Network Operations





Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.

Share tech news, updates, or what's on your mind.

Sign up to Post

We have multiple smaller type ISP providers in the city using microwave technologies.  Basically installing antennas on buildings and pointing to their HQ location.  Trying to figure which one to pick based on their building location, etc.

What's the max distance they can go without the hop/repeater?

I've been given the below from my network team. – they've asked me to subnet accordingly and re-address your VLANs with.

Can someone advise what is required

Thanks in advance
Any good network devices, such as routers, switches monitor and management software/ tool recommend?
Will have new office for around 80 staffs? How can I determine\ estimate the WAN link bandwidth need between the main office and the new office? What's the setup need for the WAN connection?
Hello all and thanks for your time and expertise.  I would love your input regarding the proper permissions to delegate to an entry level tech.  The previous IT Director left my school district.  Please note he treated the Domain Admins group love a community playground as every tom, dick, and harry were allowed to be members of this powerful group.
That said I've since cleaned up this group and now only myself and another network administrator have access to this group.
However, there's a tier one tech who had access to this group who is complaining.  Please note he has zero IT background, zero certifications,  but is playing the i need access to do my job card.
He has access to the local administrator accounts to address one-to-one issues which is essentially his job.  He has full access to the imaging server to image computers and he can join and disjoin computers from the domain.  
I know as I came up through the ranks and worked on a help desk or in tier one jobs I never had server administrator access which is essentially what he wants.
I also asked him if he would like to get trained up to eventually become a server admin and he said no.
Basically if a problem required fixing dhcp, dns, AD, etc he would have no clue how to fix these things anyway so he doesn't need the access in my humble opinion.  
I'm just wondering how you good folks would deal with this issue.  I've been in IT for 25 years and have never experienced a guy with no background trying to dictate…
I have two scenarios and just curious what happens in each:
first scenario, I have a client on switch A, switch B in the middle, and a destination network on switch C. VLAN 10 is tagged on port 25 and 26 on switch A. the client is connected to 25, and 26 connects to a port on switch B which is untagged on all ports. another port on switch B connects to port 25 on switch C which also tagged for VLAN 10. port 26 on switch C is tagged for VLAN 10 also and connects to the destination network. does switch B block the VLAN traffic? assume the switch is VLAN aware and all ports are untagged for VLAN 10 on switch B.

I’m asking because I have a complex network and I need to add a VLAN to isolate a guest network so the traffic originating in the core of our server room can carry the VLAN directly out to the Internet- the source here is a wireless network. let me know what you think!
I have Linux 8 enterprise running on Oracle VirtualBox 6.0.10 and the network connects but I can get any traffic outside of the VM. When I run IP ADDR to get which networks are valid and then I run IFUP for those that show down I get Error: Connection activation failed: No suitable device found for this connection (device ### not available because profile is not compatible with device (mismatching interface name).

I have been going through what I can find on the web with no luck, any help is appreciated.
snap nas drive is asking for credential when user try to access shares. cause. how to change. impacting company wide. please help me asap.
Users on Windows 10 PCs are not seeing all search results when searching through network shares that are stored on a file server with Windows Server SBS 2011.  Windows Search service is installed and we've re-indexed the server multiple times.  The only potential solution we've found is to restart the Windows Search service every night but even then it does not seem to help.
Does anyone have any experience with QoS on Cisco switches? We have two locations separated by an E-Lan. We want to prioritize streaming video between the two locations but there will also be a lot of data going over the line too. There is no layer 3 stuff going on only layer 2 (2960 switches), so I guess that means I’m really trying to setup COS? I’ve never done this before so I’d appreciate any advice. Thanks. I'm also attaching a brief sketch of the current setup.
School network running Windows Server 2008 R2.  I am trying to add a printer to be shared across the network. the printer is an HP Officejet Pro 8720. I have tried using the Print Server routine in Administrative Tools and also from Add a printer in the devices and printers snap in. Both indicate the printer was installed successfully but nothing prints even though there is no error message and nothing stuck in the Print queue. I can ping the ip address assigned to the printer.  Please advise.

thank you.
Run connection test "telnet port 53" failed, is the 23 or 53 port connection issue? How to verify?
I am running backupexec 20 and we have a server at a remote site with a slow WAN connection. I would like to run a full backup on the server to storage that is there locally then bring the storage to our data center and send just the incremental data to it each night over the WAN for the backup. The full backup will be about 1TB and the incrementals are 1-2GB. Can we use Symantec BackupExec to accomplish this (the up range is different in our data center from the remote site)? If so, how?
Hi Guys,
I observed big amount of no buffer drops on my interface facing internet, on my C2911 Router, howerver, I don't see any failed or a lot of missed packets in the buffer counters.
What could be the reason for it?

MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
     reliability 255/255, txload 42/255, rxload 122/255
  Encapsulation ARPA, loopback not set
  Keepalive set (10 sec)
  Full Duplex, 100Mbps, media type is RJ45
  output flow-control is unsupported, input flow-control is unsupported
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input 00:00:03, output 00:00:00, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/76 (size/max/drops/flushes); Total output drops: 3631582
  Queueing strategy: fifo
  Output queue: 0/40 (size/max)
  5 minute input rate 48118000 bits/sec, 6878 packets/sec
  5 minute output rate 16759000 bits/sec, 3252 packets/sec
     4022440271 packets input, 4092734377 bytes, 3631387 no buffer
     Received 6062 broadcasts (0 IP multicasts)
     0 runts, 0 giants, 0 throttles
     592 input errors, 0 CRC, 0 frame, 592 overrun, 0 ignored
     0 watchdog, 0 multicast, 0 pause input
     1319074480 packets output, 2459248571 bytes, 0 underruns
     0 output errors, 0 collisions, 2 interface resets
     0 unknown protocol drops
     0 babbles, 0 late collision, 0 deferred
     1 lost carrier, 0 no carrier, 0 pause output
     0 output buffer failures, 0 output buffers swapped …

I’m hoping to get some ideas on this one. I’m having some intermittent latency and sometimes dropouts on the network, which consists of mostly Cisco SX300 switches.

When the latency or dropout happens, the CPU utilisation of the core SG300 Switch would be over 40%. I have been told the issue is caused by spanning tree and turning global spanning tree off on the core switch does help, however, I think it is not the spanning tree or it is more that just the spanning tree.

What other things could I look into in finding the cause?

Any help appreciated!

I have problem PXE boot from Microsoft surface 4 (UEFI) to connect to WDS server (Windows 2016). I have updated surface firmware and OS patches etc.. Getting below error

NBP filename is boot\x64\wdsmgfw.efi
NBP filename is 0 Bytes
PXE-E23: Client received TFTP eror from server

All other machines except MS surface are working fine. What step need to do resolve this issue.
Hi all,

   I have a very annoying problem in which everything works like a dream, and one application is hanging almost certaintly die to lost file handles.

   The network is exemplary; certified Panduit, server 2012 R2, almost everything on the network is new and now I installed 7 new HP computer with Windows 10.

   What happens is that the application we have that runs on a flat-file database (Clarion) shared on local server is hanging up. For testing purposes on old Win 7 machines everything is working stable.

   I am pulling my hair on this one, and I don't know how to proceed.

   I tried max power management, disabling Green Ethernet, disabling AV program and Firewall, disabling all non ms services, etc. All the time the app behaves the same.

   Any ideas or diagnostic procedures are Welcome.
Need to recover passwerd for cisco switch 4507R-E without removing the configuration
I have to develop a Runbook that provides operational procedures for obtaining security certs.  Can someone provide me with a template of a runbook or a website where I can find a template?  

Dear experts,

I am new to the DNS and DNS load test. Now i have task to test Load Test on two BIND9 servers [RHEL6]. I had googled it and i found dnspref is good tool to evaluate throughput and latency. However, I need a script to do this task. I will be very helpful for me if any one share the info.

Hi ,

we have subsidiary company with around 150 Users . it is linked to us (HO ) over IPVPN (1 MB)  and services getted from Us are :

1- CISCO IP telephone ( currently around 75 Users)
2- ERP ( about 50 USers)

thier existign Setup :

1- Domain COntroller ( seprate totally from us ) + Antivirus server ( 1 physical box)
2-finance system
3-Backup Server
4-Sonicwall NSA2600
7-Router for IPVPN

the managment is thinking to host the setup for the subsidary company so my questions are:

1- how I can do the proper sizing for the link ? so i ensure the users are not feeling slowness
2-what equipment should i move from there and what i should not ? best desing fro myour experince
3- how the internet should be provided to thier users ? from us or locally ?
4- what are the adv and disadvanage for such plan? should we recommend this plan or let them continue as they are
5- risks?
6- what are the pre requisits needed in the HO Data Center for hosting those equipment
I am employed in one ISP,  I am trying to do redudant link between my pop Cisco switch to my customer end MIKROTEK Router but it cause loop of the network,  any body have solution to do work proper RSTP between MIKROTEK & CISCO switch???
Hi Guys,

 I am trying to use hyper-v extended port acl's as a basic form of firewalling for vms on hyper-v server 2016

My goal is simply to limit incoming connections while generally allowing outgoing traffic (and return traffic).

In essence we are allowing incoming http(s) and dns replies. All outgoing tcp traffic is marked as stateful.

We use the following acl's (cleaned up slightly for readability)
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Deny" -Direction "Inbound" -Weight 20
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Allow" -Direction "Inbound" -Weight 30 -Protocol 1
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Allow" -Direction "Inbound" -LocalPort 80  -Protocol "TCP" -Weight 60
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Allow" -Direction "Inbound" -LocalPort 443  -Protocol "TCP" -Weight 70
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Allow" -Direction "Inbound" -RemoteIPAddress "" -RemotePort "53" -Weight 130
Add-VMNetworkAdapterExtendedAcl -VMName "web" -Action "Allow" -Direction "Outbound" -Protocol "TCP" -Stateful $True -Weight 150

Open in new window

The issue is as soon as the last stateful entry is added significant latency is observed to the point of things becoming useless.

In the cisco switch acl world you would simply look for the established flag for the packet.

Is there a way we can achieve the same here without incurring these severe performance penalties? Am I doing it completely wrong?

thanks for any insight.
Dear Experts, please help us this case:

We are using Cisco Router 3925 as the gateway for LAN users, users' IP addresses were NAT overload via the interface that connect to the ISP; however we got a network ( that could not access a website.

If we NAT static a PC inside that network to a static public IP address (or a pool of public addresses), the PC could access the website; but if we did not NAT static and using NAT overload via gateway interface, PC could not access website.

Do you know why? Please suggest
I have configured UDP jitter SLA on my test lab. What do the below counters indicate of my connection? Why is there no latency numbers?
How am I supposed to read this?

ip sla 90
 udp-jitter 65050 num-packets 20
 request-data-size 100
 tos 128
 frequency 30
ip sla schedule 90 life forever start-time now

Test_Lab_Router_Place#sh ip sla statistics  de
IPSLAs Latest Operation Statistics

IPSLA operation id: 90
Type of operation: udp-jitter
        Latest RTT: 11 milliseconds
Latest operation start time: 12:03:15 cst Wed Feb 21 2018
Latest operation return code: OK
Over thresholds occurred: FALSE
RTT Values:
        Number Of RTT: 20               RTT Min/Avg/Max: 9/11/17 milliseconds
Latency one-way time:
        Number of Latency one-way Samples: 0
        Source to Destination Latency one way Min/Avg/Max: 0/0/0 milliseconds
        Destination to Source Latency one way Min/Avg/Max: 0/0/0 milliseconds
        Source to Destination Latency one way Sum/Sum2: 0/0
        Destination to Source Latency one way Sum/Sum2: 0/0
Jitter Time:
        Number of SD Jitter Samples: 19
        Number of DS Jitter Samples: 19
        Source to Destination Jitter Min/Avg/Max: 0/2/8 milliseconds
        Destination to Source Jitter Min/Avg/Max: 0/1/1 milliseconds
        Source to destination positive jitter Min/Avg/Max: 1/3/8 milliseconds
        Source to destination positive jitter Number/Sum/Sum2: 5/19/119
        Source to destination negative jitter Min/Avg/Max: 

Open in new window


Network Operations





Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.