New Book Review – PKI Uncovered

I recently had the pleasure of reading PKI Uncovered: Certificate-Based Security Solutions for Next-Generation Networks from Cisco Press.

This book sure packs a lot of info into a slim 252 page book. I was pleased to see that there was no lack of technical content.
The book seems to be targeted at experienced  cryptographers as well as those reading about the subject for the first time. This is evidenced by the first chapter: Crypto Refresh. This chapter reviews key concepts that lay the foundation for the chapters to come.

I really was impressed with the detailed diagrams included in the explanations and examples. Many times, high level concepts are not illustrated well, leading to confusion. Not so in this book.

This book also includes a nice chapter on troubleshooting. PKI can be a challenge at times to figure out just what is not working. The troubleshooting chapter breaks down the process into three logical areas: Keying Material Generation, Enrollment Process and Certificate Use and Validation. By breaking down the troubleshooting process in this manner, the reader is shown a methodology for identifying and isolating problems in a logical and sequential manner. Yes, there are plenty of examples in this section showing output from devices to support the narratives. The chapter ends with several pages of troubleshooting flow charts that will be a valuable tool for all that are faced with trying to fix PKI problems.

The book also includes chapters on PKI design in general along with specific  solutions including Site to Site VPN’s, Remote Access VPN’s, 802.1x, Unified Communications and Cisco Virtual Office.

I have carved out a slot on my security bookshelf for this great little gem. I think that anyone that is currently designing and supporting any PKI infrastructure or someone that is just breaking into PKI can benefit from this book.

You can see excerpts from PKI Uncovered here.

Larry Hadrava
CCIE #12203

Scott Morris Launches New Training Initiative

Scott Morris, CCIEx4, CCDE, JNCIEx2, CISSP to Launch Nova Datacom Education Services Offering

Complementary Open House to Include Training Sessions by Morris and other Noted Instructors


Chantilly, VA – February 1, 2011:  Nova Datacom, LLC, a provider of information technology services to the public and private sectors and a CompTIA Authorized Partner, a Cisco Learning Partner and a Cisco360 (CCIE) Learning Partner, today announced the upcoming launch of their Education Services offering, spearheaded by Scott Morris, Nova Datacom’s Chief Technologist, and partner Learning Tree International.  Scheduled for February 16th, in Chantilly, VA, this one day event will allow attendees to meet with Morris and his team, attend sample training sessions, and familiarize themselves with the offered curriculum.

 A well-known figure in the IT industry for over 25 years, Scott Morris, CCIEx4, CCDE, JNCIEx2, CISSP and Cisco Designated VIP, has fulfilled a number of roles within both the public and private sectors. As a Certified Cisco Systems Instructor (CCSI) and Juniper Networks Certified Instructor (JNCI), Scott has provided world-renowned CCIE training since 2002. He has delivered courses to a wide variety of audiences including internal training at Cisco Systems.

 Offering formal classroom instruction with full lab and NOC, or on-site worldwide, Nova Datacom, under the direction of Morris, will offer a variety of training curriculums to satisfy a broad range of requirements.  Additionally, Morris concentrated on recruiting top level instructors to provide unparalleled course delivery.

 “I’ve selected instructors who maintain a wide area of consulting and training experience to best present information as it relates to specific customer environments,” noted Morris. “Combining this deep knowledge with the ability to operate in both classified and unclassified environments allows our team to be even more effective at conducting training sessions that address specific security concerns, current vulnerability gaps, and pressing mission critical requirements- conveniently located where our customers need it most.”

 Additional instructors include Marvin Greenlee  (CCIEx3, CCDP, JNCISx3, CISSP) and Keith Barker (CCIEx2, CISSP, and Cisco Designated VIP).

 With 15+ years experience in the IT industry, Greenlee has been instrumental in the development and delivery of high-level technical training courses for live and online classes. Likewise, Barker, with 25+ years in the IT industry, has been involved with the creation and delivery of training in classroom and large audiences since 1995.  

