Troubleshooting Application Configuration for Security
With security top of mind for every business these days, making sure that applications run through firewalls and other security devices is critical. One of my clients recently ran into a problem when the company wanted to put all their IP cameras and physical security equipment on a firewalled VLAN. After making some changes, the cameras and other equipment weren't reachable. They had made some incorrect assumptions about how the applications behaved.
In this video, I use Wireshark to baseline the ports and protocols a wireless IP webcam uses for its video stream in order to get it to run through the firewall. There many ways to figure this out from using netstat or similar utilities, but I am most comfortable with Wireshark. This webcam is a great example where you would assume the video stream uses HTTP/HTTPS or a separate UDP stream. This camera does not do either and in this video, I show you how I figured it out.
To avoid running into problems with projects grinding to a halt when you can't access a critical application through a security device, document your application protocols, servers, and port numbers. This may sound like a monumental task, but doesn’t take that long once you get the hang of it. I just completed this documentation for a client; it took approximately 30 minutes and was about five pages long.
Recommended For You
Low-Power WANs offer an alternative to 5G for connecting a fast-growing array of basic devices and sensors that transmit small amounts of data.
An effective network visibility strategy requires understanding the technical, financial, political, and legal aspects impacting your network operations.
Emerging organizational structures for IT include placement of IT pros in user areas and departments forming their own "micro IT's."
Comparing a good and bad trace helps identify performance issues. Dynamic baselining can be used when you do not have a good trace to reference.
Combining commodity server platforms and FPGA-based SmartNICs will allow network applications to operate at hundreds of gigabits of throughput with support for millions of simultaneous flows.
SD-WAN implementations are on the rise thanks to the potential cost savings, increased network resiliency, and better application performance they deliver.