Followup to: 10gbe 70% packet loss- solved... M4300 CARP issues Networking |
- Followup to: 10gbe 70% packet loss- solved... M4300 CARP issues
- Service Providers with BGP-free cores: How do you handle IGP area/level design?
- Which NAC for guest wifi
- Dot1x with mab
- NetOps Automation use cases
- Some questions on Cisco QoS queues vs buffers and general help
- Mellanox Mystery
- mtu issue with pppoe
- Network Dashboards
- UCS boot process very slow-configuring and testing hardware takes forever
- Ciena “Service Delivery Switches”
- New Cisco Ruggedized Industrial Hardware
- VXLAN EVEN over IPSEC with Nexus 9300
- Cisco - Do you have to write after shutting down port
- Windows DHCPv6 Server
| Followup to: 10gbe 70% packet loss- solved... M4300 CARP issues Posted: 02 Feb 2019 12:05 PM PST First, thank you all for your support and help and ideas. Even ya'll that were spiteful. I love you guys too :) SO as of today everything is (mostly) working as planned. Mostly because some other unexpected (expected?) issues arose, but otherwise everything is flowing along correctly. First, let's see- CARP/VIP issues. 1 HA unit (2 machines) had a bad interconnect. I called it from day one, but I didn't know squat so it was ignored. I'm told that 'it must be something new' when I finally whittled it down to the missing interconnect port on one of the nodes. We're waiting to RMA that. As for the other HA box, the reason the VIP IP constantly broke? Because the sysad at that site had an IP conflict on another piece of hardware. In combination with the M4300 Netgear switch (which apparently Does NOT) enforce the correct warnings or protocols. I don't know what to say here/there yet but I'm going to try and raise the issue with netgear to see if that's an outstanding bug for VIPs or if something else is weird. It was diagnosed by watching a local ARP table on Windows machine and matching line by line the MAC addresses with the other machines. Since the MAC of VIP/CARP is in a certain prefix- it was easy to find once you knew what to look for. Second issue- the switch wasn't properly configured for IGMP. Many of you pointed to that, and I certainly spent tens of hours running it down. So (improperly) I turned it all on, and it's been working fine. That's not the correct solution but it'll do until I get the customer to sign off on accepting the hardware. That and pegging each of the settings. There's still VLAN and management interfaces that needs to be done too so some of this will be corrected then. Third, the packet loss: See above. Fourth, the 1x40gbE to 4x10gbe breakouts: Well, that was interesting. For the Chelsio cards to function properly the switch had to have static LAG turned off- so basically dynamic LACP. Once that was enabled everything was goodish. Fifth, performance: Even with 2x 10gbE connections but not teamed (THAT is still an issue- used to work, now broken with Intel), I can move around almost the data I need. Using iperf (in a hurry because I had 20 mins to get it done before the customer pulled my cable) [ ID] Interval Transfer Bandwidth [ ID] Interval Transfer Bandwidth You can see some weird stuff there, but most of the other runs were just fine. SO, thank you all. Quite grateful for the ideas. Doing this all remotely was practically impossible but it got done. Src Links: [link] [comments]  |
| Service Providers with BGP-free cores: How do you handle IGP area/level design? Posted: 02 Feb 2019 12:41 PM PST I know there are people around here that are a fan of leaving everything in L2 or Area 0, but I'm sure once you get to run a larger network that is no longer the best option due to reconvergence + lack of summarization and filtering capability. So, how do you go about separating areas? Do you give each PoP its own, and put the Backbone links in L2/A0? Do you ever stretch areas between the PoPs? Or do you do away with the multi-area design altogether in favour of some sort of a BGP solution? [link] [comments]  |
| Posted: 02 Feb 2019 06:54 AM PST Hi all my dear techies network brothers! I'm having a look on a NAC solution, specifically oriented to Wi-Fi guests access and control. Would really appreciate a suggestion for products you would recommend. My respects, Cheers! [link] [comments]  |
| Posted: 02 Feb 2019 04:18 PM PST I am working on troubleshooting a dot1x implementation and we basically are strictly falling back on mab. The main platform giving me issue is a 3750x and I'm going through most any Cisco documentation that I can find on the topic. Running debug on aaa, radius, mab and dot1x events so far but it doesn't look like when we toggle the port that a request is even being generated (there is no real debug output). We can generate requests, however, when we do a "test aaa group NAME USERNAME MAC new-code". I know that it is not much to go on but was wondering if anyone could offer some troubleshooting avenues that I haven't tried. [link] [comments]  |
| Posted: 02 Feb 2019 03:06 PM PST Without getting into the details of how, what are other network engineers using (or wanting to use) network automation tools and techniques to solve, and why? As an aside, I wonder who has the coolest or whackiest use case? I hear a lot about automation, and use it for certain things myself, but don't get to socialize much with other Network engineers anymore, and it'd be fun to read about what y'all are working on. [link] [comments]  |
| Some questions on Cisco QoS queues vs buffers and general help Posted: 02 Feb 2019 09:15 AM PST So I'm a little confused about one of the knobs on Cisco QoS (ios-xe on 3850/3650) that is queue-buffer ratio. So look at this policy map below So the way I understand it this configuration breaks the interface up into four outbound queues. One of them is a low latency/strict queue for class VOIP and guaranteed it 5% of the bandwidth. Next queue is for class VIDEO and guarantees 15% of the bandwidth. Next is the 3rd queue for class ASSURED, and it's guarenteed 20% of the bandwidth. The 4th and final queue is best effort and it gets a guaranteed 60% of the bandwidth. Each queue can go above their guaranteed limit, so long as the interface isn't congested... except for the priority queue which will never be allowed more than 5% of the interface bandwidth? (Is this actually true?) But that just has to do with bandwidth, or transmit rate? But since no buffer ratios configured, all the queues will split the interface buffer space so they'll each get 25% of the interface buffer? So as traffic is switched every bit will transmit as it arrives. This goes until the interface is filled up I.e. until it can't transmit any faster. So once that happens, additional traffic that needs to be sent waits in line in a buffer. I guess I'm just a little confused how a class of traffic can be guaranteed 15% of the bandwidth but it holds 25% of the buffer space. Maybe I'm not thinking about it correctly. I think an animation would probably help me, but can't realky find anything out there. So when would you adjust buffer-ratios? Does the policy map above make sense where you think it's a sane configuration. Would you want to give voice/video more buffer space because they're more sensitive for user experience, or would you give them smaller buffer since they shouldn't be waiting in line as much. [link] [comments]  |
| Posted: 02 Feb 2019 04:28 PM PST Here is what we started with. Three Dell Poweredge servers each with two Mellanox ConnectX-3 cards. On each server one card goes to an Extreme switch using the SFP+ cables. And on each server the other card goes to another Extreme switch with another set of SFP+ cables for redundancy. All working as designed. Then the office moved to a new location. At the new site, the cards in slot1 of all three servers show cable not connected. Odd that three cables would suddenly fail. However here is the only common factor we know. The Extreme switch they are connected into had an issue after the move and the firmware had to be reloaded again to get it to boot. I've eliminated the cables by replacing them. Moved the connection to other ports on the switch. Tested the ports in question using another device to see the link indicator light up. I can't explain how three mellanox cards that worked before a move now show cable not connected. Any suggestions? [link] [comments]  |
| Posted: 02 Feb 2019 03:26 AM PST trying to send a pppoe packet that exceed 1422 bytes WITH no fragmentation set "on" to google.com or even any public website using the well known "icmp" ping protocol the packet wont go knowing that 20 bytes are reserved for ip, 8 bytes for the ping and 8 bytes for pppoe header >> which leaves 1464 bytes !! Am I missing something here ? [link] [comments]  |
| Posted: 01 Feb 2019 06:40 PM PST I was wondering if anyone on here has been asked to create a page that displays the network "health" for your company for end users and management to be able to view. What did you put on it? How did you do it? One person mentioned that they wanted something like how you can go to status.reddit and see all the things that are up and down for reddit. [link] [comments]  |
| UCS boot process very slow-configuring and testing hardware takes forever Posted: 02 Feb 2019 06:16 AM PST Hi guys Can this be avoided? I am installing software on one of these systems and it takes for ever to reboot the server. I am seeing this as a big issue compared with other vendors. If by accident your server goes down (loses power) you need like 10 minutes to get it back I looked into BIOS (standalone C220 series server) and I could not find anything there to shorten this process [link] [comments]  |
| Ciena “Service Delivery Switches” Posted: 02 Feb 2019 07:48 AM PST Hey all, I'm purchasing two of Ciena's 3916 service delivery switches to primarily use as a media converter to get me from a SMF handoff to RJ45. It will also act as an SNMP traffic monitoring device for an ELAN I'm getting delivered from my Fiber provider. It seems to offer all of the regular features you'd expect to see on a basic Cisco switch. 3916 the price is way lower than any Cisco switch and I like it for the dual PSU for this application. I've played with Ciena's CLI and it it's almost just the exact opposite as Cisco (instead of "show int" ciena is "int show"). Nothing too bad. Anyone have experience with ciena gear? Horror stories? Happy stories? Thanks! [link] [comments]  |
| New Cisco Ruggedized Industrial Hardware Posted: 01 Feb 2019 06:41 PM PST I just saw that Cisco released a new line of ruggedized industrial hardware. Has anyone else read up on these or tested or plan on buying this line? We were looking for this type of hardware recently but Cisco didn't have anything to fit the bill at the time. Curious to other people's thoughts on this line and plans to test. /Discuss [link] [comments]  |
| VXLAN EVEN over IPSEC with Nexus 9300 Posted: 01 Feb 2019 06:13 PM PST Greetings networkers, Anyone with experience doing vxlan between Nexus 9300 over encrypted IPSec? Best Regards Edit: correct title VXLAN EVPN [link] [comments]  |
| Cisco - Do you have to write after shutting down port Posted: 02 Feb 2019 10:28 AM PST |
| Posted: 01 Feb 2019 08:15 PM PST So I have been doing some testing with DHCPv6 with my test environment that I own. I have been given a /64 from my ISP and I subnet it to a /80 based upon VLAN number. So say I was given 1:1:1:1::/64 from my ISP, I have subnetted that to be 1:1:1:1:60::/80 for vlan 60 and 1:1:1:1:70::/80 for vlan 70. I currently have DHCPv6 working perfectly like this on my openwrt router, but when trying to test on Windows Server 2012 R2 or Windows Server 2016, it seems I can only create DHCPv6 scopes with a /64 prefix delegation. Is there anyway to change that to hand out the correct prefix based on the vlans I have? [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment