Видео 19
Просмотров 3 613

6:02

Deploying Cisco's New PNM Sensor on Ubuntu 24.04

19:28

Cisco XDR Analytics - ISE Integration

16:31

VMWare Netflow (IPFix) from virtual Distributed Switches

10:00

Netflow and ETA on a Cisco Catalyst 9300

10:21

Configure NetFlow on a Cisco Catalyst Switch - CLI

21:32

Cisco Telemetry Broker - Requirements

This is the first video in a new series I'm starting on Cisco Telemetry Broker (CTB)
In this video I walk through some of the key requirements for deploying Cisco Telemetry Broker in a VMWare virtualized environment and go over it's primary use case.

Видео

6:02

Meraki Integration with XDR Analytics

Просмотров 3021 день назад

In this video I walk through Integrating a Meraki Dashboard with Cisco XDR Analytics. This integration resolves names known by the Meraki devices to IP Addresses in the XDR Analytics Portal.

Deploying Cisco's New PNM Sensor on Ubuntu 24.04

19:28

Deploying Cisco's New PNM Sensor on Ubuntu 24.04

Просмотров 182Месяц назад

In this video, I guide you through deploying the latest version of Cisco's PNM Sensor on Ubuntu 24.04. I cover everything you need to know, including minimum resource requirements, configuration steps, and verification to ensure a successful deployment. One thing I forgot to put in this video, is that if you are installing the PNM Sensor in a VMWare environment you must set the compatibility to...

16:31

Cisco XDR Analytics - ISE Integration

Просмотров 2653 месяца назад

This video walks through how to integrate the Cisco XDR Analytics portal with Cisco ISE pxGrid. This video only covers the Cisco XDR side of the integration.

VMWare Netflow (IPFix) from virtual Distributed Switches

10:00

VMWare Netflow (IPFix) from virtual Distributed Switches

Просмотров 1393 месяца назад

In this video we configure a VMWare Distributed Switch to send NetFlow (IPFix) to a PNM Sensor. Then we verify the telemetry is received on a PNM-Sensor. Keep in mind that this only works on a Distributed Switch, a standard VMWare vSwitch does not have this capability.

Netflow and ETA on a Cisco Catalyst 9300

10:21

Netflow and ETA on a Cisco Catalyst 9300

Просмотров 1854 месяца назад

In this video I try to demonstrate how to configure a Catalyst 9300 on the CLI for both NetFlow v9 and Encrypted Traffic Analytics. There are some gotcha's as of Sept 2024 you should be aware of and I discuss those in this video.

Configure NetFlow on a Cisco Catalyst Switch - CLI

21:32

Configure NetFlow on a Cisco Catalyst Switch - CLI

Просмотров 2144 месяца назад

In this video, I provide a guide on configuring NetFlow on a Cisco Catalyst Switch. Given the wide range of Cisco switches and the potential variations in configuration due to different code releases, this tutorial focuses on the fundamental aspects of setting up NetFlow v9. Specifically, I will demonstrate how to configure the essential 9-tuples of NetFlow v9, applicable to most modern Cisco C...

Configure NetFlow on FMC using GUI - 7.4+

9:53

Configure NetFlow on FMC using GUI - 7.4+

Просмотров 2944 месяца назад

In this video we demonstrate how to use the FMC GUI to configure an FTD to Send NetFlow (NSEL) telemetry to a PNM Sensor. The GUI Feature is available in version 7.4 or later of code and replaces the older FlexConfig method of applying the NetFlow configuration. If you FTD already has an NetFlow configuration on it by previously using the FlexConfig method, then you upgraded your FMC to 7.4 or ...

PNM Sensor - Adding SSSD for easier administration access

10:11

PNM Sensor - Adding SSSD for easier administration access

Просмотров 1465 месяцев назад

In this video we will walk through connecting the PNM Sensor to Active Directory using SSSD. We will also configure SSSD to allow the 'SecurityTeam' active directory group to SSH, Authenticate, and have sudo rights all with their Active Directory userid and password.

