
In the past cyber security groups within organizations have often been portrayed as the dark t-shirt wearing, cranky geeks that no one wanted a call from. This stereo type has gotten better but there is always room for growth.
The idea of Defense in Depth has been around for a long time and has changed as technologies and strategies have evolved, but the one method that is often neglected or may not even exist within an organization is user engagement. But wait, every October our security team sends out a boring drab email telling us we need to complete our Cyber Security Awareness training, isn't that enough? Training definitely checks the box for compliance in many situations but it really doesn't promote engagement with employees or contribute to a security culture within an organization.
So how can we become the Kylie Jenner of security within our department? Well first you need to take some plays from the social media influncer's playbook.
Create content
- Create topical content, take advantage of high visibility security events that happen in the news.
- Be transparent to a point with your coworkers to share what your team is doing to protect them.
- Make the content engaging and fun, It doesn't need to be a dissertation filled with technical jargon, make it approachable and something coworkers will want to share and talk about.
Gain a following across social media platforms
- Create a public channel on your internal collaboration tools like MS Teams or Slack. This is where you can post updates or snippets of what the team is working on.
- Post on your internal home page have a regular section on the main homepage where you can post small articles or links to longer blog posts about things going on in the department.
Schedule content
Be consistent and frequent the more you post and communicate across all the channels, email, internal chat, internal blog, etc. The more interest you will create.Brainstorm possible content
Engage other teams like the sys admins, developers, even interested coworkers and even your internal social media teams. Diversity will also help with engagement and the skills of the other teams will enhance your ability to connect with your coworkers.Analyze feedback and platform analytics
During yearly or quarterly security awareness training include a poll about how effective the security team's communication has been.Engage with followers to build a community
- Through posting regularly on the internal channels you can keep engagement and interests active.
- More personal engagement like light and fun security exercises with staff can build a culture. These can be easy as a role based exercise at lunch and learn.
- The secret is to not make this mandatory, inspire the staff that are interested in security this is what will go viral. If your interactions are super positive and productive, those co-workers will talk to their peers and you can make security awareness go viral.
Attend events and guest spots
- Get out there. Put a face to the dark scary security team. Shine a light on the security team, show them that you all are approachable and not just the team that says no all the time.
- Being approachable is important when a client clicks on something that may be bad; you don't want them to be scared to report the issue.
Becoming a security influencer in your company will stimulate the security culture benefiting everyone. Through regular engagement with your coworkers you can stimulate conversation within the department about security and through conversation awareness will be the bi product. Having an open door policy and creating an environment where anyone feels comfortable to ask questions or report issues will help build the culture.
Though building the security awareness of everyone you work there is the potential this positive impact will spill outside of your company. When you coworkers go home and speak with their families and their friends your impact can have even a bigger impact than you know. You are through communication creating a positive impact that can spread even further than you can imagine .
So embrace your inner social media influencer and harness it for good.
Staying connected is crucial, especially in situations where traditional infrastructure fails. Off-grid communication solutions become vital during natural disasters, remote expeditions, or any scenario where cell towers and internet access are unavailable. One technology that has garnered attention in this space is Metastatic. But what exactly is it, and how does it fare as an off-grid communication platform?
Metastatic, in essence, aims to create a resilient, decentralized communication network. It leverages a mesh network architecture, meaning devices communicate directly with each other, hopping from node to node to reach their destination. This eliminates reliance on a central server or infrastructure, making it potentially robust against single points of failure. Think of it like a digital version of passing notes in a classroom, where each student acts as a relay.
Potential Benefits of Metastatic for Off-Grid Communication:
- Resilience: The decentralized nature of a mesh network makes it difficult to disable completely. If one node goes down, the message can likely find another route. This resilience is paramount in disaster scenarios.
- Range Extension: Each device in the network acts as a repeater, extending the overall range of the network. The more devices participating, the larger the potential coverage area.
- No Central Infrastructure Required: Metastatic doesn't depend on cell towers, satellites, or internet connections. It operates independently, making it ideal for remote locations or situations where infrastructure is compromised.
- Potential for Various Data Types: While primarily focused on text messaging, the underlying technology could potentially support other data types, such as location sharing or small file transfers, depending on the specific implementation and bandwidth limitations.
- Privacy Considerations: Depending on the implementation, mesh networks can offer a degree of privacy as communication doesn't necessarily pass through centralized servers. However, security measures are still crucial and require careful consideration.
Drawbacks and Challenges of Metastatic for Off-Grid Communication:
- Device Dependence: The network's effectiveness is directly tied to the number of devices participating. A sparse network will offer limited range and resilience. This "network effect" means adoption is key.
