Blogpost Friday! Networking

---

• Blogpost Friday!
• TAC Engineers of Reddit - How do you find the work? how is the stress? What is your career projection? How long have you worked in TAC? How do you make the most of your role? (and more)
• 100Gbase-LR for short range - how quickly will these get damaged? Advice on optical attenuators?
• Windows 2019 BGP Session - Remote Side requires MD5 Password for Session
• Cisco Firepower as AnyConnect VPN concentrator
• Cisco Catalyst 9300 L and QoS Configuring Issues
• I have one MRV OptiSwitch 940 network switch. Is it a good idea to use it?
• Question regarding VOIP phones with passthrough ports and VLANs
• TACACS terminal server router model?
• Has anyone successfully routed jumbo frames with a Cisco 3850? I can not for the life of me find it in any documentation.
• Isometric Network Diagrams?
• Cisco Firepower Question
• ELI5 Vlan Participation Include
• CISCO'S UCS FI
• Newer engineer here, Customer's 5505 firewall(that my company manages) is being pointed at as to blame, but I don't get why.
• 1U Rackmount UPS w/network monitoring?
• (Cisco) Weird IP in originating router when running sh ip eigrp topology 0.0.0.0
• Looking at/for 100% travel and 100% remote Positions.
• Cisco secure Internet/edge switch configuration example
• patchpanels/switches on both sides of a server rack?
• Blonder tongue mini CMTS
• nginx reverse proxy(stream for udp), only server stream dead.
• Building my first Business Network. Advice?
• Is possible to do a thesis about network automation ?
• Extreme Fabric - VRRP or RSMLT

Blogpost Friday! Posted: 27 Feb 2020 04:04 PM PST It's Read-only Friday! It is time to put your feet up, pour a nice dram and look through some of our member's new and shiny blog posts Feel free to submit your blog post and as well a nice description to this thread. submitted by /u/AutoModerator [link] [comments]

TAC Engineers of Reddit - How do you find the work? how is the stress? What is your career projection? How long have you worked in TAC? How do you make the most of your role? (and more) Posted: 27 Feb 2020 03:28 PM PST Just some questions for TAC Engineers How do you find your role (day to day) How is the stress? What is your career projection? How long have you worked in TAC? How do you make the most of your role? Any best practices for working in the role? Revelations you've made that help you everyday in the role? submitted by /u/sometacdude [link] [comments]

100Gbase-LR for short range - how quickly will these get damaged? Advice on optical attenuators? Posted: 27 Feb 2020 02:27 AM PST We're using 100Gbase-LR's for connectivity within a rack, or across adjoining racks (1.0 to 5.0 metres). Yes, I know LR is overkill - but these are the optics I have access to, and we do need 100Gb. (This is for a Ceph cluster). I've been told that at such short ranges, the high power can actually permanently destroy optics over time. What is the mechanism by which this damage occurs? How quickly will the optics wear out? (i.e. hours vs weeks vs months) For anybody that's used 100Gbase-LR over such short ranges - what steps did you take to mitigate this damage? I've been told I should be looking into optical attenuators, and clipping these on. Anything else? Is there much variance in the quality of optical attenuators? E.g. Cheap from fs.com, versus a more reputable place like FIS. And what sort of DB rating should I be looking for? Are 10Gbase-LR optics immune to this damage, even at short ranges? submitted by /u/victorhooi [link] [comments]

Windows 2019 BGP Session - Remote Side requires MD5 Password for Session Posted: 27 Feb 2020 10:03 AM PST I've done BGP on Windows Servers before without too much problem. But I've come across a setup where I need to run a Windows BGP Session but the ISP insists on a password on their end. Been trying to look on the Microsoft Docs page and alot of the articles direct to 404 errors. Does someone know if you can specify a password in the Add-BGPPeer Powershell command? Or was this functionality never added to Windows BGP Client? TIA submitted by /u/TicketsAndExcusesPls [link] [comments]

Cisco Firepower as AnyConnect VPN concentrator Posted: 27 Feb 2020 06:36 AM PST Hi, We're going to be demoing a couple of Firepower 2100's solely for the role of AnyConnect VPN concentrators. We have extensive experience using ASA 55xx-X's for basic firewalling duties but are a little put-off by reading all the bad experiences with Firepower so some questions upfront: Is Firepower a good fit when used solely for the role of AnyConnect VPN concentrator? Is there a good up-to-date overview of any missing AnyConnect features compared to ASA? It seems it's also possible to run legacy ASA on the Firepower hardware but we're not certain if this a good choice because we can't seem to find a roadmap for this. Is this a solid choice futurewise? We're aiming for a 5 year lifetime and want to avoid a forced migration to Firepower during this period. submitted by /u/bylienator [link] [comments]

Cisco Catalyst 9300 L and QoS Configuring Issues Posted: 27 Feb 2020 09:31 AM PST I currently have a new Catalyst 9300 L and trying to configure the QoS. The 9300 L is completely configured except for the QoS. The current switch is a Catalyst 3560. The QoS is configured below. The question I have is, when I am in the CLI and enter configuration mode, I type in the command line: "mls qos map cos-dscp 0 8 16 24 32 46 48 56" and get: "Invalid input detected at '^' marker. What am I missing on the 9300?? Thanks, ​ mls qos map cos-dscp 0 8 16 24 32 46 48 56 mls qos srr-queue input bandwidth 90 10 mls qos srr-queue input threshold 1 8 16 mls qos srr-queue input threshold 2 34 66 mls qos srr-queue input buffers 67 33 mls qos srr-queue input cos-map queue 1 threshold 2 1 mls qos srr-queue input cos-map queue 1 threshold 3 0 mls qos srr-queue input cos-map queue 2 threshold 1 2 mls qos srr-queue input cos-map queue 2 threshold 2 4 6 7 mls qos srr-queue input cos-map queue 2 threshold 3 3 5 mls qos srr-queue input dscp-map queue 1 threshold 2 9 10 11 12 13 14 15 mls qos srr-queue input dscp-map queue 1 threshold 3 0 1 2 3 4 5 6 7 mls qos srr-queue input dscp-map queue 1 threshold 3 32 mls qos srr-queue input dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23 mls qos srr-queue input dscp-map queue 2 threshold 2 33 34 35 36 37 38 39 48 mls qos srr-queue input dscp-map queue 2 threshold 2 49 50 51 52 53 54 55 56 mls qos srr-queue input dscp-map queue 2 threshold 2 57 58 59 60 61 62 63 mls qos srr-queue input dscp-map queue 2 threshold 3 24 25 26 27 28 29 30 31 mls qos srr-queue input dscp-map queue 2 threshold 3 40 41 42 43 44 45 46 47 mls qos srr-queue output cos-map queue 1 threshold 3 5 mls qos srr-queue output cos-map queue 2 threshold 3 3 6 7 mls qos srr-queue output cos-map queue 3 threshold 3 2 4 mls qos srr-queue output cos-map queue 4 threshold 2 1 mls qos srr-queue output cos-map queue 4 threshold 3 0 mls qos srr-queue output dscp-map queue 1 threshold 3 40 41 42 43 44 45 46 47 mls qos srr-queue output dscp-map queue 2 threshold 3 24 25 26 27 28 29 30 31 mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55 mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63 mls qos srr-queue output dscp-map queue 3 threshold 3 16 17 18 19 20 21 22 23 mls qos srr-queue output dscp-map queue 3 threshold 3 32 33 34 35 36 37 38 39 mls qos srr-queue output dscp-map queue 4 threshold 1 8 mls qos srr-queue output dscp-map queue 4 threshold 2 9 10 11 12 13 14 15 mls qos srr-queue output dscp-map queue 4 threshold 3 0 1 2 3 4 5 6 7 mls qos queue-set output 1 threshold 1 138 138 92 138 mls qos queue-set output 1 threshold 2 138 138 92 400 mls qos queue-set output 1 threshold 3 36 77 100 318 mls qos queue-set output 1 threshold 4 20 50 67 400 mls qos queue-set output 2 threshold 1 149 149 100 149 mls qos queue-set output 2 threshold 2 118 118 100 235 mls qos queue-set output 2 threshold 3 41 68 100 272 mls qos queue-set output 2 threshold 4 42 72 100 242 mls qos queue-set output 1 buffers 10 10 26 54 mls qos queue-set output 2 buffers 16 6 17 61 mls qos submitted by /u/harris3563 [link] [comments]

