Hi [[ session.user.profile.firstName ]]

Is Your ASA Actually Doing What You Expect?

The core concepts surrounding DevOps and infrastructure-as-code have permeated into the network automation over the past several years. Some of you have probably employed these techniques to automate your firewall policy configurations in production. Often times, the administrator will poke holes in their firewalls to enable critical applications to function, but how often do we explicitly test the effectiveness of our rulesets? To address this gap, I've written a Python-based tool using Nornir and Netmiko that can rapidly test distributed Cisco ASA deployments for policy compliance. This session explores how the tools work in-depth.
Live online Apr 2 3:00 pm UTC
or after on demand 60 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Nick Russo, Technical Leader, Cisco Systems
Presentation preview: Is Your ASA Actually Doing What You Expect?

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • NetDevOps Live! Logging and Back Again - A Network Engineers Journey with ELK May 19 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: George Kobar - Elastic
    Sure, you've figured out how to up your game in network configuration, but what are you doing to modernize your network monitoring and logging? I bet you're still stuck in the stone age, stockpiling syslog like a dragon hordes gold, hoping you never need to look through it to find that particular gem of good information. Join Hank on his quest through the Mines of Local7 guided by the Wise Wizard of ELK, George Kobar!
  • NetDevOps Live! The Truth! Your Network WILL Handle the Truth with NetBox May 12 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: Jeremy Stretch - Network to Code
    Who would have thought IP Address Management would be one of the hottest topics in network automation? If anyone did, it was Jeremy Stretch. You'll have to pardon Hank if he's a bit star struck on this one, because not only is Jeremy leading the team behind NetBox, he's also the creator of the networking cheat sheets that have helped many of us learn networking fundamentals. Whether you've been using NetBox for years, or never heard of it before, you'll want to join this episode to learn why Source of Truth MUST be a key to your network automation strategy.
  • Implementing Cisco DNA Center with Cisco Action Orchestrator May 7 2020 3:00 pm UTC 60 mins
    Kareem Iskander, Developer Advocate, Cisco DevNet
    Cisco DNA Center provides a fully comprehensive software solution to managing enterprise networks and the devices that comprise them. Built with an “API first” ethos, Cisco DNA Center API offers the ability to build solutions with “intent” and “assurance”, making it a fitting compliment to a variety of networking Day 0 through Day 2 needs. In this session, learn how to implement Cisco DNAC APIs to provision enterprise wireless networks as part of a multi-domain solution.
  • NetDevOps Live! Give your Network a REST with Postman May 5 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: Kevin Swiber - Postman
    Postman has been a supporting character in so many network automation lessons and presentations, but today it's the star of the show. Network engineers world-wide are leveraging REST APIs to communicate with devices, controllers, management systems, and other applications. Postman can be your cockpit for exploring, storing, sharing, and manipulating these APIs. Join Hank and Kevin from Postman to learn how to become supercharge your REST API skillz!
  • Implementing UCS/ACI Deployments with Cisco Action Orchestrator Apr 30 2020 3:00 pm UTC 60 mins
    John McDonough, Developer Advocate, Cisco DevNet
    Interconnecting devices is ultimately designed to allow for access to resources that can actually “do something”, e.g. the compute portion of a network. Provisioning and managing these devices and their connectivity is key to an end-to-end solution. Cisco UCS (Unified Computing System) and Cisco ACI (Application Centric Infrastructure) allow an organization to fully manage their data center resources. With extensive API support, these platforms can be integrated into a variety of solutions. In this session, we will be introduced to how both platforms can be integrated together as part of a multi-domain solution in Cisco Action Orchestrator.
  • NetDevOps Live! HashiCorp Brings a Cloud Operating Model to Network Engineers Apr 28 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: Kevin Corbin - HashiCorp
    I've no doubt you've heard of their tools, and likely you've heard the name HashiCorp. But did you know that the company behind Terraform, Vagrant, Consul, Vault, and so many other foundations of cloud-native development can also help NetDevOps teams modernize their tooling? In this episode, Hank brings previous NetDevOps Live! presenter Kevin Corbin to share what he's been up to since joining HashiCorp's network automation team!
  • Implementing Meraki Deployments with Cisco Action Orchestrator Apr 23 2020 3:00 pm UTC 60 mins
    Matthew DeNapoli, Developer Advocate, Cisco DevNet
    Meraki, Cisco’s fully cloud managed network infrastructure, fits a variety of use cases from small business to enterprise networks. Backed by a robust API, Meraki is easily integrated with other platforms to create multi-functional solutions. In this session, we will review the implementation of the Meraki APIs into Cisco Action Orchestrator to provision a branch site and its devices via API as part of a multi-domain solution.
  • Learn how to make Network Automation Simple with the Community Apr 22 2020 3:00 pm UTC 45 mins
    Charles Eckel, Developer Advocate, Cisco Systems
    Join us to learn about our new DevNet Automation Exchange and get answers to your questions. Networking automation is one of the biggest challenges IT departments face. DevNet Automation Exchange addresses this challenge by hosting a set of shared code repositories for network automation that developers, partners and customers are using and contributing to. Automation Exchange meets the organization where they are on their journey. Those just beginning their journey can start to understand how they can get visibility and insights into their networks. More advanced professionals can begin setting policies across different network domains. Experienced professionals can find solutions to proactively manage applications, users, and devices with DevOps workflows.
  • NetDevOps Live! Fishing for Network Health with Batfish Apr 21 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: Samir Parikh - Intentionet
    What is the last thought every engineer has before pushing that configuration change? "Gee, I sure hope this works…" With Batfish you can stop relying on HOPE and push changes with confidence because Batfish KNOWS. In this episode, Hank is joined by Samir Parikh from Intentionet, the team behind the open source project that uses MATH to model network policy configurations, and lets engineers insure that the desired intent is met before deploy time.
  • Implementing Cisco SDWAN Deployments with Cisco Action Orchestrator Apr 16 2020 3:00 pm UTC 60 mins
    Stuart Clark, Developer Advocate, Cisco DevNet
    Cisco’s SDWAN platform offers the ability to manage devices across a variety of sites from headquarters to branch to teleworker. In this session, we will look at the implementation of Cisco SDWAN APIs in Cisco Action Orchestrator to provision a branch site and its devices via API as a part of a multi-domain solution.
  • NetDevOps Live! Power Your NetDevOps Workflows with GitLab Apr 14 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guest: Brad Downey - GitLab
    So you've worked out how to git clone, add, and push. That's awesome, but there's more to network automation workflows than that. Enter GitLab, a popular tool for software developers looking to bring sanity to their collaboration and code pipelines. Join Hank and Brad Downey from GitLab to learn how you can supercharge your projects with Issues, Wikis, CICD pipelines, Artifacts, and of course Code!
  • Intro to Multi-Domain and Cisco Action Orchestrator Apr 9 2020 3:00 pm UTC 60 mins
    Stuart Clark, Matt DeNapoli, Kareem Iskander, John McDonough - Cisco DevNet
    In IT, solutions are king, and those solutions could require a number of different platforms working in concert with each other. Join us as we cover a complimentary list of Cisco platforms that can be pieced together to solve enterprise-level WAN management for network and compute resources. We will introduce Cisco Action Orchestrator, a powerful building block for piecing together platform functionality and demonstrate the value of platform APIs in creating Multi-domain solutions.
  • NetDevOps Live! What's new with Ansible Network Automation? Apr 7 2020 3:00 pm UTC 75 mins
    Hosted By: Hank Preston - Cisco DevNet, Guests: Andrius Benokraitis and Sean Cavanaugh - Ansible
    For many, Ansible was their introduction to network automation and it continues to be a go-to choice for engineers and organizations around the world. Hank is joined by Andrius Benokraitis and Sean Cavanaugh from Ansible to learn what is new and exciting, and what we have to look forward to!
  • Is Your ASA Actually Doing What You Expect? Apr 2 2020 3:00 pm UTC 60 mins
    Nick Russo, Technical Leader, Cisco Systems
    The core concepts surrounding DevOps and infrastructure-as-code have permeated into the network automation over the past several years. Some of you have probably employed these techniques to automate your firewall policy configurations in production. Often times, the administrator will poke holes in their firewalls to enable critical applications to function, but how often do we explicitly test the effectiveness of our rulesets? To address this gap, I've written a Python-based tool using Nornir and Netmiko that can rapidly test distributed Cisco ASA deployments for policy compliance. This session explores how the tools work in-depth.
