Traffic shaping with destination IP Networking |
- Traffic shaping with destination IP
- What path to take in Security, Cisco or Checkpoint
- Need help suggesting a network testing tool or command.
- Routing issue in my lab setup
- Unable to ping server while connected to SonicWall ssl vpn
- upgrading epld image N9K-C9372PX-E
| Traffic shaping with destination IP Posted: 06 Jun 2022 02:43 AM PDT How we can do traffic shaping based on destination IP and give specific bandwidth if traffic is flow to this particular IP from any source on Cisco ISR 2000, 3000 & 4000 routers. [link] [comments] |
| What path to take in Security, Cisco or Checkpoint Posted: 06 Jun 2022 01:51 AM PDT Hi, I'm in a bit of dilema about vendor path. In my company we implement Cisco routers and switches, some ASA and FTD and mostly Checkpoint. Now the question is what path to security to take: Cisco or Checkpoint? I do have CCNP enterprise and I'm used to cisco's style of learning and configuring, I have strong passion for security but what I've heard from some people is: If you want to do proper security take Checkpoint path,... It would be really helpful if someone could suggest or give advice what path to take from a security career point of view. :) [link] [comments] |
| Need help suggesting a network testing tool or command. Posted: 03 Jun 2022 05:08 AM PDT I have a very simple problem. I have a wholesale business. I would like to remote access different machines at our different stores from my office. Right now we use Chrome Remote Access and I do not wish to switch it as it works flawlessly and everyone can easily use it at this point. My issue is that, at almost all the stores I have no issues accessing the machines, there is no lag or bad quality video etc. At all the locations I use the same router and switch, almost same machines. The new shop which I'll call, shop X is having issues with CRA though. In fact the machines at that location are a little bit better. But same network setup, identical equipment. I use the same ISP for all locations, all the shops are within a 5KM radius from me. In fact one of the shop uses a cheap LTE router but there is no lag and I get full quality, so why is this new shop having issues? But that is not what I need help with here, could someone suggest me a tool where I can test maybe latency, jitter bandwidth issues. To see if it's a problem on the ISP side or whatever it is, I need a tool that can report the network status in a detailed way to me so I can compare with other locations etc. Also, I'm not tech savvy at all so I would appreciate if you it's not assumed I know stuff, but I'm quite understanding. Any help is really really appreciated. I just wanna make the job of my accountants DA and everyone easier cuz if I can easily remote access the location they can work from office. Thanks. :) [link] [comments] |
| Posted: 03 Jun 2022 02:58 AM PDT Hello, I've been building a networking lab to learn more about PaloAlto Firewalls. But I've run into a strange problem that I've spend several hours on and I really can't figure this one out. I use VMWare ESXi on a Dell R820 Server for this lab. The server is connected to a regular residential ISP modem (via some cisco layer 3 witches). I have made a quick schema (https://imgur.com/ySJ1IAx) to make my setup more clear. But it is basically Ubuntu Desktop VM -> PFSense VM -> PaloAlto VM -> ISP Modem -> internet. The issue that I have is that the Ubuntu VM (Ubuntu01 in the schema) cannot access the internet in any way. No ping, no dns, no nothing. But the strange part is that the Ubuntu VM can ping the ISP modem (192.168.0.1), so the traffic is routed as it should through the PFSense and PaloAlto. During my troubleshooting I tried to attach the (same) Ubuntu VM to the portgroup that connects the PFSense to the PaloAlto and from there it can access the internet just fine (Ubuntu02 in the schema). It is just a lab, I know I don't need the PFSense and everything would work just fine if I let the Palo handle everything. But I would like to understand what is happening. EDIT: I have changed the 10.17.5.0/30 subnet to a /29 subnet to avoid conflicts with the ubuntu2 and the /30 broadcast address EDIT: I have found the issue in the Policy Based Forwarding Rule on the PaloAlto. thanks for the feedback!! [link] [comments] |
| Unable to ping server while connected to SonicWall ssl vpn Posted: 03 Jun 2022 09:39 AM PDT Hello all, Not sure if I'm in the right place but I have a puzzling issue. Several employees have reported that while they are able to successfully connect to the SonicWall ssl vpn they are unable to ping or RDP to servers on our network. Everything looks correct route print is correct. The temporary solution is to launch wireshark that will then allow them to ping the network successfully. However this seems to be only temporary and they have to repeatedly relaunch wireshark to resolve the connection issue. The other solution I found was uninstalling Zscaler. Once Zcaler was fully uninstalled they seemed to route correctly. This ideas only affecting one user but now it has spread to several. Majority of the company has no issues. I'm just wondering is anyone could offer some insight as to wireshark is a temp solution and what I should pursue as far as further troubleshooting. [link] [comments] |
| upgrading epld image N9K-C9372PX-E Posted: 03 Jun 2022 07:39 AM PDT Hello, I've couple of questions about Cisco N9K-C9372PX-E upgrade. Currently it runs on: I've read the upgrade notes of latest suggested version 9.3(9) so i can upgrade it straight - in one hop. I need some clarifications regarding EPLD: 1) Do i understand correctly - that if the newest version of EPLD image is FIXED to 0x15/0x8 - i dont need to upgrade it because the fixed version is the same as current EPLD ? 2)How to know if the device supports golden EPLD image ? On C93180YC-EX there was support of Golden image, i saw it by the show logg | include fpga command, which showed that the device was booted from Golden image. How to know the same information (if golden image is supported/needed for upgrade) for this cheaper N9K-C9372PX-E device if my logs are already rotated ? Thank you [link] [comments] |
| You are subscribed to email updates from Enterprise Networking Design, Support, and Discussion. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment