Discussion: Need career advice. Networking |
- Discussion: Need career advice.
- Question about MPLS, EVPN/VXLAN, overlays
- How do I enable recirculation interfaces and multicasting group on a Arista vEOS in GNS3?
- Structured Cabling Small Jobs
- Juniper EX4200 Switch Hot PFE
- Confusion over SFP+ module compatibility
- Datacenter Core and Edge iBGP update-source loopback IP routing? Static or OSPF?
- Sending raw 802.11 frames
- Anyone familiar with (Aruba) dynamic segmentation?
- Is "relay casting" a thing and what protocols should I look into?
- Question about ACLs
- ipv6 prefix and AS number for lab environment & selfhosted services with tunnel brokers?
- AIR-ACC1540-KIT1 Thread Pattern?
- Anyone else having trouble with TAC with the COVID outbreak in India?
- VMware management in distributed environment
- Open Source Monitoring / Focus Datacentre Environment
- Question regarding VPC and CDP.
- Random ONT's throw OMCI COM failures until reboot
- Topology based alert correlation?
| Discussion: Need career advice. Posted: 21 May 2021 04:55 AM PDT Hello networkers, I am 36 years old with 13 years IT experience and 11-12 years in the networking sector. I'd say my position/experience between experienced to senior network engineer. However, I am struggling to get the position I feel I deserve and I need advice on how to do so. I got this feeling that I am either selling myself too short or that I am applying for the more challenging jobs which get me rejected. Although I am grateful for having a job during these times, there is still that feeling that says "Come on man! You can do better than this!". A bit of background. I am from an island nation of 800k people and worked for the only Cisco silver partner in the island. We were doing everything: hospitals, universities, government, military etc. In 2013 I have moved to the UK, which then I was moving jobs every couple of years. The last job I got was "Technical Design Authority" which sounded great, loved the challenge but the reality was far from it. It appears that the company was more of a scam with managers not knowing the difference between a DVD player and a router and people leaving every month. To give some hard facts, I have joined in August 2018 and left in October 2019. When I joined, the company was around 50 people and when I left they were less than 20. They eventually got sold to another company in mid 2020 where they kept 7 people and had millions in debt. Anyway, I changed from TDA to Network Engineer in a conglomerate. I pretty much do nothing most of the day, however at first I was happy because this was my first contract job. The salary was decent, not great, but it was my first contract spot which I was happy. Then 2020 came and the UK laws changed in regards to contracting which my boss offered a non-negotiable salary. I did not like the salary and I wasn't going to proceed. However, lockdown started and I got a bit anxious where I just signed the contract and here I am. Our profession has different meanings for different companies. For example, I once went on an interview in a company where they needed a Senior Network engineer. Although I answered most of the technical questions correctly on the second part of the interview ( I knew my stuff), I struggled on the first part. Questions like "Tell us an example where you have project managed a team in a project" or "Give an example of a successful migration to the cloud." or "We buy a company, what are the steps you do to integrate this company to our network?". I am studying for AWS certs now which I have no exposure in my current role (or any role in the past) and I am trying to improve my negotiation skills. But I really want to know what I am doing wrong. Or maybe I am feeling FOMO? I could improve my people networking sills. [link] [comments]  |
| Question about MPLS, EVPN/VXLAN, overlays Posted: 21 May 2021 03:36 PM PDT I'm doing a bunch of bare metal datacenter kubernetes stuff which is the prompt. Am I correct in understanding that MPLS is effectively just encapsulation-as-a-service sold by your carrier from some IX to another? With layer 2 and layer 3 flavors. For example imagine I was doing some dumb virtual ARP, VIP thing. ARP depends on broadcasting and if I wanted a broadcast domain stretched between two or more disparate DCs I'd obviously need some form of encapsulation to maintain my VLAN tags across the wan to have a vlan span the DCs. There are ways of doing this, I could do a site-site ipsec vpn with L2TP, I could do dumb things with pseudowires, or VXLANs. Am I correct in understanding that MPLS, despite a different underlaying implementation, is effectively solving the same problems, just as a provider managed thing they sell me where I don't need to own an IPsec VPN deal myself? If MPLS is just another encapsulation deal, how does its implementation and path selection differ in a meaningful way from others. It's often depicted as a cloud, but of course that's just an abstraction. What does an MPLS network really mean in terms of l3 connectivity and fiber that's different from the normal IP on normal fiber that I love. Does MPLS traffic get multiplexed onto the very same longhaul fiber as the normal IP stuff? --- Sort of unrelated, but what exactly is EVPN. Huawei of all companies seems to actually have the most readable docs on this, where its described as a control plane for VXLANs.https://support.huawei.com/enterprise/en/doc/EDOC1100168670 Is that a fair description? Why would I ever want to use BGP EVPN, layer 2 extension stuff in either a DC, or a carrier setting over some alternative. What real world problem does this solve. [link] [comments]  |
| How do I enable recirculation interfaces and multicasting group on a Arista vEOS in GNS3? Posted: 21 May 2021 11:12 AM PDT I'm trying to implement VxLAN on a network which I built on GNS3. If I try to create a recirculation interface, I get the "recirc-channel not supported on this hardware platform". I had the same problem with BGP, but enabling multi-agent fixed it so I'm assuming that there must be a similar solution. I also get the same message when I try the "vxlan multicast-group" command. How can I fix this? [link] [comments]  |
| Posted: 21 May 2021 11:10 AM PDT For those of you working in organizations that have their own maintenance/facilities/physical plant folks, do you let them run cable for your small jobs? We get the occasional request for a new drop or to have a drop moved and it's getting tough to schedule our vendor for these small jobs. I'm getting some pressure to move to this model and I have some reservations. [link] [comments]  |
| Posted: 21 May 2021 12:38 PM PDT I just picked up a used Juniper EX4200-48PX and I noticed that the fans are constantly running at full speed. I did some digging and it looks like this is happening because one of the switches PFE's (Packet Forwarding Engines) is running hotter than the rest of the system. The full speed fan trigger on this switch is set to 60C (not changeable) and its constantly being triggered because EX-PFE2 is always running around 65C to 68C, while the rest of the components (including EX-PFE1 and EX-PFE3) are all running between 33C to 48C with an ambient temperature of 25C. Temperature Thresholds Screenshot: https://ibb.co/7n0csy9 Current Temperatures Screenshot: https://ibb.co/NxZZYrw Is this normal for one PFE to be running so much hotter than the rest? I'm currently only using 5 of the 48 ports, and none of them are currently supplying POE power. If this is not normal, should I try to open up the switch and see if I can replace some thermal paste? [link] [comments]  |
| Confusion over SFP+ module compatibility Posted: 21 May 2021 11:05 AM PDT Hi all I have the following configuration that i'm trying to get working Server with a Broadcom/Qlogic BCM57711 Dual port NIC connected to a Dell Powerconnect 6224 switch with 2x 10GB XFP module addon Switch has the following module installed: I used the following module in the server end: I'm using an Orange (I think OM2) multi mode fiber patch lead The port on the server doesn't come up - it has windows installed and it's not disabled or anything stupid like that. I know the modules at both ends are OK because if I put the Cisco 10GB module into a Cisco Nexus 5020 switch, and connect that to the Dell switch, it works! And the server NIC is also OK, because if I connect a DAC cable between it and the Cisco Nexus, that also works. It's just this particular setup with the Dell switch that doesn.t Should the Cisco SFP+ module not work in my network card? I can't find any info online that says if it should/shouldn't Thanks in advance [link] [comments]  |
| Datacenter Core and Edge iBGP update-source loopback IP routing? Static or OSPF? Posted: 21 May 2021 11:59 AM PDT Looking for insight or personal experiences on which method is best for advertising loopbacks for iBGP. Static routes or OSPF. Edge is two ASRs and core is two Nexus 7Ks. Any caveats for either. OSPF adds a level of complexity that could prolong trouble shooting. No plans to use OSPF other than possibly for this situation so it would be a rather simple implementation. Any advice appreciated. [link] [comments]  |
| Posted: 21 May 2021 09:21 AM PDT So this is a question about networking but also about C and Linux so I don't know if this is the right place. What I've got so far: A C program using raw sockets to send frames and a beacon frame copied from wireshark with changed SSID. I have several questions. First: Do I need to be in monitor mode to do packet injection? I believe aireplay-ng does packet injections in monitor mode but I noticed that the mac address of interfaces in monitor mode changes and my C program gets the wrong mac address (with the SIOCGIFHWADDR ioctl). There is also a permaddr listed but that doesn't work either. Second: When I send the frame with hardcoded mac address through a monitor mode interface the packet shows up in wireshark but not on the list of available access points on my computer or phone etc. Do I have to change anything else than the SSID in the frame i copied? I am not trying to build a practical program or library for packet injection. I am only interested in the low level/learning experience and therefor don't use any libraries for this. [link] [comments]  |
| Anyone familiar with (Aruba) dynamic segmentation? Posted: 20 May 2021 10:27 PM PDT So we're deploying/upgrading to Aruba CX switches. I've been reading about dynamic segmentation. I'm still not clear about it so I was wondering if what I have in mind is possible. Basically I want to know if it's possible to plug in a pc/phone/wap/etc, do mac authentication thru infoblox and clearpass and then once it's verified a user role assigns the appropriate vlan on the switch port. Just figure that will save a ton of time as far migrating all the devices over. The use cases doc i've read mostly talks about the mobility controller taking over, which i don't want. Any help is appreciated. [link] [comments]  |
| Is "relay casting" a thing and what protocols should I look into? Posted: 21 May 2021 03:46 AM PDT We're having problems with multicasting taking too much bandwidth. There's a server which sends the same packets to 2 other remote servers. Insread of always having both packets traveling in our WAN links, I was thinking that maybe some sort of relay technology exists. So server 1 sends a packet to server 2. If the packet matches an ACL, then server 2 would send a duplicate to server 3. Is that a thing? Can I relay packets instead of multicasting? [link] [comments]  |
| Posted: 21 May 2021 05:11 AM PDT Hello I am currently studying network security and I am wondering something about ACLs. I know what they are and what their intended use is. I also know that both Routers and Switches support this feature. Furthermore, I also know that having an extended ACL on an edge router facing the internet has a few benefits like being able to filter all the traffic and it can serve to connect a DMZ for example. And lastly, I understand the general rule of standard ACLs get placed closest to destination address, and the extended ACLs, since they can filter more traffic due to having more data defined they go closer to the source. However, I don't really understand when you would use an ACL on a switch as opposed to a router? I've been told that L3 switches can help routers with security so routers can focus on routing, but apparently ACLs don't affect a routers performance anyway because it's directly configured into the forwarding hardware? Also leaving a router that connects to the internet with no ACL could leave it exposed to direct attacks on the router? Can someone clear this up for me? Sorry if my knowledge is not precise I have only just started to study it. [link] [comments]  |
| ipv6 prefix and AS number for lab environment & selfhosted services with tunnel brokers? Posted: 21 May 2021 04:29 AM PDT Hi all, I recently deployed tunnelbroker.net on my lab for selfhosted services and started integrating it into docker. I really love the flexibility of making everything available to the net if I enable the forwarding rule for certain ports on my router. I started thinking that the only issue I have with tunnelbroker.net is that if I change the tunnel to another provider or I made a mistake with the server location I initially chose I have to assign a completely new /48 range to my internal network. I will have to create the prefixes on my router again and redeploy all my docker containers with the static ipv6 addresses (which is possible as everything is automated with ansible but can be tricky sometimes). Now my question, I stumbled upon: https://www.tunnelbroker.ch/tunnel. They are selling a 6to4 tunnel with an ASN nummer allowing me to peer with them over the tunnel and having my own ipv6 prefix. Only the prefix seems to be limited to them. What would be the cheapest, easiest way to have my own ASN and ipv6 prefix (/48 is more than plenty) to announce to a tunnel broker? Are there any options available for small individuals? I do have a company for my after hours where I could assign the ASN towards. [link] [comments]  |
| AIR-ACC1540-KIT1 Thread Pattern? Posted: 21 May 2021 09:43 AM PDT Does anybody know what the thread pattern for the dust cover cap of a Cisco 1542i Access Point? I want to run flex conduit straight to the AP without having a to use a gland, but I need to create an adapter that fits standard fittings. I have scoured the tech specs but nothing tells what the thread patterns are. Cables glands work okay in mild conditions, but I've found that in extremely wet conditions running conduit straight to the AP is the only way to survive long term. Just need to find the right thread adapter.. [link] [comments]  |
| Anyone else having trouble with TAC with the COVID outbreak in India? Posted: 21 May 2021 09:19 AM PDT Not complaining at all, their families and livelihood is much more important than my broken metal boxes. Just curious if anyone else is getting the same results. So far we've had issues with Palo, Aruba, and Cisco TAC this week. I'm talking 48 hours to even assign an engineer to critical priority outage ticket. There is just no one available. [link] [comments]  |
| VMware management in distributed environment Posted: 21 May 2021 09:16 AM PDT We have different teams managing different parts of our infrastructure. Which means one team manages networking part and othe team manages datacenter resources.( Server, compute, vcenter) Now earlier this was fine as the segregation was apparent and boundary between these two teams was clear. However last some years we have transitioned into more of a Virtual environment and now our Netgear also mostly moving towards virtual infra. This has given birth to a question that whether data center resources are to be managed by data center team only or shall we segregate the resource/ vcenter management of network infra and give it to network team? Any suggestions or experience is appreciated. Thanks [link] [comments]  |
| Open Source Monitoring / Focus Datacentre Environment Posted: 21 May 2021 02:07 AM PDT Hey Guys, we are just planning a Datacentre Environment. Everything from Core Switching to Hosts will be HPE, Firewalling will be PFSense (maybe Sophos, just in decision). Storage is handled through datacentre including monitoring. For Monitoring at VM Level we will use our RMM Tool. Just thinking about open Source Monitoring, on my list is: Check MK, Zabbix, Icinga, Prometheus, Nagios Main requirements are: Hardware Monitoring, HPE ILO, HPE Aruba Switches Hyper-V Monitoring, including CPU ready times, Cluster Health WAN, VPN, Network Traffic We would love to use Visualization thorugh Grafana because this is already set up (with other DBs) Would be cool having some feedback what you guys are using. Thanks in advance! [link] [comments]  |
| Question regarding VPC and CDP. Posted: 21 May 2021 07:03 AM PDT I don't think this will be a problem but I am asking out of due diligence before I accidentally cause a problem. Context: We have shipped a pair of Nexuses to a very remote PoP. One is ours, the other we have sold to a client. Now we reached a gentlemans agreement with the client that we will make a VPC and help each other out with redundancy. Which we did. Naturally I want to shut off CDP and LLDP towards the clients switch which is in a VPC pair. Will shutting off CDP have any negative effects on VPC? [link] [comments]  |
| Random ONT's throw OMCI COM failures until reboot Posted: 20 May 2021 07:14 PM PDT I work for a new small ISP, we are GPON FTTH using Adtran TA5k's along with their ONT's (mostly 411's). On one of our shelves, we are seeing OMCI com failure error messages in the logs abundantly. Our other few TA5k logs are clean with no OMCI com failures. We currently have a ticket open with Adtran, but nothing has been discovered so far. The uptime was a 342 days, we reloaded, next day the logs started filling up again. The issue seems to be becoming more common. About a month ago we noticed it on 1-2 accounts that reported loss of service until they reboot the ont. Then it is good for 12-42 hours. After pulling logs on the unit, we noted the omci com errors assumed it was a bad ont or maybe a physical issue. After replacing the ONT it was "fine" for a week or two then it started again. We then worked our way (replacing everything back to main line fiber.) The main line crew and supervisors went out and reported no issues. We then made our way to the CO, replaced some optics incase there was something off that we couldn't see. Nothing. Still the logs are full of the same error message on different slots and ont's on the shelf. Has anyone ever ran into a problem like this? [link] [comments]  |
| Topology based alert correlation? Posted: 20 May 2021 07:16 PM PDT Are there any products out there that are really good at network alert correlation? I mean correlating network device issues, as well as correlating network issues to app issues (like an app dies because the switch it was connected to died). I recently sat through sales pitches from Big Panda and Moogsoft and both of them basically relied on you tagging all of your devices with common tags for them to group by. Me: "how does it know that App A depends on Network Switch B?" Them: "well you tag both objects with a common Location tag, and then our patented algorithm correlates them together! It's very advanced Machine Learning and AI" Needless to say I wasn't that impressed. [link] [comments]  |
| You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment