Wednesday, May 30, 2018

Sonicwall Firewall: TZ600 HA Pair

I had to do some troubleshooting on this pair of HA TZ600s. The HA had issues, but all problems can be overcome. 

Tuesday, May 29, 2018

More Content On The White Rhino Security Site

I've added more content to the White Rhino Security site.  Its a 'work in progress' still, but working to make it clear and informative as possible.  My latest changes are below.
I took out the "About" page, and put the content on the "Welcome" page:
Also, I added my mentoring page:

Monday, May 28, 2018

Memorial Day

A day to reflect, for sure. Thank you to those who have given all for this country.
Also, on this day, another reflection. Anyone know what this in the sky means?

Friday, May 25, 2018

Home Project: Washer Pump

No one said working on a clothes washer was fun, but sometimes you have to fix things. After finding water on the floor of the utility area, I found this water pump cracked and needing replaced. A $30 fix. Not bad considering the alternatives.

Thursday, May 24, 2018

SSL Decryption

Most NGFWs have the ability to do SSL decryption, and its a really good idea to do so.  Many attacks now come through encrypted packets, and they need to be inspected.  If you have the capability to do SSL decryption, you should be doing this.

Wednesday, May 23, 2018

The Website: White Rhino Security

I've changed the website a little for White Rhino Security.  Any input would be welcomed.

Thursday, May 17, 2018

Palo Alto Firewall: PA-200 Replacement

I went on-site to a consumer to replace a PA-200 that was having some issues. I got the software, global protect, and app and threats to the same version and then did a restore from a backup I had taken.  It's not a bad price process to go through.

Sunday, May 13, 2018

Tuesday, May 8, 2018

Quote For The Day: 57

"Ultimately, life is about choices. We can work hard to enhance the choices before us. But there will inevitably come a time – a few times – when something happens that we did not choose. Something happens that we did not want. Some situation lands on us for which we did not apply. And that is where our choices really matter."  ~~Dr. David Levy

Saturday, May 5, 2018

What To Do When You Need Time Back Or You Don't Have The Expertise

I've been a consultant for a long time in my career. What I have found to be true is that there are two reasons companies need people like me: time and expertise. Let me explain.
1. Time - IT guys simply don't have time to do everything they have to do and cover. They have to deal with the servers, the computers, the printers, the network gear, the firewall, the applications, maybe even the cell phones, etc. You know what I'm talking about. With multiple sites even, there just isn't enough time in the day. Time is a problem.
2. Expertise - IT guys simply can't be experts in everything. They are generally really good at the areas of IT that they really like, and "can do" the rest. The problem is that for the things that they "can do", those things don't get the appropriate attention. You wouldn't want to hire a golfer for your baseball team. It's just two different kinds of experiences. For the IT guy, expertise can also be a problem.  But honestly, lack of expertise is no one's fault. It's just not where the tech guys experience has been in life.  He is just not an expert at everything. No one is.

So what do you do with the two problems?
1. You can struggle to keep up, with the vanishing hope that one day you will be "caught up".
2. You can hire another employee.
3. You can just not get everything done.
Let's explore these options. The first option just doesn't help you. You will get tired and burnt out, and eventually seek another job. Jobs shouldn't have to feel that way.
The second option can be costly. There is a salary to be paid, vacation time, sick time, health insurance, etc. Honestly, it just costs the company more money, and the goal of the company is to make money.
The third option, well, just doesn't work. Either for the company, or for you. As an IT guy, it makes you feel like you aren't doing a good job for the company. Not your fault, it's just how it is.

So how do you fix these problems?
It's not an uncommon thing to hire a consultant. So how does a consultant help? A consultant, if you find the right one, can do a couple of things for you:
1. Give your time back (fixes problem #1).
2. Be that expert in the area you need help in (fixes problem #2).

A consultant can help by doing what?
1. Help you by getting things done, that you can't get done because of either the lack of time or you don't know how to do something, which gets you "caught up".
2. Save the company money by not being a full time employee. Not having to pay the extras.
3. Helps you get things accomplished. You don't feel like you are drowning, and it takes the load off of you. And, the company gets things done also.

This is where I step into the conversation. 
Let me introduce myself. My name is Shane Killen, and I'm both a security expert and a network expert.  I own a company called White Rhino Security. Let me explain where I can help you, and where I can not help you.

