Moronic Monday! Networking |
- Moronic Monday!
- Fiber installation contractors in Central Florida
- (Question) Cisco ASA 5508 internet issue and large file downloads
- VeloCloud Deployment in AWS
- Tacplus auditing and logging
- Cisco IOS: How to close ports 2001, 4001, 6001, 9001?
- Clients all of a sudden requesting out-of-range IPs
- Network Diagram - software?
- Full/Half Duplex networking
- New ESXi vSwitch not working with Cisco Nexus 5K
- VLAN Networking Question
- Network adapter with monitor?
- Juniper ISG1000 stop routing..
- Best bang-for-the-buck network testing hardware?
- ARIN V6 Just Assigned
| Posted: 01 Nov 2020 05:04 PM PST It's Monday, you've not yet had coffee and the week ahead is gonna suck. Let's open the floor for a weekly Stupid Questions Thread, so we can all ask those questions we're too embarrassed to ask! Post your question - stupid or otherwise - here to get an answer. Anyone can post a question and the community as a whole is invited and encouraged to provide an answer. Serious answers are not expected. Note: This post is created at 01:00 UTC. It may not be Monday where you are in the world, no need to comment on it. [link] [comments]  |
| Fiber installation contractors in Central Florida Posted: 02 Nov 2020 06:31 AM PST Hi all I need to get some bids in the next 3-4 months for a fiber installation project in the Lakeland, FL area. It's going to be 96 strand cable install x2 between two buildings on different paths (across a big driveway, most of it is not paved (yet)). It's also going to be installing multiple IDF's in a 625x225 (appx) warehouse. I have a very good contractor we work with now for a lot of work, but I'm based in NJ and really do not know the market. And I don't want to ask our contractor a list of competitors to get bids with. TIA. [link] [comments]  |
| (Question) Cisco ASA 5508 internet issue and large file downloads Posted: 02 Nov 2020 08:33 AM PST I'm a sonicwall guy and never had this issue until we migrated to the Cisco appliance so I'm not sure what to check. The issue is when ever a user downloads a file larger then 10 gigs the internet shuts down, all traffic other than that download stops or is extremely slow. Could this be the stateful packet inspection causing an issue? [link] [comments]  |
| Posted: 02 Nov 2020 11:57 AM PST I'm looking for some guidance on deploying a VeloCloud solution in AWS in multiple regions and multiple VPCs. I currently have a solution where I've built VPN tunnels from AWS Transit Gateway to the VeloCloud Orchestrator as non-velocloud sites. My concern with this method is that the VeloCloud gateways could be a single point of failure (I'm not able to find any concrete documentation that states the SLA of a VeloCloud Gateway). The shortfall with the VeloCloud Edge device is that I would need to deploy an edge in each VPC in order to route traffic out the EC2 interface of the edge. To get around this I've come up with a possible solution which is what I'd like opinion on: I'd like to create a new account in AWS. Build one "Egress VPC" with a public and private subnet. Deploy a VeloCloud Edge inside of the VPC. Build a transit gateway and attach this VPC. All routing from the transit gateway destined for internal traffic would point to the "Egress VPC." The route table inside the "Egress VPC" would point all internal traffic to the network interface of the VeloCloud Edge. At this point all traffic would essentially funnel from the Transit Gateway, out the VeloCloud Edge and onto the VeloCloud mesh. I could then share this transit gateway across other AWS accounts using AWS Resource Access Manager. I could point all traffic that needs to go across VeloCloud to the shared transit gateway. Once it arrives at the Transit gateway, the route tables would direct the traffic all the way to the VeloCloud edge network interface. I need help poking holes in this solution. I don't know that it will work - it's just a guess at this point. I don't know how I will setup an HA pair either. Has anyone had to figure this out in their environment? Any help would be appreciated. [link] [comments]  |
| Posted: 02 Nov 2020 03:09 PM PST Hi all! Is anyone using tacplus by shrubbery? I've deployed as a simple TACACS+ server using local accounts on the CentOS box I've deployed. I'm wondering if anyone has done anything clever to log usage or authentications to switches? The server is very basic I'm not really sure how I can achieve it without logs there doesn't appear to be anything in the configuration that lets you do this? Hoping someone has found some creative solutions! [link] [comments]  |
| Cisco IOS: How to close ports 2001, 4001, 6001, 9001? Posted: 02 Nov 2020 02:26 AM PST I am configuring a small branch router and found that every interface of the router has following TCP ports listening and issuing login prompt: 2001 is con0 line access, which I want open only on Loopback0. The rest I want closed unconditionally. How do I do that -- without using ACLs. I cannot use ACL with access-group in since this is PE router and it won't work for traffic not coming from the interface. [link] [comments]  |
| Clients all of a sudden requesting out-of-range IPs Posted: 01 Nov 2020 09:25 PM PST I run a fairly simple network for my cohousing community with 34 homes. I am by no means a networking expert. We have a Comcast business account shared via a Netgate pfSense box and several unmanaged switches. Things generally work fine and don't need babysitting. The last few days, though, I've had random residents telling me that they're losing connectivity. Today I dug into the logs and I see that several, seemingly random, clients - which are all individual residents' home routers - are requesting IP addresses outside of our range. We've used the same IP range on our internal network for 17 years and I haven't changed anything on the pfSense box since the last time I upgraded it to the latest release a few months ago. An example of what I'm seeing in the DHCP logs: I count 57 of these exchanges in the last 24 hours, but only three people notified me that they had no connectivity. It seems that most of these resolve as they should, with the