Moronic Monday! Networking

---

• Moronic Monday!
• 54% higher efficiency for Starlink: Network topology design at 27,000 km/hour
• Routing packet loss on Nexus running VPC
• Bandwidth to edge devices, when is enough really enough?
• Potential MTU issue between Meraki MX and ASA5515
• Where to lease subnet /22
• Noob question
• Cisco SD-WAN versioning meaning?
• Cisco Warm Upgrade
• PoE Wirless Router
• Need help regarding ubiquiti wifi network
• Portfast and RSTP BPDU gaurd
• Have a situation...need to battery power a POE switch in the field
• My company lab is kind of primitive, What's your setup?

Moronic Monday! Posted: 29 Dec 2019 05:04 PM PST It's Monday, you've not yet had coffee and the week ahead is gonna suck. Lets open the floor for a weekly Stupid Questions Thread, so we can all ask those questions we're too embarassed to ask! Post your question - stupid or otherwise - here to get an answer. Anyone can post a question and the community as a whole is invited and encouraged to provide an answer. Serious answers are not expected. submitted by /u/AutoModerator [link] [comments]

54% higher efficiency for Starlink: Network topology design at 27,000 km/hour Posted: 30 Dec 2019 08:11 AM PST submitted by /u/saxxxxxon [link] [comments]

Routing packet loss on Nexus running VPC Posted: 30 Dec 2019 11:23 AM PST Trying to get my head wrapped around a packet loss issue we're experiencing on a pair of Nexus Switches. 2x Nexus 3548's in VPC cluster https://imgur.com/Zhkbjmn The Nexus switches are acting as the routing core for our network. The Nexus share OSPF routes to/from our firewall cluster on a stick for MPLS and internet. We have a variety of edge switches + switch stacks connected to our Nexus core. Each switch has 2x 10GB fiber uplinks back to the nexus, split 50/50 between the two Nexus switches for redundancy. All uplinks are layer 2 LACP trunks. Aside from this weird packet loss issue when routing between VLANs everything else seems to be working fine. Packet loss issue is not reported when routing from internal VLANs outbound to the MPLS or internet. Issue only occurs between VLANs terminated to the Nexus. Scenario: New server is connected directly to the Nexus switches, 1x 10gb cable to each switch in a VPC LACP etherchannel. Windows Server is set in LACP mode for load balancing. LACP comes online and traffic gets through. Uplink ports to the server are untagged on VLAN 40. From a layer 2 perspective everything seems ok. The server can communicate with anything on the same VLAN without issue. But when it tries to route to any of other other VLANs terminated on the Nexus we get about 50% packet loss. Instinct tells me that when packets are sent to Nexus A they get routed fine, but when the hit Nexus B the packets are being dropped or aren't getting routed. Relevant config: feature vrrp feature ospf feature interface-vlan feature hsrp feature lacp feature vpc feature lldp vrf context vpc_keepalive vpc domain 5 peer-switch peer-keepalive destination 123.1.1.2 source 123.1.1.1 vrf vpc_keepalive peer-gateway auto-recovery spanning-tree vlan 1-3,10,40,50,80,101,200-205,2011,2020,2030 priority 0 interface Vlan10 no shutdown no ip redirects ip address 10.20.1.2/24 ip ospf passive-interface ip router ospf 100 area 0.0.0.0 hsrp 201 preempt delay minimum 300 priority 110 ip 10.20.1.1 interface Vlan40 no shutdown no ip redirects ip address 10.1.40.1/24 ip ospf passive-interface ip router ospf 100 area 0.0.0.0 hsrp 40 preempt delay minimum 300 priority 110 ip 10.1.40.5 interface Vlan101 no shutdown no ip redirects ip address 10.0.101.4/24 no ip ospf passive-interface ip router ospf 100 area 0.0.0.0 interface port-channel30 speed 10000 switchport switchport mode access switchport access vlan 40 vpc 30 interface Ethernet1/45 switchport switchport mode access switch access vlan 40 channel-group 30 mode active no shutdown submitted by /u/DarkAlman [link] [comments]

Bandwidth to edge devices, when is enough really enough? Posted: 30 Dec 2019 10:12 AM PST Hopefully this makes sense. But I understand Server bandwidth inside a data center will always increase to handle the workload of thousands of connections occurring simultaneously. But traditionally we can see that Data Centers have backbones that are far GREATER speeds compared to end devices (workstations etc...). With this being said what I'm trying to think about is, will we ever reach a limit in terms of bandwidth speeds to end devices that will be able to accommodate for any type of applications/software/connections/resolution that it needs? Like, even the most bandwidth intense applications with the highest resolutions possible, what does that look like from a bandwidth perspective for an end user? I would think that the biggest player in figuring out what speed will be needed (10GIG/100GIG etc..) is the resolution of the application being used. 4k, 8k, 16k, virtual reality? Have there been any bandwidth tests using these resolutions? I know youtube videos now support 4k, but I have no idea how to find any information on 16k and Virtual Reality bandwidth specifications. Anyone have any clue where to find this information? submitted by /u/gainzville80 [link] [comments]

Potential MTU issue between Meraki MX and ASA5515 Posted: 30 Dec 2019 11:47 AM PST We have a client with a Meraki MX utilizing SDWAN (bonding two internet circuits) connecting to our ASA5515 via IPSEC tunnel. After deploying SDWAN at the client site, we have started to see sporadic issues with HTTPS and other TCP traffic across the tunnel. PCAPS show a successful TCP handshake and so far the only issues I can see are the occasional TCP retransmission and a MTU fragmentation rarely. These issues are only remedied temporarily by bouncing the VPN from the Meraki side. When performing a TCP dump from the SDWAN bonder at the client site, I am seeing sporadic MTU errors: 14:29:26.018413 IP SDWANBONDER > CLIENTMX: ICMP (ASA5515) unreachable - need to frag (mtu 1452), length 556 I've done some pings across the tunnel from a client device to a server hosted behind the ASA5515 and found that the MTU of next hop is 1374. After finding this MTU, I configured the MTU of the SDWAN bonder interfaces to 1346 but started noticing other progressive network issues, so I have since reverted these changes. ​ Does anyone have any suggestions for how I can approach this problem? I have not experienced it when doing MX to MX VPN with SDWAN, only MX to ASA so far. submitted by /u/digitalsquirrel [link] [comments]

Where to lease subnet /22 Posted: 30 Dec 2019 03:24 PM PST Hello, I am looking to lease a /22 block subnet routed to a dedicated server (ARIN) Have been having trouble finding companies that are willing to lease to me Anyone have recommendations for me? Thanks submitted by /u/snobbypanda [link] [comments]

Noob question Posted: 30 Dec 2019 12:35 PM PST I am trying to understand networking. Say I want to hist a website. Can I host this website on a virtual machine with firewall rules on the host and place machine in a DMZ zone where an IPS sits, how do you connect these 2 to ensure all traffic is reviewed by the IPS before it reaches the webserver? What is the flow of such setup? Proxy>IPS>WebServer? submitted by /u/insubordinate_af [link] [comments]

Cisco SD-WAN versioning meaning? Posted: 30 Dec 2019 08:33 AM PST I think I follow Cisco's versioning for routers/switches. From what I read, every third release is a "stable" release. For instance 16.3, 16.6, 16.9, 16.12 are the releases that receive longer term maintenance. What about for SD-WAN? They have 17.2, 18.3, 18.4, 19.1, 19.2, and now 19.3. Basically they just released 19.3, I was on 19.2, it's unclear to me whether I should upgrade to 19.3, or stay on 19.2 and wait for further maintenance releases to that branch EDIT: I should add, this is the only actual notice I can find: https://www.cisco.com/c/en/us/products/collateral/routers/sd-wan/eos-eol-notice-c51-743306.html Stating that anything 18.3 and older is end of support Dec 24 2020. submitted by /u/JamMan23 [link] [comments]

Cisco Warm Upgrade Posted: 30 Dec 2019 12:09 PM PST As the title suggests, has anyone used this with Cisco before? Just wondering if something needs to be configured or how it works? I can't seem to get it working on a 2960X model? submitted by /u/Network_Jeff [link] [comments]

PoE Wirless Router Posted: 30 Dec 2019 11:43 AM PST Hi, Does anyone know a wireless router with 4 ports and at least two of them with PoE? Thanks submitted by /u/jomi_pt [link] [comments]

Need help regarding ubiquiti wifi network Posted: 30 Dec 2019 12:56 PM PST I require some help to reinstall my Ubiquiti wifi network setup I have at home. Almost two years ago i turned my sky wireless router into modem only mode and connected it to a Ubiquiti PoE switch to the switch I had a 3 ubuqiuti access points installed and a hybrid cloud key controller. Managed to set it all up and created a new wifi network everything working fine. Recently I had to restart my wifi network due to power issues everything was turned off for a short amount of time. When turned back on I noticed the key controller was flashing white and the internet dropping in and out and some of the wifi cams were not connecting. I reset the key controller but now i have had to set up a new site. The problem im having is my PoE switch and all the APs are connected to my old site on my old wifi network name. When currently logged in I cant find / see that site anywhere. What I want to do is be able to take control of my old site that had my existing wifi network name and APs / clients (im still connected to this wifi network and my APs must be working there blue coloured and internet is working). How do i regain control of my old site? Or can you help me set up a new site. submitted by /u/zuby_jalal [link] [comments]

Portfast and RSTP BPDU gaurd Posted: 29 Dec 2019 09:34 PM PST Hey guys, So I setup a network last week and I used RSTP global on each switch. Then on the edge ports I used RSTP edge port BPDU guard. However I noticed that the clients didn't get their IP addresses until 15 seconds or more, in fact many clients got a self assigned IP address then a DHCP address. So I'm figuring I should also enable PortFast 0. Now here is a few sticking points, firstly why do some switches use just port fast while others use port fast 0? Secondly, I guess I'm wrong, but I thought RSTP edge port was the same thing as portfast. Why do I have to enable both port fast and edge port bpdu guard? I thought rstp replaced Stp... Could I get some insight please? submitted by /u/MudKing123 [link] [comments]

Have a situation...need to battery power a POE switch in the field Posted: 30 Dec 2019 07:14 AM PST So the issue I'm running into is that I'm seeing that most are 48V input...which is quite high and requires a large battery......any POE which runs at a lower input voltage. Anything hooked to iit will be only 5V at most... Trying to power a few raspberry Pis off of a POE switch submitted by /u/bostonmacosx [link] [comments]

My company lab is kind of primitive, What's your setup? Posted: 29 Dec 2019 09:07 PM PST Lose cables, sometimes people knock some cables lose or worse, slightly tug at the connection so it appears to be connected but you have to see the light to know. We still use static IP addresses to access hosts in the lab.. What's the setup in your labs? submitted by /u/eskimoFry [link] [comments]

You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States