Friday, 2 August 2019

Cloud ready networks for government: Connecting everyone and everything

Cloud ready strategy: Getting started


Let’s start with some existing Federal agency efforts to accelerate adoption of cloud in Fiscal Year 2020. This includes the new Federal Cloud Computing Strategy and an update to the Federal Data Center Optimization Initiative. Each can provide keen insight into lessons learned from private and public sector enterprises while providing some practical guidance for implementation.

The Application Rationalization Playbook, which is the third interconnected strategy document, is another valuable resource. It can provide a methodology for agencies to evaluate their enterprise IT portfolios and make more informed business decisions on where to host their applications and data. It’s also important that as agencies seek the right IT options to meet their mission needs, they make sure their on-premise, cloud and edge environments will be securely integrated and connected.

Cisco Prep, Cisco Online Guides, Cisco Learning, Cisco Tutorials and Materials, Cisco Certifications

How to drive IT modernization


Did you know that your network can be used to unleash  IT modernization and drive a successful cloud strategy? A cloud ready network means you’re on your way to true modernization. Remember, your network is the medium to connect everything and the central nervous system of your IT environment. Make sure it’s cloud ready so your team can balance the complex mix of cost, performance, security, visibility, compliance, citizen experience and simplicity.

At Cisco we’re helping agencies unleash the power of government networks by delivering more ways to enable, connect and optimize so they can better enable mission outcomes.

Data and cloud ready networks


Today’s world is one of data. And so is tomorrow’s. Data, big and small, is everywhere. This is forcing organizations to rewrite their business strategies in real-time. The need to enable the speed and pace of innovation required for technology to deliver on mission objectives means government agencies will need a cloud ready network built for data. One that:

◈ Extends from the edge to the cloud
◈ Integrates with every cloud
◈ Protects everyone
◈ Connects the right data, to the right user, on the right device at the right time
◈ And automates it all.

Benefits of intent-based networking


Every day we’re being overwhelmed by the exploding number of applications, software, end-devices and cloud options being introduced. It can be difficult deciding what can help versus what may confuse, be too complex or cost too much. Add the need for government to deliver the next generation of digital experiences and agencies will need to have an infrastructure that can efficiently scale, adapt and help them solve business problems without missing future opportunities.

Cisco Prep, Cisco Online Guides, Cisco Learning, Cisco Tutorials and Materials, Cisco Certifications
Bringing everything together on an IP network allows innovation and efficiency today and in the future. That’s why Cisco’s intent-based network integrates all networking domains. This delivers an agile, multi-domain infrastructure for modern digital government.

Our intent-based network also leverages machine learning and analytics to automate policy from the Software Defined (SD) Campus, to the SD-Access, to the SD-WAN, to the data center, to the public cloud—all the way to the edge. Plus, the Cisco intent-based network recognizes that security is not something that is layered-on, but rather built-into every layer. This integration between security and the network helps to reduce time to detect, prevent and mitigate threats.

Cisco’s integrated multi-domain architecture allows different IT domains to work together to fulfill their collective intent. It lets you define a policy once, apply it everywhere and monitor it systematically to ensure it’s realizing business intent.

Improving government efficiency


When accelerating IT modernization, Federal CIOs also face accumulated technical debt. To eliminate expensive operation and support tail on business velocity and pace of innovation, agencies should invest in foundational technologies that impact future value. This includes intent-based networking, containerization and standardized capabilities delivered as-a-service (aaS).

With intent-based networking capabilities (like programmability), government can enable a network to function as a software platform that can be quickly deployed and updated, and  automate tasks. Plus, by leveraging AI/ML to implement and maintain desired network conditions based on real-time data, Cisco’s cloud ready network is able to quickly respond to changing mission needs, increasing your agency’s operational agility.

Cloud ready means mission ready


A cloud ready network empowers agencies to solve complex problems faster and deliver incremental and additive impact on mission. Best of all, it does so while empowering your workforce to focus on improving the services they offer and to better serve citizens.

As the move to cloud and the push for IT modernization in government grows, developers will push the limits of what applications can do, resulting in a citizenry that will continuously expect better, more enhanced digital experiences. That’s why our team of industry leading experts in networking, cloud and cybersecurity are building a self-optimizing and self-healing cloud ready network. One that will help government agencies enable better mission outcomes today and into the future.

Your Framework for ICND2 Certification


There are a lot of reasons why people try to pass the Cisco 200-105 ICND2 certification exam, so that they can achieve something in their lives in the field of CCNA Routing and Switching certification. Aspiring applicants need to get through a lot for qualifying for their 200-105 ICND2 certification exam for receiving better jobs in IT in the future.

Becoming Cisco certified is not an easy task. You must understand the core concept of CCNA Routing and Switching along with many other things such as interconnecting Cisco networking devices, etc. Only an individual who follows the right approach in preparing for this Cisco ICND2 exam can pass the exam.
Considering this, here we will discuss the essential tips that will certainly help you pass the exam. You need to assure that you strictly follow them. Having said that, it is essential to mention that there are a few things that you must know before acquiring the tips to pass the Cisco200-125 ICND2 exam preparation.

What is the Cisco ICND2 200-125 exam?

Corresponding the Cisco CCNA Certification, the 200-125 ICND2exam means Interconnecting Cisco Networking Devices Part 2. Once you become Cisco certified, you can get a better job with an excellent pay scale. This exam is designed to define the expertise level of the applicants in Cisco networking products. There are other technologies to which this certification is relevant, such as WAN and LAN switching, IPv4 and IPv6 routing, infrastructure services and its maintenance, etc.

The ICND2 Exam Details

Here are the raw details of the ICND2 exam:
  • Number of Questions: 45-55
  • Types of Questions: Multiple Choice (single and multiple answers), Drag-and-Drop, Simulations, Testlets, and Simlets and
  • Passing score: It is around 800-850 out of 1000 possible points (Cisco may change this at any time)
  • Time Limit: 90 minutes

ICND2 Syllabus Topics:

  • LAN Switching Technologies (26%)
  • Routing Technologies (29%)
  • WAN Technologies (16%)
  • Infrastructure Services (14%)
  • Infrastructure Maintenance (15%)

There are no precise prerequisites for this Cisco certification. However, any applicant who register for this exam to become certified must become familiar with all of the CCNA basics. Whether it is the diagram or the configuration, you must be confident with all such topics in each section.

Who can sit for the Cisco ICND2 exam?

Any individual who is aspiring to take this exam must be an aspiring networking professional or an IT professional with the working experience in network administration or network engineering. Apart from this, you also need to have a precise understanding of IT infrastructure services, infrastructure maintenance, and other technologies such as LAN switching and WAN routing technologies, etc.

Benefits of the Cisco ICND2 certification exam

Anyone who has thorough knowledge and skills related to the ICND2 core topics will be able to pass the exam. Once you become CCNA certified, you are free to look for jobs in the IT industry all around the globe. You can easily get an excellent job with a higher salary. This certification assures the hiring managers that you have a thorough knowledge of various technologies associated with network administration.
These are the most important factors related to the CiscoICND2 certification exam. Now, scroll down to know the tips for passing the exam.

Tips for passing the Cisco 200-125 ICND2 exam

1. Create a self-study plan for the Cisco 200-125 ICND2 exam

If you want to give any universally recognized tests, then self-study is of extreme importance. You need to identify that you make a study plan which you can follow strictly. Take a look at all the ICND2 exam topics and then spare one day for one topic. You must study all the topics as decided, and then you will be able to pass this exam. You must make notes while learning each topic. You must prepare flashcards and point out important points on it.

2. Obtain the best Cisco 200-125 ICND2 Study Guides

Study guides for the Cisco 200-125 INCD2 exam are quite good. These guides help you a lot in passing the exam with a good score and becoming Cisco certified. However, it is tough to choose the best self-guides via the Internet, as there are many options available online. For this reason, you need to confirm that the study guide you choose comprises all the ICND2 exam topics. You must also ensure that an expert in Cisco ICND2 certification offers the guide. You can easily pass the test if you purchase an appropriate guide for the 200-125 exam.

3. Search for the 200-125 Practice Tests

The more ICND2 practice tests you give, the higher your chances of passing the exam. But before you lean on any platform for practice test, you should remember that the Cisco 200-125 ICND2 certification exam is designed to analyze your understanding of Cisco networking administrator. You must look out for cost-effective practice tests in the first place. You can quickly get a discount on these dumps. You must perform as many practice tests as possible if you want to establish a great career ahead in the IT field.

Conclusion

If you are aspiring to opt for the Cisco CCNA R&S certification and pass the 200-125 exam, there are a few things that you must take into account. First of all, you must have clarity that this certification that fits your profile as an IT professional. Furthermore, you must assure that you choose the right study guide and take a lot of practice tests. You should also do the self-study and try to master all the core concepts related to Cisco 200-125 ICND2 exam. Furthermore, you must look for the experts’ help that is available via online forums or communities where all your doubts on any topic could get explained.

Thursday, 1 August 2019

Rapid Evolution of Cisco SD-WAN is a Revolution for Enterprises with a Cloud-First Strategy

Just a few years ago, software-defined wide area networking (SD-WAN) was a “new” technology just breaking into the awareness of the IT market. It arrived at the time when enterprises were changing from moving applications and data to “a” cloud platform, to expanding to multiple clouds. SaaS application providers for CRM, HR, finance, and supply chain were firmly established as critical business resources that need to be accessible from anywhere via direct internet connections.

These were all positive changes, but not without a certain amount of pain. In particular, the traditional WANs were struggling with these new demands. The WAN architecture worked well when all connections from branches and a distributed workforce flowed back to a central data center through MPLS lines, where security policies were also applied. But the hub and spoke WAN architecture broke down as more direct internet connections were needed to access multi-cloud resources and SaaS applications. Continuing to backhaul all traffic to data centers before routing to internet cloud applications results in increasing MPLS costs, bandwidth inefficiencies, increased latency, and poor application quality of experience. In addition, WANs were often composed of components from multiple vendors, limiting the visibility and control over performance and troubleshooting.

SD-WAN was designed to answer these challenges. The technology provides methods to prioritize critical business traffic and take advantage of internet broadband connections—previously used for backup and redundancy—to connect directly to multicloud resources. SD-WAN simplifies the management of the wide area network fabric with a controller-first overlay that is independent of transport layers—MPLS, Ethernet, internet, leased lines, DSL, LTE networks, and soon 5G. SD-WAN controllers intelligently choose among the available transport mediums to deliver the best application performance as defined by IT service level agreements (SLA).

The Evolution of Cisco SD-WAN


In the early stages of SD-WAN, engineers at Viptela developed a flexible SD-WAN architecture based on cloud management and controllers (vManage and vSmart) and virtualized network function edge routers (vEdge). Their version of SD-WAN followed the same software-defined architecture as Cisco’s Digital Network Architecture (DNA), separating the Data, Control, and Management Planes for maximum flexibility. Viptela’s architecture made it a natural extension to Cisco’s Intent-Based Networking vision. Viptela’s visionary team and technology were acquired by Cisco two years ago this week—August 1st to be precise. Rapid innovations and integrations have been ongoing ever since.

Many of the innovations we’ve added come from listening to our enterprise customers who are seeking a solution to unite multi-domain cloud resources across a distributed organization. We hear that they need ways to simplify the interconnection of the domains with unified access and security policies applied across campus, branch, and cloud. Let’s look at the capabilities we’ve added to make Cisco SD-WAN powered by Viptela an enterprise-class platform that meets these needs and more.

Cisco Prep, Cisco Guides, Cisco Study Materials, Cisco Tutorials and Materials

Looking Deep Inside SD-WAN Operations


Networks are becoming much more complex as organizations tie data centers, remote branches, and a distributed workforce with multi-cloud applications using connectivity options like direct internet and LTE that are outside the direct control of IT. Therefore, it’s important to be able to see inside the WAN to monitor, measure, and adjust the parameters affecting performance. That’s why one of the first capabilities Cisco added to the SD-WAN stack was Cisco vAnalytics, a cloud-based tool for monitoring and analyzing SD-WAN performance via the vManage portal. vAnalytics provides specific information that enables IT to readily monitor bandwidth usage, application performance, and detect anomalies based on baseline application usage. Going forward, vAnalytics will incorporate more artificial intelligence and machine reasoning, as was recently introduced in Cisco AI Network Analytics.

Expanding SD-WAN to Cisco ISR/ASR Edge Routers


When considering a new technology, IT leaders prefer to avoid the need to “rip and replace”. Cisco alleviates that concern by making SD-WAN available to run on over a million ISR/ASR routers that are already serving branches and campus networks worldwide. Cisco IOS XE, released a year ago, provides an instant upgrade path for creating cloud-controlled SD-WAN fabrics to connect distributed offices, people, devices, and applications operating on the installed base of ISR/ASR routers. At the same time, we added the ability to run SD-WAN as virtualized network functions in a cloud provider’s IaaS platform, providing even more flexibility to quickly extend SD-WAN to the cloud.

SD-WAN Full Stack Security Protects Branch Data and Cloud Applications


When using the internet to connect branches and remote employees with cloud applications, sensitive data could pass over multiple networks outside of the control of IT, increasing security risks. Protecting the data while making it available on-demand to the workforce presents a series of technical and enforcement challenges.

To allay those concerns, Cisco, one of the top worldwide providers of network security solutions, integrated full-stack security into SD-WAN running on edge routers. Cisco SD-WAN Security is built-in, not composed of separate bolted-on components from a disparate variety of vendors, making security easy to manage via the vManage cloud portal. By integrating an application-aware firewall, intrusion detection and prevention, advanced malware protection, and Cisco Umbrella DNS cloud security layer, data security is easily and consistently maintained across branches.

In addition to securing branch and distributed workforce connections, IT wants to holistically address security concerns across multiple domains. That means setting access and security policies once and having them permeate the enterprise across data center, campus, and branch, to the cloud edge where IoT devices increasingly need to do local processing. Because Cisco designs security using an end-to-end perspective, creating cross-domain policies is not only possible, but a necessary capability as applications, data, and devices become more distributed and the workforce more mobile. Cisco is enabling unified policy management by linking ACI in the data center with SD-Access in the campus and SD-WAN for branches so that segmentation and security are applied consistently all the way from people and devices to the application hosting cloud platforms.

SD-WAN Cloud OnRamp for CoLocation Consolidates Regional Branch Connectivity


With SD-WAN making it simpler to configure and manage connections from branches to cloud resources, it’s just one more step to consolidate many regional branches under a common colocation facility. Creating an onramp connection from each of many branches to a colocation facility hosting a virtualized SD-WAN reduces the need for edge routers at each location and centralizes the management while providing all the same security and transport layer options.

In many cases, the target cloud providers and SaaS applications reside in the same colocation facility, thus shortening the paths and reducing latency to further improve application performance for potentially dozens to hundreds of branches. Additional virtualized SD-WAN instances in the colocations can also be quickly spun up to connect new branches as quickly as needed. SD-WAN Cloud OnRamp for CoLocation joins Cisco’s Cloud OnRamp for IaaS and SaaS to extend connectivity management from branches to multiple cloud platforms to provide granular control over application quality of experience via vManage.

Evolution of SD-WAN Continues for Revolutionary Results


All these innovations integrated into Cisco SD-WAN powered by Viptela are fundamental to building an Intent-Based Network. Built-in network intelligence translates business intents into network actions that provide consistent access policies, security for devices and data, and a high-quality application experience for a distributed workforce. Integrating multicloud compute resources with cross-domain access drives a revolution in business as enterprises strive to connect information to people anywhere at any time to improve employee productivity and customer experience.

National Instruments, an international leader in test and measurement systems, implemented SD-WAN to solve a number of IT and business problems. Like many organizations with a globally distributed workforce, the network supports communication services, software distribution, and access to applications and data resources among worldwide sites. The existing WAN greatly constrained video conferencing, slowed large software transfers, and couldn’t provide acceptable application performance. Implementing SD-WAN turned those issues around by:

◈ Reducing MPLS spending by 25% while increasing bandwidth by 3,075%.

◈ Categorizing traffic by function and type, sending backup traffic over the Internet under an SLA, eliminating bandwidth bottleneck on MPLS circuits.

◈ Reducing the time for software updates to replicate across the network from 8 hours to 10 minutes.

◈ Adding new internet-based services used to take months, with the agility of SD-WAN new services can be deployed in the cloud immediately.

◈ Eliminating the need for call admission controls and limiting video quality for conferencing

Enterprises are gaining advantages such as these by upgrading their aging WAN technology to SD-WAN. It’s not just cost savings by supplementing or replacing MPLS with direct internet connections that is motivating the transition to software-defined WAN architecture. It’s also about gaining flexibility and stability with intelligent, continuously monitored connections to multicloud resources and SaaS applications that are fueling the transition. In a software-defined world, people, devices, applications, and data are all securely connected to ensure organizations run efficiently as they tackle digital transformation projects. How will you use SD-WAN to support your digital revolution?

Wednesday, 31 July 2019

Thriving Ahead with the Advanced Cloud with CCNA Cloud

The evolution of the internet and internet-enabled services has changed everything around us. Cloud Computing is functioning as a catalyst to further fuel this development of the internet. Organizations are looking to hire Cloud Engineers who are experts in the advanced cloud technologies and informed about the Cloud best practices. Even a top technology company like Google is inviting Cloud Developers in unique ways.
In the light of this increased demand for Cloud experts, it is therefore vital for Software Engineers to consider a Cloud Certification to improve their possibilities of landing better career opportunities.
Cisco CCNA Cloud Certification is a globally accepted certification that can boost your career in this emerging area. This Cisco certification proves an applicant's skills on industry-leading cloud solutions, the best practices, and a job-role focused syllabus is followed in this Cisco CCNA Cloud certification.

CCNA Cloud Certification

This is a job role-based career certification. The CCNA Cloud certification syllabus qualifies cloud engineers, cloud administrators, and network engineers. This certification qualifies you to work in SMB cloud environment to support a senior cloud engineer. The job duties of CCNA Cloud Certified engineer comprises entry-level provisioning and support of Cisco Cloud solutions.

To become a CCNA Cloud, applicants need to pass two exams:

1) 210-451: Understanding Cisco Cloud Fundamentals (CLDFND)
2) 210-455: Introducing Cisco Cloud Administration (CLDADM)

Topics covered in CCNA Cloud Syllabus:


  1. Cloud Deployments
  2. Cloud Characteristics and Models
  3. Providing End-User Support
  4. Chargeback and Billing Reports
  5. Cloud Provisioning
  6. Basic Knowledge of Cloud Compute
  7. Basic Knowledge of Cloud Networking
  8. Cloud Infrastructure Administration and Reporting
  9. Cloud Systems Management and Monitoring
  10. Cloud Remediation
CCNA Cloud Certification is the most popular certification in the IT industry where every CCNA certified professional would choose the career as Network Administrator as an initial step.

What are the skills required for CCNA Cloud Certification?


  • One should know the different network topologies to retain a secure IT network.
  • Knowledge of how a computer network works and interacts with network devices.
  • Configure the inter-switch communications.
  • Implement IP addressing for specific network requirements.
  • Perform specific tasks to administrate the wireless local area network.
  • Support Network Address Translation and others in branch office networks.

How Beneficial is CCNA Cloud Certification?

  • Cisco Cloud fundamental is intended for storage, computing, and networking to identify the cloud components and understand the fundamental infrastructure. CCNA Certification is the best option for everyone looking for routing and switching their career.
  • The high-level cloud certification in CCNA is a combination of both software and hardware networking service to seize huge customers. This high-level certification will include certificates like CCNA Data Center, CCNA Security, CCNA Service provider, CCNA Video, CCNA Wireless, etc. The certifications in CCNA are split into Associate level, Professional Level, and CCIT the expert level.
  • If you are practically skilled that is needed for CCNA Cloud professional, then there are more job opportunities waiting for you as the market for CCNA is tremendous everywhere.

Tips to get CCNA Cloud Certification


  • A person who is aspiring to achieve CCNA certification should have knowledge both in theory and practical aspects to pass the exam. One should have absolute expertise in troubleshooting and networking issues.
  • One should study from the right study material like latest editions of Cisco's books. Perform all the practice questions and lab exercises.
  • Give as many practice tests as possible before the actual CCNA Cloud exam dates are scheduled. Determine the topic you require to work more and improve.
  • Once you finish the CCNA Cloud certification, you can market yourself as a networking expert for global recognition as doors will not open for anyone for a bright, successful career. You always need to work hard to achieve the desired position.
Cisco’s CCNA Cloud certification is a precious tool for catching up the pace of change. The CCNA certification points out to current and future employers that you are a representative of that change, innovative, specializing in modern, cost-saving technology.

Tuesday, 30 July 2019

The ISR Family Expands SD-WAN Security and LTE Support

By now you most likely already know the benefits of implementing a software-defined WAN (SD-WAN). It’s no wonder 95% of enterprises surveyed by IDC expect to use SD-WAN within 24 months.

Cost of WAN Operations over 5 years. IDC: Business Value of Software-Defined Networking Infographic

Did you know, however, that SD-WAN could help lower your WAN costs by 38% over 5 years? Recent IDC customer interviews of mid to large enterprises found that respondents reported 38% lower 5-year cost of operations, 45% reduced app latency, and 33% more efficient WAN management when deploying Cisco SD-WAN solutions2.

So, if you’re considering an upgrade to SD-WAN, you’ll be happy to know that Cisco is continuing to expand platform support for Cisco SD-WAN powered by Viptela with new ISR models. We’re excited to introduce the new ISR 1120 and ISR 1160 models to the ISR 1000 Series. Both models will support the full suite of Cisco SD-WAN features including a full stack of security capabilities.


Why do you need the latest ISR 1000 models?


◈ Better user experience The ISR 1160 is the highest performing router of the ISR 1000 series yet, featuring increased throughput and a 25% faster processor. Faster performance plus application optimization with Cisco SD-WAN equals happier employees and guests.

◈ Any location, any transport – Last year we introduced pluggable LTE technology with the ISR 1101 and 1109 models, and now we’re happy to introduce the same technology with the new ISR 1120 and 1160 models. This allows you to plug-in a CAT4 or CAT6 module for advanced LTE connectivity and with the fast paced growth of LTE technology, you’ll be able to upgrade to future LTE band support, like 5G, with ease.

◈ Right security, right place – Now you can protect users and devices and deploy embedded or cloud security faster using SD-WAN Security. The new ISR models feature 8GB of memory so you can run the full-stack of security, including application firewall, IPS, URL-Filtering and AMP directly into your ISR and manage it remotely via Cisco vManage.

Don’t forget that Cisco provides support, fulfillment and hardware replacement across the globe. With all the best features of the ISR 1000 Series and cost savings of Cisco SD-WAN, now available with the new ISR 1120 and 1160 models, it’ll be hard to find a reason not to deploy a software-defined network.

Monday, 29 July 2019

With Cisco Threat Response, The Best Things in Threat Hunting are Free

For those of us in security operations, it could be easy to feel discouraged. After all, it’s an unfair fight. The bad actors seem to have unlimited time and budget. And we certainly don’t!

But here’s some good news: one of the most valuable tools available in threat hunting is free. Just like the golden oldie tune (or the Janet/Luther pop classic) says, the best things in life don’t always cost money. For customers with Cisco Next-Generation Firewalls, Intrusion Prevention (IPS), AMP for Endpoints, Cisco Umbrella, Email Security, and/or Threat Grid, Cisco Threat Response helps detect, investigate, and take corrective action against cyber threats—at no additional cost.

Making the Fight More Fair


We work with security professionals in organizations of all types and sizes. No matter their differences, they all say they’re bombarded. They wish they could “hit pause” on the flood of security events to allow for the time-consuming manual work they have to do after an attack. Not only that, they’re often in the difficult position of having to make decisions with inadequate information. They’re concerned about blocking too much and compromising productivity. Or not blocking enough to protect the business.

Cisco Threat Response provides an automated process to help. It’s a key pillar of Cisco’s integrated security architecture and designed to give you the contextual awareness you need so you can see, investigate, and act on threats fast. If you’ve invested in Cisco security products that support it, Threat Response is on your side to make the fight against cyberattacks a little fairer.

Cisco Study Materials, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Online Exam, Cisco Tutorials and Mateiral

Getting started with Cisco Threat Response is easy.

Fast for Anyone to Use


You don’t have to be an expert to use Cisco Threat Response. The interface is simple, intuitive, and interactive. Users can ask the tool to investigate a threat by simply cutting and pasting threat From the first click, Cisco Threat Response provides details on suspicious behaviors, files, and activities. Then click again, and it can be just as easy and quick to see, and in many cases remediate the root cause.

Cisco Study Materials, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Online Exam, Cisco Tutorials and Mateiral

Easy-to-read, configurable graphics map the targets that have communicated with the malicious domain you’re investigating.

