Network Management

12K

Solutions

14K

Contributors

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.

Share tech news, updates, or what's on your mind.

Sign up to Post

Our firewalls are not sync'ed to public DNS so we can't create rules by URL of playstore or appstore.

Our corporate mobile devices need to have push notifications & apps install :
what's the range of IP for appstore & playstore required & the ports to permit?

I heard appstore is a Class A subnet while playstore is probably a Class B:
is it a good practice to permit firewall rules to such big subnet ranges ?
0
Get your Conversational Ransomware Defense e‑book
LVL 1
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Hi

Beside of Skype for business for video conferencing.

What other video conferencing solution example to recommend?

Like highfive
0
We have just deployed a Cisco Meraki wifi solution and are trying to set up our wifi networks. However the domain is setup as XX.local.
the commercial cert authorities will not  give  a trusted certificate for XX.local, so we a trying to work out how to deploy a SSL that  is trusted to make wifi for things such as BYOD work seeamlessly , We have considered self-signed but that shows as untrusted, we also need to open  up security on trusted machines to allow it. Has anybody done this or got a good idea
0
Can someone please explain 2 things with Zabbix 3.2

1.  How do agents work?  What is the difference between active and passive?  Can you have both on at same time, what is the best and if you do active agent I still need the ports open below correct?  

2.  What ports need to be open where and push or pull?
So from what I understand it uses two default ports.
10050 for Agent
10051 for Server

So the monitored host needs port 10050 open and then the agent sends back information to the Zabbix Server using port 10051?  So it goes from host 10050 to server 10051?
0
Shared Printers was working fine some days ago but now i am facing problem that printers are showing as offline  and in network computers are also not showing .
0
In an audit finding, critical PCs (used to transfer large funds n these PCs do not hv Internet
access Nor email clients in them)  were found to be pingable n could map drives to normal
PCs ( to hv internet access n drive sharing can propagate ransomwares/malware) in same
subnet.

We were told these 2 different categories of PCs she'd be logically segregated.  As we don't want
To create separate Vlans n do major network restructuring, Can we do
1. Super sub netting n use Cisco ACLs to segregate the 2 groups of PCs?  Is this ACLs
     using MAC address?
2. Create Windows firewall rules on the critical PCs
3. What else?
0
I am trying to add a non cisco SFP between two catalysts, and am getting the error %PHY-4-SFP_NOT_SUPPORTED: The SFP in (PortNo#) is not Supported.

I have tried running the commands:

Switch(config)#service internal
Switch(config)#no errdisable detect cause gbic-invalid
Switch(config)#service unsupported-transceiver
Switch(config)#int gi0/49
Switch(config-if)#no shutdown
Switch(config-if)#do copy run start

However, the issue is still occurring. I have rebooted the switch after the above with no joy. Cable being used is a StarTech 3m SFP+ 10-Gigabit Ethernet (10Gbe) Twinax Cable. I will be upgrading the firmware to 15.2.6 while waiting for a reply.

Any help will be appreciated.

Switch Ports Model                     SW Version            SW Image            
------ ----- -----                     ----------            ----------          
*    1 50    WS-C2960X-48TS-LL         15.2(2)E6             C2960X-UNIVERSALK9-M
0
Hello, so this firm has a Windows Server SBS 2011 which is mainly used for Exchange and for sharing purposes.

Lately one strange problem has emerged: you open a file from a client (the file is on the server and shared) and you get the usual warning about someone else using the file right now, the file is read-only and so on.

Mind you, I'm not talking about a particular file, this can happen with any file actually.

Problem is, the file is not being used by anyone else, we have verified this many times.
After a while, it will just "unlock" and became fully available.

So, does anyone know how to address this problem or try to diagnose it? It never happened to me in many a year. Thanks.
0
Hi

I have a watchguard T30. Need to configure one of the Eth ports as a vlan port. The  need to connect the Eth port to a Huawei Layer 2 switch.

How do I configure the switch to allow for vlans?

Thank
0
Hi

I'm setting up a Huawei layer 2 switch Monday morning. Haven't done one of these before. I'm familiar with HP and Cisco. Could some one assist with some cli commands.

I need a few vlans configured and a trunk port from the firewall.

Thanks
0
Survive A High-Traffic Event with Percona
LVL 3
Survive A High-Traffic Event with Percona

Your application or website rely on your database to deliver information about products and services to your customers. You can’t afford to have your database lose performance, lose availability or become unresponsive – even for just a few minutes.

We have a Fortigate FG200D behind a dirty switch. We upgraded our ISP bandwidth from 50x50 to 1Gbx1Gb.
With a device plugged into the dirty switch I speed test about 850x850 consistently.

Behind the firewall my speed tests are 500x100 consistently.
I have turned disabled all web filtering, AV, IPS, etc to test, and it doesn't make a difference filtering or not. Still the same degraded speed.

Anyone know what else I can test/check for the bottle neck?
0
Recently we deploy the 8 units Cisco APs and ship with the Mobility Express .Once we connected the uplink to core switch we able to get the IP address correctly in each vlan but we found virtual controller IP up and down and the wireless network also not stable.I try to unplug the uplink using my NB connected directly to AP switch then ping the virtual controller was stable then i try to plug the uplink to core switch again the ping is up and down.

I am sure that some thing is conflicting but don't know what is the cause.Please advise


We have configure APs switch all the port as below:
APs Switch
Untaged default  vlan 1
tagged management Vlan 2
tagged Internal Vlan 3
tagged Guest  Vlan 4

Core-switch
Port 7 (uplink)
Untaged default  vlan 1
tagged management Vlan 2
tagged Internal Vlan 3
tagged Guest Vlan 4

Mobility Express Virtual Controller
Native default  vlan 1
tagged management Vlan 2
tagged Internal Vlan 3
tagged Guest  Vlan 4
0
In Bluecoat proxy, there's about 38 categories that it blocks:
1.      Adult/Mature Content
2.      Chat (IM)/SMS
3.      Child Pornography
4.      Controlled Substances
5.      Dynamic DNS Host  
6.      Email
7.      Entertainment
8.      Extreme
9.      File Storage/Sharing    
10.      Gambling
11.      Games    
12.      Hacking    
13.      Internet Telephony    
14.      Malicious Outbound Data/Botnets
15.      Malicious Sources/Malnets
16.      Marijuana
17.      Media Sharing    
18.      Nudity
19.      Peer-to-Peer (P2P)
20.      Personal Sites
21.      Personals/Dating
22.      Phishing
23.      Piracy/Copyright Concerns
24.      Placeholders    
25.      Pornography
26.      Potentially Unwanted Software
27.      Proxy Avoidance    
28.      Remote Access Tools    
29.      Scam/Questionable/Illegal
30.      Sexual Expression  
31.      Social Networking    
32.      Software Downloads
33.      Spam
34.      Suspicious    
35.      Tobacco    
36.      Violence/Hate/Racism
37.      Weapons    
38.      Web Hosting


a) does Steganography come under any of the categories?
b) if not, can we request Bluecoat to add one or to park it under
     one of the above categories?
c) what's the industry practice to handle it?  Block it at email filtering
    device, Network IPS, proxy or ??   Googling around, shows "Traffic
    Warden" is used but if we don't want to invest in it, what can be done?
0
Dear Team,

I have a network which consists of about 70 virtual/physical servers, 3 SAN systems, 10+ Cisco Switches, some Sonicwalls, and a few other devices. I would like a recommendation for a good software that can monitior all these devices on my network and not only tell me when something goes down but also when my hard drives fail or run out of space, high resources being used, and so on.

Thank you.
0
Looking for better ideas than I already am working with:

What are the industry's best methods practiced to integrate 2 or more companies into a single cohesive infrastructure?
0
Hi All,

I am having problems loading OS image onto a new Nexus 9504 with 2 sup below are the steps i have tried, any advise would be much appreciated. image i am using is nxos.7.0.3.I5.2.bin

1. Reload switch and
2. Ctrl + C
3. cmdline recoverymode=1 and cmdline init_system
4. boot nxos.7.0.3.I5.2.bin (which is copied on bootflash/)
5. After this it starts configs and took some time but displayed other messages: System is coming up ... Please wait ...
6.After this, it returns to bash shell: bash-4.2# and nothing happens
7. Both switches, I have reloaded twice and retied again; but still same.

when i exit it takes me into (standby) login: but requires username and password which i have tried all the defaults and will not let me in.

Thanks
0
Does anyone have any good proposal templates you could share?  Any other managed IT service templates welcome as well.

Thanks
0
Hi ALL

i have done the configuration in HP aruba 2420 switch ,same configuration needs to be in juniper EX3300 switch,

Kindly find the below HP Switch Aruba commands,

#hostname hp-switch1
#vlan 10 ip address 192.168.0.35 255.255.255.0
#vlan 10 tagged A1 ( i need to tag port also fine )
#vlan 20 tagged A1 ( i need to tag port also fine )
#vlan 150 tagged A1 ( i need to tag port also fine )
#vlan 10 untagged 1-46
#vlan 20 untagged 47-48
#timesync sntp
#sntp unicast
#sntp server priority 1 192.168.0.10
#time timezone 330
#ip default-gateway 192.168.0.1
#snmp-server contact Bang-Systems location 9th-floor
#vlan 1
#no ip address
#vlan 10
#name sales
#vlan 60
#name cop
#exit

#no telnet-server
#no password operator
#password manager plaintext ********
#encrypt-credentials

#radius-server host 192.168.0.120 key root123
#radius-server key root123
#aaa authentication login privilege-mode
#aaa authentication console enable radius local
#aaa authentication telnet login radius local
#aaa authentication web login radius local
#aaa authentication ssh login radius local
#aaa authentication ssh enable radius local
#aaa authentication port-access chap-radius
#aaa port-access gvrp-vlans
#aaa port-access mac-based addr-format multi-dash
#aaa port-access mac-based 1-46

#logging 192.168.11.122
#snmpv3 enable
# # Give password 123456
# # type "n" for user creation
# # type "y" for restricted access
#snmpv3 user snmpv3user auth sha EPe3XjeQh3F5…
0
Hi Wizards, I am just wondering about this issue? Can we specify the cost of commands in terms of consuming resource (CPU, RAM) in Cisco devices, such as Routers, Switches?

Many thanks in advance!
0
Free Tool: SSL Checker
LVL 10
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

I have a single workstation on the domain that everyday brings the network to a halt by utilizing the entire bandwidth for the office.  The report from solarwinds shows:  Se0/0/0       216.58.193.174  Gi0/1         -internal ip-     06 01BB C453  7771K.  Any ideas on how to troubleshoot this issue?  I did not find any malware on the workstation, and during most of the traffic burst time the user is not at the keyboard.
0
Hello Experts,

I want to segment my wireless network traffic into Guest, student and teacher.We have sonicwall, multiple switches and Access point.

I dont want filtering on computers those are connected through ethernet. i just want to segment my wireless network and assign them to Iboss security device for content filtering .

Any suggestions???

Thanks
Nakul
0
Hi,

Let's say I'm an ISP and I lease a 10G transport pipe to an IX (Frankfurt or Amsterdam), with the purpose of buying transit from 2 different tier 1 providers (2 resellers, probably) and peering with content providers.

What happens inside the IX?

Do I get one switch port and I have to rent rack space for my own equipment there? The peerings are physical, with cables between my switches and the peer switches?

Or I only get a VLAN and the peerings are inside the IX main router/switch? And I route the traffic from my VLAN to my peer's VLAN?

Or?

I've googled for the past days, but I'm still confused. Anyone has real world experience with this?

Thank you.
0
We are baffled by a situation where two computers are unable to access a website that more than 150 other computers are accessing with a problem. These two computers are behind a common modem and router, but tracert shows the packets make it to the server. Running Wire Shark shows:
wireshark.pngOther websites on a different server (and ip) behind the same firewall are accessible from the same two computers behind the same router and modem.

To try to clear up the situation....
Two computers (running POS Ready 2009) at location A are unable to display a website on server A (running Server 2003). This is true whether using the domain or the IP Address for the server.  These same two computers are able to access a website on the Server B (running Server 2003) which is behind the same firewall as Server A.
Other computers are able to display the same website on Server A from multiple other locations with no problems.
0
We have a linux server that downloads and uploads images for clients.

We need to know how much data is being used on average.
I have rx and tx from a sonicwall report but it shows from various IP addresses and I would have to add it all together.

I've saw I can use something called vnstat but i'd rather be able to do it without accessing the machine if possible.

What is the easiest way?
0
I have two locations with almost duplicate setups.  
Location 1:  On a network run by a PDC.  The ISP is a cable company.   The one office in this location has 3 computers all connected to the network via a Netgear 5 port switch.  But also connected to this switch is a DSL connection via a dsl modem line to a preset location..  When the users need to connect to this dsl line they just click on the shortcut created on their desktop that directs them to the preset IP address.   All other communication for everything else goes through the regular PDC/cable network.  Using DHCP and automatically sees PDC as DNS provider.  Works great.

Location 2;  On a network but run just by a router, not a PDC,  through the local Cable company.  Two computers connected via an identical 5 port Netgear switch as in the location 1.  They have the the exact same dsl line via the same dsl modem connecting to the same IP address as in location 1.  The problem is that you can only connect to one or the other in location 2.  If you want to connect to the dsl location via the dsl modem, you have to disconnect the cable from the router from cable company at the Netgear switch.   Or if you want to  use cable you need to disconnect dsl modem from switch.  Also running DHCP and DNS being provided by either the DSL or cable depending on which you are using.  

What would cause one to work and the almost identical one won't?
0

Network Management

12K

Solutions

14K

Contributors

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.