Blogpost Friday! Networking |
- Blogpost Friday!
- Are the phone numbers for Cisco field offices in your area disconnected?
- Oxidized Github inactivity
- Any Google Network Operations Engineers out there?
- Secondary NTP Time Source Recommendations
- Cisco ASA 5508-X K9 replacement options
- Meraki firewall
- Identifying RJ45 ends. Stranded vs Solid.
- Wifi throughout an old industrial building
- Juniper SRX PXE boot
- Black v Blue Colored 9pin RS232 cable
- At what point is a broadcast domain too big?
- Front Facing Web Server
- QoS in 2021
- Planning to take bsnl air fiber franchise
- [Help] Cisco CBS350 stack switching capacity
- CIS Dashboards for Network & Network Security
- How to calculate and assign minimum numbers of IP address based on the topology logical design?
- Layer 0: Wall mounting IDFs in warehouses
- Seeking Brocade VDX firmware - help!
- BGP Selective Aggregation
- Hairpin two untagged vlans
- Replace Cisco 1921 for 1Gbps Internet?
- Cisco ISE - iOS PEAP Authentication Invalid Credentials and AD lockouts
Posted: 24 Jun 2021 05:00 PM PDT It's Read-only Friday! It is time to put your feet up, pour a nice dram and look through some of our member's new and shiny blog posts. Feel free to submit your blog post and as well a nice description to this thread. Note: This post is created at 00:00 UTC. It may not be Friday where you are in the world, no need to comment on it. [link] [comments] |
Are the phone numbers for Cisco field offices in your area disconnected? Posted: 24 Jun 2021 07:02 AM PDT I am tried reaching out to my local Cisco office for help finding a very specific consulting need. The number pushed me straight through to headquarters, who couldn't understand what I wanted so they sent me to TAC. So I tried calling several other offices in my state and all of the numbers were disconnected. Seems strange. [link] [comments] |
Posted: 24 Jun 2021 01:06 PM PDT For those unaware, Oxidized is a backup tool for network devices. It seems that the Oxidized Github page is quite inactive. CI/CD pipeline failing due to outdated ruby version, last commit on master somewhere in Februari, owner seems inactive on Git, no responses on Issues etc. I'm thinking of implementing Oxidized as this backup solution because:
But now I'm debating due to the project being quite inactive. What do you all suggest / use? Is there an alternative that fulfills these needs or should I go for Oxidized regardless? [link] [comments] |
Any Google Network Operations Engineers out there? Posted: 24 Jun 2021 09:00 AM PDT I have an interview with Google and I would like some feedback about the Network Operations Engineer position. The job description doesn't give too many details about what an NOE does at Google and I want to know some feedback and be prepared for my interview. What do you do as a NOE on Google? Is this an Entry/Mid/High-level position? Would you say close to CCNA/CCNP or CCIE? [link] [comments] |
Secondary NTP Time Source Recommendations Posted: 24 Jun 2021 12:34 PM PDT I'm working on a project to setup a secondary time source in our environment. We currently have most stuff pointing at a Loopback on our Core Switch, which is acting as an NTP Master. The Core is synced to 4 public NTP servers and then everything points at the loopback. I would like to have a secondary source. My first thought is to replicate this setup in our DR site with another NTP source (we use pool.ntp.org in our primary site, I'm thinking the National Research Council [Canada] time servers for the DR site.) Thoughts and opinions welcome. [link] [comments] |
Cisco ASA 5508-X K9 replacement options Posted: 24 Jun 2021 04:24 AM PDT If this post should be in a different sub, please let me know. We are preparing for End of Life in a few years for the Cisco ASA 5500 series firewalls. What would be a good choice moving forward. I primarily work with Cisco Devices but I can learn just about anything. Does anyone have experience with the Firepower 1000 series devices? Edit: 90% of the devices we have now are Cisco ASA-5505-SEC-K9 and Cisco ASA-5508-K9, One company has 2900 series routers that are being replaced with new 5508-X firewalls. All Cisco switches [link] [comments] |
Posted: 24 Jun 2021 03:34 AM PDT Hi All, Is there a Meraki guru out there that can confirm if the upstream firewall rules on the Meraki dashboard for cloud controller pushes policy to AP and if the AP then does the blocking of client traffic or does the client traffic still traverse the Lan to cloud controller before traffic is blocked there? [link] [comments] |
Identifying RJ45 ends. Stranded vs Solid. Posted: 24 Jun 2021 07:20 AM PDT Is this type considered a solid, stranded or both. In school I was taught it was only for stranded. However, google search results say it is for both, or sometimes, just stranded. Just stranded (see bottom of page) Thanks [link] [comments] |
Wifi throughout an old industrial building Posted: 24 Jun 2021 09:57 AM PDT Hi there! Lurked and searched a little bit before asking this, so hopefully I'm not asking something that is already answered elsewhere. I found this post which feels a little similar https://www.reddit.com/r/networking/comments/hsq48p/a_routermesh_solution_for_a_friend/. I've been asked by a friend (much like in the linked post) to provide help getting decent wifi throughout an old industrial building he just purchased. Here are some details:
My first thought was a switch on the first floor, wiring Cat 5 or 6 along the freight elevator, and connecting a simple mesh system on each floor. I did something similar at a previous job, but this was because that entire warehouse was already lined with miles and miles of networking cable and not a single employee had an ethernet input. We had wired mesh points wherever we could and properly meshed points where we couldn't. Here, we obviously have the flexibility to do it however we want... within reason (and budget). Thanks in advance for thoughts! [link] [comments] |
Posted: 24 Jun 2021 03:19 AM PDT I have an SRX which is working as a DHCP server for my user subnet. I want to send PXE requests from clients behind the firewall to the PXE server located in a different location in the network. What is the correct method to do this on the SRX? Is it with the dhcp-attributes line? Has anybody got a working example of this? I also see talk of a Is this required for PXE or not? Thanks [link] [comments] |
Black v Blue Colored 9pin RS232 cable Posted: 24 Jun 2021 02:16 AM PDT Another day, another stupid question from me to Reddit's networking community. I have two RS232 9 Pin Female-to-Female cables and an old style Cisco SG-300 console port in following pics: The blue one is a null modem cable I think. It doesn't work when I use it on an old type 9 pin Cisco SG-300 console port. The black one DOES WORK when you use it on the SG-300 console port. Whats the difference? Pinout obviously, but more importantly to me, I need to know what type of cable the black one is in order to buy another one identical to the black one that does work on SG-300's. I don't know what the difference is, or what type of cable that black one is I'm looking for. I'm thought it might be this below.. but on second look this looks more like a null modem cable like the blue one I already have: [link] [comments] |
At what point is a broadcast domain too big? Posted: 24 Jun 2021 08:39 AM PDT I'm running a /22 and a /23 for an office space. We're wanting to combine these into one VLAN for ISE, so we'd end up consolidating the networks into a /21. Realistically we'd never see a full 2000 users, but due to the way reservations are made, we need more addresses than a /22 can handle. So, would 1000 hosts on a broadcast domain cause issues? Also, how much broadcast traffic does an idle workstation that's on a domain send when it's not in use? [link] [comments] |
Posted: 24 Jun 2021 06:27 AM PDT Hey, Im about to migrate an internal web server to be opened to the internet. Just want to make sure if im being overkill on my setup LAN -> DMZ -> WAN ACL LAN -> DMZ Ports: 22, 443, 80 - ALLOW DMZ -> LAN Deny all except ICMP I feel like im being overkill restricting LAN to DMZ ports? [link] [comments] |
Posted: 24 Jun 2021 09:30 AM PDT Hello! I've been told the other day by our senior network admins that QoS is not necessary in our network data environment because our phone system is on a separate network. They say we have more than enough bandwidth everywhere in our Campus/DC so QoS would be unnecessary. Is that true ? I've read a bit about QoS and for me I would implement it everywhere, I mean why not ? High bandwidth links with microbursts could cause congestion on slower links (10Gbits to 1Gbits). For our remote sites, let's say we have a 100Mbps ISP circuit. Don't we want to prioritize important traffic before let's say Netflix traffic when the 100Mbps is full ? I guess that's managed by L7 firewall rules and not QoS right ? Thanks [link] [comments] |
Planning to take bsnl air fiber franchise Posted: 24 Jun 2021 03:16 AM PDT Hi 👋 I am planning to take bsnl (India ) airfiber franchise at my place. Right now we don't have any network providers at my location. So I started to think about it and contacted bsnl. BSNL will be giving space and powe but we need all other equipment for transmission. The equipment BSNL suggest costs around 75000. It would be hard for me to get 10 customer in next 3 months. I am thinking if you can suggest cheap alternative network design/devices. I am thinking of one sector antenna instead of 3 which reduces cost drastically. I know one person used to run network with just power beam and airgrids. Can someone suggest me cheap alternatives please? I am not trying to earn profit , I am just trying to provide connectivity 15 coastal border villages to help the children connect to online classes etc. I don't need any profit I just need network up and give a chance people to able to use it [link] [comments] |
[Help] Cisco CBS350 stack switching capacity Posted: 24 Jun 2021 08:58 AM PDT Hello, I am planning to install 2 CBS350 as a stack with 2 twinax cables. I am wondering what the capacity on the fabric is considering there are 2 10Gbe composing the stack connection. Is it ~10Gb, ~20Gb, or something else entirely. I am having trouble finding the documentation that specifies this. Thank you [link] [comments] |
CIS Dashboards for Network & Network Security Posted: 24 Jun 2021 08:48 AM PDT Has anyone here ever created dashboards around CIS Network controls before? There's tons of them and many doesn't make sense (or possible) to be tracked so looking for some general ideas from the people who might have done it earlier. [link] [comments] |
