Topology help.. MLAG Core, A/P Fortigates and VRF Routing... Networking |
- Topology help.. MLAG Core, A/P Fortigates and VRF Routing...
- Copper/Fiber Certifiers/Testers
- (Question) How normal is it for ISPs Routers (CE,PE,PC) to have telnet, ssh, and FTP open to the internet?
- Unmanaged Switches
- dB loss on internal AP antennas?
- 10Gb SAN upgrade - Thinkiny way through ot
- Looking for a fiber broker in Phoenix
| Topology help.. MLAG Core, A/P Fortigates and VRF Routing... Posted: 02 Jan 2021 08:09 AM PST Hello, we're deploying a new network infrastructure as part of a building move and settled on MLAG L2 for the Core and Access switches, which we were going to LAG into a pair of Fortigates in Active/Passive for segregation and routing at L3 from there. BUT, the gateways are now going to sit on the Core switches (a pair of Arista 7050SX3s) and we're going to connect L3 to the fortigates for 2 VRFs (Prod and DMZ) for segregation. How do I configure the transit VLAN interfaces on the MLAG switches? Would we use LACP to the Firewalls still? Do I need a VLAN interface on the Aristas, or as the transit VLANs are trunked up to the fortigates, can I just have one interface per VLAN on the fortigates?! Can anyone point me in a direction, this feels like my misunderstanding some fundamentals...as usual..! [link] [comments]  |
| Copper/Fiber Certifiers/Testers Posted: 02 Jan 2021 10:49 AM PST We have a job coming up that will have enough profit in order to provide our company the means to purchase another OTDR. If money was no object, what is the best OTDR out there? Best manufacturer? I know this is probably highly subjective. The easier to use the better. Not knocking the fiber techs, but it has been my experience that the easier an electronic interface is to use, the more our techs seem to be able to master the system. On another subject, I have been reading that the new Fluke Cat8 certifiers are considered the standard for copper testing, especially for cat8 instations due to Fluke usually being able to negotiate longer warranties if using their testers. Would we be wise to consider some sort of combination function testing equipment? [link] [comments]  |
| Posted: 01 Jan 2021 04:12 PM PST (Question) How normal is it for ISPs Routers (CE,PE,PC) to have telnet, ssh, and FTP open to the internet? Title pretty much says it all, but I'm currently studying ISP Networking (Nokia NRS 1) and wanted to know how common it is for that stuff to be open like that. I have a fair bit of InfoSec knowledge to know that that kind of stuff shouldn't be open to the internet in an Enterprise environment, but I have no clue what level of normality it is in the ISP space. For example, looking on Shodan.IO shows a ton of ISP controlled Routers having SSH, Telnet, and FTP open to the internet. Thanks for taking the time to read my question. :-) [link] [comments]  |
| Posted: 02 Jan 2021 03:40 PM PST I currently am running a Ubiquiti Dream Machine Pro. If I run a 10 gigabit line into a 10gig microtik unmanaged switch, can I still manage all of the devices through ubiquiti? The Unifi Switch 16 XG is too far out of my price budget. [link] [comments]  |
| dB loss on internal AP antennas? Posted: 02 Jan 2021 09:01 AM PST Hi Guys. Im redoing my CCNP, and have for once to get into wireless as well. I think i understand most of the concepts - except for the calculation of EIRP - in regards to dB loss.. So this is always explained as the "loss of power between transmitter and antenna"... cool, no problem. [link] [comments]  |
| 10Gb SAN upgrade - Thinkiny way through ot Posted: 01 Jan 2021 08:53 PM PST I've got a rack with a SAN currently running, 2 shelves with drives that are DAS attached to a server for the head. That server runs FreeNAS with iSCSI going out 2 NICs, 1 to each switch on my stack, and each ESXi host has 2 NICs for iSCSI that go into each of the two switched in the stack. I'm looking to upgrade this part of my network to 10 GB and need help deciding what's a better option. Budget isn't firm but cheapest isn't the only way for this to go. At first, I found the MikroTik CRS305-1G-4S+in with 4 SFP+ ports and figured I could use 2, one for each segment. Then I don't need to worry about VLAN config, ensuring enough resources to the iSCSI via QoS, and other issues with running iSCSI on the main switch stack. Them I noticed that I could grab a Ubiquiti ES-16-XG for around the same price. It has 12 SFP+ ports and 4 x 10GBase-T ports. I figured I could go with this option as well and end still split up the ports to their own subnet/VLAN for the iSCSI to keep two but end up with more ports for expansion on the future. Are there other sides to this that I'm not seeing? Anyone have experience running iSCSI on either model and can give input? Am I not even looking at the right hardware? I can't afford HP/Cisco/Dell 10 G but MikroTik or Ubiquiti are within my price range. Currently the build is at $1400 CAD and that's with the MikroTik. Price difference to the Ubiquiti is around $100 more, so not enough to think about it being an issue. Thoughts? [link] [comments]  |
| Looking for a fiber broker in Phoenix Posted: 01 Jan 2021 04:38 PM PST (I didn't see a rule against this but mods please delete if this is not appropriate) We'll be moving into a new facility for our video + event production space in downtown Phoenix, AZ and I'd be interested to work with a broker to get a dedicated internet link. CenturyLink is already in the building so we'll talk to them, but as I check dark fiber maps it seems there are at least 3-4 carriers either on our street or a couple of blocks away. Thanks! edit I may as well share - the carriers that I've found near our building so far are:
Second edit: I've gotten several offers to help already. Thanks everyone! [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion.. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment