circuit Rules on National Security Letter Gag Orders
As we’ve previously discussed on this blog, Cloudflare has been challenging for years the constitutionality of the FBI’s use of national security letters (NSLs) to demand user data on a confidential basis. On Monday morning, a three-judge panel of the U.S. Ninth Circuit Court of Appeals released the latest decision in our lawsuit, and endorsed the use of gag orders that severely restrict a company's disclosures related to NSLs.
CC-BY 2.0 image by a200/a77Wells
This is the latest chapter in a court proceeding that dates back to 2013, when Cloudflare initiated a challenge to the previous form of the NSL statute with the help of our friends at EFF. Our efforts regarding NSLs have already seen considerable success. After a federal district court agreed with some of our arguments, Congress passed a new law that addressed transparency, the USA FREEDOM Act. Under the new law, companies were finally permitted to disclose the number of NSLs they receive in aggregate bands of 250. But there were still other concerns about judicial review or limitation of gag orders that remained.
Today’s outcome is disappointing for Cloudflare. NSLs are “administrative subpoenas” that fall short of a warrant, and are frequently accompanied Continue reading
Awake Security Pops Out of Stealth Mode with $30M, Automation Focus
Gartner predicts automated penetration testing to hit 10 percent by 2020.
Ericsson Continues Downward Spiral in 2Q, More Restructuring Ahead
Ericsson's network business was impacted by operators expanding fiber instead of investing in radios.
Security Startup Corelight Raises $9.2M for Enterprise Network Visibility
Its security product is based on open-source Bro.
Switching to LTE-U/LAA? Save a Bundle by Leveraging Existing Wi-Fi Networks Instead.
Will there be any room left for Wi-Fi in the brave new world of LTE-Unlicensed (LTE-U) and LTE Licensed Assisted Access (LAA) deployed in the 5 Gigahertz (GHz) spectrum band? These two technologies are just starting to be promoted by a number of mobile carriers and embraced by some early adopter enterprises that want better... Read more →