How to calculate and assign minimum numbers of IP address based on the topology logical design? Posted: 24 Jun 2021 08:37 AM PDT Hello! Sorry for the most likely bad post because I haven't searched too much about this topic. I have an exam coming very soon and this type of exercise proves to be the hardest for me and my classmates because it's still not clear for us how to solve the problem. I have a topology given by it's Logical Mode Design and one IP address. I have to subnet the topology so that I have the minimum number of used IP addresses based on the given IP. Each device in the topology must have an IP address assigned. Here are some exemples ( exemple1, exemple2, exemple3 ) Here me and my friends tried to solve the first two, but we aren't sure if it's correct ( solve_ex1, solve_ex2, the numbers and colors represent a network ). We are able to solve the simpler ones but the complex ones give us trouble ( exemple 3 ) and we have plenty more of these. The things we understood are:
Are there any more rules that we don't know yet? What should I search for to learn more about this topic ? Any tips on completing this kind of exercises? Thanks for reading, have a good day! [link] [comments] |
Layer 0: Wall mounting IDFs in warehouses Posted: 24 Jun 2021 08:34 AM PDT I can't think of a better subreddit for this question, but let me know if there is. Got a brand new warehouse 150,000sqft (~3.5 acres) of enclosed space. Wall mounted IDFs every few hundred feet down the two outside walls. The walls are insulated with ~3" thick foam, and the cable contractor cut out the foam to mount the racks to the concrete. I had expected plywood to be mounted to the concrete through the foam, and the wall-mount rack to be mounted to the plywood. My concern is condensation along the back wall of the IDF, which is now in direct contact with the outside concrete wall. The warehouse is not temperature (or therefore humidity) controlled, aside from fans for circulation and heaters for the winter. Does anyone have a similar environment in their domain? Is this worry about nothing? I could put some R15 foam on the back if it becomes a problem perhaps? [link] [comments] |
Seeking Brocade VDX firmware - help! Posted: 24 Jun 2021 08:23 AM PDT Hello! I just purchased a pair of Brocade VDX 6720-16-R switches to switch 10 Gbe iscsi traffic at a new DR site but they aren't running the same firmware (3.0.1 and 4.0.1 respectively.) Additionally, in order to stack/virtual chassis the switches it appears I may need Network OS 4.1.3x (?) If anyone can provide me with some ancient Brocade firmware I'll be very very grateful. Thank You! [link] [comments] |
Posted: 24 Jun 2021 07:54 AM PDT Hello Redditors, I've got the following situation:
So here comes the question, is there any way (in Cisco specifically) to aggregate ranges selectively, as in, tell the router "do not use/consider this range when trying to aggregate/summarize, just use these others", so we can avoid this situation again? I saw the different MAPs that we can use but they all seem to be related to adding parameters or inheriting parameters. Thank you all in advance. [link] [comments] |
Posted: 24 Jun 2021 10:07 AM PDT Hi guys I have two untagged vlans that I need to pass through as untagged through a single interface and split up on the other side. switches are nightmare... Sorry Netgear smart managed switches. One vlan has public IP's the other is the local network.any ideas how I can do this? [link] [comments] |
Replace Cisco 1921 for 1Gbps Internet? Posted: 24 Jun 2021 05:30 AM PDT We recently upgraded our office to a 1Gbps fiber Internet connection. I am still using the Cisco 1921 router, which is not spec'd for those kinds of speeds. When a run a speed test, I get close to 900Mbps (so not too shabby) But I don't want this older router to be a bottleneck. What would be a good SMB replacement that can handle our faster connection? The router does not need to do anything other than route traffic to/from the Internet. All the other work (VPN, IDS/IPS, VLAN) is done by devices behind the router. [link] [comments] |
Cisco ISE - iOS PEAP Authentication Invalid Credentials and AD lockouts Posted: 24 Jun 2021 05:23 AM PDT We have a wireless network that uses ISE for PEAP authentication (username/password). We started receiving reports of AD account lockouts for a few users. After digging into it we found that ISE was showing that the clients entered invalid passwords. This is where it gets weird.... We worked with the users to ensure they had the proper passwords. It seems that iOS devices specifically are having an issue where they are able to connect successfully initially but after some time the phones start sending invalid credentials. The phones will keep trying to authenticate and it eventually leads to a lockout in AD. Has anyone seen this time of issue specifically related to ISE, iOS, and PEAP? EDIT: At this point I don't think the phones have invalid credentials stored, it almost look as if they are abandoning their PEAP sessions which is causing the invalid password to trigger. [link] [comments] |
You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States |
No comments:
Post a Comment