Creating a Firepower Peer to Peer Dashboard

Peer to peer applications are a significant challenge for policy enforcement solutions. Any flows that slip through as an undetermined application type may allow the file sharing app to function. The first key to addressing this challenge is simple visibility into which hosts or users may be abusing the AUP with these types of applications. This article shows a quick and easy way to create Peer to Peer dashboard in the Firepower Management Console.

For those that have already attempted this, there are a number of challenges that may have surfaced. First there are no readily available widgets or criteria that will show the desired information. Experimenting with search constraints and the connection table quickly reveals that the desired information can be easily accessed by using the “peer to peer” Application Protocol Category search criteria. Unfortunately, the Connection Table is not readily available to the Dashboard Widgets. The Connection Summary table is available, but it does not have the Application Protocol Category (required for the search constraints).

My goal was to build a few dashboard widgets to give visibility into Peer to Peer activity. For this article I will demonstrate the steps required to build those widgets. The first widget will provide Continue reading

2016 technology industry graveyard

Pay your respectsTech vendors only have so many resources, and as a result they continually have to make tough choices about which products stay and go. BlackBerry, Dell, Google, Microsoft and others have all made such decisions this year, so here’s your chance to pay respects to those products and services that aren’t going to make it past 2016…To read this article in full or to leave a comment, please click here

Prime Day Deal on Bose SoundSport and SoundTrue Headphones – Prime Day Deal Alert

Discounted by 50% as part of Prime Day, Bose Sound Sport in-ear headphones deliver deep, clear sound for the music you love, with a durable design that stands up to the rigors of your day. Exclusive TriPort technology provides crisp highs and natural-sounding lows, while acoustic ports are positioned to resist sweat and weather, and hydrophobic cloth keeps moisture out. Proprietary Stay Hear tips conform to your ears' shape, so they stay comfortably in place all day long. They even include a matching carrying case for storage and added protection. Check this deal out on Amazon now.To read this article in full or to leave a comment, please click here

Amazon Prime Day Offers Huge Deals on Phones and Accessories – Prime Day Deal Alert

There are over 100,000 deals happening today on Amazon for Prime Day, so we've rounded up some of the better deals you'll find on phones, phone accessories and wearables right here in one spot. As a reminder, Prime Day is for Amazon Prime members only, but a 30 day trial (if you sign up here) will work just the same and you can cancel before you get charged.  $100 off LG G5 unlocked smartphone $150 off Nextbit unlocked smartphone Save $50 on ZTE Axon Pro 64 GB unlocked smartphone Save 36% on Spire Mindfulness and Activity Tracker for iOS $129 for Republic Wireless Moto G (3rd Gen) 8GB $39.99 for the LG Volt 2 from Virgin Mobile $79.99 for FreedomPop Supernova 4G LTE/3G Hotspot - Black with 1 GB free data Garmin GPSMAP 64s Worldwide with High-Sensitivity GPS Prime Members save 30% on BlackBerry Passport unlocked smartphones iPhone 6 Case, Spigen® Slim Armor CS With Card Holder & Advanced Shock Absorption EYN Products Battery Charger Case for iPhone 6 LifeProof FRE POWER iPhone 6 ONLY (4.7" Version) Waterproof Battery Case 21% off Huawei Nexus 6P 5.7" Android 6.0 Unlocked Smartphone, 64 GB (U. Continue reading

Save $120 off Toshiba Chromebook – Prime Day Deal Alert

With this Prime Day deal you save $120 off the Toshiba Chromebook 2 . The Chromebook 2 offers brilliant performance for an outstanding experience on and off the web, plus entertainment-inspired features, style and awesome battery life—all so you can get things done faster, while staying entertained from anywhere.  It averages 4.5 out of 5 stars from over 550 reviewers (read reviews). Amazon indicates that its $400 list price has been reduced by $120 to just $279.99.To read this article in full or to leave a comment, please click here

Amazon Is Paying You to Buy a Dash Button Today – Prime Day Deal Alert

For Prime Day only (today), Amazon has discounted its series of Dash buttons down from $4.99 to just $0.99, and will credit you $4.99 after the first time you use it. The Dash button is a simple gadget. Just hook it up to a frequently ordered product, and the next time you need to order it, just press the button. Amazon will send you a notification that the order is being processed, which gives you a chance to cancel it if needed. And Amazon will not ship again until the item has been successfully delivered regardless of how many times the button gets pushed in the meantime. To learn more about the dash button, and to take advantage of this profitable discount, visit the dash button product page on Amazon sometime today. If you're curious about other deals today, there are over 100,000 more you can explore via Amazon's Prime Day Deals page. You need to be a Prime member, but a 30 day Prime trial (available here) will work just the same, and you can cancel whenever you'd like.To read this article in full or to leave a comment, please click here

20% off 3M Gold Privacy Filters – Prime Day Deal Alert

Discounted by 20% for Prime Day these 3M Privacy Filters for widescreen and standard LCD monitors are the perfect fit for people who want their private data to stay out of sight.  An unprotected screen can expose sensitive and private information, trade secrets and business plans. And the reality is, a visual hacker may only need one piece of valuable information to unlock a large-scale data breach. Check out these Discounted Privacy Filters at Amazon today for a special 20% discount.To read this article in full or to leave a comment, please click here

24% off Samsung Curved 55-Inch 4K Ultra HD Smart LED TV – Prime Day Deal Alert

For Prime Day, today only, Amazon has reduced the price of the Samsung UN55KU6600 Curved 55-Inch 4K Ultra HD Smart LED TV by 24%, bringing its already low price of $1,047.99 down to just $799.99. With the KU6600 Curved TV, enjoy 4K Ultra HD resolution and High Dynamic Range (HDR) content that delivers greater depth and clarity with Auto Depth Enhancer and a fuller spectrum of color with PurColor. Access your favorite content quicker and easier with the new Samsung Smart TV platform powered by a Quad-Core Processor. See the discounted Samsung UN55KU6600 Curved 55-Inch 4K Ultra HD Smart LED TV on Amazon now. And to see the seemingly endless list of deals Amazon is dishing up today, explore the full set of Prime Day deals here. As a reminder, Prime Day is for Amazon Prime members only, but a 30 day trial (if you sign up here) will work just the same and you can cancel before you get charged.To read this article in full or to leave a comment, please click here

Amazon Dishing Up Dramatic Deals on PC’s and Accessories Right Now – Prime Day Deal Alert

As you read this, Amazon is discounting 100,000+ products for today only. It's Prime Day, their biggest day of the year. Here, we've rounded up some of the PC's and accessories currently on sale, but you can explore the full set of Prime Day deals here. As a reminder, Prime Day is for Amazon Prime members only, but a 30 day trial (if you sign up here) will work just the same and you can cancel before you get charged.  $250 off Lenovo Z70 17.3-Inch Laptop (Core i7, 16 GB RAM, 1 TB + 8 GB HDD, Windows 10) HP Pavilion 300-230 Mini Desktop (Intel Core i3, 4 GB RAM, 1 TB HDD) iBUYPOWER AM-AR960 Liquid Cooling Gaming Desktop - Intel Core i5-6500, NVIDIA GTX 960 2GB, 8GB DDR4, 1TB HDD, 128GB SSD, DVDRW, 802.11ac Wi-Fi USB Adapter, Windows 10 Save $120 on Toshiba Chromebook 2 - 2015 Edition (CB35-C3350) Full HD, Backlit Keyboard 20% off Lexar 512GB Portable SSD  27% off SanDisk iXpand 64GB USB 2.0 Mobile Flash Drive with Lightning connector For iPhones, iPads & Computers 40% off Wacom Bamboo Smart Stylus for Samsung Galaxy Note TP-LINK N300 Wi-Fi Range Extender 30% off Targus SafePort Case Rugged Max Continue reading

VPN provider cuts of service to Russia after servers seized

Private Internet Access, a provider of virtual private network services, has shut down its Russian gateways and won’t do business in the region any longer, as it believes that some of its Russian servers were seized by the government for not following new internet surveillance rules.The provider, which holds that it does not log traffic or session data, said it had likely fallen foul of new Russian rules that require that providers must log local traffic for up to a year.“We believe that due to the enforcement regime surrounding this new law, some of our Russian Servers (RU) were recently seized by Russian Authorities, without notice or any type of due process,” the provider’s team said in a blog post Monday.To read this article in full or to leave a comment, please click here

VPN provider cuts of service to Russia after servers seized

Private Internet Access, a provider of virtual private network services, has shut down its Russian gateways and won’t do business in the region any longer, as it believes that some of its Russian servers were seized by the government for not following new internet surveillance rules.The provider, which holds that it does not log traffic or session data, said it had likely fallen foul of new Russian rules that require that providers must log local traffic for up to a year.“We believe that due to the enforcement regime surrounding this new law, some of our Russian Servers (RU) were recently seized by Russian Authorities, without notice or any type of due process,” the provider’s team said in a blog post Monday.To read this article in full or to leave a comment, please click here

VPN provider cuts off service to Russia after servers seized

Private Internet Access, a provider of virtual private network services, has shut down its Russian gateways and won’t do business there any longer, as it believes some of its servers were seized by the government for not following new internet surveillance rules.The company said it had likely fallen foul of new rules that require providers to log local traffic for up to a year. Private Internet Access says it does not log traffic or session data.“We believe that due to the enforcement regime surrounding this new law, some of our Russian Servers (RU) were recently seized by Russian Authorities, without notice or any type of due process,” the provider said in a blog post Monday.To read this article in full or to leave a comment, please click here

BRKEWN-2019 – 7 Ways to Fail as a Wireless Expert

Presenter: Steven Heinsius, Product Manager, Enterprise Networking Group

I’m hoping the title of this session could also be “7 Ways to not be a TOTAL Wireless Noob” since that’s more my level.

The Basics

• WiFI has been a standard since 1997

Taking a 100 employee company….

• 1999: 1-2 clients on the network
• 2005: 5 or 10
• 2007: 25+ (802.11n came around)
• 2010: 150 (smartphones in the office; laptops becoming the norm in the office)
• 2013: > 200
• 2016: > 300 (3 devices per person)

In 2007-2009, networks were designed for coverage. Those networks are still around and are being asked to support (on average) 3 devices per person.

WiFi is

• Half duplex
• A shared medium (like a hub!)
• AP talks to one client at a time; airtime is time sliced amongst all clients
• AP asks a client to ack every packet (?) it sends to a client
• Acks are retransmitted if not answered which means all other clients have to remain silent (and lowers performance)

Distance vs modulation

• When a client is farther away from the AP, the modulation is stepped down to increase the likelihood that the signal will make it
• The trade off is that Continue reading

BRKNMS-2701 — How I Learned to Stop Worrying and Love Prime Infrastructure

Presenters:

• Lewis Hickman, Consulting Systems Engineer
• Jennifer Valentine, Systems Engineer

BRKARC-3300 — IOS-XE: Enabling the Digital Network Architecture

Presented by Muhammad A Imam, Sr Manager Technical Marketing Engineering

Ironically, Datadog Suffers a Security Breach

Just when it was bragging about its Azure integration.

BRKIOT-2109 – Connecting Oil and Gas Pipelines

Presenters:

• Rick Irons-Mclean, Oil & Gas and Energy Architecture Lead
• Jason Greengrass, IoT Solution Architect

Connected Pipelines Validated Design: coming this week! Cisco.com/go/cvd > Oil & Gas area

• This CVD was built with customer input (from around the globe) and Cisco account team input (including yours truly)
• Next iteration of the CVD will contain more security, including providing better visibility into  traffic and events in the control center network

For those that aren’t familiar with the oil/gas business, there’s three areas:

• Upstream: discovery and extraction
• Midstream: storage and transport
• Downstream: refining (turning it into product) and marketing/selling

Cisco can work and play in all three areas. Eg:

• Connected Pipeline
• Connected Refinery
• Secure Ops (managed security services from Cisco)
• Connected Oilfield

ISA95/99 (aka Perdue Model) – describes an architecture for different security zones within the industrial environment.

• Bottom is Level 0 – where the process actually happens (valves, pumps, etc)
• Top is Level 5 – the business/enterprise network

Operational principles (compare this with a typical enterprise environment and principles):

• Continuous operation: 24×7, 365 days a year
• Continuous visibility and control: operators need constant communication to the pipeline
• Safety and compliance: pipeline integrity, safety, security and reliability

With respect to 24×7 Continue reading

Cisco brings some (real) friends to the chat-bot party

The next time you chat with someone on Cisco Systems’ Spark messaging service, that someone may not be a co-worker -- or even a person. Welcome to the world of bots.On Monday at the Cisco Live conference, Cisco said it’s working with the messaging company Gupshup so more developers can bring their bots into Spark. It also introduced a partnership with Api.ai, a natural-language software company, in part to help developers build interfaces where users can just talk to bots.Bots aren’t brand-new to Spark, but Gupshup prides itself on its chat-bot development platform, which is designed to make it easy to build bots and make them available through popular communications channels. The list already includes Facebook, Skype, Twitter and Slack.To read this article in full or to leave a comment, please click here

China’s Triple Play For Pre-Exascale Systems

Before any country can deploy an exascale system, they have to get pre-exascale prototypes into the field to test out their underlying technologies and determine what approaches have the best chance of scaling up performance and being manufactured affordably. It looks like China is looking at three different pre-exascale systems, and none of them will deploy processors or accelerators made by US companies.

It is no secret that China has wanted to develop an indigenous capability to design chips and build supercomputer-class systems, and this was true even before the US government put the kibosh on selling Intel Xeon and …

China’s Triple Play For Pre-Exascale Systems was written by Timothy Prickett Morgan at The Next Platform.

Cisco Live: Robbins Expands On DNA Strategy