filmov
tv
Advanced Group-Based Segmentation with ISE
Показать описание
Cisco TME Jonathan Eaves is back to share more about how to do group-based segmentation policy with ISE.
00:00 Intro
01:57 Agenda
03:10 Dynamic & Static Classification Methods
07:10 Cisco TrustSec (CTS) Provisioning and Network Device Enrollment
11:12 Unknown Security Group Tag (SGT) 0
13:41 `policy static sgt n trusted`
16:17 Order of Precedence: CMD, dynamic SGT, SXP, static SGT, static subnet, static VLAN
19:39 SGT Environment Data Downloads
21:10 Default Route SGT
22:56 Propagation
23:05 Static Mappings on ISE (SSH & SXP)
25:23 ISE SXP Domains
29:30 Monitor Capture Commands (Cat9K)
31:45 SXP Reflection (speakers and listeners)
34:20 SXP High Availability
37:56 SXP Filters
40:29 SXPv5 Introduction
41:47 SXPv5 Example
44:13 Enforcement
44:18 Monitor Mode
45:47 Logging
46:48 Enforcement Counters
48:04 Cisco 9800 WLC with SGTs Validation
49:28 Resources:
00:00 Intro
01:57 Agenda
03:10 Dynamic & Static Classification Methods
07:10 Cisco TrustSec (CTS) Provisioning and Network Device Enrollment
11:12 Unknown Security Group Tag (SGT) 0
13:41 `policy static sgt n trusted`
16:17 Order of Precedence: CMD, dynamic SGT, SXP, static SGT, static subnet, static VLAN
19:39 SGT Environment Data Downloads
21:10 Default Route SGT
22:56 Propagation
23:05 Static Mappings on ISE (SSH & SXP)
25:23 ISE SXP Domains
29:30 Monitor Capture Commands (Cat9K)
31:45 SXP Reflection (speakers and listeners)
34:20 SXP High Availability
37:56 SXP Filters
40:29 SXPv5 Introduction
41:47 SXPv5 Example
44:13 Enforcement
44:18 Monitor Mode
45:47 Logging
46:48 Enforcement Counters
48:04 Cisco 9800 WLC with SGTs Validation
49:28 Resources:
0:50:01
0:58:54
1:10:32
0:03:06
0:06:41
0:54:28
0:59:36
0:34:59
0:01:44
1:18:10
0:02:29
0:12:03
0:17:21
1:03:37
0:04:38
0:09:53
0:28:24
0:39:24
1:00:39
0:48:22
0:23:44
0:05:51
0:01:03
0:05:41