Cisco Meraki "The Office" Easter Egg Networking |
- Cisco Meraki "The Office" Easter Egg
- Networking's most interesting things for newbies
- Line Card crash and tac sent me this!
- Inline or one armed load balancer?
- Theory Question. Why use BDI over VLAN Subinterfaces?
- Is networking saturated?
- metal handle GLC-T will get stuck in Cisco Catalyst 9500-40X
- Palo vs. Firepower FTD
- Why do you like networking? What got you into it? How did you push yourself to keep going when you were first starting to learn the harder material (like subnetting)?
- IPSec / L2TP ports.
- Checkpoint help
- Wireless clients endlessly roaming between APs for same SSID
- WAN Cisco Router for 1Gb circuit?
- Wired and Wireless upload speed differences
- Need some help with setting up RSTP
- Network content filtering form
- Linux Tech Tips does 120 megabit wifi at 12km with Ubiquiti gear (Youtube)
- Nat-t disabled
- Adding VLANs to multiple interfaces
- Cisco FTD Remote Access VPN Certificate Issue
- Best Practise to replace the default Gateway of a Client
- Best practices for advertising loopbacks, P2P connections, and customer-assigned addressing in BGP?
- Simple Linux question?
- IPSec optimal configuration ZyWall <-> tp-link
- N7K memory upgrade, does it break VPC?
| Cisco Meraki "The Office" Easter Egg Posted: 03 Jul 2018 11:53 AM PDT I was in the Meraki portal this afternoon and noticed that when creating a new network the suggested name is "Scranton Branch Office". The suggested address is also "1725 Slough Avenue". The address of the Office Building. Are there any other "Easter eggs" like this that you've noticed? [link] [comments]  | ||||||||||||||||||
| Networking's most interesting things for newbies Posted: 02 Jul 2018 11:34 PM PDT Hi guys. I am starting my journey as a CCNA insturctor and I'm having Wednesday my first CCNA 1 course. I'm OK with the technical side of the course, but I feel I'd need more content on the non-technical. At my first course I want to show them some interesting things and I could use some suggestions. By now, I plan on showing them these: - a brief description of my day-to-day work at a big ISP and some examples on how my work impacts the end user - a video on IoT - pictures of Facebook/Google's datacenters - a live DDoS map - maybe I should also mention that these concepts together with the certification may open some doors Thanks for any future replies! :) English isn't my native language, so excuse any mistakes. [link] [comments]  | ||||||||||||||||||
| Line Card crash and tac sent me this! Posted: 03 Jul 2018 10:26 AM PDT These errors occur when an energy level within the chip (for example, a one or a zero) changes, most often due to cosmic radiation. When referenced by the CPU, such errors cause the system to either crash (if the error is in an area that is not recoverable) or they recover other systems (for example, a CyBus complex restarts if the error was in the packet memory (MEMD)). In case of a soft parity error, there is no need to swap the board or any of the components. [link] [comments]  | ||||||||||||||||||
| Inline or one armed load balancer? Posted: 03 Jul 2018 12:49 PM PDT Ho do you usually add a load balancer to your network?
First option is probably the easies to configure routing wise as you only have one default route, but you'd have to NAT everything on the LB and lose the source IP address visibility? Unless you add extra HTTP headers for example. Second option would also be quite easy configure routing wise if you have interfaces in every server network on the "inside" and then just a default to the outside. I'm wodering because we've ended up with setup where we have few interfaces and then lot's of static routes pointing all over the place. I guess it started as something like "internet on the outside, lan in the inside" kind of thing until someone wanted to access the hostname that was on the outside network and then we added few routes there and few NATs there... Thanks for any ideas! [link] [comments]  | ||||||||||||||||||
| Theory Question. Why use BDI over VLAN Subinterfaces? Posted: 03 Jul 2018 09:06 AM PDT Hey everyone. Working as an intern this summer for an MSP and a lot of my work has me checking configs on CE routers running two VLAN's over a single circuit to our Core routers. For the most part most of these are broken up using standard subinterfaces configured for each VLAN. Today I ran across an ASR-920 that had 2 BDI's set up to separate the traffic instead of using VLAN's like I've seen on the ISR routers. I did some research on lunch and got the gist of the general difference between the two services but I'm still not seeing the benefits behind using BDI's. If anyone could spare some time to shed some light on this I'd really appreciate it. Sorry If my description is unclear or kind of fucked... let me know and I'll do my best to clarify. [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 04:24 PM PDT I'm going to be pursuing a degree in Network Operations and Security it comes with a few cisco certs.I'm interested in networking,but I'm just wondering if I'm doing the right thing here.I mean will Networking jobs still be there when I get finished in a few years with all this automation right around the corner? [link] [comments]  | ||||||||||||||||||
| metal handle GLC-T will get stuck in Cisco Catalyst 9500-40X Posted: 03 Jul 2018 07:37 AM PDT We have a Cisco Catalyst 9500-40X. On a metal handle GLC-T, the release mechanism will push/bend the switch catch up getting it stuck. The plastic GLC-T uses a different mechanism and has no issues. [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 08:12 AM PDT We are currently evaluating both Palo and FTD, and I am looking for some pros and cons of each, and experience running them in general. Particularly interested in people running PA 5220s or Cisco 4110s [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 06:40 AM PDT | ||||||||||||||||||
| Posted: 03 Jul 2018 10:25 AM PDT Hello, I was working with my firewalls on my dedicated servers and I am unable to create connections from iOS or any other device EXCEPT windows by using IPSec / L2TP. I opened up port 500, 4500 and 1701 on UDP to allow connections and everything works perfect on windows, as for Mac OS and/or other platforms it will not initiate a connection. Am I missing out on something here? I use SoftetherVPN on Debian 8, with all options ticked in the IPSec settings. I use private key which I have verified is correct. The error seems to be connecting to the actual server. I block all UDP ports except the formentioned one which is why I'm asking. What am I missing out on? Thanks, Jam [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 07:40 AM PDT Scenario: I'm trying to go to a https site. Our staff vlan can get to it, no problems but our guest vlan can't. In the log (smartview tracker), staff vlan traffic triggers a rule (x). the guest vlan traffic triggers the final, block all rule. I go to rule (x) and add the guest vlan in it, then save. When i try again from guest it still triggers the last rule/block all rule. Clearly i'm not doing something right here. Any suggestions? edit: we're currently running r75.45 [link] [comments]  | ||||||||||||||||||
| Wireless clients endlessly roaming between APs for same SSID Posted: 03 Jul 2018 09:31 AM PDT Hi everyone. I've got an odd issue occuring at a client site with some tablets and their wifi system. I'm no expert on wireless, so I was hoping maybe someone could chime in and shed some new light. We have 6 vendor-provided tablets running Windows Mobile (6? 6.5?) that are having trouble staying connected to wireless because they are constantly and endlessly roaming between the 2 closest APs. This causes their connectivity to go up and down forever as when they try to roam over and over they'll drop a few packets and then resume communication. Does anyone have any recommendations on additional items I should be looking into? Here's what I've tried so far:
