Security Blogs

223 Views

0 Comments

Radius server configuration for 802.1X Server radius test1 Address ipv4 10.1.1.1 Key 1234 ! Server radius test2 Address ipv4 10.1.1.2 Key 1234 ! aaa group server radius TEST-gr server name test1 server name test2 ! aaa authentication dot1x default group T... Read More

151 Views

0 Comments

Umbrella’s cloud-delivered firewall (CDFW) is a cool features that provides Firewall Services in the Cisco Umbrella Cloud without the need to deploy on-premises firewall devices and visibility and control for internet traffic across all branch offices. To... Read More

140 Views

0 Comments

GRE over IPSec Crypto map int tunnel 1ip add 172.16.1.1 255.255.255.0tunnel source G0/0tunnel destination 2.2.2.2!access-list 100 permit gre host 1.1.1.1 host 2.2.2.2!crypto ipsec transform-set TS esp-aes esp-sha-hmac!crypto map TESTset peer 2.2.2.2match ... Read More

514 Views

2 Comments

Multiple Cisco Security Technologies in a single book : ASA Firepower, WSA, Umbrella, ISE and VPN with 100 percent 100 practical scenarios with 70 Labs to cover important topics of the Cisco SCOR Exam. The best part is ISE with interesting scenarios with ... Read More

246 Views

0 Comments

Cisco Umbrella is a big DNS service that provides not only the DNS resolution but also if the hosted website is trust or malicious, the idea behind the Layer DNS Security is that the modern attacks uses the DNS in the first step either to redirect the use... Read More

353 Views

0 Comments

I shared with you this detailed document I created with 27 pages about Cisco ISE Integration With F5 BIG-IP Locar Traffic Manager LTM Load Balancer for Guest Acces. The method used for Guest Access is the Self-Registration. Healt Monitor using HTTPS with ... Read More

431 Views

0 Comments

I created an IPSEC Site to site Tunnel between two ASA Firewalls in EVE-NG topology and i want to plot the IPSEC Site to Site VPN graph on PRTG ? The SNMP Walk command is not getting any output . As the firewall is making SNMP inbound connections with the... Read More

524 Views

3 Comments

The purpose of this document is to demonstrate how ISE can integrate with an eduroam external server which is a WI-Fi roaming service that provides international access to devices in education, research, and higher education. Students, teachers, and resea... Read More

526 Views

0 Comments

On Cisco Firepower Threat Defense there are two ways to do SSL Decryption (two actions in the SSL Policy). Decrypt-Resign: for outbound connection (from an inside PC to an external server). Decrypt-Known-Key: for inbound connection (from an external PC to... Read More

1609 Views

0 Comments

Cisco Secure Endpoint offers several protection engines which fight against threats like ransomware and zero-day. Are you an admin looking for protection on a short to mid-term basis or beginning to roll out protection across your organisation? The best p... Read More

1184 Views

0 Comments

Sometimes you want to see how the tunnel and the transport modes works with encapsulation, especially when using GRE over IPSEC and you would like to decrypt the ESP or IPSEC packet to see how GRE packet is encapulated with the two modes, especially for s... Read More

Everyone's tags (18):

518 Views

0 Comments

R(config)#ip access-list extended \\ Vytvoření ACL pro určení provozu určeného pro IPsec R(config-acl)#permit gre host host \\ Povolení peerů tunelu R(config)#crypto isakmp policy \\ Konfigurace ISAKMP pro IKEv1 SA navázání R(config-isakmp)#encryption... Read More

Everyone's tags (7):

4448 Views

5 Comments

Hi Cisco Community! We’re excited to announce the launch of the new enterprise-class Cisco Secure Firewall 3100 Series! This new Secure Firewall Series supports our evolving world by making hybrid work and zero trust practical, with the flexibility to ens... Read More

Everyone's tags (3):

5125 Views

0 Comments

Discover the value of Secure Firewall Cisco commissioned Forrester Consulting to perform an unbiased cost-benefit analysis of Cisco Secure Firewall to measure its operational efficiency and threat efficacy over a three-year period. Learn how Cisco Secure ... Read More

Everyone's tags (2):

6151 Views

0 Comments

Domain fronting is a well known CDN vulnerability that emerged several years ago. It is exploited by setting an HTTP host header that is different from the TLS SNI extension to hide a malicious domain request inside an SSL connection to a benign domain. T... Read More

Latest Contents

Cisco VPN Version 4.2 Issues

Created by Translator on 05-24-2022 11:36 AM

For weeks now I have been running issues with some different user workstations working in the Home Office mode that use the Cisco VPN Version 4.2 client by throwing the message I have added to this forum, providing support for restarting a computer or pc,... view more

VPN and Anyconnect failover

Created by jonathandill76 on 05-24-2022 11:33 AM

I have a setup with 2 FTD's- primary and secondary and 2 ISP's. When my primary ISP fails, while we still have internet access via the secondary ISP, I loose vpn access. Can you recommend a setup that if my primary ISP fails, vpn would still work and publ... view more

Firepower Ping

Created by Juraj Papic on 05-24-2022 10:54 AM

Hi all, I my firewall (Firewpower) in the G0/0 I configured the interface 192.168.100.250/24, this is directly connected do my router 192.168.100.245/24 , from the Firewall I can ping my interface but I cant ping the ip from the router, I also tried this ... view more

AnyConnect 4.10.05095 Breaks Azure AD Conditional Access

Created by jmlee-trevipay on 05-24-2022 09:27 AM

Since upgrading to AnyConnect 4.10.05095 our Azure AD authentication for VPN has broken because the login fails the Conditional Access policy. We found that the Windows 10 clients no longer report device information as part of the SAML sign-in proces... view more

Cisco ISE Home dashboard NOT displays live consolidated and ...

Created by Mini2 on 05-24-2022 07:39 AM

Hi admin How to display the device and admin group data information,I have added 4649 network devices but can't see the sync to the Cisco ISE Home Dashboards.Thanks you! hhhh