NOTE: This is an incomplete article – I will continue to publish more as I can. I have provided the needed code for “webserver_config.py” I have not included information for the “App Registration” in Azure....
Continue reading...Security
Cisco ACL — Dedicated Internet Edge Drop Device
A dedicated drop device is a network appliance, usually a router or L3 switch that sites at the very edge of your network infrastructure. Beyond the firewall, and usually acts a as either layer 2...
Continue reading...
The Remote Access VPN Battle — SSL vs IPSec VPN
I’ve recently posted two articles covering two different VPN connection methods. SSL Remote VPN and IPSec Remote VPN via Cisco ASA security applicance. In the article I promised I would go thru and do a...
Continue reading...Cisco AnyConnect SSL/TLS Trustpoint
I wanted to put together a quick tutorial for setting up a Cisco ASA – AnyConnect with SSL/TLS. I’ve done it a few times and I always have to re-lookup each step and the order...
Continue reading...
F5 BIGIP and HAProxy — Masking 2-Way “Mutual” SSL Authentication
Hello folks, So a recent post I published talked about 1-Way vs 2-way SSL Authentication in some decent detail. We learned that 2-Way “Mutual” SSL Authentication can be used to enforce both parties attempting to...
Continue reading...
Linux — OpenSSL One,Two-way authentication
Table of Contents About SSL Authentication Quick Review Creating a Certificate Authority 1-way “Standard” SSL Authentication 2-way “Mutual” SSL Authentication Advanced SSL Authentication: CRLs, CDP, and OCSP Concept Review About SSL Authentication: TLS Authentication or...
Continue reading...CiscoASA — AnyConnect SSL VPN Setup
As promised here is my article on how to setup a SSL remote VPN, an alternative to IPSec Remote VPN from this article. What’sĀ great is the steps to setup an SSL remote VPN service are...
Continue reading...
What is NAT-Traversal??
Hi All, been awhile since my last post, however I believe this to be a good one!. So…the question arose the other day regarding NAT-Traversal. What is that? Why do we have it? What does...
Continue reading...F5 BIGIP — Configuring the F5 AOM (Always On Management) interface
The F5’s AOM (Always On Management) interface module is one of the fundamental administrative features offered by BIGIP appliances. If you are familiar with System or Blade management devices, it is the similar to ILO...
Continue reading...What the IPSEC are you talking about?
What is IPsec? Most of the time when we are trying to establish a site-to-site or LAN-to-LAN connectivity between two independent parties over an untrusted medium we rely on IPsec. Internet Protocol Security (IPSec) is...
Continue reading...