VLAN advantages Networking

---

• VLAN advantages
• Xmodem ios transfer failed... Console throwing garbage
• Recommendations for WAN Aggregation and Gateway for Small (16-24 server) Data Center Setup
• New to Nexus - vPC KeepAlive question
• Question about Failover Settings for Cradlepoint - Will I have Issue with Pinging?
• Cisco FTD 2140 or Palo Alto 3250
• [OC]Firewall Log Geo-Analysis using ELK Stack
• Router that clients pass through openvpn tunnel (airvpn) - iptables configuration help
• What is the command to telnet Host with specific port in Versa OS 16.1R2?
• Firefox WLC GUI certificate error

VLAN advantages Posted: 04 Oct 2020 01:19 PM PDT It's considered good practice to put clients and servers into separate VLANs. However, if client and server traffic is not routed through a firewall, and there are no ACLs between them: are there any significant advantages from a security or performance standpoint when you put them into separate VLANs? submitted by /u/lertioq [link] [comments]

Xmodem ios transfer failed... Console throwing garbage Posted: 04 Oct 2020 09:31 AM PDT One of my other teams at work lost power to an etherswitch embedded line card that's part of a router chassis while doing am xmodem copy of an ios image. Since that happened they're getting a bunch of random characters from the console almost as if the baud rate is off but they've tried a lot of baud rates with no change. Has anyone run into this? Any ideas to get the "switch" back up and running in ios? submitted by /u/syntax24 [link] [comments]

Recommendations for WAN Aggregation and Gateway for Small (16-24 server) Data Center Setup Posted: 04 Oct 2020 01:02 PM PDT I am setting up my equipment in the datacenter. Currently I have as follows: 16 compute nodes, which may expand to 24 in the near future 2 WAN networks; one provided by the datacenter (lower-ish bandwith) and another by a 3rd party telecom provider (1Gb connection) A LAN network amongst the compute nodes that needs to be segmented off from remainder of the network for reasons that aren't important here A LAN network amongst the compute nodes for basic internet access The equipment that I possess is: (2) Arista Switches (7124x) -- separate for each LAN Ubiquiti Gear: the USG (considering upgrading this to a USG Pro or a Dream Machine Pro), and a Ubiquiti 24 port Gigabit Switch The issue that arises is that both of my WAN connections arrive on SM Fiber only and thus require an SFP connection. My USG is Ethernet Only and supports WAN aggregation across two WANs. My 24 port Gb Switch has 2 SFP ports. Of course my Arista has 24 SFP / SFP+ ports. ​ My question is: How do you recommend that I configure my WAN connections from the SM Fiber that the Datacenter provides me to the USG? And, do you recommend another product that would perform the role of the USG and would support SFP/SFP+ connections? Ubiquiti doesn't seem to provide such an option but it would be nice to stay within the same product line there since I'm not building out a 500 node datacenter installation just yet. I have considered: Datacenter SM Fiber WAN => Arista [n] => Arista [n+1] => USG WAN, where the Arista [n] and Arista [n+1] ports are on a dedicated VLAN. Datacenter SM Fiber WAN => Ubiquiti 24 port Switch SFP => Ethernet port to USG WAN. In this case, I may be able to make the SFP and the Ethernet port on the Ubiquiti part of a VLAN but I need to confirm this is possible. Purchase some new equipment that would replace the USG and have two WAN SFP connections. Any help is appreciated. submitted by /u/abetteraustin [link] [comments]

New to Nexus - vPC KeepAlive question Posted: 04 Oct 2020 10:15 AM PDT Hello, I'm installing for the first time two N9K and i'm wondering the best way to setup the keeplive links. I have two 25Gb DAC cable for vPC peer-link but i'm wondering how to setup the vPC keepalive IP connection. Do i use the OOB MGMT interface? Since i don't have another switch, i'm able to connect them together but doubt thats the best way. Thanks submitted by /u/TheSentient06 [link] [comments]

Question about Failover Settings for Cradlepoint - Will I have Issue with Pinging? Posted: 04 Oct 2020 11:07 AM PDT I have temporarily inherited the IT responsibilities for the company where I work. We're a very small company, and there is no one else available at this time. We use Cradlepoints for our employees that work at our clients' locations. Previously, there were no failover/failback settings configured on the routers. Over the weekend, I set it with the following priority: Ethernet --- WiFi as WAN --- 4G/Cellular. 75% of the time, we are using either an ethernet jack at the client's location or WiFi as WAN (through Cradelpoint by connecting to their AP). I have it set to Active Ping mode with a ping address of 8.8.8.8. Do you think that we will encounter an issue, and should this be changed? I'm not sure how common it is to have pinging disabled on corporate networks. I'm assuming that if the pinging fails, we will be stuck on cellular which is not desirable. Generally we have no issues, but it would be nice to auto fallover and failback if possible. I appreciate any help or suggestions. submitted by /u/cai24 [link] [comments]

Cisco FTD 2140 or Palo Alto 3250 Posted: 03 Oct 2020 11:42 PM PDT Hello All We are planning for Data Center firewall with the following objectives in consideration control the access from client servers Multiple zones in DC ( critical servers, db, apps, Active directory etc. ) No VPN, No URL filtering Include IPS/Antivirus/Anti-malware/Application visibility and control 10gbps connectivity. So, I need some advise which firewall will be good in terms of performance, stability, support, threat intelligence and management. Thanks in advance submitted by /u/techno_it [link] [comments]

[OC]Firewall Log Geo-Analysis using ELK Stack Posted: 03 Oct 2020 08:13 PM PDT Imgur The blue markers on the Map show the geolocation of Public IPs and the connecting lines are the users connecting to the internet on our premises. Trying to find out a way to recognize DDoS and other types of attacks using the firewall logs. Constructive criticism is welcomed. Tools: ELK Stack submitted by /u/sandeepidemic [link] [comments]

Router that clients pass through openvpn tunnel (airvpn) - iptables configuration help Posted: 03 Oct 2020 11:56 PM PDT Hello all, My scenario is as follows, a Linux box acting as a router. I want it to connect to the VPN client and then all the client computers on the network sending all traffic through that tunnel. I have everything setup except the iptables part. The scenario is as follows Also if there is a better way to do this, please let me know. Maybe bridging tap0(instead of tun0) with eth1 or something. I am find with any configuration that would work. I tried using arno's firewall and could not get it working. I do not understand enough about iptables to get it working. WAN=eth1 (dhcp) LAN=br0(bridge of eth0 & wlan0) (172.168.1.1/24) tun0=openvpn Could you guys please help me? Thanks in advance. submitted by /u/blu702 [link] [comments]

What is the command to telnet Host with specific port in Versa OS 16.1R2? Posted: 03 Oct 2020 10:25 PM PDT From Cisco IOS we can run command "telnet <IP> <port>", but what is the similar command in Versa OS ? submitted by /u/jacobzuma27 [link] [comments]

Firefox WLC GUI certificate error Posted: 03 Oct 2020 07:37 PM PDT I had my 2106 WLC set up and was able to access it. I reset the config on the WLC and I am not able to access the GUI. I have redone the config a few times, each time with a different IP and Firefox is preventing me from access. This is the error Firefox is giving me "you are attempting to import a cert with the same issuer/serial" Does anyone know of a fix for this? Thanks submitted by /u/stevn6 [link] [comments]

You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion.. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States