I'm like 99% sure this is an issue of just the base OS for these tablets being a bit old and not handling wireless very well. The vendor has requested that we lock the SSID to only 1 AP closest to the tablets as that is what they recommend. With the way the APs are clustered, this is currently not possible. A full controller would need to be put in place to allow this type of change. I'm trying to avoid that if I reasonably can since these are the only devices that would need that accommodation. Thanks edit1: updated some details for clarity [link] [comments]  | ||||||||||||||||||
| WAN Cisco Router for 1Gb circuit? Posted: 03 Jul 2018 01:13 PM PDT My company wants to utilize Google Fiber small business for our backup ISP, and we're trying to purchase a router for the circuit termination as they provide their WAN IPs via static DHCP reservation and this doesn't work for an ASA Pair in Active/Standby. My manager tasked me with getting a quote for a router for this circuit, ideally something cheap that can handle 1 Gig throughput. I'm looking at some options and trying to understand why a router like a Cisco 4221 ISR has 2x 1Gb interfaces, but lists throughput as only 35 Mbps? https://www.cisco.com/c/dam/en_us/solutions/small-business/routers/4221-router-infographic.pdf Any recommendations for a router that would fit this need? All this device needs to be doing is NAT and terminating the Google Fiber copper handoff. Thanks! [link] [comments]  | ||||||||||||||||||
| Wired and Wireless upload speed differences Posted: 03 Jul 2018 01:00 PM PDT Hi, At work, I've noticed quite a significant difference between our wired and wireless upload speeds. Wired, we're getting around 5-8 Mpbs and on wireless it's around 22-25 Mbps. This seems wrong to me. So I started by getting some benchmark speeds then, I disconnected our computer, VOIP and guest network cables from the router, leaving only the input line from our ISP and we're getting the same speeds. I've swapped out the input line cable in case that was faulty, disabled VLANs and played around with router settings, none of which seem to have made any difference. I'm not massively experienced in the networking world, I'm just looking for some advice whether this kind of behaviour is normal and if not, how to proceed with problem solving in this case. [link] [comments]  | ||||||||||||||||||
| Need some help with setting up RSTP Posted: 03 Jul 2018 05:01 AM PDT Hi all, i am in charge of setting up our new infrastructure (new switches, new ip-subnets/vlans) and i really need some help with Rapid Spanning-Tree.
The Hardware:
Every Switch is connected via Port-Channel. Always the last two Ports (No 10G Interfaces!) are used for Uplinks towards the Core. The Coreswitch is already Root-Bridge with a set priority of 12288.
And now is the situation where i have more and more questions the more i try to get solutions for them:
Chances are high that more questions will be added, but i am grateful for any help! Thanks in advance :) EDIT: 220 Views but no one can help me :( ? [link] [comments]  | ||||||||||||||||||
| Network content filtering form Posted: 03 Jul 2018 12:27 PM PDT Yo so, forgive me if this isn't allowed or not up to par. I had to make a simple quiz for a tech/business camp I'm at (Kentucky GSE), and we're making a company that essentially sells firewalls and network filtration systems. If you could, would you please fill out this form? Ty if you do, may your servers live long and your SSDs (or HDDs) last forever. [link] [comments]  | ||||||||||||||||||
| Linux Tech Tips does 120 megabit wifi at 12km with Ubiquiti gear (Youtube) Posted: 03 Jul 2018 12:26 PM PDT https://www.youtube.com/watch?v=lYJFwXw1ZIc Jump ahead to 14m in if you want to skip a lot of them just trying to get good locations. Kinda slick. [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 12:20 PM PDT Hello everyone, We have a fw and in front of that, we have a router that NATs. I had this issue brining up an Ikev2 tunnel, but had no problem brining up ikev1. The second I disabled Nat-t when trying to get Ikev2 to work, It started working. Would anyone know why this would happen? [link] [comments]  | ||||||||||||||||||
| Adding VLANs to multiple interfaces Posted: 03 Jul 2018 05:35 AM PDT Hi! Long story short, I have a few S4048T The VLANs and interfaces aren't in nearby ranges so I can't go the int range route. Edit: S4048T not S4048T-ON. [link] [comments]  | ||||||||||||||||||
| Cisco FTD Remote Access VPN Certificate Issue Posted: 03 Jul 2018 05:34 AM PDT Hi! I finally went and picked up a FMC for our FTD device. When I try to configure the RA-VPN I get this error when I try to deploy "need to enroll the Trust Point for this device." I open the Devices->Certificates menu and add my self-signed certificate there and get this error "Error: Unable to communicate to the device. Please check connectivity to the device from Firepower Management Center and retry the operation" I can ping FTD->FMC No connectivity issues but if I reverse the ping FMC->FTD I do get around 60% packet loss for some reason. The setup looks like this: Internet----|FTD|----|SWITCH|----|FMC| They both are in same subnet and I can ping both devices from a client PC on the same subnet without any packet loss. Even from the FMC to other devices. It's only FMC->FTD that causes packet loss. I'm using FTD version 6.2.3.1 and Cisco Firepower Management Center for KVM v6.2.3. If I google that error message I find this https://quickview.cloudapps.cisco.com/quickview/bug/CSCvh68618 Any solutions for this? or wont I be able to use RA-VPN until this bugged is fixed? I'm about to lose my mind with Cisco's Firewalls. [link] [comments]  | ||||||||||||||||||
| Best Practise to replace the default Gateway of a Client Posted: 03 Jul 2018 05:29 AM PDT So we want to replace a ASA 5540 with a FPR4120 (with ASA image). The ASA runs in Muli context mode and it is providing the default Gateway for a dozent of /24 subnets in multiple Contexts. The Plan is to migrate one Context after another. The Business side of things wants a silent migration for smaller customers that dont work in the time between 10PM and 4 AM. Our Initial assasment was that migrating a context should be pretty straight forward with little downtime. We Preconfigure the New Context of the FPR acordingly, disable the Interfaces of the old Context on the ASA and enable the Interfaces in the new Context on the FPR. After my understanding, this will however not work out because the VM's and Servers don't actually loose network connectivity and will retain their ARP Table with the old Mac Address for the default Gateway. In my opinion we have the following options: -Restart all Clients where the DFG will change /Clear the arp Table of the Clients ( our Sys Admins don't want that) -Change the Mac Adress for all Virtual Interfaces on the ASA that are the DFG (we from the Network Team don't want that) So basicly i want to find out, if any of you know a way to handle this without Restarting devices or to "spoof" the mac address of the old device. [link] [comments]  | ||||||||||||||||||
| Best practices for advertising loopbacks, P2P connections, and customer-assigned addressing in BGP? Posted: 02 Jul 2018 06:38 PM PDT So, how do ISPs typically advertise their own internal address space in BGP? By internal address space, I mean to say: loopbacks, customer P2P connections, and customer assigned addressing. Given that I doubt anyone accepts prefixes longer than a /24, I assume these have to be aggregated into a larger network and then advertised as a single prefix (ex: 12.0.0.0/9 for AT&T). What I'm not sure of, however, is where to aggregate these routes at, and how. Do you do an BGP aggregate address on every edge router? Do you redistribute a static route to null0 on every edge router? Or do you generate these routes on only a few core routers? Is there some other way that I'm not considering? Also, do you insert the longer prefixes into your BGP routinig table at all? Or do you keep them strictly in the IGP? [link] [comments]  | ||||||||||||||||||
| Posted: 03 Jul 2018 06:56 AM PDT I am running CentOS 7 and am having a little trouble. I have two networks, a 192.168.0.0/16 and a 10.0.0.0/8 networks (they have multiple /24 subnets in them). They DO NOT have routes between them, so the only way to communicate is to have two interfaces on a device. On my CentOS machine I have two interfaces (en0 and en1) with IPs of 192.168.7.7/24 and 10.15.1.7/24 respectively. I have tried setting routes on the OS so that 10.0.0.0/8 traffic goes to 10.15.1.1, but I can't get it working. Does anyone have any suggestions? [link] [comments]  | ||||||||||||||||||
| IPSec optimal configuration ZyWall <-> tp-link Posted: 03 Jul 2018 09:08 AM PDT Hi! I want to get advice from experts:) right now i have in HQ ZyWALL USG 110 and on remote locations (19) tp-link R600VPN. I want to configure IPSec tunnel for all of locations. I have good internet link in HQ but badly on some of locations have LTE modem with redirected UDP 500 and UDP 4500 ports for IPSec. As u know that tp-link isnt a monster of performance :D im looking some advice for detail of configuration to get the best performance of ip sec tunnels. What encryption should i set on Phase1 and Phase2? What SA lifetime? DPD?etc. I will be greatfull for any tips. [link] [comments]  | ||||||||||||||||||
| N7K memory upgrade, does it break VPC? Posted: 02 Jul 2018 06:15 PM PDT Does this break VPC if the peers have different memory levels due to step by step upgrade? Everything I Find talks about dual sup but not VPC peers. My assumption is it should be okay. [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment