Cisco TAC Security Podcast Series

Nic Conroy and Prerna Sivadas join host Kevin Klous to discuss the recent release of Cisco DevNet certifications and why network and security professionals should consider adding them to their career development roadmaps. In addition, the team engages in SDN-related topics such as APIs, scripting, containerization, etc. and how they converge into what we generally call DevOps along with the implications it has on cybersecurity efforts.

The podcast team welcomes newcomer guests Nic Conroy and Zack McIntosh to discuss their experiences with the CCIE Security certification and the recent changes in the latest version 6 of the exam. They review study strategies for the practical exam, effective virtualization options, and how to emotionally cope with the challenges that come with taking on the formidable task. Discover why now is a great time to begin your CCIE journey during the 2020 lockdowns and hear their valuable insights to help you along the way.

In this episode, the podcast team welcomes back two former hosts Wen and Jay along with a special guest Shannon Wellington to discuss the recent phenomenon of rapid Remote-Access VPN (RAVPN) AnyConnect traffic spikes across the globe as a result of the COVID-19 epidemic that is pushing people to work from home. This includes discussions about issues being seen in the Cisco TAC as well as steps that can be taken to maximize performance through configuration changes and deployment modifications. We also touch on what network administrators need to consider to take a holistic approach from a policy and network capacity perspective as they navigate these unprecedented times.

The podcast team sits down with talented and experienced Talos Research Engineer Geoff Serrao to talk about major vulnerabilities such as Eternal Blue, Heartbleed, and Shellshock. We also discuss persistent threats and how extensive Talos research and testing works tirelessly and around the clock to keep Cisco customers safe across the globe.

The podcast team welcomes two fellow NGFW Technical Leader newcomers to the program in Foster Lipkey and Justin Roberts. From the Cisco office in Maryand, we discuss new feature and changes in the Firepower 6.4 release as well as some upcoming news about Cisco Live 2019 in San Diego.

In the Cisco Live US 2018 speaker room: The podcast team steals a few minutes from Cisco ETA and Stealthwatch experts Matt Robertson and Darrin Miller to discuss the basics of the technology and how it is helping organizations in detecting malicious content in network traffic as it increasingly goes dark (becomes encrypted).

The team goes on-site in the Cisco Live Speaker room in Orlando to pick the brains of some of the best in the business. Cisco Principal Engineers Aaron Woland and Jeff Fanelli fill us in on what's new in the Cisco Security space and give an inside look at the life of a Cisco Live Speaker.

The team discusses the recently released troubleshooting enhancements to ASA/FTD packet tracer and packet capture tools, some new facts about FTD 6.2.3, and a look ahead to Cisco Live US 2018 coming up in Orlando, Florida.

Magnus and Jesse discuss ISE EasyConnect

The podcast team dive into Firepower technologies and deployment strategies for some of the Firepower Product line as well as the new ASA/Firepower merged product, Firepower Threat Defense

Recorded live at CiscoLive US 2016! The intent of this episode is to discuss the current state of cryptography and how some deadlines are approaching in regards to the SHA-1 hashing algorithm. We also discuss some of the newer generation cryptography algorithms and an overview of PKI deployments.

The podcast team interviews several TAC engineers and customers at Cisco Live! 2015 in San Diego California.

The podcast crew invites back a special return guest - Mr. Chris Romeo - to share with the world Cisco's Security Ninja program. Which is an educational arm of Cisco Secure Development Lifecycle (CSDL). The intent of this episode is to educate listeners about Cisco's internal Ninja program and to also help our listeners start their own Security education program within their company.

The podcast panel discusses ASA version 9.3(2) and new features such as the REST API, 5506-X support, configuration sessions, TLS v1.2, Smart licensing and traffic zone support.

The podcast crew discusses all things wireless with TAC Technical Leader and wireless gurus Aaron Leonard and TAC authentication expert Jesse Dubois.

The podcast team discusses Cisco Live and Security with our customers, fellow TAC engineers and Blair Christie, Chief Marketing Officer at Cisco.

The podcast panel discusses some of the new features introduced in ASA Version 9.2. Then they discuss recent TAC cases that were triggered by very interesting network problems.

The podcast panel talks with Chris Romeo and Lisa Meyers McDonald from the Cisco Trustworthy Systems Organization all about the Cisco Secure Development Lifecycle.

