In this blog post I'm showing how to get Wireless Intrusion Detection Events from Cisco's WIDS included in Cisco's Wireless Controllers into an Elastic-Stack.
When 802.1X (wired) is configured on a 3750G switch, the port LED is amber when only an IP Phone is connected (mab). When connecting on the IP Phone a downstream device like a laptop (dot1x), the port LED goes to green.
Cisco offers a method to protect against DoS (Denial-of-Service) and Dictionary attacks for IOS devices called Login-Block.
Mapping of IP addresses blocked by Russia
Based on the latest SiSyPHuS Analysis of BSI I built a small blocklist for Pi-Hole to drop Win 10 Telemetry data collection
Cisco WLC 3504 secured WebUI is not working on Secondary Unit in a failover (SSO) setup. When switched back to the Primary Unit, the secured WebUI is working again. Troubleshooting and solution of this strange behavior.
I'm showing in this blog post some security settings for the Apache web server including disabling of Directory Browsing, Server Signature and Server Token.
WiFicalypse 2021, FragAttacks. Design and Implementation flaws in WiFi.
This is my new concept for DNS security with Bind9, Pi-hole and OpenDNS in my network. Bind9 is used as Enterprise DNS to resolve hostnames and IP addresses in the local area network, Pi-hole and OpenDNS are used for Internet DNS traffic. DNS traffic is passed by Cisco ASA Firewall ACL.
Screenshots of Pi-hole installation on Debian Linux