  • Manage Cisco UCS HX and Veeam Deployments with Veeam's PowerShell Extension Recorded: Mar 31 2020 60 mins
    John McDonough, Developer Advocate, Cisco DevNet
    CLIs are OK, GUIs are good, APIs are better. Learn how to manage Veeam and Cisco UCS HX with Veeam's PowerShell extension. Utilizing a Cisco dCloud environment this session will go through the dCloud lab scenarios using the Veeam PowerShell extension. Utilizing the Cisco UCS HX as the Veeam storage repository and the Veeam PowerShell extension operations covering backup, restore, replication and more will be covered using PowerShell. This session will also cover how to get started with the Veeam PowerShell extension and how to utilize the code repository that contains Veeam PowerShell scripts.
  • Network Automation with Cisco DNA Center and PSIRT APIs Recorded: Mar 26 2020 47 mins
    Adrian Iliesiu, Technical Leader, Cisco Systems
    Using Cisco DNA Center as the central source of truth for the network, learn how to use the REST API interface it provides to create new applications and integrations. In this webinar, you will learn how to programmatically retrieve information from Cisco DNA Center that you will then use to pass into the Cisco PSIRT API in order to create a list of all security vulnerabilities affecting the network. By the end of the session, you will know what Cisco DNA Center is, how to use the Cisco DNA Center Platform and the Cisco PSIRT API and how to develop Python applications on top of the network.
  • Getting started with Cisco SD-WAN Ansible Pipeline Recorded: Mar 12 2020 32 mins
    Stuart Clark, Developer Advocate, Cisco DevNet
    Learn how to apply modern agile methods and tools to the deployment of Cisco SD-WAN topologies. Take a step towards NetDevOps by using Ansible and VIRL to build test environments, create infrastructure-as-code, and automate Day 0, Day 1 and Day 2 configurations.
  • Demystifying Cisco Orchestrators for Infrastructure as Code Recorded: Mar 5 2020 49 mins
    Tony Dubiel, DevOps/Automation Lead for GES, Cisco Systems
    By automating the software development lifecycle (code, test, to production) developers and operators (DevOps) are becoming more agile, reducing costs, and delivering a superb customer experience to their customers. Cisco Orchestration solutions extend the benefits of automation to the entire stack by treating each layer of the underlying infrastructure as Code (IaC). Orchestrators reduce the complexity of programmability, operational state, and visibility. In this session, we decode the differences between domain-specific workflow automation versus cross-domain orchestration. As there are many layers in the ‘stack’, achieving a goal of ‘Automate everything’ requires the right tool for the right use case. To that end, we will cover Cisco Cloud Center Suite (Workload Manager and Action Orchestrator), UCS Director, Intersight, and Network Services Orchestrator (NSO). A brief demo will showcase Open Source and Cisco Orchestration tools working hand-in-hand.
  • Application Hosting on Catalyst 9000 Recorded: Feb 25 2020 55 mins
    Sai Zeya, Technical Marketing Engineer, Cisco Systems
    This session will cover step by step guide to host native docker application on Cisco Catalyst 9000 application environment. We will walk through application networking, application resources profiles and IOS level configuration required to install applications on IOS-XE with Cisco Catalyst 9K switch. We will also cover application orchestration via Cisco DNA Center.
  • Watch out SNMP! gRPC is here: Model-Driven Telemetry in the Enterprise Recorded: Feb 6 2020 32 mins
    Jeremy Cohoe, Technical Marketing Engineer, Cisco
    We know the challenges of SNMP with it's UDP transport, limited filtering and encoding options, and the tax to the device CPU and memory resources when multiple tools are polling. Now that gRPC Dial-Out model-driven telemetry is here there are options for migrating to the newer TCP based solution that is supported by YANG data models. These data models make finding specific data points or KPI's easy - the days of analyzing MIB's and OIDs are over.
Cisco DevNet
Cisco DevNet is Cisco's developer program to help developers and IT professionals who want to write applications and develop integrations with Cisco products, platforms, and APIs.

Visit us online at developer.cisco.com

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Is Your ASA Actually Doing What You Expect?
  • Live at: Apr 2 2020 3:00 pm
  • Presented by: Nick Russo, Technical Leader, Cisco Systems
  • From:
Your email has been sent.
or close