Network Operations

9K

Solutions

11K

Contributors

Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi, I have a Cisco switch 2960 connected to a Synology NAS and a server HP Gen9.

Is it possible to increase the bandwidth of connection from switch to NAS and to server by doing Etherchannel?

Many thanks in advance,
0
2017 Webroot Threat Report
2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Hi All,

I am having problems loading OS image onto a new Nexus 9504 with 2 sup below are the steps i have tried, any advise would be much appreciated. image i am using is nxos.7.0.3.I5.2.bin

1. Reload switch and
2. Ctrl + C
3. cmdline recoverymode=1 and cmdline init_system
4. boot nxos.7.0.3.I5.2.bin (which is copied on bootflash/)
5. After this it starts configs and took some time but displayed other messages: System is coming up ... Please wait ...
6.After this, it returns to bash shell: bash-4.2# and nothing happens
7. Both switches, I have reloaded twice and retied again; but still same.

when i exit it takes me into (standby) login: but requires username and password which i have tried all the defaults and will not let me in.

Thanks
0
Hi
Someone must be using "route based on physical nic load". I wonder how the uplink physical ports to be configured? LACP/LAG whatever in Cisco term.
We have Cisco 3850.
0
How set equally load balancing for 3 different ISPs

Please find the exsting config, after this configuration i am unable to get load balancing in order, always traffice goes automaticly from interface FastEthernet0/0/0 every time i dont know why its happing.

Maximum time uses:-
interface FastEthernet0/1 - 20% (4Mbps Link)
interface FastEthernet0/0/0 - 30% (2Mbps LInk)
interface FastEthernet0/0/1  - 50% (2Mbps LInk)

why every time traffice use primery interface as a interface FastEthernet0/0/1, please suggest what need to be changes for traffice move in order, example:-
interface FastEthernet0/1 - 60% (4Mbps Link)
interface FastEthernet0/0/0 - 20% (2Mbps LInk)
interface FastEthernet0/0/1  - 20% (2Mbps LInk)

Router 1 Config:-

interface FastEthernet0/0
 description office_64/5/10_Lan
 ip address 192.168.90.1 255.255.255.0
 ip flow ingress
 duplex auto
 speed auto
!
interface FastEthernet0/1
 description 4Mbps
 ip address 1.1.1.1 255.255.255.0
 delay 1
 duplex auto
 speed auto
!
interface FastEthernet0/0/0
 description 2Mbps
 ip address 2.2.2.1 255.255.255.0
 delay 2
 duplex auto
 speed auto
!
interface FastEthernet0/0/1
 description 2Mbps
 ip address 3.3.3.1 255.255.255.0
 delay 3
 duplex auto
 speed auto
!
!
router eigrp 100
 variance 2
 network 1.1.1.0 0.0.0.3
 network 2.2.2.0 0.0.0.3
 network 3.3.3.0 0.0.0.3
 network 192.168.90.0

Router 2 Config:-

interface FastEthernet0/0
 description Rack_Lan
 ip address …
0
Via AWS I spun up a Windows Nano Server node. I can manage this from a management server in the same VPC.
 
Using Powershell, I can access the Nano server, add the server to my network domain, create a sheduled task, create a local user group and add a domain user to it, assign user privileges to allow users in this group to run scheduled tasks.
 
This scheduled task shoud read and write to locations on our networked SAN, which lives in the same VPC.
 
But the Nano server does not allow access to the SAN.
 
if I use the Powershell Test-Path cmdlet, specifying the UNC path to a location on the SAN, it complains that access has been denied.
 
And yes, the domain user has complete access to the locations on the SAN.
 
I also tried mapping a drive letter with net use: same result.
 
I have read every document by Microsoft and every blog post and StackOverflow post I thought relevant. Only 1 other person described the same problem, and has no solution. They were on a forum for Docker, and the Docker team discovered this is a problem with Nano, and not with Docker.
 
In my set-up, I don't use containers, I don't use Docker. I guess AWS runs this Nano instance in Hyper-V, but that is outside of my reach.
 
The Samba firewall ports are open and active (File and Printer Sharing).
 
Have you encountered this problem? How did you fix it?
 
One way I can work around this problem is by reading and writing to the Nano server itself. However, I fear that such would …
0
Hi,

Let's say I'm an ISP and I lease a 10G transport pipe to an IX (Frankfurt or Amsterdam), with the purpose of buying transit from 2 different tier 1 providers (2 resellers, probably) and peering with content providers.

What happens inside the IX?

Do I get one switch port and I have to rent rack space for my own equipment there? The peerings are physical, with cables between my switches and the peer switches?

Or I only get a VLAN and the peerings are inside the IX main router/switch? And I route the traffic from my VLAN to my peer's VLAN?

Or?

I've googled for the past days, but I'm still confused. Anyone has real world experience with this?

Thank you.
0
Hi

I have two 48 port switch. ones POE and the other isn't. is it possible to move configs from one to the other. they are both new switches. They are only web ui managed
0
Cisco ASR loopback interface is Gigethernet 0/0/0.2, if I want to check bandwidth utilization on this interface,how can I check, because show interface Gigethernet 0/0/0.2 | i rate command doesn't work here
0
I have a cisco 6509 switch with a single sup 720-3b card running ios Version 12.2(18)SXF11. I have 3 WS-X6148 cards installed and just go a WS-6748 card but cant get it to run. Card has red light on front. If I do a sh power everything is good if I do a sh module it comes up with a Diag status of Unknown. Any suggestions?
0
looking for a good web filtering
I currently have websense (now forcepoint), I like that is hosted but we areneeding to renew and was wondering if there are others out there that are better such as > blue coat > Baracuda, etc.
0
NEW Veeam Agent for Microsoft Windows
LVL 1
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Hi,

I am working on a tenable nessus audit file for ibm aix.

What i am trying to achieve is 2 compliance check on the /etc/hosts.equiv file:

1. To find all UID less that 100 and UID not equals to the default system user ids (0,1,2,3,4,5)

2. To find all GID less that 100 and GID not equals to the default system group ids (0,1,2,3,4,5)

<custom_item>
type: CMD_EXEC
description: "UID less than 100 and not system default UID"
cmd: ""
expect: ""
</custom_item>

<custom_item>
type: CMD_EXEC
description: "GID less than 100 and not system default GID"
cmd: ""
expect: ""
</custom_item>

I am really new to working with tenable and also new to aix.

Really apperciate if anyone can help me out with what i should put for the cmd and expect statement on how to make the compliance check work.

Thanks really apperciate it!

Link: https://www.ibm.com/support/knowledgecenter/ssw_aix_71/com.ibm.aix.security/passwords_etc_passwd_file.htm
0
Hi, I would appreciate any help on this issue.

Cisco switch 3750 that is connected to a CenturyLink home modem\wifi-router (192.168.0.1\255.255.255.0)
PC1: 192.168.0.4 \ 255.255.255.0 \ 192.168.0.61- connected to cisco. (fa3/0/5) - vlan1 = default
PC2: 172.24.164.200 \ 255.255.255.0 \ 172.24.164.1- connected to cisco. (fa3/0/6) - vlan 172

PC1 can ping PC2 & 8.8.8.8
PC2 can ping to PC1 but not to 8.8.8.8. also, can NOT ping to 192.168.0.1
I would like that PC's from vlan 172 (PC2)  will be able to 'talk' with the 192 (PC1)  network (its works now) + to be able to ping to 8.8.8.8 as well.

cisco  logs attached.
sh-ip-int-br.txt
sh-run.txt
sh-vlan.txt
0
Hello experts,

A customer of mine currently has an ASA 5506 endpoint in their central office and a remote office with an IOS router (running IOS 15.4).  They have extended ACLs deployed in a very standard way that dictate what traffic is and is not allowed through the IPSec tunnel linking the 2 offices.  All working nicely.

However- they now want to switch to using MAC addresses to filter the tunnel traffic rather than IP addresses.  I have no experience of filtering layer 2 traffic in this way so if anyone has an example they are willing to share I would be very grateful.
0
hi team
I have couple of question on packet loss
1.  what all steps we need to take for packet loss
2. what are avialbale tools for checking packet loss
3. what are possibilities  of packet loss
4. what are the parameters to check packet loss
0
Does anyone have a working config for this?
srxconfig.txt
0
Dear Colleagues,

I have brand new Ubuntu 16.04.2 LTS and I would like to understand how to add persistent route to it.

For real example I have a default route with metric 100 (see attachment) and I would like to make this route metric to 10.

Please shed some light to undertanding this concept.
default_routing_table.png
0
On RH 6 systems running rsyslog 5.8.10 we noticed that if we setup a
client system to use TCP to log to a remote server:
*.*       @@192.168.1.2

Open in new window

If the remote log server is not reachable for some reason no logging takes place, not even local logging to the local system log files.
When the log server is available and rsyslog is restarted  both local logging and remote logging work.   I would like to come up with a config that would ensure that local logging still occurs when  the TCP remote server is down?  I think I need to look at action queues, but was hoping someone could provide an example on how to get this to work.
0
Hi,
I have 1 router Cisco 2911, 2 ISP Link & 3 networks(192.168.72.0/24 servers, 192.168.52.0/24 users, 192.168.32.0/24guest).   I want to pass  networks by 2 different ISPs, like servers will be passed by ISP 1 & users will be passed by ISP 2. I have  untangle bridged between our LAN and ASA firewall. Firewall is attached to the  router which is connected to two isp links. Primary ISP is already online. i also have site to site VPN tunnel between the firewall and another ASA firewall.

