Friday, May 25, 2018

Home Project: Washer Pump

No one said working on a clothes washer was fun, but sometimes you have to fix things. After finding water on the floor of the utility area, I found this water pump cracked and needing replaced. A $30 fix. Not bad considering the alternatives.

Thursday, May 24, 2018

SSL Decryption

Most NGFWs have the ability to do SSL decryption, and its a really good idea to do so.  Many attacks now come through encrypted packets, and they need to be inspected.  If you have the capability to do SSL decryption, you should be doing this.

Wednesday, May 23, 2018

The Website: White Rhino Security

I've changed the website a little for White Rhino Security.  Any input would be welcomed.  www.whiterhinosecurity.com

Thursday, May 17, 2018

Palo Alto Firewall: PA-200 Replacement

I went on-site to a consumer to replace a PA-200 that was having some issues. I got the software, global protect, and app and threats to the same version and then did a restore from a backup I had taken.  It's not a bad price process to go through.

Sunday, May 13, 2018

Tuesday, May 8, 2018

Quote For The Day: 57

"Ultimately, life is about choices. We can work hard to enhance the choices before us. But there will inevitably come a time – a few times – when something happens that we did not choose. Something happens that we did not want. Some situation lands on us for which we did not apply. And that is where our choices really matter."  ~~Dr. David Levy

Saturday, May 5, 2018

What To Do When You Need Time Back Or You Don't Have The Expertise

I've been a consultant for a long time in my career. What I have found to be true is that there are two reasons companies need people like me: time and expertise. Let me explain.
1. Time - IT guys simply don't have time to do everything they have to do and cover. They have to deal with the servers, the computers, the printers, the network gear, the firewall, the applications, maybe even the cell phones, etc. You know what I'm talking about. With multiple sites even, there just isn't enough time in the day. Time is a problem.
2. Expertise - IT guys simply can't be experts in everything. They are generally really good at the areas of IT that they really like, and "can do" the rest. The problem is that for the things that they "can do", those things don't get the appropriate attention. You wouldn't want to hire a golfer for your baseball team. It's just two different kinds of experiences. For the IT guy, expertise can also be a problem.  But honestly, lack of expertise is no one's fault. It's just not where the tech guys experience has been in life.  He is just not an expert at everything. No one is.

So what do you do with the two problems?
1. You can struggle to keep up, with the vanishing hope that one day you will be "caught up".
2. You can hire another employee.
3. You can just not get everything done.
Let's explore these options. The first option just doesn't help you. You will get tired and burnt out, and eventually seek another job. Jobs shouldn't have to feel that way.
The second option can be costly. There is a salary to be paid, vacation time, sick time, health insurance, etc. Honestly, it just costs the company more money, and the goal of the company is to make money.
The third option, well, just doesn't work. Either for the company, or for you. As an IT guy, it makes you feel like you aren't doing a good job for the company. Not your fault, it's just how it is.

So how do you fix these problems?
It's not an uncommon thing to hire a consultant. So how does a consultant help? A consultant, if you find the right one, can do a couple of things for you:
1. Give your time back (fixes problem #1).
2. Be that expert in the area you need help in (fixes problem #2).

A consultant can help by doing what?
1. Help you by getting things done, that you can't get done because of either the lack of time or you don't know how to do something, which gets you "caught up".
2. Save the company money by not being a full time employee. Not having to pay the extras.
3. Helps you get things accomplished. You don't feel like you are drowning, and it takes the load off of you. And, the company gets things done also.

This is where I step into the conversation. 
Let me introduce myself. My name is Shane Killen, and I'm both a security expert and a network expert.  I own a company called White Rhino Security. Let me explain where I can help you, and where I can not help you.

What areas can I help you?
Security and network is my forte'. I've been doing these two specialities for a very long time (over 20 years). I've been in all kinds of environments, in many complex networks, in many different sectors. I've been a consultant for most of my career. Security and network is what I love to do. It's fun to me.
1. What do I mean by security?  Firewalls are my specialty. Perimeter firewalls, data center firewalls, cloud firewalls. I know most all vendor firewalls well. Again, I've done this for a long time. Security also means internal network security.
2. What do I mean by network?  Literally, anything you can do with a router or a switch. Again, I've done this for a long time now. And I've done almost everything you can do with one, both in campus networks and data center environments.
3. I don't advertise this through my company, but I also know VoIP. I know load balancers. I know other things pertaining to "network", I just don't advertise them.

What areas can I not help you?
1. I'm not a server guy.
2. I'm not a PC guy.
3. I'm not a printer guy.

What do I offer through my company, White Rhino Security, to help you gain your time back and get the expertise for your company?
1. Firewall managed services. I'm an expert at firewalls. I am proactive, not reactive. I don't wait on you to tell me what to do. I already know what to do, and in conversation with you, I'm your proactive security guy that will take care of all your firewall needs to protect your internal data. Things you know about, and things you don't know about (but will, because I communicate). I do it all (IPS, URL filtering, malware, etc). You no longer have to worry about firewall security work with my services. I'll even provide the firewall if you want.
2. Network managed services. I'm an expert at networks. I've done routing and switching for a very long time. There isn't really anything I haven't seen.
3. Security and network projects. Need help with a project? A one time install? I do that also.
4.  I also do penetration tests and vulnerability assessments. Both are valuable to a company, and I offer these services.
5. Basically, anything security and network. That's what I do. And with my managed services, there are also other things that I throw in for free, things like change log management, etc.
6. I can create a managed service package that makes sense, based on you and your company needs. Not all companies have the same needs.
7.  Most importantly to me, I don't sell a product. I sell "me".  I want to be your "trusted advisor", so it's important to me that I don't sell security products. Which means you get my knowledge, skills, and my personal attention for the best proactive security for your company, without the concern of me being "biased".
8. I also know disaster recovery well. That's why I have partnered with a company that I believe in, that sells a solid product. I have evaluated it myself, and I both recommend the product and the partner. I know this guy personally, and I recommend him, because I trust him. I've seen what he can do and what he does. Keep in mind, I'm a security guy, and trust is not easy for me.
9. I mentor those looking to learn. I come to you. To your company. And I mentor on topics you are interested in and that apply to your network. It doesn't matter how many people you have, the price is the same. I focus on network and security.