client accepting the offer, but sometimes they don't accept and sometimes they keep making the same request over and over, but eventually stop. I've seen the same client request different IPs in the 10.0.0.x range. My first thought was that there was a rogue DHCP server on the network. This happened once before when a resident connected their router incorrectly. However, I get request timed out when I try to ping 10.0.0.0, 10.0.0.1 or 10.0.0.x. Is it safe to assume that a client would only request an IP address that it had previously been assigned, and so something must have assigned these 10.0.0.x IPs at some point? I have been seeing another sporadic issue for the past few months that could be related, but it's a bit beyond my knowledge. We have occasionally lost internet connectivity. A reboot seems to fix it, but I see A LOT of this in the routing logs: I've been trying to research in my spare time, but haven't found a solution yet. When it first happened a few months ago, Comcast came out and replaced the splitter (for internet & TV) in front of their modem and it seemed ok for a few weeks. UPDATE: Thanks to all the great guidance here I was able to track down the MAC address for 10.0.0.1. It's from Netgear, so now I'm trying to track down everyone with Netgear routers. Hopefully I can find it and fix it tonight. [link] [comments]  |
| Posted: 02 Nov 2020 01:39 AM PST Hello, I have a new project regarding CISCO switches and routers. In this first phase, the objective is to create the network diagram. This network consists of more than +500 switches and +100 routers and firewalls. I don't have access to the equipment, I only have access to their configuration dumps. Is there any software that through the dumps can create the network diagram? (paid or free) Thanks a lot for the help :) [link] [comments]  |
| Posted: 02 Nov 2020 11:44 AM PST I'm trying to understand how different types of duplex interact and I can't quite figure out how a certain scenario would play out. We have two devices, both capable of full duplex communication. Obviously, if they were directly connected it should be full duplex communication. What happens if device one is plugged into a switch, and that switch into a wireless access point. (All of these are full duplex). The wireless is capable of only half duplex. From there it goes to a wireless client, through it's full duplex ethernet port to device two. Essentially the wireless is a half duplex bridge between two segments of the network. [Dev1]--full--[switch]--full--[ap] ))half(([client]--full--[Dev2] Would this cause any issues? Or does the access point/client handle the duplex change without a problem? [link] [comments]  |
| New ESXi vSwitch not working with Cisco Nexus 5K Posted: 02 Nov 2020 10:07 AM PST Hi guys, I'm trying to create a new vswitch within my vmware infrastructure that will be for a different vlan. My goal is to move VMs over to this new network as I re-IP them to non-overlapping IPs with our parent company we are integrating with. The switch config is the same as the the VMs are currently on, and the Nexus config (SVI, addition of vlan to trunk interfaces between devices) is already done. I can reach the SVI of the new vlan on the nexus equipment, but when I moved the VM over to the new vSwitch and change the VM's IP, we lose all connectivity until reverting. We have nexus 7ks as our core, with 5ks as the distribution. Something weird I've noticed is once the VM is moved over to the new switch and IP, the mac address of the VM does not show up on the Nexus 5Ks, which are connected to the physical ESXi boxes. Any idea what could be wrong? I've confirmed that the setup on the Nexus equipment is the same as the old vlan I am copying. I feel like something fundamentally has to be wrong for the MAC to no longer show up on the adjacent physical switch. Thanks for any help! [link] [comments]  |
| Posted: 02 Nov 2020 03:02 PM PST Hi All, I've got a question for you networking experts out there. I've got a problem with a Sonicwall, Meraki AP's and setting up VLAN's. I'm trying to setup a segregated network on the X3 port of the sonicwall. The Meraki AP's can easily setup a secondary SSID with a VLAN ID of 10. I can tag the port of the cable in the Cisco switch coming from X3 on the Sonicwall with VLAN10. Will this work? Or are there issues with this setup. See linked image for reference. Thanks in advance http://nextcloud.southeastern.biz/index.php/s/t5iASNCq7xB8aKa [link] [comments]  |
| Posted: 02 Nov 2020 12:22 AM PST Hey If I go buy an network wireless card; how would I now if it supports "Monitor mode" before buying it? Cant seem to find this term under any specifications on serveral products. [link] [comments]  |
| Juniper ISG1000 stop routing.. Posted: 02 Nov 2020 05:53 AM PST Hi Team, I have a device ISG-1000 screenos Juniper, that every 6 or 7 days runs out of routing, that is, it does not have ping anywhere so it works again I just have to reset it. The truth is I don't know where to start investigating or what could it be? TIA.! [link] [comments]  |
| Best bang-for-the-buck network testing hardware? Posted: 01 Nov 2020 10:56 PM PST I'm looking to have more confidence in my wired network beyond a simple 4-pair Cat5/6 network tester. Sometimes these testers will test "good", but there will still be more subtle irregularities that show up as network instability. I've seen devices which can cost several thousands that will certify ethernet cables to various standards. Assuming I want to buy something, preferably used/secondhand with a budget of $500 to $1,000, that will give me 99%+ confidence in my network runs, what models should I be looking at? [link] [comments]  |
| Posted: 01 Nov 2020 04:53 PM PST I just got a v6 block and asn. Currently we have several branches connected via mpls and two internet connections with private bgp. We are on a wait list for a /24, but who knows how long that will take. I'd like to just get going with the v6 block and stop waiting. We're all Palo Alto on the edge and Cisco for switching. Has anyone here migrated to v6 from provider assigned ip space? [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment