Cisco TAC Security Podcast Series
59 episodes - English - Latest episode: almost 3 years ago - ★★★★★ - 29 ratingsThe Cisco TAC Security Podcast Series is created by Cisco TAC engineers. Each episode provides an in-depth technical discussion of Cisco product security features, with emphasis on troubleshooting.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
TAC Security Podcast #59 - Discussions on Cisco DevNet Certifications
May 19, 2021 13:00 - 47 minutes - 54.5 MBNic Conroy and Prerna Sivadas join host Kevin Klous to discuss the recent release of Cisco DevNet certifications and why network and security professionals should consider adding them to their career development roadmaps. In addition, the team engages in SDN-related topics such as APIs, scripting, containerization, etc. and how they converge into what we generally call DevOps along with the implications it has on cybersecurity efforts.
TAC Security Podcast #58 - Thoughts on Pursuing the CCIE Security v6 in the Pandemic
September 04, 2020 13:00 - 53 minutes - 52.1 MBThe podcast team welcomes newcomer guests Nic Conroy and Zack McIntosh to discuss their experiences with the CCIE Security certification and the recent changes in the latest version 6 of the exam. They review study strategies for the practical exam, effective virtualization options, and how to emotionally cope with the challenges that come with taking on the formidable task. Discover why now is a great time to begin your CCIE journey during the 2020 lockdowns and hear their valuable insights ...
TAC Security Podcast #57 - Maximizing AnyConnect Performance During the COVID-19 Pandemic
March 30, 2020 13:00 - 57 minutes - 50.9 MBIn this episode, the podcast team welcomes back two former hosts Wen and Jay along with a special guest Shannon Wellington to discuss the recent phenomenon of rapid Remote-Access VPN (RAVPN) AnyConnect traffic spikes across the globe as a result of the COVID-19 epidemic that is pushing people to work from home. This includes discussions about issues being seen in the Cisco TAC as well as steps that can be taken to maximize performance through configuration changes and deployment modifications...
TAC Security Podcast #56 - A Sneak Peek Inside Talos with Geoff Serrao
May 29, 2019 13:00 - 37 minutes - 38.5 MBThe podcast team sits down with talented and experienced Talos Research Engineer Geoff Serrao to talk about major vulnerabilities such as Eternal Blue, Heartbleed, and Shellshock. We also discuss persistent threats and how extensive Talos research and testing works tirelessly and around the clock to keep Cisco customers safe across the globe.
TAC Security Podcast #55 - Firepower 6.4 and Other Ramblings
May 13, 2019 13:00 - 31 minutes - 25.8 MBThe podcast team welcomes two fellow NGFW Technical Leader newcomers to the program in Foster Lipkey and Justin Roberts. From the Cisco office in Maryand, we discuss new feature and changes in the Firepower 6.4 release as well as some upcoming news about Cisco Live 2019 in San Diego.
TAC Security Podcast #54 - A Discussion on Cisco Encrypted Traffic Analytics (ETA) with the Experts
August 01, 2018 13:00 - 25 minutes - 60 MBIn the Cisco Live US 2018 speaker room: The podcast team steals a few minutes from Cisco ETA and Stealthwatch experts Matt Robertson and Darrin Miller to discuss the basics of the technology and how it is helping organizations in detecting malicious content in network traffic as it increasingly goes dark (becomes encrypted).
TAC Security Podcast #53 - Thoughts on Security at Cisco Live US 2018 in Orlando
July 05, 2018 13:00 - 37 minutes - 90 MBThe team goes on-site in the Cisco Live Speaker room in Orlando to pick the brains of some of the best in the business. Cisco Principal Engineers Aaron Woland and Jeff Fanelli fill us in on what's new in the Cisco Security space and give an inside look at the life of a Cisco Live Speaker.
TAC Security Podcast #52 - ASA/FTD Troubleshooting Enhancements and Cisco Live US 2018
June 11, 2018 13:00 - 34 minutes - 82.3 MBThe team discusses the recently released troubleshooting enhancements to ASA/FTD packet tracer and packet capture tools, some new facts about FTD 6.2.3, and a look ahead to Cisco Live US 2018 coming up in Orlando, Florida.
TAC Security Podcast #51 - EasyConnect in ISE 2.1
March 16, 2017 13:00 - 18 minutes - 16.8 MBMagnus and Jesse discuss ISE EasyConnect
TAC Security Podcast #50 - Finding Your Firepower - A discussion on Firepower Technologies
September 13, 2016 13:00 - 1 hour - 59.2 MBThe podcast team dive into Firepower technologies and deployment strategies for some of the Firepower Product line as well as the new ASA/Firepower merged product, Firepower Threat Defense
TAC Security Podcast #49 - Cryptic Thoughts - A discussion on changing crypto standards
July 28, 2016 13:00 - 40 minutes - 26.6 MBRecorded live at CiscoLive US 2016! The intent of this episode is to discuss the current state of cryptography and how some deadlines are approaching in regards to the SHA-1 hashing algorithm. We also discuss some of the newer generation cryptography algorithms and an overview of PKI deployments.
TAC Security Podcast #48 - Cisco Live! 2015 - San Diego
October 06, 2015 13:00 - 40 minutes - 38.9 MBThe podcast team interviews several TAC engineers and customers at Cisco Live! 2015 in San Diego California.
TAC Security Podcast #47 - The Cisco Security Ninja Program
September 22, 2015 13:00 - 29 minutes - 26.6 MBThe podcast crew invites back a special return guest - Mr. Chris Romeo - to share with the world Cisco's Security Ninja program. Which is an educational arm of Cisco Secure Development Lifecycle (CSDL). The intent of this episode is to educate listeners about Cisco's internal Ninja program and to also help our listeners start their own Security education program within their company.
TAC Security Podcast #46 - New features in ASA version 9.3(2)
June 18, 2015 13:00 - 45 minutes - 41.9 MBThe podcast panel discusses ASA version 9.3(2) and new features such as the REST API, 5506-X support, configuration sessions, TLS v1.2, Smart licensing and traffic zone support.
Introduction to Cisco Wireless Security
February 18, 2015 13:00 - 47 minutes - 26.2 MBThe podcast crew discusses all things wireless with TAC Technical Leader and wireless gurus Aaron Leonard and TAC authentication expert Jesse Dubois.
Cisco Live! 2014 in San Francisco
November 21, 2014 13:00 - 28 minutes - 26.1 MBThe podcast team discusses Cisco Live and Security with our customers, fellow TAC engineers and Blair Christie, Chief Marketing Officer at Cisco.
ASA Version 9.2 and Interesting TAC Cases
August 25, 2014 13:00 - 24 minutes - 40.2 MBThe podcast panel discusses some of the new features introduced in ASA Version 9.2. Then they discuss recent TAC cases that were triggered by very interesting network problems.
The Cisco Secure Development Lifecycle
May 05, 2014 13:00 - 25 minutes - 40.2 MBThe podcast panel talks with Chris Romeo and Lisa Meyers McDonald from the Cisco Trustworthy Systems Organization all about the Cisco Secure Development Lifecycle.
Troubleshooting ASA Clustering
April 01, 2014 13:00 - 44 minutes - 43 MBThis the second podcast episode focusing on ASA Clustering technology. The podcast panel explains the 'life of a packet' through a cluster of ASAs, and the different connection types introduced with the clustering feature. Finally, the team discusses how to troubleshoot connectivity problems through a cluster.
Intro to ASA Clustering
February 05, 2014 13:00 - 41 minutes - 40.2 MBThe podcast panel discuss the motivations for using the new ASA clustering feature, and the basics for how a cluster of ASAs handles traffic. Different cluster deployment modes (Spanned Etherchannel vs. Layer 3 mode) and clustering concepts are discussed, along with best practices for a successful cluster deployment.
Voice Security Concepts and Best Practices
December 18, 2013 13:00 - 36 minutes - 35.5 MBJustin, John and Tim from the Cisco Voice TAC teams join Magnus to discuss the basic concepts behind voice security. They then cover best practices, and common problems that administrators encounter when deploying secure voice technologies.
Introduction to OnePK
November 11, 2013 13:00 - 21 minutes - 34.5 MBJay and David and Joe discuss OnePK technology and how to get started writing custom OnePK apps.
ASA Network Address Translation (NAT)
September 10, 2013 13:00 - 37 minutes - 34.5 MBJay and David discuss the new NAT configuration style introduced with ASA version 8.3. The overall approach to configuring NAT are discussed, along with troubleshooting techniques, and best practices.
Network Management at Cisco Live! 2013
August 27, 2013 13:00 - 22 minutes - 22.1 MBJoe and the podcast team discuss managing the network at Cisco Live! this year, and what specific steps, tools and best practices were employed to make the network successful.
Identity Services Engine v1.2
July 16, 2013 13:00 - 42 minutes - 37.9 MBJesse Dubois, TAC engineer, and Aaron Woland, Identity Services Engine (ISE) Technical Marketing Engineer, discuss version 1.2 of the ISE solution. Discussion focuses on new features, the upgrade process, and tips and tricks to get the most out of your ISE deployment.
Cisco Live! 2013 Orlando Florida
July 15, 2013 13:00 - 58 minutes - 55.9 MBThe panel set up a recording table in the hallways of Cisco Live! 2013 in Orlando Florida, to talk to our customers and partners about security technologies and the Cisco Live event.
Virtual Security: The ASA1000v and Virtual Security Gateway
June 10, 2013 13:00 - 44 minutes - 32 MBThis episode focuses on some of Cisco's Virtual Security Appliances, the ASA1000v, the Virtual Security Gateway (VSG) and the Virtual Network Management Center (VNMC). Rama Darbha and Michael Robertson discuss how administrators can use these products in their virtual environments, as well as the packet forwarding path and troubleshooting techniques for these products.
Investigating Syslogs: Tips and Tricks
March 28, 2013 13:00 - 22 minutes - 15.9 MBThe panel discusses best practices for configuring devices to generate syslogs, and how the TAC investigates syslogs provided by customers. Tips and tricks for parsing through large syslog files, as well as techniques and tools for finding useful information are discussed.
A look into ASA Quality with the Quality Assurance Team
February 21, 2013 13:00 - 25 minutes - 17.7 MBThis episode provides a peek behind the scenes at Quality Assurance for the Cisco ASA Software, featuring special guest Paul Larue (Technical Leader with Cisco Engineering). The panel discusses the different types of tests that occur at all stages of the ASA software development lifecycle and the continued focus on quality.
Introducing FlexVPN
September 12, 2012 13:00 - 40 minutes - 38 MBMagnus interviews a panel of VPN experts on a new shift in VPN technologies, Flex VPN. The panel includes VPN escalation engineers Wen and Jay Young as well as a special guest, Frederic Detienne. Fred hails from our Brussels location and is a Distinguished Support Engineer specializing in VPN and crypto technologies. The crew talks about Flex VPN and the new IKEv2 technology.
Cisco Live! 2012 San Diego
August 22, 2012 13:00 - 25 minutes - 18.2 MBThe podcast team returns to Cisco Live! in San Diego to give presentations, deliver lab trainings, and tape an episode of the Cisco TAC Security Podcast! The team talks to several customers about topics such as ASA VPN Client to Anyconnect migration, IPv6 use at Cisco Live, and much more.
The History of the PIX
June 14, 2012 13:00 - 22 minutes - 15.7 MBJay and David discuss the history of the PIX platform. Topics include the different PIX hardware types, how the software changed over time, the motivation for some of the features that were added, and also how the history of the Firewall Services Module, PIX and ASA are intertwined.
IOS Embedded Event Manager (EEM)
May 23, 2012 00:00 - 28 minutes - 19.3 MBSpecial guest Joe Clarke discusses the capabilities of IOS Embedded Event Manager. The panel discusses some very interesting use cases for EEM, and how it can be used to add new features to IOS as well as aid in troubleshooting complex network problems. A special listener challenge is given at the end of the show!
Troubleshooting IPSec VPNs
March 07, 2012 00:00 - 42 minutes - 29.3 MBSpecial guests Wen Zhang (Cisco TAC) and returning guest Jay Young Taylor (Cisco TAC) discuss the methodologies and approaches to troubleshooting IPSec VPN problems. The team discusses the best way to use show commands, debug output, and troubleshooting tools to get your VPN tunnels up and passing traffic!
Understanding DMVPN and GETVPN
January 28, 2012 00:00 - 57 minutes - 39.4 MBSpecial guests Wen Zhang (Cisco TAC) and returning guest Jay Young Taylor (Cisco TAC) discuss the differences between the DMVPN and GETVPN technologies. Deployment scenarios, as well as case studies and common customer TAC cases are discussed.
The Cisco Identity Services Engine
December 06, 2011 00:00 - 37 minutes - 26 MBSpecial guests Jesse Dubois (Cisco TAC) and Aaron Woland (Cisco TrustSec Engineer) talk with the team about the new Cisco Identity Services Engine. The discussion provides an overview of the ISE solution, deployment best practices and common problems, and hot issues and troubleshooting techniques, as well as monitoring.
The Cisco ASA Services Module
October 22, 2011 00:00 - 32 minutes - 21.9 MBThis episode features discussion about the new Cisco ASA Services Module (ASASM). Topics discussed include the hardware architecture differences between the ASASM and the Firewall Services Module (FWSM), new features introduced with the ASASM, and FWSM to ASASM migration tools and strategies.
How Cisco uses the Web Security Appliance to protect its network
September 09, 2011 00:00 - 51 minutes - 12.8 MBJeff Bollinger (Cisco Information Security Investigator), and Zack Shaikh (Cisco TAC engineer specializing in the Ironport Web Security Appliance) join the panel for a discussion about the WSA product. Then Jeff shares how Cisco is dploying WSAs to protect its own network from threats on the web, and some lessons he's learned along the way.
Cisco Live! Las Vegas 2011
August 04, 2011 00:00 - 31 minutes - 12.8 MBThe podcast team brought their recording equipment along to Cisco Live! in Las Vegas to talk to Cisco customers about their impressions of Cisco Live and some of the classes they are taking, and also how they use Cisco security products.
This Week In TAC!
June 06, 2011 18:50 - 42 minutes - 29.2 MBThis episode features discussion about interesting customer TAC cases that were tackled this week by the Firewall team in Research Triangle Park, North Carolina. Rama Darbha walks us through a problem with CPU HOGS and SNMP monitoring on an ASA. Justin Betz discusses a DHCP-Relay problem caused by a NAT translation issue on a FWSM. Mike Robertson discusses a FWSM issue where a UDP network attack was taking place, and David White Jr. discusses how he determined what extra padding data was bein...
Troubleshooting the NAC Appliance
May 03, 2011 20:05 - 36 minutes - 28.3 MBThis episode focuses on the Network Admission Control (NAC) appliance, with special guest Nevin Absher from the Cisco AAA TAC Team in RTP, NC. The discussion starts with a basic introduction to how network administrators can use the NAC appliance to control access to the network in various deployment scenarios. The discussion then moves to NAC deployment and operation best practices as well as specific issues that some administrators encounter when deploying the solution, and how to avo...
Useful Cisco ASA and IPS Commands and Features You Might Not Know About
April 19, 2011 20:05 - 41 minutes - 28.3 MBIn this episode the team highlights some of their favorite Cisco ASA and IPS one-line commands, and explain when to use them and how to interpret the output. In the show notes for the episode, we give sample output for each command.
Answering Questions From The Cisco Support Community
March 01, 2011 07:00 - 32 minutes - 21.7 MBThe panel discusses the Cisco Support Community and the benefits it offers to Cisco customers, partners, and Cisco employees. Online discussions, collaborating on technical documents, as well as blogs and technical videos are discussed. Then, the group answers interesting questions raised by the community about the Cisco Advanced Security Appliance and Intrusion Prevention System.
Mitigating a SQL attack with ASA, IPS and IOS Firewall
February 01, 2011 22:15 - 32 minutes - 22.3 MBThe panel discusses the concept of a SQL Injection Attack, and explains how this type of attack can be mitigated using the Cisco Adaptive Security Appliance (ASA), Cisco Intrusion Prevention System (IPS) and Cisco Zone-Based IOS Firewall (IOS Firewall). A real-world proof of concept is discussed, along with specifics about the various configurations required to stop the attack.
Using Certificates on the ASA and IOS platforms
November 12, 2010 19:45 - 33 minutes - 25 MBThis episode is all about digital certificates and how they can be used on the ASA and IOS platforms. The discussion starts with the basic concepts behind certificates and PKI, as well as the motivations for using certificate authentication. The discussion continues with best practices (such as backing up keypairs and trustpoints) and common customer problems and TAC cases.
TCP connections through the ASA and FWSM
September 28, 2010 19:45 - 47 minutes - 25 MBThis episode focuses on TCP connections through the ASA and FWSM platforms. The panel discusses the TCP security checks performed by the Cisco firewalls and how to modify the TCP settings to adjust the firewall behavior for specific network conditions. TCP throughput optimization, techniques for monitoring TCP connections, and some common TAC issues are also discussed.
HTTP filtering on the ASA
July 26, 2010 19:45 - 36 minutes - 25 MBThe panel discusses the http filtering capabilities of the ASA platform including custom http inspection, url-filtering, wccp configuration and the Content Security Control (CSC) Module configuration and troubleshooting.
Securing Cisco Routers
June 11, 2010 21:30 - 35 minutes - 50.7 MBLearn how to increase the security of Cisco routers. The panel discusses operational best practices and use of features such as authentication, authorization and accounting (AAA), control-plane policing, syslogging, configuration archiving, password types and Cisco IOS Embedded eEvent Manager.
ASA Anyconnect VPN
May 05, 2010 21:30 - 36 minutes - 50.7 MBThe ASA AnyConnect client is the next evolution in Remote Access VPN connectivity. In this episode the panel discusses the advantages of the AnyConnect client, strategies for migrating from the IPSec VPN client to AnyConnect, and package deployment tips. Additional topics include troubleshooting techniques, common AnyConnect problems, and methods for monitoring AnyConnect usage.
ASA Version 8.3
April 19, 2010 16:00 - 40 minutes - 56 MBThe panel discusses the features introduced with the new Adaptive Security Appliance (ASA) version 8.3. Information about the differences between 8.3 and previous versions, new memory requirements for version 8.3, as well as information about the upgrade process are discussed.