Note on AAA when using cisco ASA

Posted on by David Vassallo

It’s common practice to have multiple users on a firewall, and each user may have different levels of access, such as admin accounts, while others may have just read-only accounts. The cisco ASA is no different and it is quite easy to setup a local AAA (authentication / authorization / accounting) server so you can … Continue reading Note on AAA when using cisco ASA

Preserving client IP w/ apache reverse proxy

Posted on by David Vassallo

We recently had a scenario where an apache reverse proxy needed to be deployed in front of a pair of tomcat servers. Due to security concerns, this reverse proxy was hosting mod_security and acting as a web application firewall (WAF) However, a critical requirement was that the tomcat applications would be able to see the … Continue reading Preserving client IP w/ apache reverse proxy