Rant Wednesday! Networking |
- Rant Wednesday!
- NGINX/HAProxy vs. F5 BIG-IP/Citrix Netscaler
- AWS VPN Config
- Network Engineers with Masters Degrees or higher: do you feel your college education has made you a better engineer than your peers?
- Has anyone experienced any good Internet Architecture tutorials? Global networking as opposed to local networking.
- Is it truly impossible to accomplish ipv4 AF iBGP multipathing when you use a route reflector?
- DHCP snooping blocked no legitimate requests
- Adding unsupported vendors/devices to oxidized.
- College courses for CCNA?
- What's the difference between an ISSU and a multihop ISSU?
- In a GPON context will any ONT work with any network?
- RIPng Use Cases ?
- Comcast ENS with only HPE Procurve 2930m and 2930f
- 40Gbps QSFP -> 10Gbps SFP+ 4way splitter
- HPE 3810M to HPE 1950, compatible DACs?
- Cat5e/6/6e bend radius when punching down?
- checkpoint firewall basics adding/deleting interfaces etc
- Does your ideal manager/supervisor have great tech skills, or being a fantastic leader/people person?
- Layer3 Switch Loop. Deactivate RSTP?
- Why are home routers called routers?
- Sflow probing of discarded packets
- Is my ISP blocking access to my blog?
| Posted: 03 Jul 2018 05:14 PM PDT It's Wednesday! Time to get that crap that's been bugging you off your chest! In the interests of spicing things up a bit around here, we're going to try out a Rant Wednesday thread for you all to vent your frustrations. Feel free to vent about vendors, co-workers, price of scotch or anything else network related. There is no guiding question to help stir up some rage-feels, feel free to fire at will, ranting about anything and everything that's been pissing you off or getting on your nerves! [link] [comments]  |
| NGINX/HAProxy vs. F5 BIG-IP/Citrix Netscaler Posted: 04 Jul 2018 08:31 AM PDT Our F5 and Netscaler supports are ending soon and I'm wondering about NGINX and HAProxy options instead of renewing... even with enterprise level support they'd be a lot cheaper. How about feature wise, is there anything that I couldn't do with those softwares? Currently we're using those hardware appliances for Citrix VDI (+FAS), SSL VPN (we could switch to Fortigate's SSL VPN) and we're using F5's APM module to do SAML/ADFS authentications for applications. F5 has those iApps that configure a huge amount of stuff (Citrix VDI, Exchange, ADFS, Lync, Sharepoint have their own "apps"). I'm wondering if it's possible to do all the required configs with the NGINX/HAProxy? Or do I even need anything special to load balance those ICA/ADFS/whatever? (Of course according to Citrix or F5 they're a must:) Bandwidth wise we're not using that much. If those "more complicated" setups would be impossible to do on "software", we could probably live with 200Mbps license for F5/Netscaler and have the "common load balancing" on NGINX/HAProxy. Thanks for any ideas! [link] [comments]  |
| Posted: 04 Jul 2018 05:36 AM PDT I have a scenario, There are Three Locations, A B and C I want to create a VPN connection between A and B, and A and C, but B and C should also be able to communicate with each other through the VPN(A) which is an AWS VPN Site to Site, I assume I need a Multi-Site AWS VPN right? Should I use AWS managed VPN for this, or any other configuration, to setup VPN on EC2. I need a configuration that supports static routes only, no bgp. Thanks [link] [comments]  |
| Posted: 04 Jul 2018 02:34 PM PDT These questions only pertain to Network Engineers (those whose primary job duties include network infrastructure (routing/switching/firewalling/loadbalancing/etc)) in either an operational, design/architect, or combined role with a graduate degree (Masters or higher.)
