Routing & Security

Cut-Through Authentication proxy on the ASA is an excellent way to track and authorize users when they access resources on the network that you may not want them to access to originally. I have used it to track user activities, authorize users to different network devices from time to time that they really should not be accessing whenever they feel, and to provide a user a way to override the firewall policies that have been defined for a given subnet. In other words, it is a very useful function and I believe it’s function is vital for users as well as the network administrator. Just so you know, this feature is just like the Auth-Proxy or Network Admission technologies on an IOS router.

Here is the topology we will be working with.  I have setup a PC so we can simulate a typical user experience.

 Read more…

Well, I felt like my good friend Vybhav needed to have an interview done after interviewing a bunch of people including myself the past few months. He is a great study partner and I converse with him on a regular basis – almost daily in fact. I am not sure where he gets the time to do everything he does (blog, lab, study, play flight simulators) but he must have a great girlfriend. Vybhav and I are taking our labs on the same day and I know he will ace it first attempt. As I am sure all of you know, he has a great blog site @ tacack.com where he has a wealth of information in regards to the CCIE Security exam. So without further adieu, please read on to find out things you may not have known about our good friend!

Read more…