First job as a network engineer Networking |
- First job as a network engineer
- Networking jobs during and after the COVID19 pandemic?
- Business owner with a couple questions regarding virtual PBX systems.
- Syntax Highlighting for Juniper/Cisco/Arista (SSH)
- Cisco Networking
- Rancid q - using a jump host
- Wireless, solar powered last mile?
- Built a Custom LTE Console Gateway - Could Any One Else Use This?
- [PSA] "Native Tagged vlan" is now a thing, appears to be functionally equivalent to "trunk without native vlan" (Aruba CX line)
- Best Way of using EVE-NG
- Palo Alto Ansible Collection Sloooooow
- Is connection to the home shared or dedicated with docsis 3.1?
- How does packet fragmentation work when DF bit is set to 1?
- How to route all traffic for my anyconnect users inside rather than outside?
- GRE Tunnel issue I can‘t get my head around
- Best sites to purchase networking equipment?
- Migrating from a VPN from OpenVPN Access Server to OpenVPN Open Source
- HPE NC522SFP 10gbit dual sfp PCI card on Centos 7
- For Cisco networking device automation, are there any tasks that cannot be done on Cisco Prime, but could be done with a python script?
- Anyone get domain based split tunnel working on PA Global protect VPN?
- Cisco RV320 GW to GW VPN from private IP address
- Fiber interface dBm power level at warning
| First job as a network engineer Posted: 02 Apr 2020 08:04 AM PDT Did anybody else feel lost and completely dumb as their first time as a network engineer? I had several years Service Desk and NOC experience doing more basic troubleshooting. All with the same company. I got my CCNA and got a job with a new company at the end of February. I trained for a month on day shift and now I'm on night shift. I feel dumber than I have ever felt before. It feels like none of my textbook knowledge is helping all that much. Sure I know the commands and how the stuff works but with all these incidents being unique I'm not even sure where to begin troubleshooting with a lot of them. It definitely has a lot to do with learning a new infrastructure but part of me can't help but feel that isn't all there is to it. I constantly am having to wait until morning to ask a coworker about the 1 or 2 incidents that pop up over night that I have no idea how to even begin troubleshooting. I was just wondering if this struggle is normal in the beginning? [link] [comments]  |
| Networking jobs during and after the COVID19 pandemic? Posted: 02 Apr 2020 03:39 PM PDT As everyone knows the COVID19 pandemic has a huge impact on the economy, and already millions of people have lost their jobs. Not only is the pandemic gonna be around for a while, but the economy and job market will need quite some time to recover. There is a high demand for IT and networking professionals. Especially now while the world relies on the internet for remote access and collaboration, but what will happen when companies need to cut costs and cancel or postpone large IT projects? Sometimes I get quite scared actually. I am one of two network engineers in my company, and to be honest, when there are no big projects going around, day-to-day operations can be perfectly done by just one person. What are your thoughts about networking jobs in the upcoming months or even years? Do you fear you might lose your job or gonna have a hard time finding a job in networking? [link] [comments]  |
| Business owner with a couple questions regarding virtual PBX systems. Posted: 02 Apr 2020 03:18 AM PDT Hello! My wife and I own a business and I moved everyone to working remotely weeks ago. Our employees (and us) are connecting to our office using RDP over a VPN connection. That's all working fine, however my solution for the phones was much less elegant. I just forwarded our main office line to a Google Voice line. It's working fine, however my wife and I cannot handle the call volume on one line, so I've started looking into some of these virtual or "cloud" PBX systems. My main question is, does it simultaneously ring for all users, like a normal PBX system would? That's really the only feature we need this for, but I can't find much info on it. That's tells me it's either not offered, or so standard that it's not even listed, haha. I'm not familiar enough with the technology to know what to look for. Secondly, any recommendations? We need something with a desktop application, rather than just a mobile app like Grasshopper. Like I said, the only other real feature we need is for it to ring on all endpoints so that any one of our employees can answer it. Hopefully this made sense. [link] [comments]  |
| Syntax Highlighting for Juniper/Cisco/Arista (SSH) Posted: 01 Apr 2020 11:01 PM PDT Hi , Around a month ago a saw a post on this subreddit about syntax highlight using Neovim (see the post HERE for those who use Neovim). Since I don't use Neovim and another user suggested a tool called chromaterm , I gave it a try and found it super nice and easy. In this repo I'm sharing my config with the instructions to use for anyone who is interested. I hope someone else finds it as useful as I did.
Thanks to the creator of this fantastic tool chromaterm. Have a great day and stay safe with all this COVID-19 madness! [link] [comments]  |
| Posted: 02 Apr 2020 04:21 PM PDT I am needing to be able to have IGMP-Proxy upstream and downstream or the availability to block an IPs (devices) from accessing another IPs (device) on the same VLAN. I am looking for a router that has a managed 4-8 port switch built in (if Cisco offers that) and an internal AP. and or I am also looking at a router that has a managed 4-8 port switch built in (if Cisco offers that) and an external AP. Hopefully a PoE switch built-in to power the AP. If they don't offer a 4-8 port managed switch built into there router, what switch would you suggest looking into? It need to have PoE to power the AP. It would be ideal if it is all GUI based as I don't know CLI, having a web GUI is ideal because I can access on my iPad as I don't own a computer. I am not looking at yearly or monthly subscription options or anything with a license. [link] [comments]  |
| Posted: 02 Apr 2020 09:58 AM PDT I would like to collect config on some remote site switches that are not directly accessible via my rancid collector. They are available from the site edge router. Has anyone set up a connection profile that will use an edge router as a jump host to pull configs from directly inaccessible devices? [link] [comments]  |
| Wireless, solar powered last mile? Posted: 02 Apr 2020 03:25 PM PDT In a rural area, looking to supply a neighborhood with high speed internet. Comcast serves the entrance to the neighborhood but wont run the last mile. We don't have the ability to run power but we can put in boxes for batteries and posts for wireless. Is there a drop in solution for this on the market already as far as the solar panel and network equipment? I've used Unifi in the past and I really like them. I'm aware of the logistics and regulations to become a neighborhood ISP, just looking for technical help. [link] [comments]  |
| Built a Custom LTE Console Gateway - Could Any One Else Use This? Posted: 02 Apr 2020 02:36 PM PDT I'm working on a project for a client that some other people might be interested in.
It's essentially a very stripped down version of OpenGears's ACM7004-2-L. The device only has two console ports and an LTE antenna. The cost is around ~$150 per device + $10/m for LTE.
Most of the solutions out there that would cover an OOB / backdoor console connection over LTE are usually priced over $500. I needed to build something that can support 1 to 2 console connections per site, but at over 200 sites. It also needed to be as "plug & play" as possible.
The device brings up a VPN connection back to a pre-built VM that can be hosted on-site or off. The VM is set to either NAT the mapped console ports to a locally accessible network or you can VPN to the server.
The contract I have with the client allows me to re-use this development. Is there a large enough market for a device like this to do a larger production run? [link] [comments]  |
| Posted: 02 Apr 2020 02:23 PM PDT I can't be the only one who was surprised to see this... In brief: I'm working with the new Aruba CX switch line. 802.1q ports (which are now called 'trunks' again! LAGs are now called LAGs!) can have a "Native Untagged vlan" or a "Native Tagged vlan". Native Untagged vlan: Exactly what you'd expect. Inbound untagged frames are accepted into vlan 60. All tagged frames are accepted. Oubound frames are all tagged, except for vlan 60 frames, which are always untagged. Native Tagged vlan: Inbound untagged frames are DROPPED. Inbound frames must be tagged to be accepted, even on the native vlan. Outbound frames are tagged. Outbound frames on the native vlan, vlan 60, are tagged. Why is that a "Native Tagged vlan" and not "no native vlan"? I was originally considering BPDUs and STP... but no. If there's a difference there, I'm not seeing it yet. (Disclaimer: I'm using an OVA, not a real switch...) Oh, and since I brought it up, LAGs are something like... Pipe support in show commands... You can | include, exclude, count, begin, and redirect. Interfaces can be 'shut' and 'no shut' instead of 'dis' and 'no dis'. Who's up on LLDP? 'show lldp neigh' now does the trick, no more 'show lldp info remo' ...oh and I guess people here care about REST APIs, officially supported Ansible modules, and the fact that the config is kept in a database which can be rolled back to any point. You can even get diffs between checkpoints on the command line. Anyone else found anything cool/goofy about this product line? [link] [comments]  |
| Posted: 02 Apr 2020 01:57 PM PDT Hi guys, i am new to EVE-NG, i've been using eve-ng for couple of weeks ago, it's really good, but what is the best way of using it, i integrated it with vmware workstation pro, and added some images, but how can i for example create a windows 10 or windows server on vmware station and integrate it with the eve-ng nodes. for example, imagine i want to use mikrotik with 2 pcs, inside and outside, i want to l2tp vpn from the outside pc to the inside network, how can i build up this scenario on eve-ng, but i want to use the windows pcs on the vmware work station pro. Thanks in advance! [link] [comments]  |
| Palo Alto Ansible Collection Sloooooow Posted: 02 Apr 2020 12:47 PM PDT Is anyone else using the Palo Alto Ansible collection? With their API calls it is unbelievably slow, taking around 40 seconds for each change and I'm wondering if its just my environment or if the modules are slow. I have no issues with F5 or other modules, just Panos. This is running on a lab Palo Alto 850. EDIT: I figured it out, there is an implicit commit to each change! So if you loop, each list item gets committed. Set "commit: no" and that solves it. [link] [comments]  |
| Is connection to the home shared or dedicated with docsis 3.1? Posted: 02 Apr 2020 08:48 AM PDT Hi everyone! Quick question, not sure if anyone will know this : internet providers over cables used to have a shared connection in neighborhoods. If everyone was downloading at the same time, speed could go down. Is it still the case with docsis 3.1? Or is the last mile now a dedicated connection? [link] [comments]  |
| How does packet fragmentation work when DF bit is set to 1? Posted: 02 Apr 2020 12:27 PM PDT Hello, I've recently been messing around with WireShark and noticed this: The data packet length is greater than the MTU, which in my case should be around 1500. Yet, when I check the DF flag, it's set to 1. I understand that it would then use Path MTU discovery, but what I don't understand is how it can then fragment the packet if it's been told not to fragment in the first place! Thank you in advance! [link] [comments]  |
| How to route all traffic for my anyconnect users inside rather than outside? Posted: 02 Apr 2020 12:19 PM PDT Hello, We have some ASAs that are facing outside, with a default route pointing out to allow access internally. However, our egress for internet traffic is inside the network. Is there a way, perhaps a PBR or something to route anyconnect users' traffic to route internally so it would hit another default route instead of the ASA's default route and hairpinning? Tried to google this but all I get is how to make somethign a full or split tunnel. We have a full tunnel, we use zscaler but for direct traffic, we want to route inside, we do static routes but that is cumbersome and we want to automatically allow users to test something once it's exempted from the proxy. Solved, thanks to Juicemane135 level 1juicemane135 2 points·2 minutes ago Sounds to me like you are looking for the route tunneled command: route inside 0.0.0.0 0.0.0.0 x.x.x.x tunneled I used the "inside" nameif but substitute whatever it is in your environment. [link] [comments]  |
| GRE Tunnel issue I can‘t get my head around Posted: 02 Apr 2020 04:47 AM PDT Hi, I'm currently working on a GRE tunnel solution for ZScaler with 4 tunnels from two routers behind a FW that does NAT. I build a lab to test everything but my GRE tunnels don't behave as expected. They show on two routers (the ZScaler side) up/up but are up/down on the enterprise side. I have keepalives in place and the IPs of the enterprise routers are static NATed to "public IPs". Here is the Topology with NAT rules and translations, which seem good to me. And here is the config of Tunnel61, between Router 6 and Router 1.
Does anybody know why this is happening? Edit1:
Edit 2: Configs of R6, R4, R1 There is OSPF active, but thats only for reachability in the local site. R4 (which connects both sites) doesn't have OSPF active. Just for clarification. Edit 3 I think it is because the Keepalive packets of R6 and R3, can't be routed back from R1 or R2 to R6 or R3. Because in the Keepalive Message, the outerheader will be NATed and arrives, from R6, at R1. But R1 decapsulates it and tries to send the keepalive back to 10.180.6.6 (the source interface in R6). But this is a private IP and R1 will never be able to reach that IP over the internet. There should be the public IP of R6 (10.10.14.6). Edit 4 Ok, right now the tunnels work, but only without keepalives. The keepalives are what the line protocol keeps down (as intended, if they don't work). I also added the MTU 1400, MSS 1360 and mtu path discovery on the Tunnels. Everything works. But as soon as the keepalives are active, the tunnels in the enterpriese (R6, R3) change the line protocol to down. Because there is no way to route traffic from R1 (ZScaler) to the source IP of R6 (private IP in Enterprise). And that makes sense to me, but how do I get those keepalives to work? I think I need to NAT the inner header in the keepalive packets.. [link] [comments]  |
| Best sites to purchase networking equipment? Posted: 02 Apr 2020 12:13 PM PDT Hi, Does anyone have any recommendations on where to purchase aruba/meraki APs and switchgear? Specific vendor sites to use. I'm looking for some assistance with pairing everything. For instance, If i need a supermicro server, I know thinkmate will help me pair the right HBA card with what i'm looking for. Thanks for your help. [link] [comments]  |
| Migrating from a VPN from OpenVPN Access Server to OpenVPN Open Source Posted: 02 Apr 2020 11:02 AM PDT |
| HPE NC522SFP 10gbit dual sfp PCI card on Centos 7 Posted: 02 Apr 2020 08:52 AM PDT Hello everyone, I got a PowerEdge R620 with a hpe NC522SFP 10gbit dual sfp pcie card, I added it on to Pci slot 1, and this nic shows on Idrac https://prnt.sc/rrjawm it detects it on Centos 7 but cannot connect to it, also I added the SFP and shows link on switch and no link on the card (with copper sfp) and with fiber SFP just has no link, nothing, I tried installing some drives over RPM but allways throws errors, even downgraded to centos 6 no success, can someone help me out? Thanks in advance [link] [comments]  |
| Posted: 02 Apr 2020 08:40 AM PDT Been getting pretty comfortable with Prime lately. Thought about also jumping into some python to learn more automation tasks. Would python be in any way more beneficial than prime? Are there any tasks you do regularly that cannot be done with prime, but could be done with a python script? [link] [comments]  |
| Anyone get domain based split tunnel working on PA Global protect VPN? Posted: 02 Apr 2020 04:54 AM PDT I'm very new to PANOS so it's been a little painful trying to get this working myself. Right now I have things set up as simple as possible. Only one domain is in the split tunnel list under client setup for the GP gateway. I can dial in successfully and when I access the defined domain, it uses the split tunnel. Problem is, everything else I try to access while dialed in also goes through the not-so-split tunnel as well. Anyone have any advice or docs they can point me towards? I'm getting ready to open a support ticket with PA, just thought I'd ping you guys first since I know a lot of you are big fans of the platform. [link] [comments]  |
| Cisco RV320 GW to GW VPN from private IP address Posted: 01 Apr 2020 07:21 PM PDT I'm connecting two Cisco RV320 routers together over VPN - an office and a residence. The office gateway has a static public IP; The residence gateway has a dynamic public IP. The purpose of this VPN is to connect an office IP phone that been moved to the residence. I was able to do this successfully, repeatedly and reliably when both routers are at the head of their respective networks. If I must, I will deliver the router in this configuration. It will require bridging their current AT&T U-Verse router so the RV320 gets the public IP address. It will upset their current network configuration, but will get the job done for this user. I would like to save this user some trouble by configuring their RV320 to work from BEHIND their U-Verse router. That is to say, the remote gateway WAN1 port will have a private IP address when it reaches out to the office gateway. This turns the RV320 into a network endpoint with only the office IP phone connected. I've had sporadic success creating a tunnel, but I cannot get the tunnel to reconnect if it becomes disconnected. This needs to be seamless and automatic. Can someone tell me what I'm missing or suggest another course of action that would work better? Thanks for reading. [link] [comments]  |
| Fiber interface dBm power level at warning Posted: 02 Apr 2020 07:26 AM PDT We have cisco nexus 9000 and one of 40G interface showing port transceiver power level at warning when i check on command line i found following. Question:
[link] [comments]  |
| You are subscribed to email updates from Enterprise Networking news, blogs and discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment