Using Ansible to save Cisco (IOS, NX-OS, ASA) configs Networking |
- Using Ansible to save Cisco (IOS, NX-OS, ASA) configs
- Who has the most impressive network in the world, and why?
- Total noob question about static IP's
- Help mapping out company cabling / patch panels.
- Operation Hatred? How does your org handle it? Engineering vs Operations Interaction.
- Solarwinds N-central and network mgmt
- Monitoring on 2 Nics
- Replacing Extreme networks with Fortinet?
- Network Design Project
- Firepower 2110 & GNS3
- Apologies in advance of this is the wrong subreddit, but I am lost and need a little help with a Juniper SRX240 and an Extreme Summit X440.
- Asa firewall and network documentation
- Looking for high bandwidth rooftop to rooftop solution ideas
| Using Ansible to save Cisco (IOS, NX-OS, ASA) configs Posted: 23 Nov 2019 06:31 AM PST I know this is only tangentially a networking question, but I figured networkers are more likely to have come up with solutions to the challenge below. We started using Ansible modules (ios_config, nxos_config, asa_config) to save running config of our network devices to an Ansible server. I have a couple of annoyances:
To end on a more positive note, if anyone has plays they run for their Cisco or F5 LTM gear (not config changes), or clever tricks to massage the data, feel free to share. [link] [comments]  |
| Who has the most impressive network in the world, and why? Posted: 23 Nov 2019 11:12 AM PST I know "impressive" can mean many things. My personal criteria are massive scale, high efficiency, and unique innovation. It also must be extremely reliable, versatile, and robust. A network you could say is a clear global leader, this is the most advanced network on Earth. But what do I know? Feel free to rate based on your own criteria. Just please give an explanation for why you think it's that organization. I am sure the top picks may be among the FAANG organizations, or some global CDN. Maybe even one of the top carriers? I'm just curious to see which one specifically gets this sub's vote, and to read about what epic things these top players are doing on/with their networks. I also realize this thread could end up flopping, since most of these impressive networks probably operate on a high level of confidentiality—but I know this sub tends to host a number of highly experienced industry experts, so I'm hoping fun discussions will be had. Edit: "The Internet" doesn't count for the purposes of this thread. [link] [comments]  |
| Total noob question about static IP's Posted: 23 Nov 2019 06:43 AM PST So I work for an ISP and I've learned a lot about what happens behind the curtain, but unfortunately a lot of the other side of the curtain is still kind of a mystery to me. We provide static blocks for customers, usually just a /29 block. And every now and again a customer will ask me why they need this. And I still kind of stumble to answer it lol. Obviously that's only enough IP's for their management devices. Does it just make management easier? I don't see how this helps with security. [link] [comments]  |
| Help mapping out company cabling / patch panels. Posted: 23 Nov 2019 11:28 AM PST So, after a few network issues, I suggested our company should make a map / diagram / excel sheet of every port on the patch panel, where it runs to in the building, what's connected, ....same for the switches. .... Now my big mouth has been given the task to do this, but I'm struggling on where to start, so I would love suggestions to make this task easier. .... Software, templates, perhaps hardware / analyzer that can help (and isn't too expensive.) ( the company has 2 buildings next to each other, in each building:
So it's my task to find out what individual wall connection goes to what patch panel port, And what patch panel port goes to what switch port. ... Available tools given: flashlight, paper, pen, pc, label maker .... Yay! ..... Help! [link] [comments]  |
| Operation Hatred? How does your org handle it? Engineering vs Operations Interaction. Posted: 23 Nov 2019 01:26 AM PST I figure there may be some folks out there with a strong split between Ops and Engineering in their orgs, and maybe even Architecture in some circles. How do you handle that inter-team interaction and is compensation adjusted for the Ops people? What do you prefer? At my org we have a pretty clear split and our Ops folks, while generally good to work with, tend to complain about "Engineering Shit Sandwiches" even though we can never pull them into design discussions and when we query them for input or pain points it is generally vague stuff like "make sure it doesn't suck". it is almost like a cultural thing with that group. Only a couple of folks will actually engage you to learn a product and they get pulled away often because engaging EVERYTHING which makes them just as useless. Being on the Engineering team we are often faced with major forklift upgrade and new implementation and integration of products, up to day 1 support, and hand-off of the project. It is a large undertaking as Architecture or Engineering or even Ops sees a need and it is up to Engineering to take the "need a new Switch Fabric" request and go. We investigate vendors, run PoCs, deal with CAB and review boards, test, set up, document, troubleshoot, everything. It becomes a very deep dive into that one solution and you can very easily be pigeon-holed into your couple of projects because of the scale. The ownership of these products also follows you throughout your entire tenure as you are now known as the "The Arista Guy" because that is the vendor you chose due to whatever reason; good or bad. The trade-off is the work, while long at times, is a lot more steady and there is a lack of on-call and true spikes in workload (I think this is the main reason Ops gives us shit). The Ops team handles tickets and thanks to our outsourced workflow they generally don't handle mundane provisioning requests unless the queue gets too big. I have been in Ops and understand the work can equally challenging when anomalous, hard to track activity is seen. Different time zones, language barriers, levels of technical expertise, etc all make this more challenging. There is also the on-call aspect of which I don't think is formally acknowledged. There is a wink and a node for adjusting time worked to ensure you aren't getting hammered but we all know how that is; you just end up working in silent mode at home. I will note that sitting by that team they have a lot of downtimes and are very quick to toss "Engineering problems" back to us even if