Thanks! [link] [comments]  |
| Posted: 04 Jul 2018 03:39 PM PDT I find a lot of local networking tutorials but I'm struggling to find something that shows me how things function on a global scale. [link] [comments]  |
| Is it truly impossible to accomplish ipv4 AF iBGP multipathing when you use a route reflector? Posted: 04 Jul 2018 10:47 AM PDT If, say, I was an ISP and wanted to implement iBGP multipathing for the global internet routing table, is my only option to put it into a VRF and give each edge router its own RD? Or is there another way to accomplish this? (other than a full-mesh of iBGP, that is). And if there is no other way to accomplish this, why isn't "Internet in a VRF" a more popular design? Are there any drawbacks? I've heard it can cause an increase to memory usage, but surely that is not such a problem with modern carrier-grade routing platforms... right? [link] [comments]  |
| DHCP snooping blocked no legitimate requests Posted: 04 Jul 2018 02:36 PM PDT Hi All Tried implementing DHCP snooping on a stack of Cisco SG550 switches today and it caused issues. Basically we have two SG550's in a stack, they are layer 3 and the DHCP server is also connected to this stack. Set the port going to DHCP as trusted and everything else as untrusted. When I enabled snooping on a VLAN (only did one to test) and all was fine for a while, I started to see the binding database populate then eventually random people (about half the clients) started failing to get a DHCP address. Anyone have any experience as to why. I thought that if I had set the DHCP server port to trusted it would be fine. TIA Ben [link] [comments]  |
| Adding unsupported vendors/devices to oxidized. Posted: 04 Jul 2018 02:21 PM PDT Setup oxidized yesterday, really liking it so far, but i have a bunch of devices that are not supported, anyone have experience adding an unsupported vendor/device? Tips? Tricks? Or is it impossible without help from the vendor? It seems like it would be doable since i can pseudo script the cli on them... [link] [comments]  |
| Posted: 04 Jul 2018 02:14 PM PDT Hey folks! I have 3 semesters left (16 credits) before I graduate, and I am planning to take CCNA Certs exam. I am bit worried because at my school in order for me to qualify to take the CCNA exam, I have to take certain courses. But since I have 16 credits left (that includes IT Capstone and Intern credits and other prerequisites courses) I might graduate first before I end up finishing the courses needed for ccna exam. So my question is, do I need to take up college courses in order for me to take the CCNA exam or can I just self study or take online class? [link] [comments]  |
| What's the difference between an ISSU and a multihop ISSU? Posted: 04 Jul 2018 05:30 AM PDT It looks like for me to get to a certain 7k version I need to do 2 ISSUs. Does the multihop ISSU allow me to have both code on flash and it does it in one go, or sequentally? Specifically I'm looking at Table 8 Multi-hop ISSU Paths for the Cisco Nexus 7000 Series Chassis vs Table 6 Supported Direct ISSU and ISSD Paths for the Cisco Nexus 7000 Series Chassis [link] [comments]  |
| In a GPON context will any ONT work with any network? Posted: 04 Jul 2018 05:28 AM PDT Sorry if this is totally the wrong sub, however i can't find any information about ONTs online, other than a description of what they do. So, question is whether there is some variable that would render any ONT usable on network 1 but not on network 2? [link] [comments]  |
| Posted: 04 Jul 2018 12:46 AM PDT Hi guys, been pouring through IPV6 Routing Protocols the last couple of weeks. I gotta ask : What would be the use cases in 2018 for running RIPng on a network ? Surely if a device can do IPV6 it can do OSPFv3,MP BGP or EIGRPv6 ? [link] [comments]  |
| Comcast ENS with only HPE Procurve 2930m and 2930f Posted: 04 Jul 2018 11:38 AM PDT Basically I am concerned with performance and my design? The Core site with EDI will be a PAN firewall and a 2930m Stack. It will have ENS to 4 separate sites with 2930fs. Each site ranges from 5-20 users, the main site is 24, and each will have its own vlan. I have never done this with switch only, do you think there will be any performance issues? No Voip. Mostly just AD, Scan, Shares and Internet Traffic to the core and out the PAN to the ENS. Each ENS is 50 meg with 100 meg EDI. And I can just pretty much put the ENS in its own VLAN and untag it on one port in each site with an IP? The PAN will have a subint in that vlan. Probably ospf it all, or a better method? [link] [comments]  |
| 40Gbps QSFP -> 10Gbps SFP+ 4way splitter Posted: 04 Jul 2018 01:01 AM PDT Hi We're looking at replacing our 4 server switches. Our servers are equipped with 10Gbps NICs and so I'm looking at 10Gbps switches. These switches will trunk using fiber to our core switch which runs at 10Gbps. I'm finding it difficult to get a definitive answer on whether all 4 of the 10G SFP+ ends of the splitter cable have to be connected to the core switch? I'm currently looking at the HP 5940 switch in case that's relevant. The reason for asking is that one of our sites core switch is a 24 port and free port availability is limited. [link] [comments]  |
| HPE 3810M to HPE 1950, compatible DACs? Posted: 04 Jul 2018 09:59 AM PDT Hi, I was looking at repurposing some HPE OfficeConnect 1950 switches we recovered from a branch that closed and to uplink them via a DAC/SFP+ to an Aruba 3810M, however, our sales rep is telling me there's no compatible DACs for the 3810 & 1950, and the only way is to do it with SFP+ MMF transceivers (~400$/each) and MMF fiber.... for a total of ~900$ for each connection. Does anyone have suggestions, even if it's off-brand "compatible" DAC or fiber transceivers that would work with these 2 switches? Thanks! [link] [comments]  |
| Cat5e/6/6e bend radius when punching down? Posted: 04 Jul 2018 12:02 AM PDT Hey there, this has been on my mind for quite a while now. There are industry standards of how far you should bend a CAT cable but is there anything out there that mentions a bend radius for individual conductors? For example, you strip the jacket of the CAT6 cable, place it in a keystone punchdown jack, and place the conductors into the 110 blades. The thing is, aren't the conductors exceeding a bend radius? In most cases, the conductors are forced to make a right angle bend. I'd love to hear what you guys have to say. [link] [comments]  |
| checkpoint firewall basics adding/deleting interfaces etc Posted: 04 Jul 2018 09:30 AM PDT Our basic setup is 2x border gws and a management box. From what I understand the mgmt box is where smart dashboard runs. The guy managing all this got abruptly laid off and our backup guy isn't exactly that. So now I inherited a cp firewall and I need some general help with the basics. I'm trying to delete an interface and adding a static route and it's not taking. Do I do commit and reboot? Does that mean you have to do an outage every time you make changes? Also, I know there's an abundance of text on the internet about cp but mostly it's about fresh installs and/or if everything is as it's suppose to be. I need to do a sanity check and two important things I'm missing are ssh and web access (talk about disgruntled cp guy). I have a monitor and a kb attached to the box itself (cli). Any help is appreciated [link] [comments]  |
| Posted: 04 Jul 2018 06:57 AM PDT Yes, yes, I know people say "both" but real world often doesn't operate on that. So if you had to choose between a manager who's tech skills are mediocre on a good day, BUT their communication and leadership are genuinely exemplary and fantastic. or The guy above you is a dick or doesn't really know how to talk to people, BUT when it comes to the actual job, not only does he contribute, he does a good chunk of the heavy lifting because he's THAT more knowledgeable than the rest of you AND your coworkers [link] [comments]  |
| Layer3 Switch Loop. Deactivate RSTP? Posted: 04 Jul 2018 04:34 AM PDT Hello, I got a problem I can't seem to solve myself. I am working on a Router Mesh topology. The Router need to still use VLAN's because we are running pseudowire E1 over each link and they can only be connected to a existing vlan. So that means all router in the Mesh topology are Layer3 Switches runnng ospf for the management but still using vlans around the network. Now as always with Vlan and layer 2 tchnology you are running into the loop problem. Since it is a mesh topology and each Port/Link has to be up at all times there are multiple physical loops in my network because they are connected to each other. My main Question is now. Can I disable RSTP on each Router then with vlan tell the traffic where it can go and where it can not so to have a physical but not a logical loop without the network going down? Is this common practise to deactivate RSTP in a Layer 3 Switch Mesh enviroment or is this very bad practise? Hope you understand my predicament. [link] [comments]  |
| Why are home routers called routers? Posted: 04 Jul 2018 01:24 PM PDT Wouldn't they just be switches? Seems like a router is typically pretty expensive and is something a business would use. [link] [comments]  |
| Sflow probing of discarded packets Posted: 04 Jul 2018 02:32 AM PDT I'd like to monitor packets that are being discarded on a switch, but according to sflow specification it won't probe them: My question is there some option that would allow to bypass this behavior? I was thinking perhaps routing to another interface (i.e. Null0) would be a workaround? If so, would that create extra load on switch? [link] [comments]  |
| Is my ISP blocking access to my blog? Posted: 04 Jul 2018 06:46 AM PDT I have a blog at TravelTalesOnline.com. If I go to the site on my laptop, I get "The connection has timed out". Traceroute shows that it gets to the 5th hop (3, 4, and 5 are .bad.comcast.net, if that's relevant), but then it stops. The next 25 lines of the traceroute are "* * *". However, if I go to the site on my phone, not on wifi, I can get to the page with no issues. Does that mean that Comcast is blocking access to my blog? [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment