VTIs with ASA

I’ve been stuck in more ways then one this year…working from home indefinitely seems to be the status quo right now, and I’m in “tunnel” mode for most part. Most of these projects I’m working on all of common theme.. connect on-premise to more cloud resources! One way to do that is using VTIs. (Virtual […]

Read More VTIs with ASA

FMC Syslog with Graylog Extractor

Let’s continue to talk about the Cisco Firepower Management Center, in this post we are going to look at sending connection events over to syslog. In this example I’m using Graylog which is an open source logging platform and  although any syslog server would work, one of the problems with syslogs is there is little […]

Read More FMC Syslog with Graylog Extractor

Cisco FTD Standalone

No management centers here, sometimes a standalone firewall is all you need. In this post I have a FTD appliance and there really isn’t a need tie this into Cisco’s Firepower Management Center. So we’ll configure appliance in standalone mode and go through the initial first steps that are required to get it online and […]

Read More Cisco FTD Standalone

Too Many TCP Resets

So, recently we enforced some firewall rules on a new environment, we did testing of the environment and everything was working as expected. In about 24 hours a lot of traffic from the web infrastructure was being denied and it continued, at first glance it looked like return traffic was being dropped, the web servers […]

Read More Too Many TCP Resets

VLAN Access Lists (VACLs)

VACLs are another good layer of security to help control who can talk to who, much like  access control lists that are in firewalls and routers, however the difference is VACLs operate at layer two of the OSI model. There could be situations where you have multiple hosts on the same LAN and want to […]

Read More VLAN Access Lists (VACLs)