STDIN (Standard In) on Steroids

CyberSana provides a secure bridge into your infrastructure. The ability to type the same commands on multiple devices is used for triage, incident response, upgrades, baselines and general information gathering. Regardless of the destination, you can now easily type a command to all devices or specific target groups or individual devices.

Infrastructure Inventory Report

In a heterogeneous environment, generating an inventory report can be an arduous and onerous task to complete.  Built-in CRMs and home grown solutions are still maintained manually and often out of date.  We feel the pain, the burn, and the burden.  Generate an up-to-date inventory of your infrastructure in minutes with CyberSana, export it for mangling and present [...]

STANDARDIZING ADMINISTRATOR SSH SESSION TIMEOUTS

Idle SSH session timeouts can put you in a grumpy mood.  Let’s standardize them across your devices.  We like 30 minutes as it seems to be a sweet spot for the brain to say, well, it has been 30 minutes since I’ve done anything, so it’s ok to be disconnected.   JUNIPER SCREENOS This one is [...]

ARE SITE TO SITE VPNS ON A CISCO FIREWALL MORE PERMISSIVE?

  If you set up site to site VPNs a lot, you will notice quirks between vendors.  OpenVPN doesn’t play nice when PFS is enabled.  The infamous Check Point supernetting issue.  Or this last one where Cisco firewalls request a less restrictive proxy-id to function when pairing with a Juniper ScreenOS policy-based VPN. Cisco Setup The phase 2 encryption domain of [...]

Juniper ScreenOS DNS Application Layer Gateway Madness

You have a custom application that performs DNS queries, but does not follow security best practices to at least randomize the source port of those queries. Business must go on, so you secure this connectivity via a site-to-site VPN. So, you need to make an exception to your Juniper ALG. By default, DNS traffic, running [...]