Tag Archives: firewall

How to Improve: Stop Doing, Start Understanding

Matt Schmitz/ November 28, 2017

There is a key to being successful at just about any IT job: Stop just doing work, and start understanding what you’re doing. Might seem like an odd thing to say right? But this is something that I have seen confuse engineers at earlier points in their careers. In a lot of jobs, the initial training you receive is fairly

Read More

What’s Going Out of Your Network?

Matt Schmitz/ November 21, 2017

Over this past weekend I purchased a few upgrades to my home network/lab. One of which was upgrading my older Ubiquiti 802.11n wireless access point to the newer 802.11ac model they have out. The other purchase was a new external firewall. I had previously been running on a Cisco ASA5505, but the device is older and doesn’t support some of

Read More

Devil in the Defaults

Matt Schmitz/ October 3, 2017

Default settings are the worst. Every systems has them, and they’re great until they’re not. For whatever reasons in the past, my predecessors decided to purchase a bunch of bare-bones HP servers and install Check Point’s firewall software on them. The HP servers were significantly cheaper than buying Check Point’s branded appliances, but unfortunately they come with a different set

Read More

SRX High CPU: httpd

Matt Schmitz/ September 5, 2017

Over the past few years of my Juniper SRX adventures, I’ve run into a few cases where the Routing Engine (RE) CPU is pegged at 100%. From what I’ve seen so far, this is typically one of three causes: high traffic (spike in IPS inspection), logging using event mode, or a stuck web management session. In a few occasional cases,

Read More

Ten years of Cisco Certification

Matt Schmitz/ August 29, 2017

It’s August of 2017 – which means it’s been a long ten years since I originally obtained by CCNA certification in 2007. I figured it might be a good time to take a minute and look at what that has meant for me, and how the last ten years of my career have gone. When I got my CCNA certification,

Read More

SRX Basics: Redunancy Groups and Failover

Matt Schmitz/ July 18, 2017

In last weeks post, we took a look at how to set up a chassis cluster on a Juniper SRX Firewall. So now that we have a basic cluster setup – Let’s explore some of the additional options and configuration items. Redundant Ethernet Interfaces So first thing is first – Once you have a cluster configured, you’ll probably want to

Read More

SRX Basics: Clustering

Matt Schmitz/ July 11, 2017

So you just unboxed a brand new pair of Juniper SRX firewalls – now what? Well, the first thing you’re likely going to want to do is get the two devices hooked up and clustered together. That should be pretty simple, right? Yeah, mostly – though there are a few variations between device models, and there are a few fine-print

Read More

Alright – Now What?

Matt Schmitz/ May 11, 2017

So it’s now been over two months since I finished college and obtained my magical piece of paper. It has been interesting to finally have some free time to do things that I want to do, and not having to constantly balance my time between school and work. So now that I’ve had a bit to sit back and take a break,

Read More

Virtual Networking Contexts

Matt Schmitz/ February 21, 2017

I really want to take a moment to talk about how wonderful VRFs/firewall contexts really are. Both technologies essentially allow a network administrator to spin up a virtualized, isolated instance of a network device. I’ll be honest and say that I hadn’t had the chance to play much with this stuff until just recently – but it makes life a

Read More