Are my prices expensive?
Plain and simple, No.  I'm looking to make an honest living, not a killing. I think you will be surprised.

What is the "value add" for your company?
I'll tell you what the value add is. You get a dedicated, proactive security/network professional for a really good deal. You get someone who is genuinely concerned for your company security and proactive in getting security right.

So what now?
Let's just have a conversation. A conversation costs you nothing. We can discuss over phone or text (205.862.0265) or email (skillen@whiterhinosecurity.com). Whichever you prefer. It's just a conversation, with no obligation or me being a "pushy sales guy". I'm a technical guy, not a sales guy. I'd like to hear from you and extend an invitation for a conversation.


Friday, May 4, 2018

Palo Alto Firewall: Upgrade From 7.1.x To 8.0.9 On HA Pair

Well, what should have been an easy upgrade turned ugly on me today. I've upgraded many Palo Altos is my career. What a great product. But today, I spent three hours working through a Palo that wouldn't boot up after the upgrade to 7.1.17. Thankfully, it was an HA pair and the customer didn't experience any real downtime.
After a factory reset, getting to the same software version and importing the config back in, we were back to its original state again. So with a download of the base 8.0 software and a download and install of 8.0.9 on both units, all is good.

Tuesday, May 1, 2018

Sonicwall Firewall: Packet Captures

Have you ever worked with the packet capture feature on the Sonicwall? It's not as nice as the CLI of Check Point (TCPDump). And I think it's easier on the ASA in CLI also. But, there are some decent features about it on the Sonicwall that aren't too bad. If you have one laying around, work with it. It's actually OK.
I've always said, packet captures are your best friend.

Sunday, April 29, 2018

Sunday Thought: Proverbs 18:24

One who has unreliable friends soon comes to ruin, but there is a friend who sticks closer than a brother.

Tuesday, April 24, 2018

25 Year Anniversary

My wife and I are celebrating 25 years of marriage together today. Happy anniversary to my wife!

Monday, April 23, 2018

Network Mentoring With White Rhino Security

Hi all. I hope all is well with you.  One of the things I am offering through White Rhino is network mentoring.  I realize and have seen that when your team members need training, you have to send them off to a class. And then, it's usually generic in detail. Not to mention, you have to pay for travel for each member that goes. That's a flight for each one, plus hotel, food, and rental car plus gas.
What I'm offering is to come to your environment. To come mentor you (or your team), in your network. So that you can support your network environment. So that you can learn how to support what your company has.
What you also get with this is a network assessment (without the report). Because we will be looking at every aspect of your network environment, we will also be looking at the same things I would do on an assessment. And you will learn what to do to correctly fix problems, because I will show you. You will get "hands on" on your network.
Even better, it doesn't matter how many people you have there in the mentoring season. It can be one on one, or you can have as many people there as you like. It all costs the same.
So think about this offering over sending your team to a training class. The benefits to this:
1.  I come to you.
2.  I mentor your team, on your network.
3.  They learn how to be a good network guy/girl in your company environment.
4.  We comb through your network and fix problems as we see them, in your company environment. So they both "learn" and "do".
5.  Even though you pay for me, you save money still by having your team stay on-site.
6.  It costs less than sending your team to a training class, because I don't charge more for you having more people wanting to learn. It costs the same no matter how many people you have.
7.  Your team stays on-site, in case you have problems that require their attention. They still get to attend to those problems and come right back to the mentoring sessions. They don't miss much, and I'll circle back around and discuss what they missed when appropriate.
8.  The price of this mentoring offering is cheap compared to sending your team to a training class.
9.  It's hands on, on your network. That's better than a lab environment.

So give some thought to this. I like to mentor people. And if you or your team wants to learn, I'd be glad to come and help. Contact me at this email address, and we can get started.

Friday, April 20, 2018

The Datto Solution

All, I hope all is well.  I wanted to share something that I think is exciting.  I've partnered up with a company called TKS for a backup solution called datto, which I recommend. 

Take two and a half minutes and watch what this solution can do for your company.  Quick Overview
TKS has the best prices I have seen on this solution.  Contact me on the right side of this page to learn more about the datto solution and how you can get a conversation going and a quote. 


Thursday, April 19, 2018

White Rhino Security Network/Security Assessment

Hi all. I hope all is well with you. I wanted to take a moment and let you know that White Rhino Security is offering a network and security assessment session. I'll come to your site, do the assessment, fix any issues that can be done during that session, collaborate with your team, and external vulnerability assessment as well. I'm offering very attractive prices on this. Contact me in the right side of this page if you have an interest and would like a quote for this service.