I have one MRV OptiSwitch 940 network switch. Is it a good idea to use it? Posted: 27 Feb 2020 12:25 PM PST Hi! I've been asked to test an MRV OptiSwitch 940 network switch. I see it first time and want to ask your opinion about it. I've read docs a little and found it interesting. If it works as it should it must be a very good device for small companies. But I've never seen before any device without some issues. What do you think about it? Do you have experience with such device? Does it work well? We're going to test it next days and make a decision. We want to use it as a core network switch in small network because it has 4x10G ports. We're also interested in L3 features, OSPF for example. With regards to L2 features I need ACL, QinQ and tag swapping. P.S. I know there was an Israel company who manufactured this switches but it have been sold at the moment. I also couldn't find a community or forum or some like that t get more info. submitted by /u/-BraveImp- [link] [comments]

Question regarding VOIP phones with passthrough ports and VLANs Posted: 27 Feb 2020 04:06 PM PST So I've used this configuration a lot in my workplace, but since I'm not the one who administrates the network, I had a thought the other day and it started to confuse me. So our network is set up to have a separate voice VLAN. From the wall, the Ethernet cable connects to the LAN port of the phone, and then the workstation that the phone is sitting with is plugged into the PC port of the phone. Now, from what I understand, the phone essentially contains a three-port switch -- one for the PC, one for the phone, and one connecting to the switch in the server room. Also from my understanding of networking, a port has to be trunked if it is to pass data for more than one VLAN. So, does the port on the switch in the server room that the PC and phone connect to need to be a trunk port for the link to the phone to be able to carry both voice and data? After all, if it essentially contains a 3 port switch, wouldn't the port need to be a trunk port on both sides in order to successfully pass data? I've also heard that, for example, on Cisco switches, you can use a command to designate a voice VLAN on a port. So people will say, for example, that they have the voice data tagged for the voice VLAN via configuration on the phone, and then leave PC data untagged. I think here my understanding of VLANS starts to get shaky. How does this work? Does this essentially create a specialized trunk port that only allows untagged traffic and traffic tagged for one specific VLAN (the voice VLAN)? And also, perhaps where I'm getting tripped up -- is the untagged VLAN of a port specified on a port by port basis, or does it go for the entire switch? As in, does the switch have one cumulative native VLAN, or is the native VLAN designated separately on each port? If that's the case, I think I understand -- it doesn't matter what VLAN a PC is on if the untagged VLAN can be set to that whatever that PC's VLAN is, and then the tagged VLAN can be set to the voice VLAN. To further elaborate, if a switch port is set in access and NOT a trunk port, does it really just support a single "native" VLAN and that's it? If that isn't the case, I'm very confused. submitted by /u/TheQuietForte [link] [comments]

TACACS terminal server router model? Posted: 27 Feb 2020 08:39 AM PST Hi all, ​ Would there be a significant loss in functionality between an ISR 4431 and ISR 4331 for use strictly as a terminal server? submitted by /u/nengineeringqmark [link] [comments]

Has anyone successfully routed jumbo frames with a Cisco 3850? I can not for the life of me find it in any documentation. Posted: 27 Feb 2020 11:31 AM PST submitted by /u/tarzxvf5 [link] [comments]

Isometric Network Diagrams? Posted: 27 Feb 2020 10:18 AM PST I've been tasked with coming up with a network diagram for a project. From what I can tell the majority of people are using draw.io these days. Draw.io has a nifty 50 second video showing a nice diagram in an isometric view, but uses AWS object in their example. https://cloudcraft.co/ looks really slick, but only has AWS objects. For your networking diagrams how and what are you using for your isometric designs? submitted by /u/Black_Gold_ [link] [comments]

Cisco Firepower Question Posted: 27 Feb 2020 09:22 AM PST I have a little bit of a situation for a new client and I'm not sure what would be the best course of action for them. They are migrating to a pair of Cisco 2110's running FTD and using FMCv. The goal is to get them on the gold standard image of 6.4.8, but they are running VMware ESXi 5.5 and FMCv 6.4 is not supported on that version. They are going to upgrade to a new VMware infrastructure in Sept so after that it won't be an issue. In the mean time, I was thinking of installing FTD/FMCv 6.2.3.15 and then upgrade to 6.4.x in the fall after their upgrade. Another small issue is the firewalls shipped with 6.3 so I would have to reimage the devices to 6.2.3 first. So should I setup 6.2.3 and reimage or just manage the devices locally with FDM until the fall? They are a decent sized company so I'm not sure if log retention would be an issue. What do you guys think? Is it worth the effort to setup 6.2.3 now then upgrade/migrate in the fall? Or should I run FDM and manage locally until after their upgrade? What are the pros/cons? Any other options I didn't think of? I would appreciate any input or advice. submitted by /u/Aez25r24 [link] [comments]

ELI5 Vlan Participation Include Posted: 27 Feb 2020 11:27 AM PST Hello! I just started messing with Extreme switches and I'm having some difficulties understanding a specific command, Vlan Participation include. For example, (Extreme 220) (Config)#interface 1/0/2 (Extreme 220) (Interface 1/0/2)#vlan tagging 10,20,30 (Extreme 220) (Interface 1/0/2)#vlan participation include 10,20,30 (Extreme 220) (Interface 1/0/2)#exit (Extreme 220) (Config)# exit Based on this entry, I'm tagging interface 1/0/2 with 10, 20, and 30. The documentation I'm working with also wants me to include "participation include" but it feels redundant? Thanks submitted by /u/Subspace13 [link] [comments]

CISCO'S UCS FI Posted: 27 Feb 2020 07:00 AM PST I'm implementing a hyperflex topology and we have 3 cisco UCS node and 2 FI. when today we powered on FI there was fort failed error (F0277) on all ports all were red. Can anybody tell me how to tackle this, or I'm being stupid by missing something basic. submitted by /u/omi23484 [link] [comments]

Newer engineer here, Customer's 5505 firewall(that my company manages) is being pointed at as to blame, but I don't get why. Posted: 27 Feb 2020 04:13 PM PST Hi Everyone. I just started my job as a network/system engineer for a Full Solution Parking automation company, and I have a weird issue. We have a customer that's claiming our really old ASA 5505 firewall isn't allowing traffic, and I can't figure out why. It'll disallow any connections to a few IP addresses in our credit card solution's public IP block, but allow connections to others in that same block. This is despite defining any-any acl rules on both the outside and inside interfaces. Our firewall runs through someone else's ruckus switch and pretty much just goes through to the ISP. I've talked with the other company multiple times to confirm that my firewall is just hopping across a couple of switches. I'm at a loss. Is my 5505 broken? Is there actually a firewall that no one knows about? I'm super new to this, so if I'm missing some things let me know and I'll clarify. submitted by /u/I_need_to_argue [link] [comments]

1U Rackmount UPS w/network monitoring? Posted: 27 Feb 2020 08:41 AM PST I know APC has a 1U 750 but that thing is 26" deep, really I just need something smaller to power these 8 port switches I have in small vertically mounted cabinets. Does anyone have some recommendations on what they use? submitted by /u/LtCasual [link] [comments]

(Cisco) Weird IP in originating router when running sh ip eigrp topology 0.0.0.0 Posted: 27 Feb 2020 07:25 AM PST As the title says, I'm getting a really odd IP address when checking where my default routes are coming from on a core router. This router SHOULD be getting it's default passed to it from an upstream router, and ultimately, the default is originated from our ISP router. This core router has quite a few different default routes, coming from different exits out of our network, so It's normal to see 4 entries. However, what I, nor anyone else, can explain is this wierd IP address that isn't anywhere in our network in the "originating router is x.x.x.x" . Like, it's a DSL link according to an NSLookup from a really small DSL ISP. Looking up the IP, says it originates from Arizona, which, is very far away from me. I asked our voice guys, server guys, senior network guys, nada. They all looked at me like I was crazy. Any idea how the originating router field is populated? Also, I thought of this being an upstream provider from one of our ISPs .... but as far as I can tell, this company is DSL only serving remote communities. And, our ISPs atleast give us their next-hop providers and none of them match this company. router# show ip eigrp topology 0.0.0.0 x.x.x.x (Vlanxxxx), from y.y.y.y, Send flag is 0x0 Composite metric is (3072/2816), route is External Vector metric: Minimum bandwidth is 10000000 Kbit Total delay is 110 microseconds Reliability is 255/255 Load is 255/255 Minimum MTU is 1500 Hop count is 2 **Originating router is z.z.z.z (something no where near my network)** External data: AS number of route is 2 External protocol is OSPF, external metric is 52 Administrator tag is 2 (0x00000002) Exterior flag is set submitted by /u/Wall_Stair [link] [comments]

Looking at/for 100% travel and 100% remote Positions. Posted: 26 Feb 2020 11:42 PM PST Almost 5 years of experience and a few certs (CCNA, Net+, A+) plus time and freedom to dedicate to the craft leaves me wanting to do and see more than what your standard NOC/ISP/MSP roles can offer. What has your experience been in finding these types of roles? Does anyone have any tips, experience or recommendations on finding/landing remote and/or travel roles? submitted by /u/gijidat [link] [comments]

Cisco secure Internet/edge switch configuration example Posted: 27 Feb 2020 11:47 AM PST ! Disable console logging no logging console ! Disable CDP, MOP, IP Redirects on EXTERNAL facing interfaces interface no service pad vtp mode off no ip source-route no cdp run ! ! Internal management interface interface GigabitEthernet0/1 description Management interface switchport access vlan 100 switchport mode access switchport nonegotiate ip access-group INSIDE-LAN in ! ! Edge device interface interface GigabitEthernet0/2 description Edge device switchport access vlan 200 switchport mode access switchport nonegotiate switchport protected ip access-group RED-WAN in spanning-tree portfast edge spanning-tree bpduguard enable ! ! Unused edge interface interface GigabitEthernet0/3 description Unused edge interface switchport access vlan 200 switchport mode access switchport nonegotiate switchport protected ip access-group RED-WAN in shutdown spanning-tree portfast edge spanning-tree bpduguard enable ! ! RED ISP Router interface interface GigabitEthernet0/4 description ISP Router switchport access vlan 200 switchport mode access switchport nonegotiate ip access-group RED-WAN in spanning-tree portfast edge spanning-tree bpduguard enable ! interface Vlan1 no ip address ! interface Vlan100 description Management VLAN ip address 10.10.0.100 255.255.0.0 ! interface Vlan200 description ISP RED VLAN no ip address ! ! Disable HTTP access unless absolutely necessary no ip http server ! Disable HTTPS access unless necessary no ip http secure-server ip ssh rsa keypair-name SSH-KEY ip ssh version 2 ip ssh dh min size 2048 ! !--- Module 2: Explicit Permit !--- Permit only applications/protocols whose destination !--- address is part of the infrastructure IP block. !--- The source of the traffic should be known and authorized. ip access-list standard INSIDE-LAN remark Management Network permit 10.10.0.0 0.0.255.255 ! ip access-list extended RED-WAN remark Internet network !--- Deny fragments. deny tcp any 198.133.219.0 0.0.0.255 fragments deny udp any 198.133.219.0 0.0.0.255 fragments deny icmp any 198.133.219.0 0.0.0.255 fragments !--- Deny special-use address sources. !--- See RFC 3330 for additional special-use addresses. deny ip host 0.0.0.0 any deny ip 127.0.0.0 0.255.255.255 any deny ip 192.0.2.0 0.0.0.255 any deny ip 224.0.0.0 31.255.255.255 any !--- Filter RFC 1918 space. deny ip 10.0.0.0 0.255.255.255 any deny ip 172.16.0.0 0.15.255.255 any deny ip 192.168.0.0 0.0.255.255 any ! ! Present a legal notification banner approved by company legal counsel banner login ^C UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED You must have explicit, authorized permission to access or configure this device. Unauthorized attempts and actions to access or use this system may result in civil and/or criminal penalties. All activities performed on this device are logged and monitored. ^C ! ! SSH negotiation timeout of 30 seconds ip ssh time-out 30 ! ! SSH authentication attempts of 2 before an interface reset ip ssh authentication-retries 2 ! line vty 0 15 ! Incoming access via SSH only access-class INSIDE-LAN in ! ! Incoming access via SSH only transport input ssh ! ! No outgoing connections permitted transport output none ! ! Incoming access not permitted if the request does not specify the transport protocol transport preferred none ! ! Idle timeout of 3 minutes session-timeout 3 ! ! EXEC timeout of 10 minutes exec-timeout 10 0 ! Followup to my popular post yesterday. Thanks everyone who provided feedback. All credit is to them, and all mistakes are my own. References Cisco Network Security Baseline Sample Configurations https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Security/Baseline_Security/securebasebook/appendxA.html Cisco Guide to Harden Cisco IOS Devices https://www.cisco.com/c/en/us/support/docs/ip/access-lists/13608-21.html Security Configuration Guide: Access Control Lists: Creating an IP Access List and Applying It to an Interface https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_acl/configuration/xe-3s/sec-data-acl-xe-3s-book/sec-create-ip-apply.html#GUID-9B178E56-F2AE-4910-9774-BBA30C85B179 https://meta.wikimedia.org/wiki/Cunningham%27s_Law submitted by /u/awarre [link] [comments]

patchpanels/switches on both sides of a server rack? Posted: 27 Feb 2020 11:24 AM PST I'm having kinda of an odd problem. I'm planning the server rack for my local fire department and the server room pretty much only allows for one rack where I have to fit all the 19" equipment and all patch panels + switches. Currently ~120 Ethernet drops are planned. Not all will be connected to switches, but all will arrive at patch panels. Also I'd like to use 24 port cat6.a keystone patchpanels because of the availability and 10GBaseT for the future. Regarding other equipment in the rack we don't have a lot of power consumption, it's more about space.. So a NAS, NVR, audio amplifier, SAT-IP Server, Router, UPS and so on. Maybe also 1 floor for tower servers. Ventilation should not be an issue, we could also use an open rack. But the assigned room allows for pretty much only one rack. My idea was to take a 1000mm deep rack and mount the patchpanels on top on both, back and front. 1000mm should also allow for switches on both sides easily. Currently probably only two to three switches, more might be added in the future. Is there anything that would cause problems with this exotic setup? submitted by /u/D1DgRyk5vjaKWKMgs [link] [comments]

Blonder tongue mini CMTS Posted: 27 Feb 2020 05:18 AM PST Anyone have experience with the blonder tongue CMTS? I'm struggling with getting VLANs to pass to my CPEs. We define a VLAN add option 60 info add snooping info and the only traffic I see is coming out untagged. The vendor is basically asking me to verify I have a DHCP server in that network and asking for packet captures. If I put an SVI and DHCP client on the CMTS itself it gets a lease in the right network so I'm not sure why they are pushing it back on me as the likely culprit. submitted by /u/unicornshark88 [link] [comments]

nginx reverse proxy(stream for udp), only server stream dead. Posted: 27 Feb 2020 01:57 AM PST I use nginx for udp reverse proxy server. like client ---(1)--> nginx ---(2)--> server When i re-install my server, udp proxy dies. In most cases, the client stream(1) and server stream(2) die together, nginx try reconnect reverse proxy. However, sometimes client stream(1) is alive, only the server stream(2) dies, then nginx doesn't try reconnect reverse proxy. So server can get message from client, but cannot send to message to client. The result of tcpdump like, client > nginx:port nginx:port > server server > nginx:port nginx:port > client ... (2) only dies client > nginx:port nginx:port > server server > nginx:port ... No 'nginx:port > client'. My error log when (2) only dies, 2020/02/27 17:41:13 [info] 34906#0: *647 udp client 192.168.0.184:49153 connected to 0.0.0.0:11325 2020/02/27 17:41:13 [info] 34906#0: *647 udp proxy 127.0.0.1:51513 connected to 127.0.0.1:31114 2020/02/27 17:41:13 [error] 34906#0: *647 recv() failed (61: Connection refused) while proxying and reading from upstream, udp client: 192.168.0.184, server: 0.0.0.0:11325, upstream: "127.0.0.1:31114", bytes from/to client:43/0, bytes from/to upstream:0/43 -- No reconnect -- Error log when (1) (2) die together, 2020/02/27 17:41:25 [info] 34906#0: *651 udp client 192.168.0.184:49153 connected to 0.0.0.0:11325 2020/02/27 17:41:25 [info] 34906#0: *651 udp proxy 127.0.0.1:60319 connected to 127.0.0.1:31114 2020/02/27 17:41:25 [error] 34906#0: *651 recv() failed (61: Connection refused) while proxying and reading from upstream, udp client: 192.168.0.184, server: 0.0.0.0:11325, upstream: "127.0.0.1:31114", bytes from/to client:43/0, bytes from/to upstream:0/43 2020/02/27 17:41:29 [error] 34906#0: *651 sendmsg() failed (61: Connection refused) while proxying and sending to upstream, udp client: 192.168.0.184, server: 0.0.0.0:11325, upstream: "127.0.0.1:31114", bytes from/to client:129/0, bytes from/to upstream:0/86 2020/02/27 17:41:31 [info] 34906#0: *653 udp client 192.168.0.184:49153 connected to 0.0.0.0:11325 2020/02/27 17:41:31 [info] 34906#0: *653 udp proxy 127.0.0.1:58601 connected to 127.0.0.1:31114 How can I change my configuration that nginx force reconnect proxy when only server stream closed? submitted by /u/sw_lee [link] [comments]

Building my first Business Network. Advice? Posted: 27 Feb 2020 08:32 AM PST I recently was hired at a start up and quickly discovered their network needs a lot of help. I'm newly CCNA certified and have a decent amount of network experience. However, I have never re-designed a network from the ground up. The previous admin set up a /16 network for approximately 25 people. They are expecting growth in the relatively near future. I'm looking for any advice anyone wants to give me! If you were in my shoes, what are the things you would and/or wouldn't do? submitted by /u/iTninjasaki [link] [comments]

Is possible to do a thesis about network automation ? Posted: 27 Feb 2020 07:56 AM PST I know that is kind complicate question, but I am studying automation network tools like ansible,python "paramiko" and other stuffs. And I also have to pickup theme for my thesis, and maybe I could use something about automation..but I could find a "idea"...so maybe someone could help me...Or maybe doesnt make any sense...Maybe a brainstorming .. hahaha Thanks a lot. submitted by /u/raikone14 [link] [comments]

Extreme Fabric - VRRP or RSMLT Posted: 27 Feb 2020 11:42 AM PST Running into my first hurtle with the Extreme fabric deployment. We will have 2 geo-separated sites, utilizing DVR to span L2 between them. Planning on deploying 2x cores with multiple leafs at either site. I've got the fabric up, SPBM and ISIS adjacencies are all good. Now i'm making the legs into our legacy STP network. Question is, should i use VRRP or RSMLT for the cores located at the same site? Plan is to create a vlan interface at both sites, which corresponds to a local legacy network, attach to an i-sid, then set the isid on the leaf port which connects to our legacy network. For redundancy, the vlan interface will need to be on both cores. So, VRRP or RSMLT? Keep in mind we'll also be utilizing a DVR domain between the two sites. submitted by /u/msmith1356 [link] [comments]

You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States