I am a network and security consulting engineer who spent about 16 months (not counting 7+ years of experience with Cisco security products leading up to the decision to go for the CCIE 😉 ) pursuing my CCIE Security certification, which I achieved on September 13th, 2023. This blog includes posts related to topics I have studied, am currently studying, and general articles related to network and security technologies and integrations. I welcome feedback and hope that you find this content useful.
Latest from the Blog
Profiling Wired Endpoints without 802.1x or MAB using IBNS2.0
One of the first steps to designing and deploying ISE (or any NAC solution) is to gain visibility and understand what is actually out there connecting to your network, so you can design your policy and understand the impact of enacting it. For some types of endpoints, this is relatively easy (i.e. Windows laptops), but…
CCIE: No Longer TBD!
Around 11:00pm last night, I got the email that my score report was ready. I had felt okay leaving the lab center, MUCH better than the first attempt, but tried to keep my expectations in check and be ready to plan round 3 if I failed again. I cannot even begin to describe the emotional…
Study Notes – DHCP Server, Relay, and Snooping
This is a post in a series of “stream-of-study” content where I post loosely-structured notes taken while labbing various scenarios and technologies. With snooping only trusting the uplink to R5 (DHCP Server) we get errors when trying to relay R7’s DHCPD via R6: Once trust is implemented on gig0/1 towards R6, traffic flows as expected…
All content is owned, created by, and solely the opinion of the Author. Blog content in no way reflects the opinion of, nor is endorsed by, the Author’s employer, nor does it endorse specific products or make any claims for configuration viability outside of the Author’s specific non-production lab environment. Implementation of any configuration examples on this blog are done solely at the Reader’s own discretion and risk.
CCIE #TBD 