sonuteklists
Technical User
I have been in the field for a while (5 years) and have worked on both platforms MS, Linux and have some DBA experince with Oracle, SQL Server. Networking wise we have a Cisco PIX515E implemented. The thing is I work for a University and so I cannot be making changes to the routing tables, ACLs without authorization. What I can do however is monitor my networks and make sure it is safe, play around with the servers, databases and catalyst switches(VLANs). With the 515E implmenataion, the network is far safer than what it was. Cisco ACS has been setup for AAA and Syslogging to log the events on the PIX.
My main problem is that I am unable to properly debug the thousands of lines of info in the syslog files (all levels are not logged !!). Cisco does offer documents which explain what each message means, but still the job og going through the entire logs seems uninteresting, mainly because I still dont know what I am looking for. Here's where I am facing my mid-life crisis. I think I am an ok Sys and Network admin and can play around with databases and web servers (not development though). But I still feel that I lack in the security department. I want to concentrate a bit on security right now for the many reasons described above, but am not able to decide the right path.
The best way for me till now has been to work towards a IT certification which helps me soak a lot of info (even if I dont necessarily achieve the certification). I was thinking getting going towards either CSecur or the Cisco Safe certificaion or even the PIX firewall certification. I am not sure which one would be the one to start with.
Right now I have setup a dedicated Linux box on which I am loading some monitoring tools suggested in another post. Still a long way to go as I dont even know what to look for to monitor.
Can anyone provide me with some sagely advice to help me through my mid life crisis. Books, links, and mainly career path advice would be greatly appreciated.
Thanks much.
My main problem is that I am unable to properly debug the thousands of lines of info in the syslog files (all levels are not logged !!). Cisco does offer documents which explain what each message means, but still the job og going through the entire logs seems uninteresting, mainly because I still dont know what I am looking for. Here's where I am facing my mid-life crisis. I think I am an ok Sys and Network admin and can play around with databases and web servers (not development though). But I still feel that I lack in the security department. I want to concentrate a bit on security right now for the many reasons described above, but am not able to decide the right path.
The best way for me till now has been to work towards a IT certification which helps me soak a lot of info (even if I dont necessarily achieve the certification). I was thinking getting going towards either CSecur or the Cisco Safe certificaion or even the PIX firewall certification. I am not sure which one would be the one to start with.
Right now I have setup a dedicated Linux box on which I am loading some monitoring tools suggested in another post. Still a long way to go as I dont even know what to look for to monitor.
Can anyone provide me with some sagely advice to help me through my mid life crisis. Books, links, and mainly career path advice would be greatly appreciated.
Thanks much.