- Power Consumption: Devices constantly relaying messages consume battery power. Power management is a significant concern for off-grid scenarios, and efficient protocols are essential.
- Complexity: Setting up and maintaining a mesh network can be technically challenging, especially for non-technical users. Simplified user interfaces and setup procedures are vital for wider adoption.
- Security Vulnerabilities: Mesh networks, while decentralized, are not immune to security threats. Proper encryption and authentication mechanisms are crucial to prevent unauthorized access and manipulation. Research and development are ongoing to address these vulnerabilities.
- Limited Bandwidth: Mesh networks typically offer limited bandwidth compared to traditional networks. This can restrict the types of data that can be transmitted and the speed of communication.
- Interoperability: Different mesh networking protocols and implementations may not be compatible, limiting communication between users with different systems. Standardization is an important factor to consider.
- Real-World Testing and Deployment: While the concept is promising, widespread real-world testing and deployment are still needed to fully evaluate the performance and reliability of Metastatic in various off-grid scenarios.
Conclusion:
Metastatic and mesh networking technologies hold significant potential for off-grid communication. Their resilience, range extension capabilities, and independence from central infrastructure make them attractive alternatives in challenging environments. However, significant challenges remain, including device dependence, power consumption, security concerns, and the need for simplified user experience. As the technology matures and addresses these challenges, Metastatic and similar solutions could become invaluable tools for staying connected when traditional communication channels fail. Continued research, development, and real-world testing are essential to unlock the full potential of this promising technology.
Mestastic Links:
- Good Mesh introduction video: https://youtu.be/aDpI-QatG9s?si=vIz7VNx7z0h6E3N5
- Mestastic Website : https://meshtastic.org/
- Mestastic Firmware Flasher: https://flasher.meshtastic.org/ (make sure to use Chrome)
Enjoy
WiFi calling is an essential feature that ensures seamless voice calls when cellular signals are weak. However, if you have a firewall with strict outbound filtering, WiFi calling might not work properly unless you allow the necessary ports and domains.
In this guide, I’ve compiled the correct firewall rules for enabling WiFi calling on the three major U.S. carriers AT&T, Verizon, and T-Mobile as well as Google Fi. This information is often scattered across forums and carrier support pages, so my goal is to provide a centralized reference.
Why Your Firewall Might Block WiFi Calling
WiFi calling depends on specific ports and protocols to securely connect your mobile device to the carrier's network. Many firewalls block or inspect IPSec, SIP, and HTTPS traffic, which can interfere with call setup and quality. Configuring your firewall to allow the correct traffic ensures uninterrupted WiFi calling.
WiFi Calling Firewall Rules by Carrier
Verizon WiFi Calling Settings
- Ports to Allow:
- UDP 500, 4500
- TCP 143
- Destination FQDNs (Fully Qualified Domain Names):
spg.vzw.comwo.vzwwo.comsg.vzwfemto.com
AT&T Wireless WiFi Calling Settings
- Ports to Allow:
- UDP 500, 4500
- TCP 143
- Destination FQDNs:
epdg.epc.att.netsentitlement2.mobile.att.netvvm.mobile.att.net
Google Fi WiFi Calling Settings
- Ports to Allow:
- UDP & TCP 5060, 5061
- TCP 443
- Destination FQDNs:
voice.google.com
T-Mobile WiFi Calling Settings
- Ports & Destination Networks:
- UDP 500, 4500, and TCP/UDP 5061 →
208.54.0.0/16 - TCP 443, 993 →
66.94.0.0/19
- UDP 500, 4500, and TCP/UDP 5061 →
Best Practices for Configuring Your Firewall
- Allow outbound UDP traffic on required ports (especially 500, 4500 for IPSec tunneling).
- Ensure TCP/UDP 5060, 5061 are open for SIP signaling (Google Fi and T-Mobile).
- Whitelisting carrier FQDNs and IP ranges can help avoid issues with content filtering.
- Disable deep packet inspection (DPI) on IPSec traffic, if your firewall supports it.
- Enable NAT traversal (NAT-T) to avoid issues with UDP encapsulation.
- Ensure a valid NTP source as some carriers rely on time synchronization.
Final Thoughts & Future Updates
This is a preliminary guide, and I plan to update it as I gather more information or test additional configurations. If you have any firewall settings that have worked for other carriers, let me know in the comments!
By properly configuring your firewall, you can enjoy seamless WiFi calling without sacrificing network security. Stay tuned for updates as I refine this guide with more details.
