Network Security
Post-Quantum Networking: What Cisco’s Quantum-Ready Push MeansNew!!
Post-quantum networking is about inventory, crypto-agility, long-lived data risk, secure boot, VPNs, certificates, and refresh planning before the emergency arrives.
Designing Networks With DoD IL5 in Mind: Campus, Data Center, IT, and OT SecurityNew!!
A network is not "Department of Defense (DoD) Impact Level 5 (IL5) compliant" by itself. A network can, however, be designed to support a mission system categorized at IL5 or pursuing a DoD IL5 authorization. That distinction matters. IL5 is about the mission system, the authorization boundary, the data being protected, the controls that are […]
Live Protect and Runtime Vulnerability Shielding for Network InfrastructureNew!!
Live Protect is Cisco’s runtime shielding approach for reducing exposure while teams plan upgrades. It should complement patching, segmentation, and lifecycle management, not replace them.
WireGuard Home VPN: Secure Remote Access for Your HomelabNew!!
A practical WireGuard home VPN guide for secure homelab access, including routing design, firewall rules, DNS, validation, and gear recommendations.
Cisco Multicloud Fabric: The Network-as-a-Service PushNew!!
Cisco Multicloud Fabric aims to simplify site-to-cloud and cloud-to-cloud networking with a Cisco-operated fabric, zero-trust routing, firewall chaining, and ThousandEyes visibility.
Catalyst Campus Fabric: eBGP, EVPN, VXLAN, and the Path to Macro and MicrosegmentationNew!!
A design-focused look at Catalyst campus fabric, eBGP/EVPN/VXLAN, VRF macrosegmentation, TrustSec SGT microsegmentation, and how campus fabrics mature toward zero-trust segmentation.
Cisco Secure Access: Where SSE, ZTNA, SD-WAN, and AI Security Meet
A practical look at Cisco Secure Access, SSE, ZTNA, Meraki SD-WAN integration, AI application control, and how to design a migration away from legacy VPN assumptions.
Network Security Field Notes: Start Here
A practical network security starting point covering asset inventory, segmentation, identity, firewall policy, logging, patching, backups, and incident response.