 Sample training courses to be presented at the Open House were designed by Morris and his team specifically to showcase their ability to target courseware to specific topics of interest.  Sessions include:

 Subnetting and Binary Math for IPv4 and IPv6: A review of subnetting techniques and how to best identify appropriate configurations in both IPv4 and IPv6 networks. Practical and designed examples given.

 Multifactor Authentication: Maintaining confidentiality is critical for a secure network. In this lesson we will learn about multi-factor authentication, as well the strengths, weaknesses and best practice for each.

 BGP Attributes and Path Selection: When using BGP for Inter-Autonomous System routing, it is important to know the features and attributes that allow for manipulation of path selection. If studying for certifications, this will also help in choosing the right solution for abstract problems given to you in practical labs.

 Understanding MPLS for the Routing & Switching Engineer (CCIE Focus):  A new method of thinking and moving information around the network, as largely adopted by service providers around the world.  Session breaks down the concepts and demonstrates network effects. Includes demonstrating how a CCIE candidate identify, implement and work through any scenario in a short period of time.

 If you would like to attend the Open House, please register at

 Or click the link to register for the Open House from ‘s homepage.



About Nova Datacom:

Nova Datacom (NDC) M/WBE 8(a) provides solutions that expand, improve, and strengthen client capabilities to satisfy mission assurance objectives. Focused on four practice areas, Business Continuity (BCEP); Information Assurance; Governance, Risk, and Compliance; and Enterprise Networking, NDC provides expert-level expertise and proven past performance across multiple technology segments to the public and private sectors.

 NDC’s approach combines operational planning, budget optimization and cutting-edge security measures to provide a solid framework for daily operations that withstand disruption. We accomplish this through continual training and vendor agnostic technology expertise resulting in a team of the best minds in the IT community.

 SBA-Certified 8(a), SBD, Minority Woman-Owned | Nova Datacom: Security is in our DNA

 About Learning Tree International

Learning Tree International sets the world standard for hands-on management and IT training. Since 1974, over 2 million Learning Tree Course participants from over 65,000 organizations around the world have enhanced their skills through intensive hands-on exercises under the guidance of expert instructors with real-world experience.


Hello All:
I was wondering if any of you have signed up for a CCIE Bootcamp course only to arrive to find that you were overwhelmed or felt unprepared? Maybe you felt discouraged because you spent the time and money to go to the course and couldn’t get everything out of it that you could have.

You are not alone. Many folks have this feeling. So how can this be avoided? Most CCIE learning providers will give you advice on reading lists or want you to participate in an assessment before the class. These items are good and serve the purpose. But what if you start to do the reading and are lost  or fail the assessment miserably? What then? Do you postpone the class?

My reason for writing is to see if there is any interest in a CCIE R&S Primer series of products ( mainly on-line video training ) that would go over the items in the blueprint at a level to prepare you to be at a point where you could get much more out of a bootcamp.

I personally attended a bootcamp many years ago and had this type of experience. If I could have had such items available I could have saved time and money.

Let me know your thoughts. If there is enough interest I might have a solution:-)

Larry Hadrava
CCIE #12203

More FREE Stuff For Voice Candidates!!!

VoiceBootcamp is offering a unique opportunity for CCIE Voice or CCVP for low as as $1299 USD The Terms and Condition for VoiceBootcamp Exclusive offer is now posted. 

You can take a look at the Terms and condition and decide if you wish to continue.  Should you wish to continue you must proceed with the purpose otherwise you can ignore it.   To view Terms and Condition please go to this link – 

Seats QTYs are limited to 10 to 15.  So it first come first server and will last until Jan 31st 2010.    

Also don’t forget to download – Sample labs of our new product call – Call Routing and Dial Plan DVD set. Call Routing and Dial Plan DVD set will contain over 50 labs focusing on how to create/configure dial plan on Cisco IOS Router as well as Unified Communication Manager.   Dial Plan being one of the toughest topic in CCIE Voice and real world deployment, so we decided to come up with these videos.   

Download – Free Video Labs of – Call Routing and Dial Plan DVD – go to and click on Download Center

The Full version will be around $499 to $699 USD.   However if you do purchase the Exclusive Offer Kit then you will receive it for Free.  This is a rare opportunity and you know how much a CCIE VOICE cost around the world.

