Help diagnosing a flapping lacp link Networking

---

• Help diagnosing a flapping lacp link
• What does it mean if an Ethernet cable is going into a modem instead of a coaxial cable?
• Switch STP is stopping network traffic
• Dell N2000 Stack port errors
• Is it possible to achieve dual-homed mVPN utilizing default MDT profile 0?
• Fiber run limited to 1Gbps?
• Guest Networks - Password? Open? Terms & Conditions?
• Question About Proxies
• Looking for US Cisco 1562 AP Vendor
• Extending access layer to small office
• Configuring network lab with Ansible
• Hard-Token wired 802.1x?
• Trying to Integrate Netbox and eNMS
• Mist vs an AT&T CPE - what am I missing?
• aruba AP 505 with RADIUS authentication - domain not available error
• Ruckus ICX BGP flapping from port to port, any ideas?
• Router Power in Two Post Racks?
• What does your change management look like?
• Running OSPF | i can ping the SVI , but not hosts in the VLAN
• Restricted Characters for SSID Names?
• How can I locate an unknown device on my work-place's network?
• Does a M12 d-coded 4-pin ethernet splitter or hub exist/work?
• Automatic Template Deployment - Cisco NX-OS

Help diagnosing a flapping lacp link Posted: 17 Jun 2022 12:21 PM PDT I have a HP2530 edge switch hooked to a pair of 5406zl core switches. On the edge switch, 17 and 18 are an lacp trunk and A16 on each core switch as a dt-lacp trunk. I have this configuration with other edge switches without any issues. However, when I connect both ethernet cables, pings through the device rhythmically drop. While trying to resolve the issue I've seen it drop every other ping or up to every 6th ping, but it always does it consistently. "Debug LACP" does not show anything bizarre. Here is the relevant and sanitized config for the edge switch: trunk 17-18 trk6 lacp interface 17 name "Core1" exit interface 18 name "Core2" exit vlan 132 name "VLANName" untagged 1-6,10 tagged Trk6 no ip address exit spanning-tree spanning-tree Trk6 priority 4 The configs on the core switches are identical to other working trunks that run to working edge switches, so I don't think it's there either, but here is the config for those: trunk A16 trk6 dt-lacp interface A6 name "EdgeSwitch" exit vlan 132 name "VLANName" tagged A12,B2-B4,Trk1-Trk2,Trk6,Trk9,Trk11-Trk14,Trk16,Trk100 no ip address exit spanning-tree Trk6 priority 4 bpdu-filter no spanning-tree bpdu-throttle What can I do to further diagnose this issue? submitted by /u/mortalwombat- [link] [comments]

What does it mean if an Ethernet cable is going into a modem instead of a coaxial cable? Posted: 17 Jun 2022 12:30 PM PDT Hey guys, I recently adopted the role of IT guy at my place of work and I'm trying to understand how our network works. I only have about 6 months of IT and Networking studying so there's a lot I don't know. We have an AT&T U-Verse modem and connected to it an Ethernet cable the comes down from the ceiling, instead of a coaxial cable like I've seen before. I was curious what that was about and what the Ethernet cable is connected to on the other end. submitted by /u/multioutletplug [link] [comments]

Switch STP is stopping network traffic Posted: 17 Jun 2022 11:59 AM PDT We have a switch that randomly goes down, and in the logs I find this. 2022 Jun 16 23:16:07 system.information awplus mac: Delete Dynamic MAC by port 1.0.11 succeeded 2022 Jun 16 23:16:07 system.information awplus pcfg: Link DOWN on port 1.0.12 2022 Jun 16 23:16:07 system.information awplus mac: Delete Dynamic MAC by port 1.0.12 succeeded 2022 Jun 16 23:16:07 system.information awplus pcfg: Link UP on port 1.0.11 2022 Jun 16 23:16:07 system.information awplus pcfg: Link UP on port 1.0.12 2022 Jun 16 23:16:12 system.information awplus stp: Topology change. STP ID:0, Port:1.0.11, State:Forwarding 2022 Jun 16 23:16:34 system.information awplus pcfg: Link UP on port 1.0.7 2022 Jun 16 23:16:34 system.information awplus pcfg: Link UP on port 1.0.8 ​ Anyone have any idea what might be the problem? STP seems to be changing links a lot. I know you may need more data than this, but I was just hoping to be pointed in the right direction. submitted by /u/Revanchistthebroken [link] [comments]