This the second podcast episode focusing on ASA Clustering technology. The podcast panel explains the 'life of a packet' through a cluster of ASAs, and the different connection types introduced with the clustering feature. Finally, the team discusses how to troubleshoot connectivity problems through a cluster.

The podcast panel discuss the motivations for using the new ASA clustering feature, and the basics for how a cluster of ASAs handles traffic. Different cluster deployment modes (Spanned Etherchannel vs. Layer 3 mode) and clustering concepts are discussed, along with best practices for a successful cluster deployment.

Justin, John and Tim from the Cisco Voice TAC teams join Magnus to discuss the basic concepts behind voice security. They then cover best practices, and common problems that administrators encounter when deploying secure voice technologies.

Jay and David and Joe discuss OnePK technology and how to get started writing custom OnePK apps.

Jay and David discuss the new NAT configuration style introduced with ASA version 8.3. The overall approach to configuring NAT are discussed, along with troubleshooting techniques, and best practices.

Joe and the podcast team discuss managing the network at Cisco Live! this year, and what specific steps, tools and best practices were employed to make the network successful.

Jesse Dubois, TAC engineer, and Aaron Woland, Identity Services Engine (ISE) Technical Marketing Engineer, discuss version 1.2 of the ISE solution. Discussion focuses on new features, the upgrade process, and tips and tricks to get the most out of your ISE deployment.

The panel set up a recording table in the hallways of Cisco Live! 2013 in Orlando Florida, to talk to our customers and partners about security technologies and the Cisco Live event.

This episode focuses on some of Cisco's Virtual Security Appliances, the ASA1000v, the Virtual Security Gateway (VSG) and the Virtual Network Management Center (VNMC). Rama Darbha and Michael Robertson discuss how administrators can use these products in their virtual environments, as well as the packet forwarding path and troubleshooting techniques for these products.

The panel discusses best practices for configuring devices to generate syslogs, and how the TAC investigates syslogs provided by customers. Tips and tricks for parsing through large syslog files, as well as techniques and tools for finding useful information are discussed.

This episode provides a peek behind the scenes at Quality Assurance for the Cisco ASA Software, featuring special guest Paul Larue (Technical Leader with Cisco Engineering). The panel discusses the different types of tests that occur at all stages of the ASA software development lifecycle and the continued focus on quality.

Magnus interviews a panel of VPN experts on a new shift in VPN technologies, Flex VPN. The panel includes VPN escalation engineers Wen and Jay Young as well as a special guest, Frederic Detienne. Fred hails from our Brussels location and is a Distinguished Support Engineer specializing in VPN and crypto technologies. The crew talks about Flex VPN and the new IKEv2 technology.

The podcast team returns to Cisco Live! in San Diego to give presentations, deliver lab trainings, and tape an episode of the Cisco TAC Security Podcast! The team talks to several customers about topics such as ASA VPN Client to Anyconnect migration, IPv6 use at Cisco Live, and much more.

Jay and David discuss the history of the PIX platform. Topics include the different PIX hardware types, how the software changed over time, the motivation for some of the features that were added, and also how the history of the Firewall Services Module, PIX and ASA are intertwined.

Special guest Joe Clarke discusses the capabilities of IOS Embedded Event Manager. The panel discusses some very interesting use cases for EEM, and how it can be used to add new features to IOS as well as aid in troubleshooting complex network problems. A special listener challenge is given at the end of the show!

Special guests Wen Zhang (Cisco TAC) and returning guest Jay Young Taylor (Cisco TAC) discuss the methodologies and approaches to troubleshooting IPSec VPN problems. The team discusses the best way to use show commands, debug output, and troubleshooting tools to get your VPN tunnels up and passing traffic!

Special guests Wen Zhang (Cisco TAC) and returning guest Jay Young Taylor (Cisco TAC) discuss the differences between the DMVPN and GETVPN technologies. Deployment scenarios, as well as case studies and common customer TAC cases are discussed.

Special guests Jesse Dubois (Cisco TAC) and Aaron Woland (Cisco TrustSec Engineer) talk with the team about the new Cisco Identity Services Engine. The discussion provides an overview of the ISE solution, deployment best practices and common problems, and hot issues and troubleshooting techniques, as well as monitoring.

This episode features discussion about the new Cisco ASA Services Module (ASASM). Topics discussed include the hardware architecture differences between the ASASM and the Firewall Services Module (FWSM), new features introduced with the ASASM, and FWSM to ASASM migration tools and strategies.

Jeff Bollinger (Cisco Information Security Investigator), and Zack Shaikh (Cisco TAC engineer specializing in the Ironport Web Security Appliance) join the panel for a discussion about the WSA product. Then Jeff shares how Cisco is dploying WSAs to protect its own network from threats on the web, and some lessons he's learned along the way.

The podcast team brought their recording equipment along to Cisco Live! in Las Vegas to talk to Cisco customers about their impressions of Cisco Live and some of the classes they are taking, and also how they use Cisco security products.

This episode features discussion about interesting customer TAC cases that were tackled this week by the Firewall team in Research Triangle Park, North Carolina. Rama Darbha walks us through a problem with CPU HOGS and SNMP monitoring on an ASA. Justin Betz discusses a DHCP-Relay problem caused by a NAT translation issue on a FWSM. Mike Robertson discusses a FWSM issue where a UDP network attack was taking place, and David White Jr. discusses how he determined what extra padding data was being added to ICMP packets that were so small they violated a RFC.

This episode focuses on the Network Admission Control (NAC) appliance, with special guest Nevin Absher from the Cisco AAA TAC Team in RTP, NC. The discussion starts with a basic introduction to how network administrators can use the NAC appliance to control access to the network in various deployment scenarios. The discussion then moves to NAC deployment and operation best practices as well as specific issues that some administrators encounter when deploying the solution, and how to avoid them. NAC troubleshooting methodologies and techniques are also discussed.

In this episode the team highlights some of their favorite Cisco ASA and IPS one-line commands, and explain when to use them and how to interpret the output. In the show notes for the episode, we give sample output for each command.

The panel discusses the Cisco Support Community and the benefits it offers to Cisco customers, partners, and Cisco employees. Online discussions, collaborating on technical documents, as well as blogs and technical videos are discussed. Then, the group answers interesting questions raised by the community about the Cisco Advanced Security Appliance and Intrusion Prevention System.

The panel discusses the concept of a SQL Injection Attack, and explains how this type of attack can be mitigated using the Cisco Adaptive Security Appliance (ASA), Cisco Intrusion Prevention System (IPS) and Cisco Zone-Based IOS Firewall (IOS Firewall). A real-world proof of concept is discussed, along with specifics about the various configurations required to stop the attack.

This episode is all about digital certificates and how they can be used on the ASA and IOS platforms. The discussion starts with the basic concepts behind certificates and PKI, as well as the motivations for using certificate authentication. The discussion continues with best practices (such as backing up keypairs and trustpoints) and common customer problems and TAC cases.

This episode focuses on TCP connections through the ASA and FWSM platforms. The panel discusses the TCP security checks performed by the Cisco firewalls and how to modify the TCP settings to adjust the firewall behavior for specific network conditions. TCP throughput optimization, techniques for monitoring TCP connections, and some common TAC issues are also discussed.

The panel discusses the http filtering capabilities of the ASA platform including custom http inspection, url-filtering, wccp configuration and the Content Security Control (CSC) Module configuration and troubleshooting.

Learn how to increase the security of Cisco routers. The panel discusses operational best practices and use of features such as authentication, authorization and accounting (AAA), control-plane policing, syslogging, configuration archiving, password types and Cisco IOS Embedded eEvent Manager.

The ASA AnyConnect client is the next evolution in Remote Access VPN connectivity. In this episode the panel discusses the advantages of the AnyConnect client, strategies for migrating from the IPSec VPN client to AnyConnect, and package deployment tips. Additional topics include troubleshooting techniques, common AnyConnect problems, and methods for monitoring AnyConnect usage.

The panel discusses the features introduced with the new Adaptive Security Appliance (ASA) version 8.3. Information about the differences between 8.3 and previous versions, new memory requirements for version 8.3, as well as information about the upgrade process are discussed.

This episode features conversation about the multiple context mode available with the Firewall Services Module (FWSM) and Advanced Security Appliance (ASA) platforms. The pros and cons of multiple context mode are discussed, along with some common deployment scenarios, best practice design considerations, and issues faced by customers who contact the TAC.