Not only that, information about the threat is collected and results are aggregated in the Cisco Threat Response portal. Here you get one common view, made even more powerful with knowledge from your other supported Cisco products. These products are fed by Talos, which delivers comprehensive threat intelligence with continuous updates to Cisco devices, automatically. In the Cisco Threat Response portal, it provides your network’s local sightings of the threat you’re investigating plus details to help you make timely and confident decisions about the best corrective actions.

Cisco Study Materials, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Online Exam, Cisco Tutorials and Mateiral

Cisco Threat Response provides insights of integrated products to Investigate. The portal provides access to continuous threat intelligence geared to helping you respond quickly.

Cisco Study Materials, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Online Exam, Cisco Tutorials and Mateiral

The browser plug-in makes it easy and convenient to pull indicators of compromise from any webpage or console and get verdicts directly from the drop-down. You can take corrective action or undertake a complete investigation (with collaboration and sharing) right from the page.

The More Cisco You Have, The More Value You Get


With the Firepower integration, Cisco Threat Response can now utilize intrusion alerts from the Firepower devices. This enrichment will amplify the contextual awareness in your network by harnessing the power of effective integrations with products such as AMP for Endpoints, Email Security, Threat Grid Umbrella and your Next-generation firewall. Another exciting thing about Cisco Threat Response is that when you have more Cisco solutions deployed, the integration drives more data enrichment and response capabilities. Contextual analysis becomes more detailed. We will continue to add new Cisco product integrations with Threat Response – the firewall products are only the most recent addition.

Sunday, 28 July 2019

Running NetBeez Agents on Cisco Catalyst Switches

I am happy to announce a new powerful integration between NetBeez and Cisco. Starting with Cisco IOS-XE version 16.12.1, Cisco users can install the NetBeez docker agent on Cisco Catalyst 9000 series switches. This new integration is part of the Cisco application hosting framework, which enables third-party off-the-shelf applications to run on top of Cisco devices. As you’ll read in the next paragraphs, NetBeez and Cisco users will have a lot to gain from this integration. If you are new to NetBeez, let me tell you more about it.

Wide Area Network Monitoring with NetBeez


NetBeez is a distributed network monitoring solution that enables network engineering teams to monitor remote Wide Area Network locations via dedicated hardware or software agents, called Beez. The Beez run active monitoring tests, such as ping, traceroute, and iperf, as well as DNS and HTTP checks against web and cloud applications. Like a canary in a coal mine, the Beez proactively detect remote performance issues that impact end-users and business operations. The performance data logged by the Beez is sent real-time to the NetBeez central server, where it’s processed for alerting, displayed on the user dashboard, or consumed by third-party applications via the available APIs.

Cisco Study Materials, Cisco Tutorials and Materials, Cisco Learning, Cisco Online Exam

With the Cisco App Hosting integration, the Catalyst 9000 is capable of hosting NetBeez agents and run network performance tests from the user perspective. In this scenario, the NetBeez server is still needed to manage the Beez running on the switches and to collect the network performance data generated.

Benefits of Cisco App Hosting


Traditionally, the Beez runs on top of a Raspberry Pi that is plugged into the access switch at remote WAN sites. Companies that need to monitor large WANs have to invest considerable time and resources to ship and deploy the hardware appliances at remote locations. The Cisco App Hosting removes this “physical barrier” in the deployment and maintenance process of the Beez. Catalyst owners can now easily install via the Cisco CLI the NetBeez docker agent on their switches. Let’s see what this procedure looks like …

Configuring Catalyst for App Hosting


Configuring a Catalyst 9000 series switch to host a NetBeez docker agent is fairly simple. Before you begin, make sure you meet the following requirements:

◈ A Cisco Catalyst 9000 switch with IOS-XE version 16.12.1

◈ A USB SSD-120G for Catalyst 9000 series switches

◈ A NetBeez server running version 2.0

◈ The NetBeez docker agent v2.0.5

The procedure will have you:

1. Create a user VLAN that will be used by the NetBeez docker agent as uplink

2. Map the user VLAN to one of the switch’s access or trunk ports

3. Create an AppGigabitEthernet interface that is an internal bridge between the eth0 interface on the NetBeez agent and the user VLAN mentioned at step 1

4. Define configuration parameters needed by the NetBeez docker agent to connect to the server.

The following diagram illustrates how these different components relate to each other.

Cisco Study Materials, Cisco Tutorials and Materials, Cisco Learning, Cisco Online Exam