Tag Archives: J-Net

Not very quiet on the Western Front..Blogging on NAC

It may appear that I’ve been a quiet on the blogging side for a bit but I’ve been working quietly away producing a total of four new blogs for Juniper J-Net.  The first is already up, the other will be up in the next couple of weeks.

Deploying Network Access Control by Stealth

The first are a trilogy (another one!) on taking a tactical approach to deploying network access control in the Enterprise. I’ve seen this done wrong plenty of times and projects either flame out before they get anywhere near the purchase stage or worse, end up with going very Pete-Tong at the implementation and send a significant part of the network into Cardiac arrest. It’s not the “fault” of the technology at all; it’s a complex beast and interacts with the network in a hundreds of tiny ways. Most networks of any size rumble along with a variety of nasties lurking in the undergrowth; incorrect duplex, poorly conceived network routing, hideously out of date firmware, no reverse DNS etc. Apply NAC to a network which doesn’t have all these things dove tailed perfectly and you’re headed for a career limiting FAIL. 

The blog also further skirts around issues of control around BYOD. It’s still not an idea I’m completely in Love with, but there are some evils I’m learning to live with.  Applying NAC techniques and technologies to support BYOD is a significant step forward in doing BYOD “right”. I suppose my biggest issue is that there really isn’t much in the way of “best practice” yet; the technology on the enpoint is moving very fast indeed.  Developing up to date client agents of major platforms Android, iOS, Windows Mobile and Symbian is a major PITA as the release platform release cycle is so fast.  Not every vendor is opening up there API completely, not every platform has a guaranteed lifespan and some vendors have a torturously opaque application submission process (no prizes for guessing that one). 

I am going to blog more about BYOD when I get a chance, but please take a look when you’ve a moment!

 

Advertisements

Guest post on the Juniper J-Net Blog

A few months ago my random dribbling on twitter started to get some attention “in the real world” and a very nice young lady in Juniper’s social media/Digital marketing program asked if I was interested in producing a guest blog.. Low and behold a few months later we are finally there!

http://forums.juniper.net/t5/Networking-Security-Now/Considering-a-migration-…

Rather than drill into the minutia of Junos CLI, I thought it would be more interesting to talk about the process involved of reviewing your Firewall deployment. I could easily waffle on for days on the subject, but berivity won over.

Went live this afternoon, please have a read and would love to receive your comments (preferably on J-Net if possible!)

Thanks very much to the diminutive @ZoeSands for her patience and walking this mumbling nerd through the process getting my words in order and posted on the interwebs.

Just to keep things “exciting” I’m going to properly transcribe the unboxing the of the new MAG Pulse gateways I did a few days ago but this time with better photographs!

 

Toodles!