In this video, we're going to integrate ISE and Stealthwatch via pxGrid and share contextual information. Part 2 will dig into configuring adaptive network control with Stealthwatch and ISE.
In this video, we’re going to configure SNMP for the exporters on Stealthwatch. While it might not seem like a big deal, this will help with ensuring that the interface names and speeds are correctly showing in the Stealthwatch Management Console.
This is going to be a really short video. I’m going to walk through the configuration of ETA on my CSR1000v. As of IOS-XE version 16.6.2, support for ETA was added on ISR and CSR routers.
In this video, we’re going to be configuring Netflow and ETA on the Catalyst 9K. After we’ve completed that, we’ll do a little walkthrough of Cognitive Threat Analytics and ETA.
In this video, I'm just upgrading my Catalyst 9300 and looking at some basic syntax changes. It's not a security video but I figured I'd record it anyways.
In this video, we’ll be going to be configuring Netflow on FTD for Stealthwatch
In this video, we’ll be going over the configuration of Netflow on my router for Stealthwatch.
In this video, I'm going to be configuring my switches with a compatible Netflow configuration for Stealthwatch
In this video, I'll be exploring some of the uses of Stealthwatch and going over the security policy.
In this video, we’ll be going over how appliance administration is different in Stealthwatch 7.0 and the new apps feature in Stealthwatch.
In this video, I'll go over the components of Stealthwatch and install both the Steathwatch Management Console and Flowcollector in my lab.
It’s been awhile since I updated my blog and videos. I know there’s been a lot of changes to Cisco Security products. Since I have to rebuild my lab anyways, I wanted to update some of these posts and videos. Expect a lot more videos coming from me over the course of the next few weeks.
Since Tetration has visibility both inside the endpoint and the traffic flowing through the network, it gives us some amazing forensic analysis capabilities. In this post, we will review some of these powerful capabilities but this is far from all of the forensic features in Tetration.
Before making any policy changes, one usually would want to be able to analyze how it would impact traffic. Tetration has the ability to simulate and validate policy before applying changes using its Policy Analysis feature.
One of the awesome things that Tetration can do is create dynamic policies based on changing conditions and detect vulnerable software in workloads. In this blog post, I will briefly go over both of these features.
We previously went into application mapping in this blog post and we will delve into it further in this post to explain how that application mapping is used to create whitelists that can be used for micro-segmentation.
I took some time to import and update quite a bit of RADIUS vendor dictionaries for 3rd party vendors into ISE. I grabbed this information from various community and open source sites but I obviously can't test it against every vendor out there since I don't have a selection of 140+ 3rd party NADs sitting in my lab. After I imported them to ISE, I exported them and have uploaded them here.
In this post, I’ll be going over the Host Profile dashboard inside of Tetration. It won’t be a long post but it’ll show you some of the details one can gleam from this dashboard.
In this post, we’re going to dig into how applications are mapped in Tetration, what it looks like in the UI and how this information can be used.
Before I begin, I’d just like to thank my friend JP Cedeno for giving me a crash course into Tetration and allowing me to use what he taught me to make the next few blog posts. I’d also like to dedicate this blog post to Matt White who asked for it some months ago. In this blog post, we’re going to go over the fundamentals of Tetration.