How can i do this in 1 router so that  networks will be divided by two ISPs? How the natting will be done for 2 link?? How to load balance traffic to get maximum internet speed?

Can anyone please help me in this issue urgently??
0
I have two ISPs - both with a primary and a secondary link. I want to use both of the primary links and set load-balancing ratio between them and set their respective secondary links as failover links. I can do either one of these but having a hard time doing both. Any ideas? Do I create different groups? If yes, how?
0
Industry Leaders: We Want Your Opinion!
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Hi experts,

Here are the variables:
  1. Two ISPs with different bandwidth capacities (let's just say ISP1: 1gbps, and ISP2: 200Mbps)
  2. There is the possibility of as ISP3 as backup (100 Mbps)
  3. The first two IPSs are configured for BGP
  4. Two Cisco 7301 routers

Scenario:
I currently have the two Cisco routers identically configured and only one is active. ISP1 and ISP2 are configured and connected to the active router and traffic is "influenced" for ISP1 for performance reasons. ISP2 is there only if ISP1 were to fail and BGP will start sending traffic through it. ISP3 failover if all BGP was down is handled by a firewall outside of this picture. If the active router would experience a hardware failure, I would simply move the ISP handoffs and firewall links to the backup Cisco router. Not a pretty router failover.

The BIG Question:
To make the above scenario fully resilient AND practical, I'd like to place each of the ISP handoffs on the two separate Cisco 7301 routers. I presume they would be configured with HSRP. The trick here is BGP and bandwidth load balance.
Is it possible to continue to "influence" one ISP over the other in the new configuration? or even better, can traffic go out the two paths as routing/bandwidth/BGP see necessary? I'd like to be able to maximize all the bandwidth possible and not have one router just sitting idle there. How about incoming traffic? Can it be …
0
I have an HP Procurve 5412zl switch that I want to add the following ACL on as we have having issues with Meraki SM communicating with our ios devices and Meraki have suggested the we add the following to our ACL:

Destination_IP: 50.115.86.96/27, 185.17.255.128/25, 185.92.120.0/25, 217.89.128.0/24      
Ports: 993            
Protocol: TCP            
Direction: outbound      

Destination_IP: 50.115.86.96/27, 185.17.255.128/25, 185.92.120.0/25, 217.89.128.0/24      
Ports: 60000-61000      
TCP            
outbound      

Destination_IP: 17.0.0.0/8                                                
Ports: 443, 2195-2196, 5223      
TCP      
outbound

Destination_IP: Any                                                      
Ports: 5228-5230      
TCP            
outbound

Destination_IP: Any
Ports: 80, 443
TCP
outbound

HP 5412zl does not have a gui for configuration of ACLs. At least not through the web interface. So I need to be able to do it from command line.

Thanks
0
I'm not sure the best terms to describe what I'm looking for.  We have Cisco 3850s as our core switches, and 2960s in the IDFs.  What I'm hoping to do is make port X on the 3850 switch, and port Y on one of the 2950s have an exclusive relationship where the traffic doesn't think it's "routed", but more like a passthrough.  

We have a situation where we basically need to direct connect one device to another device with network cable, but they are way too far apart physically.  So, if we can get the cisco switches to act as a bridge? tunnel? for the connection, where the two devices don't know that there is anything in between, that would fix the distance issue.

Does this type of setup exist on Cisco switches?
0
I have 4 CB 500 chassis. Each CB 500 has 2 switches. And Connections 1-8 are physical ports. 9-24 are connecting to blades 0-7.
I have configured the ports from 9-24 in switchport trunk mode but they are not passing the traffic. As soon as i am changing them to access mode they are passing the traffic. I am allowing all the vlans in trunk mode.
The switches are in VCS.
Please help me with this..
Thank you.
0
I am deployed 75% of the year, I am working on my CCNP but do not have the devices to train with. I purchased VIRL but my laptop can not support it!! is there any really go Router Simulators out there that I can purchase, that will allow me to perform high level command line such as Policy and so forth
0
Where or how can I pursue IT Network continued education?

Thanks,

SN
0

Network Operations

9K

Solutions

11K

Contributors

Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.