Dell N2000 Stack port errors Posted: 17 Jun 2022 12:45 PM PDT New 3 Stack Dell 2048 Switches and receiving the following errors: Error in retreiving the subsidiary ports for port hg2 <187> Jun 17 11:45:56 switch DRIVER[bcmIbodSync.0]: port.c(1276) 4218 %% ERR <186> Jun 17 11:46:11 switch STACKING[spmTask]: spm.c(1504) 4254 %% CRIT Multiple consecutive errors detected on stack-port Tw2/0/2 (oldRxErrors = 137 currentRxErrors = 347 oldTxErrors = 0 currentTxErrors = 0). Please fix the errors before proceeding. The errors would likely be resolved by changing stack cables ​ Reseated the stacking cable connected to TW2/0/2 Swapped the stacking cable in question Restarted the stack Already on the latest firmware 6.7.10, A08 28th May 2022 ​ Any ideas much appreciated. submitted by /u/Laroemwen [link] [comments]

Is it possible to achieve dual-homed mVPN utilizing default MDT profile 0? Posted: 17 Jun 2022 07:21 AM PDT We have a VPNv4 enterprise that we are running multicast across. Lets say I have 2 geographically distant hubs and several branches across the world that are dual-homed to the 2 hubs. Any given multicast stream is accessible via either hub and the receivers sit behind the branches. Ideally I'd like each branch to pull the multicast from whichever hub is closer to them. This worked fine as a standard anycast solution in a single global routing table before we migrated to VPNv4. After we transitioned, we implemented the legacy draft rosen MDT profile to disseminate multicast across the enterprise. We are still utilizing the same anycast RP. The only "issue" I have discovered is that due to both hubs being part of the same default and data MDT, the hubs are now sending PIM asserts to each other which suppresses the losing hub from sending to his spokes. As a result, my active/active setup is now active/standby. Nothing breaks as the spokes automatically join the new SPT through the hub that won the assert but obviously I'd like to load balance the traffic if possible. Is there anyway to achieve a dual-homed mVPN setup utilizing the default MDT Profile 0?. Based off the quick reading I've done this morning, it does not appear possible while utilizing PIM in the overlay as there is no way to disable the PIM assert messages but I'm certainly not an expert. I'd like to minimize changes and keep the design as simple as possible as our Ops guys are already struggling with MDT profile 0 but at the same time, I'd really like to have an active/active setup if it doesn't require anything too crazy. Thanks in advance for any help. submitted by /u/dimension516 [link] [comments]

Fiber run limited to 1Gbps? Posted: 17 Jun 2022 06:16 AM PDT I am having a weird fiber issue I can't seem to figure out. I am a total n00b to fiber so please pardon my ignorance if it's something obvious. I also inherited this site with literally zero info so beyond what I could find out in my own, I don't know anything else about this fiber run. I have 2 Gen-2 UniFi switches separated by a ~100m 850nm MMF fiber. I have 2 10Gtek AXS85-192-M3 10G SFP+ adapters. Plug them both into either switch and get nothing. If I go to the downstream switch and swap just that 10Gtek SFP with a GLC-SX-MMF-G 1G Adapter it lights up. Both switches ports are set to Auto Negotiation. If I force 10G on both, doesn't work, if I force 1G on both or either side it works, so seems I can only do 1G which sucks… Why can I not achieve 10G with this? Is there something I'm missing about this run? submitted by /u/dnuohxof1 [link] [comments]