Austin BBQ Review: Our Top Picks and Flavor Highlights Across 5 Days
Nothing says Austin quite like BBQ, and over five days, we hit up four of the city’s most iconic BBQ joints to taste their best offerings. From tender brisket to unique sides, here’s an honest breakdown of each place, our favorite dishes, and where each BBQ spot shines.
Day 1: Terry Black’s BBQ
Tried:
- 1 lb Brisket & Burnt Ends
- 1/2 lb Turkey, 2 Ribs
- Sides: Creamed Corn, Potato Salad, Banana Crème Pie
What We Loved:
Terry Black's BBQ was our starting point, and their turkey stood out immediately. It was incredibly tender, with just the right amount of smoke, and easily cut with a plastic fork—no small feat! The brisket had good seasoning but was slightly tough compared to the burnt ends, which were more flavorful. The ribs were cooked to perfection, with a smoky, well-seasoned crust that balanced beautifully with the meat.
Room for Improvement:
The sides were hit or miss. The creamed corn had an unusual spice that didn’t quite work, and it was overly liquid. On the other hand, the potato salad was creamy and flavorful. The banana cream pie was good, but the wafers were a bit soggy. Overall, the turkey was the standout here.
Day 2: Franklin Barbecue
Tried:
- 2 lbs Brisket, 1 lb Turkey, 1 lb Ribs, Jalapeño Cheese Sausage, Regular Sausages
- Sides: BBQ Sauce Assortment, White Bread, Onions, Dill Pickles, and Two Pies (To Be Determined)
What We Loved:
Franklin’s BBQ delivered a near-perfect brisket experience. It was juicy, tender, and melt-in-your-mouth soft—definitely the best brisket so far. The ribs were also outstanding, with a pepper-forward rub and fall-off-the-bone texture. The turkey, though not quite as tender as Terry Black's, was flavorful and juicy, ranking high on our list. The jalapeño cheese sausage brought a great heat, and though the casing was thick, the smoked flavor was worth it. The regular sausage was milder in spice but still satisfying, allowing the smoke flavor to shine.
Room for Improvement:
The traditional raw onions and dill pickles were nice but felt a bit out of place. We did enjoy the BBQ sauce variety, from a thick, sweet sauce to an espresso-flavored one with a hint of coffee. The bread felt like an afterthought but added to the classic Texas BBQ vibe.
Day 4: The Salt Lick
Tried:
- Turkey, Burnt Ends, Sausage, Pulled Pork, Brisket
- Sides: Potato Salad, Coleslaw, Beans
What We Loved:
Salt Lick's brisket offered a smoky, wood-forward flavor that was more subtle with the spices, and although not as moist as Franklin’s, it was a step up from Terry Black’s. The turkey here was also a highlight—super moist, more so than Franklin’s, but not quite as flavorful as Terry Black’s. However, the sausage truly shined: it was the best we’d had yet, with balanced seasoning, rich smoke flavor, and a delicate casing.
Room for Improvement:
The pulled pork was a bit dry and didn’t have the depth of flavor we were hoping for. On the side, the potato salad stood out as a unique take, mashed and seasoned more like mashed potatoes. The coleslaw was refreshingly light, with no mayo, which was just the way we like it.
Day 5: LeRoy & Lewis BBQ
Tried:
- Beef Cheek, Flat Iron Steak, Brisket, Pulled Pork
- Sides: Kale Slaw, Frito Pie
What We Loved:
LeRoy & Lewis took a different approach to BBQ, offering inventive cuts and sides. The beef cheek was incredibly tender and rich—our top pick of the day. The flat iron steak came in a close second, followed by their well-prepared brisket and flavorful pulled pork. The kale slaw was a fresh take on a BBQ staple, and the Frito pie was a fun, comforting addition.
Final Rankings (Best to Last):
- Beef Cheek
- Flat Iron Steak
- Brisket
- Pulled Pork
For Sides:
- Kale Slaw
- Frito Pie
Wrap-Up: Our Austin BBQ Recommendations
After tasting our way through these iconic Austin spots, here are our recommendations:
- Best Brisket: Franklin’s BBQ—fall-apart tender and full of smoky goodness.
- Top Turkey: Terry Black’s—perfectly smoked and fork-tender.
- Best Sausage: The Salt Lick—ideal seasoning and delicate casing.
- Most Unique Options: LeRoy & Lewis—for a modern BBQ twist.
For an authentic Austin BBQ experience, each spot brings something unique to the table. Whether you’re in it for the brisket, sausage, or unique sides, Austin’s BBQ scene has it all. We can’t wait to go back and try them again!

%20and%20domain%20names%20(e.g.webp)