What areas can I help you?
Security and network is my forte'. I've been doing these two specialities for a very long time (over 20 years). I've been in all kinds of environments, in many complex networks, in many different sectors. I've been a consultant for most of my career. Security and network is what I love to do. It's fun to me.
1. What do I mean by security?  Firewalls are my specialty. Perimeter firewalls, data center firewalls, cloud firewalls. I know most all vendor firewalls well. Again, I've done this for a long time. Security also means internal network security.
2. What do I mean by network?  Literally, anything you can do with a router or a switch. Again, I've done this for a long time now. And I've done almost everything you can do with one, both in campus networks and data center environments.
3. I don't advertise this through my company, but I also know VoIP. I know load balancers. I know other things pertaining to "network", I just don't advertise them.

What areas can I not help you?
1. I'm not a server guy.
2. I'm not a PC guy.
3. I'm not a printer guy.

What do I offer through my company, White Rhino Security, to help you gain your time back and get the expertise for your company?
1. Firewall managed services. I'm an expert at firewalls. I am proactive, not reactive. I don't wait on you to tell me what to do. I already know what to do, and in conversation with you, I'm your proactive security guy that will take care of all your firewall needs to protect your internal data. Things you know about, and things you don't know about (but will, because I communicate). I do it all (IPS, URL filtering, malware, etc). You no longer have to worry about firewall security work with my services. I'll even provide the firewall if you want.
2. Network managed services. I'm an expert at networks. I've done routing and switching for a very long time. There isn't really anything I haven't seen.
3. Security and network projects. Need help with a project? A one time install? I do that also.
4.  I also do penetration tests and vulnerability assessments. Both are valuable to a company, and I offer these services.
5. Basically, anything security and network. That's what I do. And with my managed services, there are also other things that I throw in for free, things like change log management, etc.
6. I can create a managed service package that makes sense, based on you and your company needs. Not all companies have the same needs.
7.  Most importantly to me, I don't sell a product. I sell "me".  I want to be your "trusted advisor", so it's important to me that I don't sell security products. Which means you get my knowledge, skills, and my personal attention for the best proactive security for your company, without the concern of me being "biased".
8. I also know disaster recovery well. That's why I have partnered with a company that I believe in, that sells a solid product. I have evaluated it myself, and I both recommend the product and the partner. I know this guy personally, and I recommend him, because I trust him. I've seen what he can do and what he does. Keep in mind, I'm a security guy, and trust is not easy for me.
9. I mentor those looking to learn. I come to you. To your company. And I mentor on topics you are interested in and that apply to your network. It doesn't matter how many people you have, the price is the same. I focus on network and security.

Are my prices expensive?
Plain and simple, No.  I'm looking to make an honest living, not a killing. I think you will be surprised.

What is the "value add" for your company?
I'll tell you what the value add is. You get a dedicated, proactive security/network professional for a really good deal. You get someone who is genuinely concerned for your company security and proactive in getting security right.

So what now?
Let's just have a conversation. A conversation costs you nothing. We can discuss over phone or text (205.862.0265) or email ( Whichever you prefer. It's just a conversation, with no obligation or me being a "pushy sales guy". I'm a technical guy, not a sales guy. I'd like to hear from you and extend an invitation for a conversation.

Friday, May 4, 2018

Palo Alto Firewall: Upgrade From 7.1.x To 8.0.9 On HA Pair

Well, what should have been an easy upgrade turned ugly on me today. I've upgraded many Palo Altos is my career. What a great product. But today, I spent three hours working through a Palo that wouldn't boot up after the upgrade to 7.1.17. Thankfully, it was an HA pair and the customer didn't experience any real downtime.
After a factory reset, getting to the same software version and importing the config back in, we were back to its original state again. So with a download of the base 8.0 software and a download and install of 8.0.9 on both units, all is good.

Tuesday, May 1, 2018

Sonicwall Firewall: Packet Captures

Have you ever worked with the packet capture feature on the Sonicwall? It's not as nice as the CLI of Check Point (TCPDump). And I think it's easier on the ASA in CLI also. But, there are some decent features about it on the Sonicwall that aren't too bad. If you have one laying around, work with it. It's actually OK.
I've always said, packet captures are your best friend.