Cisco

Cisco February 27, 2020

Using Firepower logs for uncommon and overseen purposes

It is often overlooked that a Firepower sensor is capable of very rich logging of a lot of interesting metrics. These can beside the normal SecOps use-cases also provide valuable insight into the health of…

Cisco, Security February 25, 2020

Elasticsearch, Logstash and Kibana (ELK) for Cisco Firepower

Setting up a quick ELK stack for use with Ciscos Firepower Threat Defense has never been easier. In this article I will showcase setting up a docker version of the ELK stack, together with the…

Cisco June 14, 2018

Installing ISE 2.4 in the Homelab

No Homelab is complete without a state-of-the-art Identity and Policy Engine. Of course there is an official install guide available here which is written for supported Environment ect., but there are always us, the odd few…

Security November 14, 2017

Extending the life of your Firepower Lab Enviroment

When working with lab environments it is often an issue obtaining the proper licenses for the devices. This usually yields a tendency of using evaluation licenses of a temporal nature. But what happens when your…

Security September 21, 2017

Cisco ISE 2.3 as authenticator for Palo Alto Networks Firewalls

There are several ways of authenticating toward the management interface of a Palo Alto Networks Firewall (PANW). The authentications options boils down to three distinct ways namely (or mixes of the three): Local Username, Local…

Security September 18, 2017

Cisco FMC Intelligence Feeds and Threat Intelligence Director

A common use-case I encounter is the ability to dynamically update object lists referenced in policies at security perimeters (Firepower, FTD or others). This can come in one of two flavors: Security threat intelligence (aka…

Security September 6, 2017

Upgrading Cisco FTD 6.2.1 to 6.2.2

Installing the FTD 6.2.2 update on a ASA 5515X I noticed that Cisco released FTD 6.2.2 yesterday (05-sep-2017), why I naturally had to put it in my Demolab right away in order to see if…

Security August 20, 2017

Cisco FTD 6.2 – With Firepower Device Manager

First look When you first log into the FTD for FDM with a browser you will see a nice graphical interface of the units with proper color coding (i.e. green means good and orange mean…

Security August 20, 2017

From Cisco ASA to FTD with FDM

Intro I have been playing a little with a ASA 5515X appliance in the lab and have tried running the latest FTD code (6.2) with both stand-alone management (known as Firepower Device Manager) and the…

Security October 4, 2014

Cisco ASA with Firepower Services

I have had my hands on Ciscos new addition to their ASA firewall/IPS portfolio, the ‘Cisco ASA with Firepower Services’. And as with all technology there are both pros and cons to mention in this initial release…

Staffeldt.Net

Yet another corner of the Internet