Guest Networks - Password? Open? Terms & Conditions? Posted: 17 Jun 2022 07:23 AM PDT Howdy, We're setting up a new network at our church (very small) and are debating what to do for the "Guest" wifi. I know lots of places leave their Guest wifi completely open with no passwords or anything. This is great because anyone can use it without any troubles and it's easy. Others have it available to the public but still require a password. This at least ensures someone maybe comes into the building to get that password and isn't some random person sitting in the parking lot doing who-knows-what. Others have no password but make you agree to some Terms and Conditions (like a hotel). Basically the same as being open but maybe covers your butt a bit since you told them not to do bad things. I'm just wondering what most people do these days and which options we should consider. We currently have it setup with a Terms & Conditions page. Anyone can connect, tap I Agree, and go about their business. We mostly set it up this way just because we could, but don't really feel the need to have it that way for any real reason However, we're run into issues where some people's phones just don't work will this those types of connections. Are there any real reasons to not just leave it wide open these days? Thanks! submitted by /u/kelemvor33 [link] [comments]

Question About Proxies Posted: 17 Jun 2022 02:18 PM PDT Hello, This may be a dumb question, but after fighting with a proxy server all afternoon for the millionth time (I'm a software engineer), something occurred to me that I thought I'd ask this group and get thoughts on. So one of the not-awesome things about forward proxy servers is that most software has sketchy support for them. In other words, almost every piece of software ever written is first written with the idea that it can just open sockets and do what it wants, and then if the developers get around to it they implement proxy and tunneling support by adding a library and rewriting part of their code. This got me thinking. Why *in the heck* do we implement proxy servers at the *application layer* at all?! Why isn't forward proxying an attribute of the NIC we're attached to? As far as the apps are concerned, all they really want is an open socket they can send or receive on. They don't have *any* reason to know *anything* about a proxy server, but for some unknown reason we jam this networking concern right there into the app code. It has never made sense to me. Anybody have any ideas why we implement it this way? Wouldn't it be a hell of a lot easier if the NIC driver handled this stuff? So imagine a scenario where there's some server somewhere listening on port 1234. Your application wants to connect to that server on 1234, but say your security folks don't want that. Fine. The application does its DNS lookup for that server, and asks the OS to open a connection to its open port. The NIC (which is now maintaining the proxy information and how to talk to a proxy) negotiates the proxy connection on behalf of the application, and as far as the app is concerned it *thinks* it's talking to that port directly (or the proxy server denies access to it, and the NIC reports back a "10061 socket refused" to the app). If this was the normal way that proxying was implemented, then there wouldn't be this stupid lag between when software gets written and when it gets proxy support added (and debugged over the course of years because there aren't that many customers that *need* proxy support. Instead we would debug it once -- in the NIC driver, and then never deal with it again, for *every* application). Am I missing something here? Has someone already done this? If so, why didn't it take off? submitted by /u/greevous00 [link] [comments]

Looking for US Cisco 1562 AP Vendor Posted: 17 Jun 2022 12:05 PM PDT Anyone have a vendor in the US that has any 1562D/E/I in stock (B domain only please)? submitted by /u/kerbe42 [link] [comments]

Extending access layer to small office Posted: 17 Jun 2022 07:46 AM PDT I've got a situation where I have an IDF with access switches connected back to the MDF via multimode fiber. A new, small office is being built out near that IDF, but getting patched back to a separate new closet. Given the lower demands of the new small office I'd like to, if possible, tap off of one of the current access switches in the IDF and install another switch in the new closet, instead of having to do another fiber run from the new closet back to the mdf. I know the ideal would be to throw in an agg switch, but it seems like overkill. So if this is acceptable, what is the best way to connect the 2 access switches? submitted by /u/bmessinachicago [link] [comments]

Configuring network lab with Ansible Posted: 17 Jun 2022 01:19 PM PDT Hello all. I have a small homelab running and now I am going recreate it using Ansible. However I am not sure how to proceed when configuring the Cisco devices. My current plan is first to use templating to create the device configuration in txt files with Ansible and Jinja2. And then use the txt config files to configure the devices with Ansible. Is this fine or are there are any other methods that I should consider? Thanks in advance submitted by /u/Busy-Accident [link] [comments]

Hard-Token wired 802.1x? Posted: 17 Jun 2022 03:18 PM PDT Was posed an interesting question recently - wired 802.1x device authentication, but integrated with a hard token (either passwordless or MFA). Sounds like it should be possible, but I've just never done it myself. Off the top of my head, I was thinking Yubikeys would work pretty fantastically, but also toying with the notion of a dedicated authentication appliance like Fortinet's FortiAuthenticator. I'm pretty sure others have done this as well, but my Google-Fu is failing me - How would/have you set something like this up? submitted by /u/Lleawynn [link] [comments]

Trying to Integrate Netbox and eNMS Posted: 17 Jun 2022 02:27 PM PDT I recently started with a new company that is lacking a source of truth. I stumbled across Netbox and was impressed, so we got that up and running and are in the process of importing info for both IPAM and DCIM. That said, I am also interested in Python automation and eNMS caught my eye. I've got it up and running on the same server as Netbox, but I can't get the built in Topology Import to work; it errors out because it doesn't like the self-signed certificate. I know I can write a script myself to pull the data from Netbox, but considering this is a notable feature of eNMS I was hoping there's a simple fix. Logs are below: 2022-06-17 12:27:49.951960 - info - USER admin - SERVICE Netbox - STARTING 2022-06-17 12:27:49.975106 - error - USER admin - SERVICE Netbox - Traceback (most recent call last): File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/connectionpool.py", line 703, in urlopen httplib_response = self._make_request( File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/connectionpool.py", line 386, in _make_request self._validate_conn(conn) File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/connectionpool.py", line 1040, in _validate_conn conn.connect() File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/connection.py", line 414, in connect self.sock = ssl_wrap_socket( File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/util/ssl_.py", line 453, in ssl_wrap_socket ssl_sock = _ssl_wrap_socket_impl(sock, context, tls_in_tls) File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/util/ssl_.py", line 495, in _ssl_wrap_socket_impl return ssl_context.wrap_socket(sock) File "/usr/lib/python3.8/ssl.py", line 500, in wrap_socket return self.sslsocket_class._create( File "/usr/lib/python3.8/ssl.py", line 1040, in _create self.do_handshake() File "/usr/lib/python3.8/ssl.py", line 1309, in do_handshake self._sslobj.do_handshake() ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1131) During handling of the above exception, another exception occurred: Traceback (most recent call last): File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/adapters.py", line 489, in send resp = conn.urlopen( File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/connectionpool.py", line 785, in urlopen retries = retries.increment( File "/opt/venv/eNMS/lib/python3.8/site-packages/urllib3/util/retry.py", line 592, in increment raise MaxRetryError(_pool, url, error or ResponseError(cause)) urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='10.111.32.69', port=443): Max retries exceeded with url: /api/dcim/devices/?limit=0 (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1131)'))) During handling of the above exception, another exception occurred: Traceback (most recent call last): File "/opt/venv/eNMS/eNMS/eNMS/runner.py", line 496, in run_service_job results = self.service.job(self, *args) File "/opt/venv/eNMS/eNMS/eNMS/models/services/miscellaneous/topology_import.py", line 36, in job getattr(self, f"query_{self.import_type}")() File "/opt/venv/eNMS/eNMS/eNMS/models/services/miscellaneous/topology_import.py", line 41, in query_netbox for device in nb.dcim.devices.all(): File "/opt/venv/eNMS/lib/python3.8/site-packages/pynetbox/core/response.py", line 117, in __next__ next(self.response), self.endpoint.api, self.endpoint File "/opt/venv/eNMS/lib/python3.8/site-packages/pynetbox/core/query.py", line 320, in get req = self._make_call(add_params=add_params) File "/opt/venv/eNMS/lib/python3.8/site-packages/pynetbox/core/query.py", line 270, in _make_call req = getattr(self.http_session, verb)( File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 600, in get return self.request("GET", url, **kwargs) File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 587, in request resp = self.send(prep, **send_kwargs) File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 723, in send history = [resp for resp in gen] File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 723, in <listcomp> history = [resp for resp in gen] File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 266, in resolve_redirects resp = self.send( File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/sessions.py", line 701, in send r = adapter.send(request, **kwargs) File "/opt/venv/eNMS/lib/python3.8/site-packages/requests/adapters.py", line 563, in send raise SSLError(e, request=request) requests.exceptions.SSLError: HTTPSConnectionPool(host='10.111.32.69', port=443): Max retries exceeded with url: /api/dcim/devices/?limit=0 (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1131)'))) 2022-06-17 12:27:49.975834 - info - USER admin - SERVICE Netbox - FINISHED submitted by /u/nst_hopeful [link] [comments]

Mist vs an AT&T CPE - what am I missing? Posted: 17 Jun 2022 10:39 AM PDT I'll start off by saying I am not a wireless expert. I have two Mist AP43s. They use 80MHz channels on the 5G side. RSSI, noise, TX and RX rates seem mostly identical between these devices and an AT&T CPE which also supports 802.11ax and is using 80MHz channels. This is in an apartment building, but the APs are situated far enough away from others to where they don't seem to be hearing a lot of random BS. The AT&T CPE is anywhere from 2x to 1.5x the speed of the Mist AP43s on any number of speed tests (speedtest-cli, iperf, speed.cloudflare.com, fast.com) An example: [ ID] Interval Transfer Bitrate [ 5] 0.00-10.00 sec 571 MBytes 479 Mbits/sec sender [ 5] 0.00-10.02 sec 570 MBytes 477 Mbits/sec receiver [ ID] Interval Transfer Bitrate [ 5] 0.00-10.00 sec 356 MBytes 299 Mbits/sec sender [ 5] 0.00-10.01 sec 355 MBytes 298 Mbits/sec receiver The Mist gear is connected through a couple of switches, but the switches are all 1G, uncongested, full duplex, no errors, no loops. A wired device connected to the same switch doesn't see any performance challenges either. Mist performance in any environment I've placed it in seems to be slightly challenged over other options. I'm not convinced this is the fault of the gear. What am I missing and what should I be looking at? submitted by /u/arimathea [link] [comments]

aruba AP 505 with RADIUS authentication - domain not available error Posted: 17 Jun 2022 02:47 AM PDT Greetings. This is my first post here. I am new to aruba and we have deployed a set of 505 IAPs. They run with a Virtual Controller and WPA Enterprise authentication using Microsoft Windows RADIUS servers. Everything works fine except one particular issue. All authentication / IP addressing (DHCP), inter VLAN routing etc all works fine. However, when a user log into a computer for the first time, the computer (Win 10) gives out "Domain controller not available" error. But the domain controller is reachable via ping in the same computer. I have tried a lot of things but no luck. Appreciate any insight anyone can give me. TIA. submitted by /u/kavee9 [link] [comments]

Ruckus ICX BGP flapping from port to port, any ideas? Posted: 17 Jun 2022 11:18 AM PDT Hi everyone, ​ I'm currently trying to resolve an issue where one of my stack masters has BGP flapping between ports. I initially thought it was due to one of the ports being assigned to the untagged VLAN where a duplicate MAC address was present. I resolved that by removing it from the untagged VLAN however that did not work. Any clues would be appreciated, thanks. Jun 17 17:58:07:D:next hop router REMOVED moved from port 1/2/3 to port 2/2/3 Jun 17 17:58:02:D:next hop router REMOVED moved from port 2/2/3 to port 1/2/3 Jun 17 17:57:58:D:next hop router REMOVED moved from port 1/2/3 to port 2/2/3 Jun 17 17:57:51:D:next hop router REMOVED moved from port 2/2/3 to port 1/2/3 Jun 17 17:57:50:D:next hop router REMOVED moved from port 1/2/3 to port 2/2/3 ​ submitted by /u/isuckatit1000 [link] [comments]

Router Power in Two Post Racks? Posted: 17 Jun 2022 07:16 AM PDT I know this is a little off topic (Maybe) for this group, but can anyone share their wire management for the back side of their 2 post network racks? I'm having a hard time figuring out how to clean this up... Got a UPS and Rack Power Strip for everything to plug into. I'm just anal about power cables getting too close to the data. submitted by /u/FireBean01 [link] [comments]

What does your change management look like? Posted: 17 Jun 2022 10:14 AM PDT Reading through the post about someone blowing stuff up without a change it made me wonder to what detail everyone's change management process goes to. For example where I work there are some areas that are super detailed like firewall work where everything has a change and depending on what it is determines how high the approval goes, but at the same time most route and switch things don't require a change at all unless it is a planned outage. A far cry from the people talking about updating a port description without a change means immediate termination. I understand that lack of change management is not good, but I don't make or enforce the rules. The dream is when you get more into the netops world and all changes are logged, staged, and approved through a very structured process. submitted by /u/evilmercer [link] [comments]

Running OSPF | i can ping the SVI , but not hosts in the VLAN Posted: 17 Jun 2022 09:58 AM PDT Hi everyone, ​ i am running IOSv lab in Eve-NG. I have a couple of routers and two multilayer switches connected to one host each. I activated OSPF and i ran into a weird problem. The Edge routers connecting to the switches are establishing a neighborship with the SVIs and i can ping them from anywhere in the topology, but i can't ping hosts on the VLANs. The links to the routers are set as trunks, and the link to the host is access to the appropriate VLAN, ip routing is enabled, i also advertised the segment into OSPF and tried rebooting the switches...nothing dead :) I then switched the interfaces to L3, and it worked. ​ Current configuration : 1088 bytes ! ! Last configuration change at 18:45:31 EET Fri Jun 17 2022 ! version 15.2 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption service compress-config ! hostname SW5 ! boot-start-marker boot-end-marker ! ! ! no aaa new-model clock timezone EET 2 0 ! ! ! ! ! ! ! ! ip cef no ipv6 cef ! ! ! spanning-tree mode rapid-pvst spanning-tree extend system-id ! vlan internal allocation policy ascending ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Ethernet0/0 switchport trunk encapsulation dot1q switchport mode trunk duplex auto ! interface Ethernet0/1 switchport access vlan 20 switchport mode access duplex auto ! interface Ethernet0/2 ! interface Ethernet0/3 ! interface Vlan1 ip address 11.5.5.5 255.255.255.240 ! interface Vlan20 ip address 20.20.20.5 255.255.255.0 ! router ospf 1 network 20.20.20.0 0.0.0.255 area 0 network 0.0.0.0 255.255.255.255 area 0 ! ip forward-protocol nd ! no ip http server no ip http secure-server ! ! ! ! ! ! control-plane ! ! line con 0 logging synchronous line aux 0 line vty 0 4 login ! ! end ​ Is this just a bug or I am doing something wrong ? Thanks submitted by /u/Network_Bug [link] [comments]

Restricted Characters for SSID Names? Posted: 17 Jun 2022 09:04 AM PDT I've been reading online about some characters that are allegedly not to be used for SSID names but when trying to use them I seemingly get no errors. Is this outdated information? Is there anything that would be a concern for usage in an SSID or password? Thanks! submitted by /u/TheBlackReaper [link] [comments]