VoiceBootcamp Offers FREE Online Training!!!

Starts next week

Free Online Seminar

1Free Training – Unity Connection Partition and CSS

2Free Training – Calling Party and Called party Transformation Pattern

3Free Training – UCCX Express – Database Scripting

4Free Training – How to Configure Single Number Reach

Go to www.voicebootcamp.comto register

 We are also running a special CCIE Voice Bootcamp offer for $1299 USD in exchange for beta testing our products.    

Only a handful of people will be selected for this promotion.  To find more details about the procedure and plan, we will be sending out the Terms and Condition paper next week. If anyone is interested to receive this must register to receive this Terms and Condition paper. To Register go to

Thanks for your help.
Faisal H. Khan

FREE Online Training for CCIE Voice Candidates!!!

Hello All:
The folks at VoiceBootcamp are offering some FREE online training that they wanted to share with you.

Starts next week

Free Online Seminar

1Free Training – Unity Connection Partition and CSS

2Free Training – Calling Party and Called party Transformation Pattern

3Free Training – UCCX Express – Database Scripting

4Free Training – How to Configure Single Number Reach

Go to www.voicebootcamp.comto register

 We are also running a special CCIE Voice Bootcamp offer for $1299 USD in exchange for beta testing our products.    

Only a handful of people will be selected for this promotion.  To find more details about the procedure and plan, we will be sending out the Terms and Condition paper next week. If anyone is interested to receive this must register to receive this Terms and Condition paper. To Register go to

Thanks for your help.
Faisal H. Khan

Interview With Faisal Khan From VoiceBootcamp!!!!

It is my pleasure to interview Faisal Khan – President/CEO of VoiceBootcamp Inc. Faisal is a Voice instructor at VoiceBootcamp Inc.

Larry: Obviously, from the name of your company VoiceBootcamp, you are in the voice training business. What made you want to specialize in voice?

 Faisal: I decided to focus on Voice out of passion for these technologies.   I believe to be an EXPERT, you need to focus on one area.  It’s like a Doctor, some specialize in the Brain or Heart while others on Children, etc.  But what is common among them is they are all doctors but specialized in certain area.  You won’t see a doctor who specializes in the Brain performing heart surgery.   But I am sure he knows about the heart.  So same rule applies to CCIEs.  If CCIEs are considered to be expert, we need to focus on one area and I believe devoting 80% to 100% on certain topic makes you an expert otherwise you are a professional

 I stopped going after CCIE exams when I achieved two.  I realize having triple or 4 or 5 CCIE, I would be doing disservice to myself.  I will not be focused on any area.  I don’t believe for one moment that one can do CCIE Voice, R/S and SP, Wireless every month and still consider to be expert.   These days I feel bad to call myself R/S Expert because I lost touch with R/S.

 VoiceBootcamp is a small company started by just me.  So I decided to focus 100% on Unified Communication and become an expert in that topic.

Larry: That is an interesting take on it. I can definitely see your point about focusing in on one area. When folks ask me about what track they should go for I always say “the one that interests you the most”.
I  see that you offer training all over the world. Do most of the classes fill up?

 Faisal: VoiceBootcamp run classes globally.  If class does not get fill up we will take serious financial loss.  So to answer your question yes, most classes are full if not at least with minimum requirement to ensure we don’t take financial loss.

 Larry: I took the CCVP+ Bootcamp earlier this year. It was 2 full weeks of 12 hours a day non-stop training. Are your CCIE Voice bootcamp classes as intense?

Faisal: Our CCIE VOICE is as intensive as our CCVP +.  Over the years, CCIE VOICE has changed and we have changed our strategy.  

 A typical day of a CCIE VOICE candidate in one of our training center around the globe is ss follow:
Since every student has been given CCIE VOICE Lecture on DVD, their job is to watch the pre-recorded lectures (Per day basis) prior to attending the class.  Student arrives on the 1st day, after the orientation we will review those lectures and have an open discussion.  Then student start the lab based on the lab that is also given to them in advance.  Around 4:00 PM every day 1 hour will be allocated to discuss and demonstrate some CCIE VOICE Trouble Shooting tips from our CCIE VOICE troubleshooter product based on the topic covered that day.   This way you will know how to troubleshoot the network.

