Technology: Firewall Area: High Availability Vendor: Cisco Software: Cisco Adaptive Security Appliance (ASA) Platform: Cisco ASA 5505, 5500, 5525 Description: Active-Standby failover means that two units are working in an active-standby configuration where the active state is always present on one of the failover pairs. The other one is standby. Standby has an identical configuration as active and […]
How does Zero-Touch Provisioning work? SD-WAN devices are assigned by Cisco to the Smart Account and Virtual Account of customer. This is reflected in Plug and Play connect portal (PnP). In the background, the SDWAN cloud provisioning process assigns the identity of the customer organization and starts the sd-wan controllers provisioning. After device unboxing router […]
The BFD (Bidirectional Forwarding Detection) is a protocol that detects link failures as part of the Cisco SD-WAN (Viptela) high availability solution, is enabled by default on all vEdge routers, and you cannot disable it. BFD and related parameters: Path liveliness and quality measurement detection protocol: Up/Down, loss/latency/jitter, IPSec tunnel MTU, Runs between all routers in […]
The Overlay Management Protocol (OMP) is the protocol responsible for establishing and maintaining the Cisco SD-WAN control plane. It provides the following services: Orchestration of overlay network communication, including connectivity among network sites, service chaining, and VPN topologies Distribution of service-level routing information and related location mappings Distribution of data plane security parameters Central control […]
What is Cisco ASA FirePOWER? The flagship firewall of Cisco – the Cisco ASA (Adaptive Security Appliance) and FirePOWER technology (the result acquisition of Source Fire company by Cisco in 2013) lied down the foundation of the “next-generation firewall” line of products in Cisco’s portfolio: ASA FirePOWER Services. This next-generation firewall is composed of widely […]
ASA Failover is intended for improving high availability of the firewall solution. ASA Failover technology uses 2 units in failover pair. We can configure Failover in two modes: Active Standby Failover Active Active Failover ASA Failover rules: Maximum of 10 ms Round Trip Time between units Each logical interface must be in same […]
Path: Design Technology: Network Security Area: Access and Identity Management Vendor: Cisco Software: 1.X, 2.X Platform: ISE Physical Appliance, ISE Virtual Appliance Cisco Identity Services Engine is a Network Access Control solution that helps to concentrate all enterprise network identity policies in one place. ISE is a point of the network where all network […]