How can I locate an unknown device on my work-place's network? Posted: 17 Jun 2022 08:41 AM PDT Hey guys so I recently adopted the role of IT guy at my work-place and right now I'm using Zenmap to keep track of all the devices on our network. All devices are accounted for except one. I think it may be significant because it has several ports open. It has a unknown vendor MAC address of: 46:E1:D5 The ports that are open are: 7/tcp filtered echo 13/tcp filtered daytime 79/tcp filtered finger 144/tcp filtered news 427/tcp filtered svrloc 646/tcp filtered ldp 1900/tcp filtered upnp 2000/tcp filtered cisco-sccp 2001/tcp filtered dc 2121/tcp filtered ccproxy-ftp 2717/tcp filtered pn-requester 4899/tcp filtered radmin 5051/tcp filtered ida-agent 5101/tcp filtered admdog 5190/tcp filtered aol 5631/tcp filtered pcanywheredata 5800/tcp filtered vnc-http 6646/tcp filtered unknown 8081/tcp filtered blackice-icecap 9100/tcp filtered jetdirect 49154/tcp filtered unknown 49157/tcp filtered unknown ​ I'm also finding that my iphone isn't appearing on the zenmap scan despite being connected to the wifi, why might this be? submitted by /u/painting_of_oranges [link] [comments]

Does a M12 d-coded 4-pin ethernet splitter or hub exist/work? Posted: 17 Jun 2022 02:36 AM PDT Hi, I'm working on a mobile video surveillance system which is installed in our vehicles (articulated line buses for public transport). We have 8 port PoE switches with 4-pin d-coded M12 connectors which are each populated with a Hikvision surveillance camera. Now we would like to add one additional camera to the tail of the articulated bus but the switches are already full. Since an additional M12 switch (PoE not really necessary) would cost north of 350 € (times 16 buses), I thought we should rather save the ~6000 € and look for a cheaper alternative. The simplest idea which came to mind was a dumb ethernet hub or a Y/T-splitter which I can remember exists for RJ45 ethernet cables. However, I can't seem to find them for d-coded 4-pin M12 plugs/cables. Now the question: do they exist/work? would it work to simply build a Y-splitter by connecting three cables? Or are more pins necessary for a splitter/hub to work properly? PoE is not the problem, since we could get the power elsewhere. The other idea would be to use M12 to RJ45 cables and use a cheap RJ45 switch. Thanks for your help! submitted by /u/TeslaWolfy [link] [comments]

Automatic Template Deployment - Cisco NX-OS Posted: 17 Jun 2022 04:43 AM PDT Hello everyone. Long story short, I have been tasked with configuring about 100 switches using a template where only the hostname and management IP are different. I feel like this is a perfect case for learning some networking automation. However, since I only have VERY limited experience with Python and scripting in general I am not quite sure where to start. Does anyone have any suggestions on where to start? I have a pretty clear idea of how I want things to work but not how to achieve it. Here is how I imagine the process going: Connect all switches to a network that has no connection to anything else. The only thing that exists on this network is the computer with the script, and it also has a DHCP server. The script automatically SSHs (or using REST APIs) into all switches that are on the network. Might just be a simple loop that goes through 192.168.1.10 to 254 for example. It reads the config from the template, fetches the hostname and variable from a CSV file, and then pastes all the config into the switches. It does a copy run start command at the end. ​ Anyone got any suggestions on how to achieve this? Should I use some tool like Ansible, NetMiko or Jinja? Is there something I am not thinking about? For example potential issues I can think of is that the management port is not configured with DHCP by default, or the switches might not allow SSH connections since they don't have an RSA key generated. If these are issues, how do other people handle these types of deployments? ​ I'd rather not get a tool like DNAC for such a seemingly simple task. ​ ​ Edit: I meant to write IOS XE, not NXOS in the title. submitted by /u/I-Browse-Reddit-Work [link] [comments]

You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States