Configuring D-VTI and S-VTI for Hub & Spoke Deployments

In this post, we're going to configure D-VTI and S-VTI between two CSR1000v routers to demonstrate hub and spoke deployments. The two devices used as shown in the topology below are R9 and R10. R9 will act as the hub…

Configuring IPSec Site-to-Site VPN’s using IOS-XE as a CA Server

In this post, we're going to configure an IPSec site-to-site VPN with two CSR1000v routers. The authentication between the two routers will be performed using digital certificates issued from a separate Cisco CSR1000v router which is acting as a CA…

Configuring FlexVPN Point-to-Point IKEv2 S-VTI with PKI Authentication

In the last post, we explored how to configure FlexVPN point-to-point IKEv2 S-VTI's with preshared keys. In this post, we will do the same but this time using another CSR1000v acting as a CA server. This will allow us to…

Duo 2FA for Checkpoint RA VPN/Mobile Access

In this article, we are going to configure Checkpoint Mobile Access with Duo two-factor authentication to further enhance the security of remote access VPN users. We will walk through the configuration steps on a newly installed Checkpoint firewall and test…

Quick Tip: Display Cisco ISE Usernames for Failed Authentications

In this quick tip Cisco ISE article I would like to point out how ISE administrators can displays usernames for failed authentications. The following has been tested on ISE 2.4 but is relevant for older ISE versions. When a user/machine…

KT S2 EP1 :: Deploying IBNS 2.0

In this video we take a look at what it takes to deploy IBNS 2.0 configurations for secure network access. Please refer to my previous post for a more detailed breakdown of IBNS 2.0: https://networkwizkid.co.uk/2019/05/25/demystifying-ibns-2-0-configuration/ https://youtu.be/EJ3cwmok28Q

Working with Certificate Revocation Lists and Cisco ISE

Throughout my time working with Cisco ISE, I've come across a few different errors when configuring ISE to perform Certificate Revocation Lists (CRL) lookups using Microsoft's Public Key Infrastructure (PKI). In this article I would like to show you how…

How a Degree In Computer Networks Accelerated My Career in Technology

This article is slightly different from the usual tech posts but I wanted to give those that are looking for a career in tech an insight into how a degree helped me. Now before we delve into the details, I…