it is something like a circuit being undersized due to a project misquoting the number of users for the entire project. I think they look at our workflow and are horribly jealous. Now here is where I have the issue. I have done Ops for 3 years and Engineering for 3 years. I kind of enjoy Ops more. The on-call can suck but the tasks are much more straight forward break-fix and I personally enjoy helping people. While the technical skill-set is near equivalent there are minor twists there. Ops mainly focus on getting something working and needs to be quick and internalize a few critical aspects. Engineering needs to be slow and methodical to follow best practices and can't internalize such a vast amount of information because I am going far deeper into this specific technology and not touching half of what we have to know stuff like "this specific code version always throws this error; Engineering needs to upgrade them all". I really can't complain overall, I enjoy my job and all my teammates are great folks, it just gets annoying when you go out of your way to craft a solution for a problem and all you get is flak from the Ops team, told how easy your job, and accused of not doing your best job. It may just be cultural but still frustrating. [link] [comments]  |
| Solarwinds N-central and network mgmt Posted: 23 Nov 2019 08:37 AM PST Just curious if anyone out there uses Solarwinds N-central and have you had any luck with backups and config changes. We are demoing the product in organization and for Infra and the help desk this tool is greatz but it seems like we have a lot of custom work ahead of us to make the network manageable. Just looking for other's experiences. [link] [comments]  |
| Posted: 23 Nov 2019 10:08 AM PST I am about to deploy a mini PC with 2 LAN port on it to a business that claims they been having consistent internet problems. I am using one port to put behind a Fortinet firewall. The second port will be going directly behind the ISPs modem. I will be getting assignment 2 different IP ranges. Is there a software or some better way I can run an active trace route per NIC? [link] [comments]  |
| Replacing Extreme networks with Fortinet? Posted: 23 Nov 2019 04:00 PM PST I am looking for some advices my company are looking into replace our Extreme networks with Fortinet. We have a campus network with 70 switches, all are linked togheter with 2-4 10gig fibers for redundancy. Local server for DHCP and another FW brand. Now we are using SPB and IS-IS for bridging, the uptime is unbelievable good but due to the prices were looking into Fortinet for a complete solution with FW and management, I'm just afraid a Fortinet don't could manage the same uptime... I don't think they have the same good solution for bridging? And maybe run the DCHP on the FW and shut down the local server. [link] [comments]  |
| Posted: 23 Nov 2019 02:21 PM PST Hi guys, I know there are a few other threads about similar topics, but I just need some direction. I'm working on a network design project for a class. I'm new to networking and am just looking for some good resources. The project is to create a network design for a small company. [link] [comments]  |
| Posted: 23 Nov 2019 04:48 AM PST Does anyone know if its possible to get a new CISCO firepower (FXOS?) running in GNS3? I'd like to have a play in a lab before the real life devices arrive in work, I'm comfortable with the typical ASA stuff but haven't touched firepower at all really. I also find it confusing that the 5508/12/15/16 etc etc have 'firepower' but only as a module you direct certain traffic to whereas the new 2110 type devices seen to be completely standalone Cheers [link] [comments]  |
| Posted: 22 Nov 2019 04:44 PM PST Long story short, I got a Juniper firewall and a handful of Summit X440-48P's. I have no clue if they've been wiped of any sensitive info/config data (not sure what may be on them that could be sensitive info), I can't bother the people who were trashing them, and I want to make sure they are wiped before I try to sell them. But I've never the messed with this stuff and I'm lost after reading through the documentation. I'm assuming I need to connect to the console port on the devices to begin communicating with it via Telnet (is the web UI accessible through this port as well), but I'm not sure if a regular Ethernet connection works, or if I need a cable with a different pinout, an Ethernet to serial adapter, or something non-standard. I found a pinout for the cable connecting to the console connection on the Juniper at least, but am not experienced enough on my own to figure out if what I have laying around (standard Ethernet cables and one random serial/Ethernet cable with unknown pinout) will work or not. I'm mostly afraid of shorting something and breaking stuff. I'm just trying to figure out how to connect to these devices and check to see if they're wiped/reset and void of any sensitive data and okay to sell. Any and all help would be MASSIVELY appreciated. [link] [comments]  |
| Asa firewall and network documentation Posted: 22 Nov 2019 05:23 PM PST Hey, I inherited a few Asa firewalls and switched with no documentation on them. How should I go about looking at and understanding these devices. I will like some advice. Thanks. [link] [comments]  |
| Looking for high bandwidth rooftop to rooftop solution ideas Posted: 22 Nov 2019 07:18 PM PST Edit: Fixed Gbps, not Mbps. One of my clients is expanding into a building within the same office complex but not directly next door. They have a need for large data transfers between buildings. They expect to be generating about 60 GB of data daily in one building that needs to make it over to the other building. I initially looked at some rooftop 24GHz solutions but was seeing max throughput of about 1.45 Gbps (correction from earlier). I then suggested that we trench fiber between buildings and handle the delivery that way. With fiber, I can run multiple 1Gbps or 10Gbps links and data transfer wouldn't be a problem. The contractor gave a quote for the trench and now the client is having a bit of sticker shock. Are there alternative rooftop solutions that I'm not finding that offer higher bandwidth? RF or optical? Can multiple RF pairs be "stacked" to form a higher bandwidth link? My alternatives are to have higher bandwidth ISP drops and do a VPN, look at MPLS (assuming ISP supports it) instead of the VPN, or look to drop servers in the new building to capture data and the stream it out slowly. Any advice would be great! [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment