Brocade Logo

The Next Step: Brocade

I am happy to announce that I am now a Product Manager at Brocade. This is a big move for me, and one I am very excited about. I will get to work on the future of networking with a lot of smart people . Why Brocade? It’s simple really: He aha te mea nui o te ao? […]

Continue Reading
Firewall Pair

Using Check Point Identity Awareness with NAT

Check Point Identity Awareness is problematic in environments that have multiple customers, overlapping private address space, and NAT. It can be done, if you understand the traffic flows, the connections needed, and how to combine several features. Here’s how I did it. Background: Typical Check Point Management Flows A quick reminder of the traditional flows used […]

Continue Reading
IMC Icon

HP IMC Adapter Directory Naming

This week’s lesson: Be consistent with your vendor naming when working with HP IMC Custom Device Adapters. When you create the new adapter directory, use exactly the same vendor name as used within the UI. Otherwise IMC may not recognise your new adapter. Case matters too, even on Windows! HP IMC ships with a set […]

Continue Reading

F5 APM, SRX and DTLS NAT Timeout

I have been having issues using the F5 APM client behind a Juniper SRX-110 using hide NAT. I believe I’ve tracked it down to the default timeout settings used for UDP services. Here’s what I did to resolve it. Constant Connection Timeouts The laptop client was behind the SRX-110, using hide NAT. The initial client connection […]

Continue Reading
Firewall Pair

Check Point SmartLog – Recommended

Trigger warning for Check Point haters: I’m about to say nice things about Check Point. Continuing the recent theme of Check Point-related posts, I’d like to give Check Point credit for once. SmartLog is what I always wanted from Tracker/Log Viewer, and they’re not even charging me extra for it. Shocking, I know. Traditional Log Analysis 15-20 […]

Continue Reading
Firewall Pair

Check Point – Don’t Use the ‘Install On’ Column

I got caught out by Check Point’s “Install On” column recently. Most people don’t need this setting any more, but it’s still there for legacy reasons. Time to re-evaluate. When you create a firewall policy using Check Point, you define the set of possible installation targets. That is, the firewalls that this policy may be installed […]

Continue Reading
ipv4_allocation

IPv4 Address Transfer Prices Down?

Last year I wrote about the IPv4 Address Transfer Process. Recently I was involved in another IPv4 transfer. I was surprised to see that IPv4 prices have fallen in the last year. I have done some rudimentary analysis of the APNIC transfer statistics to try to figure out why. APNIC publishes statistics on transfers at […]

Continue Reading

Musing: Generalist to Specialist and Back Again

Recently I’ve been musing on IT Generalists vs Specialists. We used to have more generalist roles, covering all parts of the stack. ITIL then pushed us towards greater specialisation. I believe that we’ve gone back to valuing the Generalist, as the person who can glue components together. Will the pendulum swing again? Generalists: Soup-to-Nuts When […]

Continue Reading
NetBeez

NetBeez Review

NetBeez presented at Network Field Day 9, where they showed us their solution for distributed network performance monitoring. They gave the delegates a NetBeez agent to take home and test. I’ve run it for the last two months, and I’ve been happy with how it has performed. Physical Install The unit was supplied with a […]

Continue Reading

Reminder: Solarized for Better Terminals

I have used the “Solarized” colour scheme on my Mac for several years. This is: … a sixteen color palette…designed for use with terminal and gui applications If you spend a lot of time using the Terminal, this makes a huge difference. It gives me the right combination of colours to make sure everything is readable, […]

Continue Reading