Comments
-
Spending a couple of years working with SIEM products and doing IA withing the realm of networking I have learned that SIEM encompasses all aspects of security and risk management. LEM does integrate with the complexities of different vendors and their products. When you are able to retrieve logs and live activity from…
-
Worked with Support and the fix was made in NPM 12.2. Hotfix1. I have not experienced the issue since doing that and also got my site to site VPNs showing up again. Hooray for the HotFix!
-
In the grand scheme of things, sometimes in the process of being productive, we ARE actually busy. The problem is there is a principle that manager use sometimes, if you want something done, then give it to the ones that are actually busy, not just doing busy work. How can they tell? How many things have you been tasked…
-
Eric and ecklerw1 I feel for what you are going through. I have run into similar issues with privilege levels as well as other things that cause difficulty in doing my job. As an example, if my SolarWinds server is not in HBSS' patches folder, I have more issues than I care to imagine. Latency becomes a big problem because…
-
BUMP!!! For Federal Support this is a reality. I has been directed from the highest level (Secretary of Defense) so it must be implemented sooner than later.
-
I am not saying that it is not a rewarding job or position, just sometimes we are giving directives that we scratch our head and wonder who in the world thought this up. We ask, didn't they think of the ramifications of their reaction? What it comes down to is that it is directed, it is policy and we must comply and look…
-
That's good news. The bad part is that customers that are DoD can't use it yet unless they upgrade their servers to 2016. Why wasn't 12.4 made backwards compatible with Server 2012 R2?
-
A couple of years ago, I decided that working on a particular contract was getting a little difficult with the desire of the administration to move people as data center to a central location. That would have left the site I was working on in a position where if the network went down, they would have no connection to their…
-
Yeah, too bad it takes either a massive breach or a higher power mandating these things be assessed and then implemented (without the budget to do so). Oh, usually after there are repeated attacks, hacks and breaches.
-
When developing changes to our current network, I prefer using a white board.... If I find it doesn't work or I make a mistake, it is easy to wipe clean and start over. Once my design changes have tested out and has been incorporated into the current environment, I then transfer that to Visio using the proper diagrams and…
-
I was asked to submit a Feature Request but since this one is already open. I have opened a support case for this #1047038. Because of what you said is required, when using the SSL/CAC login that is also required by the DoD it become imperative that this warning banner is visible.
-
Taking this one further... There are rumors that if you are a network engineer with a CCNA and CCNA security certifications and as part of that utilize SolarWinds on a Windows server, they are going to want you to have a Microsoft certification for Windows server too. I understand the need for training, but when you are…
-
What can we say???? We must do, but they don't know how to do it. It's up to us in the field to figure it out and share.
-
Congratulations everyone. You have all helped those of us who sometimes struggle with our configurations and have been good sounding boards when we think we are trying something that sounds utterly ridiculous and pulled us back from the edge of the cliff. Thanks all!
-
Cisco's CCNA Security - includes Next Generation IPS (FirePower) and utilizing the FirePOWER Management Center Learning and implementing Cisco Identity Services Engine for policy, posture and 802.1X (still learning)
-
Finally found this... This will save lots of time and will provide a comprehensive look at the STIGS. I notice that all the STIGS are separate, has anyone ever zipped it up in a package? I need to move it to another network that doesn't have connectivity to download these. Thanks again!!!
-
I tried to do an export job and although the job would run successfully, I set up the job to run and save to the C: drive.It saved the report to the folder on the server with the same name, not the configurations as a file with a .txt extension.
-
In the beginning there was security... Protect your data at all costs. Then came compliance... You will protect your data and report back to the government agency in charge or face fines. Or was that the other way around??? In the grand scheme of things as Josh said, they complement each other as step 1 in his 5 steps are…
-
Happen to find this while searching for an answer to why I have a site-to-site vpn showing down in SolarWinds, but the tunnel is actually up and operational. I have other tunnels that are showing the correct information. The ASA is running 9.8(2). I am going to upgrade to 9.9(2) since Cisco made some changes.
-
Well said. With that I know the DoD side is forcing to use 2FA for web logins, access to network devices with the use of 3rd party software for network admins and 2FA for workstations. I know the organizations have implemented the password creation where there is 1 upper case, 1 lower case, 1 number and 1 special…
-
I have learned through the years, that in IT mistakes covered up can have serious consequences. This not only affects the personnel, operation but there is usually a cost associated with the mistake. If mistakes are disclosed when discovered and a thorough report as well admitting to and accepting responsibility for said…
-
Has anyone experienced a server timeout type of error when monitoring the ASA?
-
Thanks, I checked it out and found it was saved in a different format than a .txt file. I was able to save it to a local folder. Hopefully they get it implemented into the next release. Sometimes there is just no time to sit there and manipulate the file so that it can be saved in a central repository for the network…
-
I am not able to log into the thwack website using my username and password. I can get into thwack if I log into the customer portal first and I don't think that is very efficient. What can I do to fix this problem? I can't even change my password.
-
New question: I have been have not been able to get information on the equipment that is located in Japan because the ping and snmp trap ports were shut on the firewall. Until I can get the snmp trap ports open again, I have been stuck without any status on the network devices. Here is the good news... 12.0 RC1 is able to…
-
I am in total agreement on this. There is an enhancement request here Vote on it if you haven't already.
-
@"dethomas", I am still trying to figure out a way to download the configurations from the FMC, but alas I have not determined a way. I am not sure that there is a feature request, as I have been looking this morning for one. If anyone out there knows how to do it using NCM, I would greatly appreciate finding out. Thanks!
-
I upgraded to NPM 12.2. and NCM 7.7 and I really like the features that it provides especially with the ASA devices. I can now look at the ACL lists and can see where issues might occur due to misconfigurations on the firewall rules. The problem that I am looking at is that I don't see the site to site VPNs, which are…
-
If you sign up for the US Global Entry, you have your fingerprints scanned and picture taken. When you re-enter the US from ports abroad, then you can go to a kiosk and do everything there without going through customs. It's really quick, but again, your face and fingerprints are on file along with PII unfortunately. It is…
-
Great article. As a network administrator, you live for syslogs.... Why, because it gives you great insight into what is going on with those particular devices and will also provide AAA information. If you are granted a SIEM suite, even better, to be able to search for particular events that would provide clues into data…
