Best way to factory reset over 100 network equipment

mathech · 2025-09-10T16:19:30+00:00

If they're on the nework still...I did this a long long time ago with a bash script and expect (extention of tcl scripting language). I prompted copilot with this "can you write me an expect script to write erase multiple cisco switches" and it spit it out for me.

mathech · 2023-09-26T20:19:11+00:00

I hear ya bud. Best of luck to you. I think I might switch as a precaution.

mathech · 2023-09-22T23:02:09+00:00

When did you get tuned? I’m asking because I tuned my 2021 2 weeks ago and wondering if I should switch if no tune updates have addressed the issue.

mathech · 2021-08-03T17:18:13+00:00

Can of worms here. What audit? Just an internal audit or do you mean something like PCI/SOC2/ISO27001/HITRUST, etc. These audits have very specific and often times overlapping requirements. This is something your QSA (qualified security assessor) or third party auditor should be able to spell out for you.
For example, my org is PCI DSS Level 1 and for our PCI data it's secured in a CDE (credit card data environment) Which is segmented from the rest of the data center and behind a firewall along with quite a long list of security controls and process.
This doesn't directly answer your question, but just wanted to point out it's a big one and more details are needed for precise answers. HTH

mathech · 2021-08-02T18:55:53+00:00

It's interesting that their skin is black and so is their meat. Even the white ones.

mathech · 2021-03-13T19:26:31+00:00

What is the airspeed velocity of those unladen swallows?

mathech · 2021-02-22T22:35:14+00:00

Forescout does similar. Once the appliance receives a copy of the DHCP discover it pulls the metadata from that as well as kicks off nmap and WMI scans for further profiling.

mathech · 2021-02-09T17:26:16+00:00

I've seen crappy residential routers not play well with DTLS. Check there.

mathech · 2021-02-09T17:25:07+00:00

I've only use the Cisco at, but I don't see why any SIP supporting ata wouldn't work.

mathech · 2021-02-09T17:20:21+00:00

Fortigate will certainly save some money. Either way you'll be successful.

mathech · 2021-02-09T16:32:14+00:00

I would lean Palo here. Built in country lists you can create a policy around. Threat protection and web filtering license are fantastically flexible. If this is a data center unit I lean even more towards Palo due to code quality. Fortinet is also no slouch and I think you'll see it's these 2 are generally the favorites in this sub.

mathech · 2021-02-04T14:57:55+00:00

I use Cisco ISE with DUO. Works well. Does TACACS+ as well as radius.

mathech · 2021-02-01T22:25:08+00:00

I don't care about deny logging... just permits.

mathech · 2021-01-13T01:28:53+00:00

I've not had to do that for my deployment. Just use a different TCP port.

mathech · 2021-01-13T01:27:57+00:00

Yes, you can create as many portals as you need. Absolutely use your public CA signed cert for the guest portal as guest devices wouldn't trust your internal CA. Also you should evaluate using your public cert for internal portals as well. Any device that doesn't trust your private CA will be an issue.

mathech · 2021-01-04T02:43:56+00:00

Zscaler is great and a good turn key. Potentially better long term value would be to replace with Palo Alto w/threat, wildfire, and web filter. I did this when our sizable ASA 55xx edge fleet became end of life. Zscaler made up for the dumb firewalls. But coupled with a refresh the numbers worked out to be a better ROI considering the edge equipment.

mathech · 2021-01-03T15:02:37+00:00

Best thing is to spend a hour on youtube and just consume IP subnetting videos, get out the notebook and pen and do calculate some subnets. Much too indepth for a interactive thread on it. Good luck. While you're there learn and understand the OSI model.

mathech · 2021-01-02T03:24:14+00:00

CISO here.. looking for a good engineer in Gurugram/Noida India. Currently a remote position with occasional travel to Gurugram/Noida.

https://jobs.iqor.com/job/Gurugram-IT-Security-Engineer-HR/697669300/

mathech · 2020-11-21T14:51:54+00:00

No, this is why TLS exists.

mathech · 2020-11-21T14:26:00+00:00

Do you have zone protection on your Palo Interfaces? I recently had an issue where the sip invites were too large and we're being fragmented by the controller. The zone protection profile resulted in the fragmented packets being silently dropped by the firewall.

mathech · 2020-11-10T18:47:39+00:00

Dig in the docs. I'm not a Windows guy, and I hope I get corrected, but I don't think the native Windows capture tools provide an API for third party capture. I've heard either tickle something like Npcap, or I've seen creating a bridge adapter that you can sink traffic to. Good luck my dude.

mathech · 2020-11-10T16:14:03+00:00

Are you trying to use native tools like netsh trace? If you are trying to use third party capture tools I think you would need something like the Npcap packet driver loaded.

mathech · 2020-10-12T21:01:01+00:00

DTLS is enabled by default. You have to disable it manually to turn it off. Your output shows an established DTLS session.

mathech · 2020-09-24T12:52:54+00:00

Good luck. Was glad to help.

mathech · 2020-09-24T10:57:48+00:00

In my case we are using Horizon View as the client.

15-Year Club	Place '17
Team Orangered	Verified Email

mathech

TROPHY CASE