17:40

PNM Sensor - Automatic Security Updates

Просмотров 1805 месяцев назад

In this video we are going to go through how to configure you PNM Sensor, or any Ubuntu Server for that matter, to automatically apply security updates.

11:11

PNM Sensor Security - Fail2Ban

Просмотров 675 месяцев назад

In this video I cover using fail2ban to block IP Addresses that make repeated failed SSH attempts. Fail2Ban is an open-source intrusion prevention tool for Linux systems. It helps protect servers from brute-force attacks by monitoring log files for repeated failed login attempts and then banning the offending IP addresses for a specified period.

10:41

PNM Sensor Security - UFW

Просмотров 645 месяцев назад

This is the first in a series of videos where I go over ways to secure your PNM Sensor. In this video we are using the Uncomplicated Firewall wrapper to enable the Ubuntu Firewall and limit traffic to just the ports we need to manage the device and accept telemetry from all our exporters. Remember that the PNM Sensor is a Linux Ubuntu Server and needs to be secured just like any device on your ...

Cisco XDR - Cisco Secure Client additional profiles and modules

13:42

Cisco XDR - Cisco Secure Client additional profiles and modules

Просмотров 3199 месяцев назад

Cisco eXtended Detection and Response - XDR, Network Visibility Module (NVM). In this video we are going to cover a few items of note when rolling out the NVM module to your environment. - Deployment with Secure Endpoint as a module - Understanding the impact of the 'Recommended' and 'Latest' version options. - Create an Umbrella module to add to our deployment. - Removing the AnyConnect VPN mo...

Cisco XDR - PNM Sensor - Verifying NetFlow is Received

2:47

Cisco XDR - PNM Sensor - Verifying NetFlow is Received

Просмотров 8411 месяцев назад

This video walks through a quick way to verify that NetFlow is being received by a Cisco XDR - PNM Sensor and properly sent up into the Cloud Analytics Data Lake. XDR = Extended Detection and Response PNM = Private Network Monitoring

Configuring NetFlow (NSEL) on Cisco FTD's

13:33

Configuring NetFlow (NSEL) on Cisco FTD's

Просмотров 77911 месяцев назад

This video walks through how to configure NetFlow (NSEL - Network Secure Event Logging) using Flex Config on a Cisco FMC for FTD's. This was demonstrated on version 7.2.5 code release. The documentation displayed is all found on the Cisco website. FMC = Firewall Management Center FTD = Firewall Threat Defense (Used to be Firepower Threat Defense) XDR = Extended Detection and Response PNM = Priv...

12:36

Cisco XDR - PNM Sensor Install Video 2

Просмотров 11011 месяцев назад

Cisco XDR - PNM Sensor Install Video 2

0:59

About my channel

Просмотров 6011 месяцев назад

About my channel

Cisco XDR - PNM Sensor Initial Install and Setup

11:47

Cisco XDR - PNM Sensor Initial Install and Setup

Просмотров 194Год назад

Cisco XDR - PNM Sensor Initial Install and Setup

Cisco NVM Default Client Install for Cisco XDR

13:38

Cisco NVM Default Client Install for Cisco XDR

Просмотров 315Год назад

Cisco NVM Default Client Install for Cisco XDR

@pfiano Месяц назад
Thank you for the video-it was very helpful. I have a question regarding your explanation. From what I understand, for both NetFlow v9 and Encrypted Traffic Analytics (ETA) to function properly with XDR (via the ONA sensor), only the specified 9-tuple fields can be used, as the receiving system will handle only these nine fields simultaneously. Is my understanding correct? Additionally, what would happen if optional fields were included-would they be ignored, or could this cause issues with the data processing? Looking forward to your insights
@NetworkBob-nm7uw Месяц назад
That has been my observation as well (the 9-Tuples). In fact, I think I'm going to update this video to reflect that and a few other items as well. I'm going to test your question in the lab to get the right answer. 'What happens to any extra fields besides the standard 9-tuples when also sending ETA.' I'll ping you when I post it.

Network Bob

Видео

Комментарии