Category contains articles on network security like NGFW, NGIPS, Loadbalancers, DNS security, Web proxy, email security, MFA.
TACACS+ can be used to perform the device administration of Cisco IOS device like routers & switches. Using TACACS+ server we can create granular policies on TACACS+ server for different set of users. In this post we will configure Cisco router for TACACS+ authentication the same configuration can be used on a Cisco switch as … Read more
Cisco Endpoint Security Analytics Configuration (CESA) earlier also known as NVM (Network visibility module) provides information about an endpoint to a central flow collector. In this post we will learn how to configure the CESA module to send the flow data to the flow collectors like Cisco secure network analytics (Stealth watch). Cisco NVM configuration … Read more
Machine authentication is something which can ensure only corporate devices are connecting to office wired or wireless network. Using Cisco ISE we can validate the machine authentication and ensure users are not using their corporate credentials on personal devices to access resources. For example a corporate user can use their corporate credential on personal mobile … Read more
Cisco Identity service engine (ISE) can act as a RADIUS server. Radius protocol can be used to authenticate, authorize the users when they try to connect to a network whether its a wired network or wireless network. The network switches or wireless controllers need to be configured so that they will make sure they authenticate, … Read more
Cisco DUO is a multi factor authentication platform. It provide multiple ways to do single sign on. One of the way is to integrate Cisco DUO with active directory. Cisco DUO provide easy and consistent login experience for every application weather they are located on cloud or on-premises. In this post will see how DUO … Read more
Microsegmentation is a network security technique which helps in dividing a data center into logically small cell containing a workload (A server). Security policies can be configured around a particular workload. With the help of micro-segmentation we allow only the required traffic needed by business and block rest of the traffic. Cisco have a Micro-segmentation … Read more
NetFlow is a network protocol developed by Cisco Systems that enables network administrators to collect and analyze network traffic data. It provides a method for capturing and recording detailed information about each network flow, including source and destination IP addresses, packet and byte counts, protocol types, and other relevant details. Cisco secure firewall can also … Read more