Welcome to our new blog, Architect & DE Discussions, where you can hear from (and yes, discuss and debate) the architects and distinguished engineers behind some of Cisco’s top technologies. As we move forward into Cisco Live San Diego next week and open up a new chapter of software innovation, one of the key areas we’d like you to hear about and provide feedback on is what we’re thinking about inside of Cisco.
We’re getting back to basics: the technology and what’s really behind it, but also future technologies and how we think they might impact the industry, or multiple industries. From what’s next inside IOS to how SDN goes to market first (wait, is SDN an architecture, or a solution, or.. ?) and yes, even OpenFlow, this is the place to hear it first.
This isn’t a blog where you’ll find marketing-speak or any lingo. This is a blog where you can actually hear directly from top engineers and architects driving not only the current but future technologies inside of Cisco. We’d love your feedback and strongly encourage participation and discussion. Do we always know what’s right? Absolutely not, but sometimes we understand the hard questions fairly early on. By sharing these questions and possible outcomes we would love to have a dialog with you on where you think the industry is moving as well and also what you’d like to see from Cisco. Read More »
Tags: architects, IOS, OpenFlow, SDN, technology
The Global Certification Team (GCT) is thrilled to announce that the ISR 881W/881GW has completed the FIPS certification process. The official listing has been posted to the NIST website, being awarded certificate #1700, as FIPS 140-2, Level 2 Certified.
The Cisco 881W and Cisco 881GW ISR’s provide connectivity and security services in a single, secure device. These routers offer broadband speeds and simplified management to small businesses, and enterprise small branch and teleworkers. The module is also a wireless access point that provide secure wireless access to clients.
Read More »
Tags: 140, 880, 881gw, 881w, family, fips, FIPS 140-2, integrated, IOS, ISR, routers, series, services
Cisco’s Internet Routing In Space (IRIS), the first solution to bring the networking capabilities of Cisco IOS Software to space, is continuing to transform the satellite communication industry.
The testing and deployment of IRIS has been full of industry firsts. In the most recent milestone, TeleCommunication Systems (TCS), Cisco’s partner in deploying IRIS services, this week announced that it has completed production integration testing and roll-out of a software upgrade to OS-IRIS, adding enhanced encryption and additional IPv6 support to the platform.
According to Michael Bristol, general manager and senior vice president of government solutions for TCS, “Cisco IRIS technology is transforming how government agencies and commercial organizations use IP-based network services to accomplish their objectives. This is another milestone in the long-term satellite industry collaboration between TCS and Cisco, and we look forward to increasing opportunities for both government and commercial markets to deploy more flexible and cost-efficient solutions.”
TCS OS-IRIS allows organizations to directly connect sites on multiple continents without the need for double satellite hops or the traditional connection to a commercial teleport. This converged solution enables voice, data and video traffic over a single IP network to increase efficiency and flexibility, compared with more fragmented, traditional satellite communication networks. Customers benefit from increased bandwidth availability, reduced latency, optimization tools and application flexibility delivered by TCS through an end-to-end Cisco secure IP network.
Learn more about the announcement here:
Tags: Borderless Networks, GGSG, global government solutions group, internet routing in space, IOS, IPv6, IRIS, satellite, TCS, TeleCommunication Systems
Forensic analysis of IOS images can be a tricky science, due in part to the diversity in IOS image versions and branches. Between IOS 11 and IOS 12.4, over five thousand different images were built, a quarter of which belong to the 12.2 train. Some IOS trains are in more widespread use than others, just as some hardware platforms are more popular than others, but even when narrowing down by feature-set or hardware, there is a large diversity of images. There are however, some steps that can be taken, both while the IOS device is running, as well as offline, that can help determine the integrity of an IOS image.
Read More »
Tags: Cisco IOS software, IOS, security
We are often asked by customers about how they can prevent traffic from a certain country (let’s say country X) from entering their network. The motivations for doing this could vary. Sometimes a company does not do business with all countries in the world; therefore, the company doesn’t need to be accessible from all countries. Other times it is an issue of trust and security, where an administrator may not want to allow country X to enter their infrastructure. Finally, there are cases where country X has often been incriminated with malicious activity, so an administrator may want to block country X when there is no need for the organization to interact with this country. In this document I present a methodology on how to write a tool that provides the configuration lines to block country X, using your IOS router or ASA/ASASM firewall.
Read More »
Tags: ASA, filters, firewall, internet traffic, IOS, mitigations, security