Sometimes there are just too many connections in your network and your FMC cannot handle them. Especially virtual FMC is not very good syslog collector (there is limit of connection in DB). FMC is more suitable as a SIEM – all your security events should still be sent to FMC. Cisco FTD eventing design When you want to log all the connection information there will be lots of syslogs, and
It is 2019 and plenty of network devices still rely on old crypto algorithms and functions. Therefore, I decided to write down some best practices for hardening SSH on Cisco routers / switches. I tested these setting on IOS-XE 16.x releases. This article is meant as a write-down of picked security practices. You can find more technical deep-dive meaning of the commands by internet research. In fact, when it comes
For better understanding and demonstrating of IPv6 mobility mechanisms I designed this simple but sufficient network topology. You can check it on the picture below. I used three routers to describe the mobility process, although one router with three connected networks should be also enough. However, with more routers you can easier monitor and trace the differences between direct and indirect communications with mobile node. There is connected one network switching device