Larry: Sounds like a good learning experience and a slightly different take from the traditional CCIE bootcamp.
I know that you are always doing something to develop products or teaching classes. Do you ever sleep?

 Faisal: I am human being so sure I do sleep. I am a married person with a son who is 3 years old.  I spent most of my time when I am not working with my son. I travel a lot so I have to sleep.

 I don’t take vacation that much because if you love something so much (as I do for my work in this technology) then you should not be taking vacation. Vacation is something you do to enjoy and I enjoy my work. But then since I travel a lot, I get to see many countries, enjoy different food, culture and often my family will come with me once in a while.

 Larry: You really do have a passion for teaching!!!
What do see for the future of the Voice lab? There was a big change made this year with the change of version of the UC products tested. Do you foresee any other big changes in the near future?

 Faisal: I see Voice has huge future. Simply take a look at the PSTN technologies. For telephone companies it took over 100 years to build the PSTN infrastructure worldwide.  VoIP just started.  All the companies in the world, All the household in the world will have voice enable devices.  Your Fridge at home will be voice enabled, these days your car use voice enable features.  Think about the future where one day your car can make a 911 call in case of a emergency and you are now talking to the E911 operator over VoIP and they are using GPS to track your location.   

 Most of the feature added by Cisco in Unified Communication is not new to Telephony world.  I mean similar feature already existed in traditional PBX.  Cisco just finally got their product up to PBX standard.     I am sure Cisco will come up with lots more integration in their CallManager -for example using IP Phone to initiate a database lookup or customer query directly from CallManager. Enable CallManager to talk to multiple Active Directory for different companies.   May be one day all Cisco IP Phone will initiate a direct VPN Connection by using a built in VPN client so all the issue with security and/or NAT may be resolved. 

 I think the next big thing will be Video enable IP Phone in house to house in any given countries. 

  Larry: Interesting ideas!!!
You do actual voice implementations while you are not teaching  and developing materials. From your real world experience, what do you see as the future for folks that are in the voice market? Will there still be a demand for these specialized skills?

 Faisal: Yes, this one thing I always have done.  I do believe in order for me to keep up to date, I have to be involved in project.  So I often do lots of design and architect work or provide call center design for small business.  Nothing big or huge.  Simply stuff to keep going.  I have another company call UC Solutions which is Cisco Premier partner and Microsoft Gold Partner where we provide small to midsize consulting service for partners.  Although we don’t do big project as I am short of resource but my idea one of these days is to become a global player.

 Larry: Thanks for taking the time out of your schedule to share with the readers of the blog. Any last words you would like to share with the readers – maybe a special;-)?

 Faisal: Focus, Love the technology.  Don’t just go for CCIE certs.  CCIE Voice cert is useless if you don’t know the product inside out.  I mean I have been teaching CCIE Voice around the globe, met with many different people and many are not ready to become a CCIE but they will by some means or other.  So to be a true CCIE, make sure you understand the concept.  You should be able to live and breathe this technology.  We all want Certs to get more money or secure a job, but while you are doing it, Enjoy the technology

 I have seen candidate who are burning themselves doing this lab over and over just to get the number but I don’t see them enjoying it.

 Here are a few specials for your readers:

 Feb 1 CCIE VOICE in New York – $4495 USD (promotional price $2499 USD) Register 30 days earlier

 Review from the previous CCIE Voice in NYC

 CCIE Voice Package – $999 USD

Includes – CCIE Voice Workbook
includes – CCIE Voice Lecture on DVD
includes – CCIE Voice Study Guide
includes – CCIE Voice TroubleShooter (for limited time)

 UC Resource KIT Ultimate Edition – $1299 USD (every person will be eligible to win a Free CCIE VOICE or CCVP Plus Bootcamp).  – over 160 plus Videos of Unified Communication (you know the rest)