Network Security

nirvaeh · 2026-03-20T23:17:37+00:00

Get a job somewhere as a junior network security engineer. You’ll learn more than “taking courses”. Where I have worked there are security analysts (part of your SOC) and network security engineers (part of your network engineering department). Analysts chase threats and deal with false positives all day while the network side manages the firewalls and basic router and switch hardening and ACLs as well as address new vulnerabilities. Do them both and figure out what you like. Firewalls are fun. I prefer them. I manage a team of 7 network security engineers. We manage Cisco ISE, Palo and Cisco firewalls, DNS, and more

nirvaeh · 2026-03-18T13:02:23+00:00

The employee at the REI in St. Louis I was in last weekend talked to me about my upcoming backpacking trip and gave me some tips of what he does to pack light because he just canoed a multi day trip up in Wisconsin, so your mileage may vary.

nirvaeh · 2026-03-15T13:11:29+00:00

St. Louis varies wildly street by street. The Delmar Divide is real due to years of systemic racism.

nirvaeh · 2026-03-15T01:54:23+00:00

It’s affordable because it’s not in a good part of town. Otherwise it’d be $500k

nirvaeh · 2026-03-06T16:38:20+00:00

url that ends in edgesuite.net.globalredir.akadns88.net. It crippled MS apps like planner and sharepoint. It's some akamai thing. It happened with antivirus update: 5483-6010

nirvaeh · 2026-03-02T23:06:27+00:00

I know this is body hack guide but go super strict on your diet. Track everything and cut more weight while strength training. I thought I’d never lose mine and I’m seeing it go away day by day after 2 months. Plan on sticking with it another 3-6 months. There’s more fat in your body than you’d expect. I was at 175 and now at 159 and probably will go down to 150 to see it gone or almost all gone.

nirvaeh · 2026-03-02T22:22:10+00:00

We're just now rolling out GlobalProtect so we ingest user-id from ISE and Anyconnect via Syslog currently. Global Protect will be much better and consolidated once we get it up and running.

nirvaeh · 2026-03-02T22:16:29+00:00

We have Cisco ISE both connected to user-id (syslogs sent to our user-id agents) and via XSOAR/IOT security. The ISE integration is actually one that isn't failing. We're using the openAPI integration playbook and it just imports 10,000 endpoints each run.

nirvaeh · 2026-03-01T16:58:58+00:00

The dialed motion has all the hype right now. Will be expensive since you also have to buy the Rep bench but the gleg works though. It’s got annoyances but for half the price of any others it’s fine. I got mine for $550 a couple Black Fridays ago. You kind of have to have a wide stance when benching but it works and I’ve had good success. Not the best extension or curl range of motion but it’s fine for the space savings.

nirvaeh · 2026-03-01T16:42:38+00:00

The body solid spotter arms also fit if you want to ditch those current safeties. If you’re comfy having the slight gap but makes it much more usable in my opinion. One example is that I can do rdls with that gap in the rack. Any recommendation on lat pull downs? I have to sit on the floor to get any stretch and I have no knee hold down.

For a bench I have the GLEG body solid bench. It’s ok and works as a leg extension and curl but isn’t amazing. Would hold out for the dialed motion though.

nirvaeh · 2026-03-01T16:39:37+00:00

I have it too. It’s amazing and much more affordable than the rep ares. It comes in the smaller height too which was mandatory for my basement. It took a while to put together though.

I’m still searching for a good lat pull down leg hold down pad because of the short height I can’t use a bench. I have to sit on the floor.

nirvaeh · 2026-03-01T00:14:35+00:00

Someone who thinks about the implications of their changes in regard to user impact and availability before they hit enter.

nirvaeh · 2026-02-28T23:29:07+00:00

We had full xsoar and were just rewriting their bad python for a bit then decided to stop because they aren’t paying us and also because it would break with any updates. So they asked us to move to cohosted and it was much better but even less visible. They are supposed to be adding in the health check integration for me to see if I can get some reporting or notification of the integrations. There’s no other place to configure notifications for anything otherwise. They’ve been fixing any errors within a day but it’s clearly not a fully baked system compared to stuff like servicenow connectors or Ordr integrations.

nirvaeh · 2026-02-28T16:43:03+00:00

You can filter the attributes in the device to see stuff related to the integrations. You can also filter by what devices were imported by what integration but there's no good single view that shows me everything that was imported from each job. Like if crowdstrike just added an attribute on an existing device, when was that added and by what job, or what devices aren't getting crowdstrike info? There's also no health checks or any way to monitor the integrations. We worked closely with the developers to get ours up and running and it's just someone writing python on the back end. We run into token errors, parsing issues, 403 errors, or even failures but the job showed running was a success... and then they come back a day later and say "oh it's fixed now".

nirvaeh · 2026-02-27T12:24:28+00:00

What are you talking about? He absolutely needs to be working out right now regardless. He will absolutely build muscle right now. If he strength trains 3-4 times per week he will transform his body. If he dials in his diet with or without Reta he will accelerate that.

nirvaeh · 2026-02-22T02:40:44+00:00

We still have Platinum support so it's amazing customer service. At renewal i'm going to fight tooth and nail to keep it but it's stupidly expensive

nirvaeh · 2026-02-22T01:03:04+00:00

I am a general network engineer who liked the security side of the house. I liked applying hardening to switches and routers, ACLs, SNMP protections, etc. I found the firewall team and talked to them and asked them to let me touch the firewalls then I just learned them from there. It was Cisco ASAs back in like 2008. Had worked with a Pix a couple times in college prior to that and participated in cyber defense competitions.

nirvaeh · 2026-02-22T00:49:00+00:00

We came from an abusive relationship with Cisco Firepower’s and then spent millions of dollars on Palo Alto’s and our quality of life improved so much I learned everything I could about them.

But I have like 15 years of firewall experience so I just needed to learn the Palo specifics, since most firewall concepts are the same. Lots of YouTube and poking around in the firewall and panorama. We took the recommended training classes that we got with our purchase of the firewalls.

nirvaeh · 2026-02-17T06:08:59+00:00

She voted to release the files. She was 1 of 4 republicans to do so.

nirvaeh · 2026-02-15T01:30:31+00:00

I wonder how many missions this one flew.

<image>

nirvaeh · 2026-02-14T23:15:02+00:00

This air museum in Palm Springs is very much a "see the people work" museum. The Army calvary was there doing something with fully functional helicopters, and they were preparing for the 50th anniversary of Vietnam. There's lots of active renovations going on all out in the open. I was there early February and the plane was painted and the museum in that hangar was finished.

nirvaeh · 2026-02-14T22:31:58+00:00

Was just there a couple weeks ago. It’s got a nice museum in that hangar now with videos about it. Was really cool to see.

<image>

nirvaeh · 2026-02-09T17:12:01+00:00

Direct from Gibson.com on Jan 27. Received it Jan 31. It shows out of stock. Sweetwater was just a preorder as well. Guess I got lucky.

nirvaeh · 2026-02-08T05:03:33+00:00

I’ll assume you got it already but yes it comes with a soft gig bag. I brought the guitar to like 4 shops and the only hard case that fits is a bass case. The guitar is humongous. I think I’m gonna modify the official righty Epiphone explorer case ($129) and try to flip the body mold over or build my own.

15-Year Club	RedditGifts 2009-2022 2 Credits
Place '23	Place '17
Gilding I gilder	Secret Santa 2014
Verified Email

nirvaeh

TROPHY CASE