Is there such a thing as a SNMP trace route tool Networking |
- Is there such a thing as a SNMP trace route tool
- How do you report your network uptime?
- Quanta LB4M ssh keys
- Anyone ever done BGP at the server level?
- Designing wireless internet access for dormitory
- Trends on the future of IT network architecture within companies
- Cisco 3850 randomly stops passing traffic over SVI for individual clients
- Renew CCNA-Routing & Switching in January 2022, or spend that time on getting Aruba Certified Switching Associate instead ��
- Going a little nuts trying to figure out how to provide DHCPv6-PD to customers.
- Trying to get the private key from cert on F5?
- Accounting in cisco switch 2960 and freeradius
- Arista 7050Q - makes hinself RSTP-root-bridge
- Azure ExpressRoute and Cisco Nexus 9K QnQ Behavior
- Multiple (daisy chained?) RJ45 passthrough devices
- Creating a large hosts file for network automation
- Trouble finding a device that is connected to a network
- Bfd echo failures causing primary DMVPN tunnel to tear down on spoke at branch office.
- Twinax Cable Testing?
- Outlook stops working after connecting to Cisco VPN
- Is a long delay before connection normal with a Cisco Catalyst switch?
- Best managed switches with automation support
| Is there such a thing as a SNMP trace route tool Posted: 23 Feb 2022 03:15 PM PST Hi All, Does anyone know if there is a tool out there that performs a trace route utilizing either udp 161 or udp 162 for the trace? [link] [comments] |
| How do you report your network uptime? Posted: 24 Feb 2022 01:07 AM PST Hi there. I'm trying to look for a solution on how we can best report the performance of our network, specifically uptime. I'm looking for a tool that can report the overall network uptime by group/tags e.g. this month, firewalls were up 99% of the time, switches were only up for 80% etc, ISP-A was up for 99% whilst ISP-B only 85% and so on. I'm not sure if something like this exist as the tools we have whilst monitors uptime, performance of the devices, doesn't really have a report similar to what I need. At the moment to calculate this we just manually compute, specifically for circuits based on tickets we log. Would be nice if you can recommend something that can do this that you are already using +1 if it will be open source! [link] [comments] |
| Posted: 23 Feb 2022 07:15 PM PST Hi, Anyone here successfully uploaded ssh keys on Quanta LB4M? Thank you [link] [comments] |
| Anyone ever done BGP at the server level? Posted: 23 Feb 2022 03:44 PM PST I have a pair of DNS servers for specialty application, so they need to access a large private network (for providing name resolution), as well as having internet access -- ie. classic multi-homed network device. This can and is being done with static routes right now, with a route added for each partner DNS server it expects to talk to out on the private network, plus a default route for internet access (for access to update repos/root servers/etc). Adding static routes by hand isn't too much trouble, it's something that is only done either as part of a new partner turnup or at the request of an existing partner if they migrate their own DNS servers to a new host. But it is something that represents a point of administrative failure such as if a partner doesn't notify us of a change. The BGP table the edge router for the private network gets is complete for that network so if it was able to share it with the server the server would have full routes for it as well. But has anyone found it worthwile, administratively, to bring up a dynamic routing protocol on the server side? This is also a bit of a dry run for maybe proposing bringing BGP to our telecom signalling nodes, which would benefit greatly from the traffic steering capabilities of BGP, fr.ex. local pref for different connections into the private network. The DNS servers don't need it as much, having only one path out and one path to the internet. [link] [comments] |
| Designing wireless internet access for dormitory Posted: 23 Feb 2022 11:48 AM PST Hey So I've got the task of making some new internet access for a tiny dormitory (I live there myself). It has around 30 people living there. People share 2-3 bedroom apartments. The building has 3 floors. Here's a link for the floorplan (valid for level 1 and level 2). The ground level is different and there are not alot of rooms. https://i.imgur.com/yi4LvaJ.png My initial thougt was having one Unifi lite 6 AP for each floor for each staircase, and one for the ground level (5 in total). However, this means that the signal has to penetrate 150mm concrete walls (the red lines on the floorplan). Floors are made of 220mm concrete. I did some testing, and it seems to degrade the signal quite a lot in some spots. That leaves me with one WAP in each apartment to avoid any signal through concrete. 12 WAPs in total (2 for the ground level, 5 for first floor and 5 for second floor). Also Unifin lite 6 AP. However, the landlord think that is too expensive. It also seems a bit overkill with only 2-3 people for each WAP. What do you guys think would be a good solution? Do you have any recommendations for some low-cost WAPs, preferably with 5GHz? I'm aware that Unifi lite 6 is already fairly cheap, but... Oh, also if you have any recommendations for a suitable router. I was thinking of an UDM pro, Edgerouter 4, or some Mikrotik router. If we're not going with Unifi WAPs it seems a bit odd with an UDM pro. We're getting 1Gbps internet access , but upgrading to 2Gbps, 5Gbps or 10Gbps down the road is possible. It would be great if the router would be capable of such WAN speeds. Thank you :=) [link] [comments] |
| Trends on the future of IT network architecture within companies Posted: 24 Feb 2022 01:59 AM PST I'm an IT-advisor within a large insurance company based in the EU. I'm tasked with the objective of investigating whether our IT network architecture is adequately 'future prove'. For that they want to know whether the right investments are really made for the long term instead of doing ad-hoc solutions. This question is quite valid based on trends like using the Cloud, 5G, Artificial Intelligence and more. While this investigation can be carried out with using the 'common sense' (using interviews, asking about the company network strategy, asking where investments are made and such) I'm also in search of whitepapers or other articles discussing the future trends in network IT-architecture. While Googling terms like 'future network architecture' and such I mostly end up with articles related to 5G written for CSP's (for example articles at Ericcson or TATA communications) or more technical items discussing elements like Network Slice Technology or Multi Layer network; interesting but still more related for what CSP's can be doing instead of enterprises. Advisory/future trend platforms like Gartner, ISF don't give me satisfactory results. The only thing I could find was this article posted by TATA Communcations discussing the transition of the banking industry and impact this has on the network architecture (see here). I'm in search for more items like that thus giving tips/heads up related to making sure your IT network architecture is futureproof. [link] [comments] |
| Cisco 3850 randomly stops passing traffic over SVI for individual clients Posted: 23 Feb 2022 12:27 PM PST I am at my wits end with an infuriating & bizarre issue. (2) stacked Cisco 3850 (ipservices / 03.06.08E) core for a branch office running for years w/o issue. Over the last few weeks I'm getting daily reports of internet access of (Dell Latitude 5400/7400) clients internet access dropping.
If a client physically disconnects (wired) and reconnects, the problem persists. If they move to a DIFFERENT port, suddenly the problem resolves immediately, including if they then move back to the original port seconds later. With wireless, I've seen an ipconfig /renew bring it back to life, as well as disabling and re-enabling the wireless NIC. Any ideas graciously and desperately welcomed. [link] [comments] |
| Posted: 23 Feb 2022 10:18 AM PST Edit: I meant to say 2023 🤦🏼♀️ I'm in an environment that's transitioning completely to Aruba; core, edge and WiFi. It seems like the common sense choice to go for the Aruba cert, but the CCNA continues to be a commonly sought-after certification. I don't really have the option to do both at this point in my life, so I'm trying to plan my time wisely and would love to hear people's thoughts on this. [link] [comments] |
| Going a little nuts trying to figure out how to provide DHCPv6-PD to customers. Posted: 24 Feb 2022 12:09 AM PST So just some background, I'm a network engineer for a company providing internet to MDUs (apartments, townhomes, etc) and I'm hoping to provide IPv6 to our tenants. I think I have an idea on what needs to be done but I want to verify everything first because I would need to test on equipment in live environments. (Though not on production networks, separate test VLANs) So the biggest source of confusion to me comes from how the circuit provider gave us our IPv6 blocks. We got a /96, and a /56. The /96 makes sense to me, it's just like having a /30 block in front of your other publics in my mind, but my confusion comes from how to hand out the DHCPv6 blocks to people. The example's I have seen typically have involved either just showing the PD blocks and the pool they're pulled from, or some public IPs, and then the PD pool. So far that makes sense. Where I'm a little confused is by how the circuit is laid out. I'm going to simplify the network a bit here and have the router act as a DHCP server just to visualize the concept better. Circuit Provider Equipment 2001::1/96 -> 2001:2/96 Our Router/DHCP Server ??::??/?? -> ??::?? Customer Routers 2001:1::1/64 -> Customer Device So to me, there's a few ways I can see it going. That said I'm still not super certain. Option 1 seems like the way it would work, but I've been spinning my wheels all night thinking on this and feel like I'm missing something obvious. Is it as simple as: Circuit Provider Equipment 2001::1/96 Please let me know if a configuration like this would work, I've been working myself up and can't sleep. If not, am I missing something stupid? Will link local even work for this? Granted I'm not even certain I have the concept of how to set up the DHCP PD pools correct. [link] [comments] |
| Trying to get the private key from cert on F5? Posted: 23 Feb 2022 10:49 AM PST Hi, i'm not an expert with F5's but i basically need to get a couple of private keys from 2 certs that are on our F5's. I'm familiar with OpenSSL etc... and i've been following (or trying to) F5's guide on this here: However, on "Step 2", i go to try and navigate to that particular directory and it doesn't exist apparently, i have tried doing it in bash as well, no joy there to. So i'd assume it was the same but subbing out pkcs12 for rsa? Any help is appreciated, thanks everyone. [link] [comments] |
| Accounting in cisco switch 2960 and freeradius Posted: 23 Feb 2022 11:43 PM PST Hi guys, I use 802.1X authentication.freeradius is authentication server. I using log accounting in freeradius but have a problem. I have just show Acct-Authentic = radius but showing radius and local together Example: switch: Someone has an solution ? Thank you. [link] [comments] |
| Arista 7050Q - makes hinself RSTP-root-bridge Posted: 23 Feb 2022 11:20 PM PST Hi! I have a strange problem and hope, you have an idea about it: 2x Arista 7050QX as MLAG, SpanningTreePriority: 32768 --> each one has a direct link to a Dell N4000 (RSTP root bridge, SpanningTreePriority: 0) with DACs RSTP is stable, no problems for years, but within the last 4 weeks, 3 times, the Arista MLAG took over the root bridge role for some seconds and gives it back: --> Within one second, the Arista switch takes the root-bridge-role and gives it back. ---> Not Layer1-error visible ---> No additional logs about the cause ---> Arista switch takes the root-bridge-role although, there is another switch connected with bride-priorita 16384 Did you already see such a behaviour? Thank you for your thoughts ITStril [link] [comments] |
| Azure ExpressRoute and Cisco Nexus 9K QnQ Behavior Posted: 23 Feb 2022 11:22 AM PST Greetings r/networking.. I wanted to share something that I've learned recently. I had been involved in a change in which we were migrating a multi-cloud networking connection to different access layer devices. We were migrating from a Nexus 6K switch to a Nexus 9K switch. After the migration, we found we were unable to re-establish our ARP table for Microsoft Azure, and thus the BGP peer failed. After multiple attempts, it was brought forth that ExpressRoute was the only connection configured using QnQ. Initially, we looked online for similar issues and found several posts where people couldn't figure out why they couldn't establish the ExpressRoute connectivity on a Nexus 9K. In those posts, some folks switched to different hardware, others indicated that they hadn't found a solution. We sought support from Microsoft, our cloud exchange, and from Cisco. Initially, we received no useful support. After performing our own testing and engaging Cisco TAC a bit differently, we were able to determine that the Nexus 9K's default behavior is to strip QnQ headers. Whereas the Nexus 6K default behavior is to pass those frames transparently. The solution required us to enter one global command on the Nexus 9K: system dot1q-tunnel transit The implementation seemed to be completely transparent, with no impact at the point of configuration (see edit below for caveats.) After this command was entered we were able to successfully validate our own test configuration and ultimately finish the migration of our ExpressRoute connection. After all of the trouble that we had, I wanted to contribute a post with a solution for those who might be adding or changing Azure ExpressRoute connectivity in their environments or fussing with any other use of QnQ with a Nexus 9K. Edit: Here's the link on Cisco's site. There are some caveats that didn't apply to our configuration, but check these and lab this up of course to make sure you don't cause any unexpected behaviors: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/interfaces/configuration/guide/b_Cisco_Nexus_9000_Series_NX-OS_Interfaces_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-OS_Interfaces_Configuration_Guide_7x_chapter_01101.html [link] [comments] |
| Multiple (daisy chained?) RJ45 passthrough devices Posted: 23 Feb 2022 01:14 PM PST Hello! I'm curious if most network connected CC readers use RJ45 passthrough like VOIP phones. (switch to VOIP phone, then network cable from VOIP phone to PC so both PC and phone use only one switch port) I asked for a picture of the back of the CC readers to see if they have 2 ports, but was also curious: If the readers do indeed have passthrough like a VOIP phone, can I daisy chain 3 devices? [switch to VOIP first for PoE, VOIP to CC reader, CC reader to PC) [link] [comments] |
| Creating a large hosts file for network automation Posted: 23 Feb 2022 04:58 PM PST So Ive been learning about Nornir off and on these past couple of months and had a question around the hosts YML file. Everywhere Ive read mentions creating entries in this file to represent each node on the network and its attributes. Obviously the process of typing up this file by hand for a large environment will be extremely time consuming. I have looked but haven't been able to find any mention of a way to generate this hosts file. My thinking is that one would use a python library to either scan a list of IP's and then parse the configuration or certain show commands, searching for key-words. Then based on these key-words you could create entries in the hosts file for the scanned node and assign attributes based on the parsed info. Or you could use some type of API for a net monitoring tool like solarwinds and pull the data out of that, then structure it for YML. If the communities solution for this problem is to generate your own hosts file based on the users preference that's fine. I just didn't know if there was a solution out there for this already. [link] [comments] |
| Trouble finding a device that is connected to a network Posted: 23 Feb 2022 04:22 PM PST Hi, I am currently in the middle of writing a program in java to control a Elation E-Node 8(Manual: https://www.manualslib.com/manual/1435911/Elation-E-Node-8.html?page=3#manual) via the art-net DMX protocol over Ethernet. The problem i am facing is trying to automatically find the device on the network, no matter the IP. When connecting the device to nearly any ligihting software (e.g. Avolites titan mobile) without any configuration, the device is clearly visible in a dropdown menu. After doing this i managed to find the IP of the E-Node 8. When i attempted to ping the devices IP via the terminal, there was no response. When using the "arp -a" command it was not visible. My current thinking is to use wireshark to identify the packets sent out by the lighting software to see if that somehow causes the E-Node 8 to send a response back and show that it is there on the network. If you would like any clarification, please leave a comment and i will respond as soon as i can. Thanks for the help : ) (If you believe this is the wrong subreddit for this post, please let me know) [link] [comments] |
| Bfd echo failures causing primary DMVPN tunnel to tear down on spoke at branch office. Posted: 23 Feb 2022 03:59 PM PST I am having an issue with a branch office with one router which connects to a pair of hubs over a DMVPN cloud. Our monitoring route for our tool is torn down (along with other routes learned across the primary tunnel) whenever our primary tunnel is down. I tracked logs right before we saw the spoke as down. %BFD-6-BFD SESS DESTROYED: BFD-SYSLOG: bf session destroyed, Id:5246 neigh proc:NHRP, The subsequent logs that show after, indicate loss connections to both hub routers then the adjacencies eventually form again. A backup 4g LTE circuit would be a available but my team (engineering) shut the secondary tunnel down from the hub so another path out is not an option. The spoke causes unwanted routing loops if we open the secondary tunnel because it advertises routes all across the network. If my options are limited with bringing the secondary tunnel back up (due to the looping nature) what can I do to troubleshoot BFD sessions that intermittently go down causing the primary tunnel to go down? [link] [comments] |
| Posted: 23 Feb 2022 03:52 PM PST I think I have a bad passive twinax cable. It connect a Juniper switch and Dell San. No errors at all on the interfaces. But when that port is up then latency goes from 1ms to 30. With a Cat6 or fiber that's bad I usually have some indication it's bad. So is this something that I would only see on twinax? [link] [comments] |
| Outlook stops working after connecting to Cisco VPN Posted: 23 Feb 2022 03:51 PM PST Hi, we are a hybrid AD/Azure AD shop on Office365, we use Cisco AnyConnect to connect remotely. When some users connect to VPN their Outlook disconnects and stops receiving email, not sure why. We do have AD groups that have some VPN stuff in it but not sure if that matters. Thoughts? Thanks. [link] [comments] |
| Is a long delay before connection normal with a Cisco Catalyst switch? Posted: 23 Feb 2022 03:39 PM PST Hello. I have 2 network switches: a HP ProCurve 2650A and a Cisco Catalyst 3500 series XL. When I plug a device to a port, I can start communication with the switch (or start browsing the web) within 2 seconds with the HP switch, but the Cisco switch has a much longer delay (about 6 - 8 seconds). Is this normal? Is there any way you could recommend to reduce this delay? Both were reset to their factory settings before these measurements. Thank you. [link] [comments] |
| Best managed switches with automation support Posted: 23 Feb 2022 04:22 PM PST I'm looking for switches that support automation. I was thinking I'd like to have a config file that defines the switch and switch ports. That config then gets pushed/pulled to the switch. Ansible, python, ci/cd pipeline is all ok. Mostly I'd prefer something I can just implement, I don't have many spare cycles to write something custom in python. Switch requirements: - 24-48 ports (1G ethernet or 10G ethernet for all ports) - VLAN support- cdp/lldp
- 1G and 10G BASE-T versions. - CLI, REST API - SSH How is switch automation done? I've started looking at the support some switches have for Ansible, but most only seem to "run command on switch" or support only a few general configuration options, which didn't seem appealing. I think I'm imagining something similar to `netplan (generate yaml to configure switch ports, apply yaml), maybe this is wrong/not done/whatever. For automation: I can see two modes of operation, maybe there are others. A. Base switch config pushed to the switch. Port configuration is done via SDN, automation, manual config. Backups are run all the time so you can restore a switch from any backup.B. Config file for the whole switch in source control. That gets pushed to the switch on commit. I was hoping for the following feedback:
Background: The switch environment will be relatively small, but my main job is very much a sysadmin/devops role, so I'd like to keep my interaction with these switches to a minimum after I've automated their configuration. I think it would also be cool if a machine could set the vlan on the switch, I'm aware this tech exists but can't remember the name. [link] [comments] |
| You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment