In an age where people think network security, they see access-lists, firewalls, IPS and other appliances to assist, the resiliency of the network seems to have faded into the darkness.
Object groups on the ASA allow you to group similar types of components within a single heading. You can use this heading for access-lists, which in turn can be used for access control, NAT, Read the rest of this entry
Many customers are taking advantage of Intrusion Prevention Systems at the edge of their network to protect their organizations from Internet based threats. These solutions are often integrated with the organizations firewall, mail and web security appliances. Many of these systems today have expanded beyond signature based solutions to include the concept of reputation based filtering.
While edge network IPS solutions have proved to be an effect means of mitigating threats, the increase in threat complexity has led to the need for Core IPS solutions to help protect critical business assets from the ever evolving threats of malware, worms, viruses and other threats. There are two types of solutions that can be deployed in this scenario; network based sensors and host based software.
Everyone is familiar with access-lists as a way to drop traffic in IOS. This has become a standard easy way to stop unwanted traffic from traversing networks at key points. There are other solutions as well as ways to optimize your access-lists that sometimes are a better for your router’s processor when it comes to processing traffic. Read the rest of this entry
Botnets are becoming more prevalent as malware technology becomes more sophisticated. One of the more diabolical pieces of Malware that hit the scene back in 2008 is called Mebroot. Mebroot is a rootkit that replaces a machines master boot record allowing it to install even before the operating system of the machine installs effectively protecting it from desktop protection software. Mebroot alone is rather benign in that it does not contain any specific applications but becomes a platform for other Malware. The most prevalent of these is Torpig, a massive botnet .
Anyconnect Essentials licensing allows for you to max out the number of Anyconnect VPN clients on your ASA version 8.21 or higher. So on an ASA 5520 you can have 750. Cisco is making this an incredibly inexpensive option. Just remember, if you have a failover pair, you must purchase 2 licenses.
Author: Alex Jerrold
Posted at Geeknick
When Cisco introduced its ASA5500 series of security appliances, many people viewed this simply as a PIX replacement. The reality is the ASA series of products offer customers much more than just a firewall. The ASA is now truly a multipurpose edge security device allowing customers to integrate multiple functions into a single security appliance. Let’s take a look at a few of the more popular capabilities.
VPN termination
The ASA offers multiple methods of VPN termination. Read the rest of this entry
