Network Architecture

11K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello

I dont understand why I would have this in my eigrp config. What is this filtering at this point? To me, this looks as not having any distribution list at all.

Router#
Router#sh run | sec eigr
router eigrp 2
 distribute-list prefix BLOCK-EIGRP-DEFAULT in
 network 10.0.0.0
 passive-interface default
 no passive-interface Tunnel0
 eigrp stub connected
Router#
Router#
Router#
Router#
Router#
Router#
Router#sh ip prefix-list BLOCK-EIGRP-DEFAULT
ip prefix-list BLOCK-EIGRP-DEFAULT: 2 entries
   seq 5 deny 0.0.0.0/0
   seq 10 permit 0.0.0.0/0 le 32
Router#

Open in new window

0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE
LVL 4
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

We are implement the multiple VLans and Wi-Fi  in our company:
 
Vlan 1:default Vlan (192.168.1.0/24)
Vlan 2:Office Vlan(192.168.2.0/24)
Vlan 101:production Vlan (172.16.0.0/24)

We are using Aruba instant virtual controller to control all the APs. In the core switch default gateway is 192.168.1.254 which is the router Interface.

We had no problem for the connectivity using wired. But we found the if connected using office wifi (Vlan 2) and try to reach those device have wired connection in (Vlan 101) is no issue. But If the device is connected using Wi-Fi then we can not reached.

IN the Wi-Fi controller we never set any policy to block it.Please advice ?
0
Hello
I have 2 switch that connect each other with 4 layer 2 etherchannel links(4*1G)
my load balance method is src-dst port.
Zabbix show me that traffic goes among beetwen link Approximately equal.
Can i say we have maximum 4G bandwidth in my network?
0
People,

I'm trying to implement email resiliency solution internally and also externally with no Load Balancer access, so I came up with the below Idea:

http://www.tutorius.com/setting-up-a-dns-round-robin-in-windows
http://exchange929.blogspot.com.au/2013/10/high-availability-for-exchange-2013-cas.html

which I will be applying for all of my Exchange Server 2013 Std. Edition running CAS role:

Internally
AutoDiscover.domain.com points to CAS server 1 internal IP address on AD Site 1
OWA.domain.com points to CAS server 1 internal IP address on AD Site 1

AutoDiscover.domain.com points to CAS server 2 internal IP address on AD Site 2
OWA.domain.com points to CAS server 2 internal IP address on AD Site 2

...

AutoDiscover.domain.com points to CAS server N internal IP address on AD Site N
OWA.domain.com points to CAS server N internal IP address on AD Site N

and also Externally
AutoDiscover.domain.com points to CAS server 1 public IP address on the internet.
OWA.domain.com points to CAS server 1 public IP address on the internet.

AutoDiscover.domain.com points to CAS server 2 public  IP address on the internet.
OWA.domain.com points to CAS server 2 public  IP address on the internet.

...

AutoDiscover.domain.com points to CAS server N public IP address on the internet.
OWA.domain.com points to CAS server N public  IP
0
How do I go about setting the QoS recommendation, ie EF/AF4/Af3 etc for MPLS network?  What parameters should I be looking? The SP wants us to tell them what we want?
0
Greetings,

My goal is to allow a 3rd party vendor access to our internet but not to our internal LAN Subnet by using the DMZ port on our Sonicwall TZ300  connected to  their hardware  router (Linksys EA6400).

1. Is this possible?
2. Is this the easiest method since we already have both hardware routers?
3. Will this truly separate our access to each others LAN networks?

Thank you in advance.

COM1
0
We purchased a new company, they have firewall, sonicwLl and t1 fiber. How to connect new company to our existing company so that we can share the resources?
1
Hi Experts

We had one of our 3750's hardware fail, will not power on. Were currently purchased a new 3750 to replace. Would like some general guidelines on the steps to do so. the most important we want the vlan information to come across.
Do we backup the config on an existing switch and apply it on the new one? - We tried and received a lot of errors
Do we apply the vlan and other port information (below is our existing) to match what we already have.
How do we place the switch back in the stack, unpowered and connect all the stacking cables and then power it on?
What Impact will that have on the stack, will it power down?
What will and will not come across after we add the switch to the stack, do we need to set a password on the new switch, I know after you add the switch the master takes over and it applies some information - firmware.

The switches in the stack has a lower SW Version than the new switch being added will it be downgraded automatically or something we have to do manually.  (sw version of the switches in stack 12.2(25) SEB4 \ New Switch 12.2(55)SB


interface FastEthernet1/0/12
 switchport access vlan 10
 switchport voice vlan 20
 srr-queue bandwidth share 10 10 60 20
 srr-queue bandwidth shape  10  0  0  0
 mls qos trust device cisco-phone
 mls qos trust cos
 auto qos voip cisco-phone
 spanning-tree portfast



Thanks Much
0
Any thoughts on the  ARUBA IAP-205 WIRELESS ACCESS POINT s?

I have about 4 or 5 outhouses and I want an goof Wi-Fi solution.

Thank you.
0
How can I tag traffic on physical interface of a Cisco router?
I know I can create sub interface but I want to know if it is possible on a physical interface.
There is a command vlan-id dot1q available for physical interface but does not work.
0
Database Backup and Recovery Best Practices
LVL 2
 Database Backup and Recovery Best Practices

Join Percona’s, Architect, Manjot Singh as he presents Database Backup and Recovery Best Practices (with a Focus on MySQL) on Thursday, July 27, 2017 at 11:00 am PDT / 2:00 pm EDT (UTC-7). In the case of a failure, do you know how long it will take to restore your database?

Dear guys, I have this scenario:
- The original IP network which ISP provide: 13.14.24.160/28 (no worry, it's fake)
- I don't know why the IT guy who worked here before request ISP to split that network to 2 subnets: 13.14.24.160/29 and 13.14.24.168/29
- However, I was handover the instructions to get Internet for LAN network as the attached picture without any other explanation

Can anyone help me to answer these?
- Please explain the way end-users in LAN network to go the Internet. Which IP network should we configure in users' PCs?
- Please give me some ideas that clarify the purpose of the splitting?
- Can I place the pfSense firewall in the Router position? If so, is there any device/configuration we need to focus?

Many thanks as always!
Diagram.png
0
Dear guys, can you please explain the advantages and disadvantages of Wireless Transmit power? Why do they always recommend -65 dBm for users? If I increase the AP's power to the maximum, is it always good?

These attached pictures display the coverage when changing AP's power. I use VisualRF to test HP AP Aruba 205H, can you suggest some ideas about the results?

- Red color: -45 dBm
- Orange: -55 dBm
- Green: -65 dBm
- Blue: -75 dBm
Auditorium_18dBm.PNG
Auditorium_12dBm.PNG
Auditorium_10dBm.PNG
0
IS-IS router summarization can only be done on L1/L2 router is this correct.
There is now other place to do route summarization.
0
I have a security camera project that requires a run of about 1000FT for a few cameras.

I know Cat5/6 are not options due to the 300ft limitation.  I guess I could use POE switches at 300/600/900 ft as repeaters but that doesn't sound like a viable solution.

any ideas?
0
Why would I be getting these errors on my logs. I am running DMVPN.
 dest_addr 4.5.6.7, SPI 0x8e584d60
000058: May 15 09:18:21: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309438262163039 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000059: May 15 09:19:53: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000309529825315373 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000060: May 15 09:39:13: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000310690125718495 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000061: May 15 09:50:40: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311376506767405 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000062: May 15 09:52:37: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311493607193615 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000063: May 15 09:53:38: %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:000 TS:00000311554565979494 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 3, src_addr 1.2.3.4 dest_addr 4.5.6.7, SPI 0x8d670b5e
000064: May 15 09:58:38: 

Open in new window

0
Hello,

I have inherited responsibility for this issue.

There is a Cisco router which is presently connected to a Riverbed device which is to be retired, while I have access to the Riverbed Management Console I can't see how the Riverbed interface to the Cisco is configured and the support agreement for the Riverbed has expired (which is why it is being retired) so I can't ask them about this.

So the plan is to move the Cisco connection from the Riverbed to the HP Aruba switch.

I can see the config of the Cisco port
interface FastEthernet0
switchport trunk native vlan50
switchport trunk allowed vlan 1,49-51,61,90,1002-1005
switchport mode trunk
no ip address
duplex full
speed 100

Open in new window


I have tried configuring a port on the Aruba switch with all the vlans tagged, this didn't work, I'm unable to ping the Cisco.

I have also tried configuring the port on the Aruba switch in Trunk mode with all the vlans tagged, same result.

I haven't had much to do with Cisco and FWIW I don't understand the setting above
no ip address

Open in new window

as naturally the Cisco does have an IP address. Not sure whether this is significant or not.

Would appreciate advice on how to resolve

Thank you
0
I have 887-SEC(IAD887B-K9). itried to configure from cisco configuration manager but i didn't see in wizard ppoe selection.
Also i found from an old 887 i had the configuration file and i tried to configure the new one.i saved configuration and from reload the (CD) does not have any blinking searching to negotiate.
Can anyone help me configure the cisco for ppoe???

Regards!!!!
0
I am setting up a linux server on a small network for people to access their files, each windows computer will have local login.
I will create logins on the linux server that will be for each individual on the network.
I will map each computer with the appropriate folders that belong to those users.
How can I handle it if someone else needs to use someone else's computer and would like to access their personal files?
Should I have 2 logins, one belonging to the user of that system and a guest of some sort but how can they get to their files easily without needing me to map the drive for them? I need simple because these are not very technical people.

thanks
0
We have a current network all hard wired with its own internet connection and a second wireless network with a separate internet connection. I have one SSID for Guests on the wireless side and I want to create a second SSID so if you need to access the wired side of the network with a laptop it is possible. How would I keep the setup as is and network the two to be able to access the wired side via the wireless?
0
Technology Partners: We Want Your Opinion!
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Can I upgrade my Nexus switch from version 6.0(2)N1(2a) directly new version 7.3(2)N1(1)
0
Is there a how-to guide to deploying wireless access points in a small business?  Something that will help in deciding the number and placement of APs based on configurations of the space , the building materials, (gypsum wallboard on metal studs),  the number of PCs to be served. and the optimal wireless standard e,g, N, AC etc.
0
We are being told by an outside technical consulting firm that we cannot upgrade servers until our entire network infrastructure has been replaced.  I need an experts opinion on the scenario and comments made by them (below).

For reasons too lengthily to go into here we are still running our internal domain on W2K3 servers. All of the desktops and laptops are "newer" machines running Windows 7 or 10.  We vertualized the BDC's and member servers 2 years ago but are still running the PDC on old (ancient) hardware.  The new server we verualized the other servers on is intended and capable of running a new domain (built from scratch) on Windows Server 2016.

Our current network infrastructure is built on Cat5 cabling installed circa 2001 and our switches are 10/100 with gigabit dual mode (62.5) fiber up-links. These are old and due for replacement also. Our facilities are spread out through several buildings nearly a city block long.  We have obtained quotes to rewire with a combination of single mode fiber and Cat6 cabling to the desktops, WAPS, etc. Those quotes came in around $100K which is some pretty bitter medicine to swallow at this time.

I suggested to the consulting firm that we move forward with the switch replacement using single mode capable units that we can configure to 100Megabit on all ports and proceed with the domain server upgrade.  Their response was as follows:

"we need to have a solid infrastructure in place in order to put the best
0
I need some help (or maybe a better angle of attack) connecting a few external users to our Azure tenancy.

NOTE: All resources mentioned below are in the same Azure Subscription, the same Azure Location and the same Azure Resource Group.

There's one virtual network with a Windows 2016 VM running. This v-net (call it MAIN-VNET) has a virtual gateway with a site-to-site VPN configured (call this S2S-VPN). This S2S-VPN is configured as a policy-based IPSEC VPN so that the on-premise Billion 7800VDOX can connect - which it does without issue. But, because it's a policy-based configuration, I can't configure a point-to-site VPN in coexistence with this S2S. If it were route-based configuration however, S2S and P2S coexistence would work (and does - I tested it). But the on-premise Billion then won't connect because it doesn't support IKEv2 (which is what route-based IPSEC VPN's use). So for now we're forced to use the policy-based config.

I have had to create a new v-net (P2S-VNET), then a new v-net gateway (P2S-VPN) and then configure the point-to-site VPN and client. I've done this and am able to connect to the VPN using the Azure VPN client successfully, but I can't access the Windows server on MAIN-VNET.

I can't create a "vnet-vnet" connection because one of the VPNs is policy-based and this is not supported by Azure.

I've tried creating a peer for both networks to each other (note that I have not ticked "Allow forwarded …
0
I have solarwinds to monitor the traffic .
I see (in solarwinds) cisco fast ethernet with 100% utilization although  the top conversation appears (in solarwinds)  in small payload of traffic in KB level .
How does that occur?
0
Not all that familiar Cisco switches (Background is more HP Procurve).

Here is what I'd like to do.

Currently the VMWare ESXi v6.5 Network Teaming policy is set to "Route based on IP hash" and the HP switch ports are configured as "Trunk"(I believe EtherChannel is the equivalent)

Not sure how to configure the Cisco switch to use 2 10Gb ports as 1 20 Gb port. -Can this be done in the GUI interface (I only see LAG management as an option)?

Advice greatly appreciated.

Thank you.
Bob
0

Network Architecture

11K

Solutions

11K

Contributors

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.