With the rise of organizations moving to public cloud, many also need to understand how to build and provide disaster recovery of their services outside of the public cloud vendor. Even with more of the hyperscalers now also providing new hybrid cloud services, what is the difference and what kind of functionality do each of […]
What does your hybrid cloud look like? and building a cloud exit plan Read More »
A while back Palo Alto acquired a company called Red Lock (Now called Prisma Cloud) which provides a Cloud Native Security Platform. You can integrate it with Public Cloud platform such as (Azure, AWS, GCP and Alibaba Cloud) to get overview of Governance, Monitoring and Security of the platform. (I also written about it before –> Palo
Palo Alto Prisma Cloud vs Azure Cloud Native Features Read More »
SASE …. or Secure Access Service Edge is a term coined by Gartner and is about providing the next generation of security and optimized network access for end-users. When I first starting to read about this, my first thought was, so is this Zero-Trust? but no, it is a combination of multiple features, but Zero-Trust
SASE – The next generation of services we need to protect the mobile workspace? Read More »
Last week I hosted (for the second time) the EUC state of the union 2021 edition for the My Citrix User Group community. Webinar Recording (for MYCUGC members here –> https://t.co/MI4rlKY7Yf?amp=1 PPT slides –> mycugc/MYCUGC.pptx at main · msandbu/mycugc (github.com) However, I also wanted to write a bit about some of the main things that I see
EUC State of the union 2021 – Recap Read More »
As many have said before me, moving virtual infrastructure to public cloud does not make any changes to what kind of responsibility you have as a customer in regards of management of those virtual machines. A Couple of weeks ago I did a presentation at the Nordic Virtual Summit about Security in Microsoft Azure, therefore
Microsoft Azure – Security Monitoring and Logging Read More »
Before I’ve written a bit about the Microsoft Windows Virtual Desktop architecture and how it handles traffic flow –> Windows Virtual Desktop Traffic Flow and GPU Workloads | Marius Sandbu (msandbu.org) A While back, Microsoft also introduced a new feature called WVD ShortPath which essentially allows the client to do a direct connection to the Session
Azure WVD and Shortpath using IKEv2 VPN Read More »
So when you are working on a production workload and something is not right with the network on that Windows VM, what do you do? Wireshark to the rescue? well no… not quite, I wouldn’t install that on a production server since it installs WinPcap/NpCap which is an NDIS filter driver on the network card. Secondly,
Network Packet Trace with Netsh and analysis with Wireshark Read More »
Yesterday Microsoft released into public preview the premium sku of their Azure Firewall which is a managed PaaS based firewall service in Azure. Since I first wrote about Azure Firewall and some of the features, I found lacking there have been a lot of enhancements (here is the original article –> Current limitations with Azure Firewall
Azure Firewall Premium vs Third-Party Firewalls Read More »
The last couple of weeks I’ve been busy preparing for upcoming webinars/conferences, and therefore I want to mention that tomorrow I’ll be presenting at the Nordic Virtual Summit. Which is a IT pro based event Nordic Virtual Summit – A virtual IT Pro Community Event! * On Wednesday I’ll be talking about Security and Governance (with
Speaking at NVSummit 2021 and MYCUGC Read More »
s straight Last week, there was published an article from NETSCOUT Microsoft Remote Desktop Protocol (RDP) Reflection/Amplification DDoS Attack Mitigation Recommendations – January 2021 | NETSCOUT that publicly available RDP servers were used to do amplified DDoS attacks. From the article “When enabled on UDP/3389, the Microsoft Windows RDP service may be abused to launch UDP reflection/amplification
RDP DDoS amplification attack Read More »
