Cisco Blogs


Cisco Blog > Enterprise Networks

Block a Country with my Cisco Router or Firewall

Hi everyone. Starting this week, every Wednesday we are going to highlight a special security or wireless blog to round out our Borderless Networks theme. Today, we have a real treat for you with this security blog by Panos Kapanakis.  Here’s a nugget to pique your interest. Use the link to click through for more.

Problem:

We are often asked by customers about how they can prevent traffic from a certain country (let’s say country X) from entering their network. The motivations for doing this could vary. Sometimes a company does not do business with all countries in the world; therefore, the company doesn’t need to be accessible from all countries. Other times it is an issue of trust and security, where an administrator may not want to allow country X to enter their infrastructure. Finally, there are cases where country X has often been incriminated with malicious activity, so an administrator may want to block country X when there is no need for the organization to interact with this country. In this document I present a methodology on how to write a tool that provides the configuration lines to block country X, using your IOS router or ASA/ASASM firewall.

Read complete blog.

Top 4 WAN Obstacles and Solutions to Cloud Migration

The biggest buzzword in the network industry is Cloud: the majority of organizations have a strategy to use cloud-based services and applications, whether it be Public or Private clouds. Organizations have come a long way since ‘migrating to the cloud’ discussions began . Take a look at this video recorded just a few years ago when cloud was still an enigma:

But Cloud has never been a new concept: IT professionals have been migrating applications to centralized datacenters for decades now…mainly to share recourses and save money by having less IT personnel supporting branch offices. Unfortunately, application performance as well as reliability and uptime requirements quickly became barriers to this centralization. Read More »

Tags: , , , , ,

Touch and Feel IPv6 Wi-Fi!

Despite the “buzz” around IPv6 right now for many customers it’s not easy to actually test drive an IPv6 connection. When we got the opportunity to sponsor the Wi-Fi customer access at the 2012 v6 World Congress, we jumped at it. …

The actual hardware used at the event is all available right now: a Cisco ASR 1000 router, the Aironet 1142 Access Point, and the Cisco 5508 Wireless LAN Controller. The ASR 1000 is one of Cisco’s most popular routers and in use by over 8000 customers, including both enterprise and service providers. The ASR 1000 is a proven platform for IPv6 applications and has been deployed by two of the industry’s earlier adopters of v6 technology: Iliad Group’s Free and SFR France.

Read more and watch video demonstration.

No Ride for Revere with the Right Network

We saw what happened when William Wallace upgraded to the Right Network, but how about Paul Revere? Equipped with a Cisco Cius tablet and a reliable wireless connection, Paul can quickly communicate the impending British invasion to fellow Patriots. There’s no need for a midnight ride when you’ve got the Right Network.

Watch video.

Easy Virtual Network (EVN): Confusion Over Simplification?

Based on the online dialog on Easy Virtual Network (EVN) that I’ve seen, it appears that some people still have questions. We thought our story was as simple to understand as EVN is to use, but there is a need for clarification. Here’s a bit more information about what EVN is and what it isn’t.

One online comment was, “It’s a Cisco proprietary version of MPLS for the enterprise.” No, we believe in MPLS. It’s supported on a number of Cisco platforms and is used by many of our customers. MPLS is the most scalable and perhaps the most capable means of network virtualization. But it’s also overkill and far too complicated for many enterprises.

Read More »

Tags: , , , , , , ,