Cisco ISE has huge reporting section but only a few of the reports are useful to me. So the need came up for a flexible searching and reporting tool. Splunk seemed to be a great candidate especially since it has all the plugins available and Cisco Security Suite App adds …
Tag: Troubleshooting
Recently I’ve discovered that Apple i-Devices (iPhone’s and iPad’s particularly) will not work well when provisioned for EAP-TLS with Single broadcasted SSID. In my case device would successfully complete provisioning for certificate based authentication but re-authenticate again as PEAP. One of the workarounds was to forget SSID after provisioning and …
In this post, I’ll write about my experience with Sourcefire 6.0 upgrade. Upgrade file became available on 11/11/2015 and at the time of writing it’s been out for a few month which is “theoretically” enough time to consider a cautious transition from 5.4.x into 6.0 environment. Components: Cisco Sourcefire Defense …
Sometimes Ironport Email Security Appliance (ESA) will generate an application fault alert with minimal or totally useless information for us. Most of the time this alert can only be explained by TAC engineer. One of this app faults may look similar to the following: An application fault occurred: (‘egg/quarantine_smtp.py send_xmetadata|592’, “<type …
BIG-IP LTM was configured to send email alerts when node or pool member was down. All was working fine until one day I had to configure Remote High-Speed Log (HSL) destination for SPLUNK. HSL worked as expected but node up/down email alerts stopped working. Since I do not get alerts every day it took …