Network Operations

9K

Solutions

23

Articles & Videos

11K

Contributors

Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.

Share tech news, updates, or what's on your mind.

Sign up to Post

what is the difference between nagios and centreon, are they technically both the same
0
Independent Software Vendors: We Want Your Opinion
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Hi, the title said it all. Can anyone draft me some pros and cons of stacking switches?

And is it possible to simulate this techniques in GNS3, Packet Tracer or something else?
0
I am setting up a linux server on a small network for people to access their files, each windows computer will have local login.
I will create logins on the linux server that will be for each individual on the network.
I will map each computer with the appropriate folders that belong to those users.
How can I handle it if someone else needs to use someone else's computer and would like to access their personal files?
Should I have 2 logins, one belonging to the user of that system and a guest of some sort but how can they get to their files easily without needing me to map the drive for them? I need simple because these are not very technical people.

thanks
0
What are the gaps / items in my outsourcing vendor (for hosting & Datacentre) that I ought to
look out for?  I'm sort of auditing them
0
Hi,

We are looking for recommendations for a network level internet filter.
At the moment, we are using OpenDNS or draytek content filter, but neither are particularly robust.

Our main requirement is that it be a network filter in the true sense, in that there is no need to install an agent on the end-user device or have to deploy proxy settings. The above filters work at the router level.

Another nice feature, but not as essential, would be to have granular controls, rather than one policy for all.

Does anyone have any recommendations?

Thanks!
0
I have five stack cisco 3750 switch in the network, and I will like to learn how to configure them.
first thing first, how can I connect to network from my pc or network so I can see the structure built?
0
I have a nexus switch that will sit behind a firewall, but during the setup configuration I am asked to configure out of band (mgmt0) management configuration (yes/no):

What shall I type "yes" or "no"?
0
Dear Experts,

The nexus switch is asking me for some configuration questions and just want to know what does it mean.

Configure Copp system profile (strict/moderate/lenient/dense): ?

What to select and what is Copp profile?

Thanks
0
is it common for IT departments to offer SLA's to internal employees of the same business? I totally understand it if your selling a service to a customer, but wasn't sure if its common to have internal SLA's with the various employees and departments within the same business? If you do have internal SLA's, is this per application, or more generic? I understand most places will have SLA for resolving calls with internal employees, but wasn't sure if its common for more top level categories such as availability / performance?
0
We have been trying to setup a tunnel between two routers.
  Routers 1 is connected to  Switch 1 through interface GigabitEthernet0/1 using a tunnel with source a subinterface (gig0/1.723).   Router 2 is connected to this Switch 1 through port 8 with an ethernet cable.  However the tunnel line protocol remains down.   Could this be a recursive problem.  What can we do?

I am attaching a file with the sections form each device that we changed.
0
Free NetCrunch network monitor licenses!
LVL 4
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Since our switch is acting as an L2 Switch, and our VLANs are untagged I need to create an ACL for the WiFi Subnet to stop it from gaining access to the Production VLAN

I have attached a snapshot of the ACL rules, the issue I have is that it's not blocking any TCP traffic to the IP address that I have issued a permit rule too.
Capture.PNG
0
I am using port 1433 to access SQL server. But I heard it is not safe and should use a non-standard port.

What is non-standard port? Is that any range for that?
Why is it very safe? What is the best-recommended port to use?
0
What's the easiest way to temporarily disable sflow on a Cisco nexus 9k?
0
i have an older 3560 switch that I am planning to test a RADIUS solution on.  I configured the device with VLAN 1 and an IP address.  Int fa0/8 is connected and in VLAN 1.
I get the following errors:
*Mar  1 00:00:43.427: %SPANTREE-7-RECV_1Q_NON_TRUNK: Received 802.1Q BPDU on non trunk FastEthernet0/8 VLAN1.
*Mar  1 00:00:43.427: %SPANTREE-7-BLOCK_PORT_TYPE: Blocking FastEthernet0/8 on VLAN0001. Inconsistent port type.
*Mar  1 00:00:43.427: %LINK-3-UPDOWN: Interface FastEthernet0/8, changed state to up
*Mar  1 00:00:44.434: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/8, changed state to up
This is a simple configuration and need the switch to be able to ping the RADIUS server.  

The config is attached.
3560-current-config.txt
0
Hi

Do you have a good recommendation for free open source monitoring to monitor Network bandwidth?
0
We are looking into enabling WOL for our Cisco 2xxx & 3xxx switches.

The following links do not give any security considerations & assessments :

http://www.geekmungus.co.uk/cisco-and-networking/enablewakeonlanacrossvlanoncisconetwork
http://www.cisco.com/c/en/us/support/docs/switches/catalyst-3750-series-switches/91672-catl3-wol-vlans.html

Q1:
Let me know what to look out for?  Any known WOL vulnerabilities in the past that needs to
be patched or mitigations to put in place?

Q2:
We do have SolarWinds (though not all options) that currently monitor our switches & servers:
anything we need to do or just use the tool mentioned in above links ?

Q3:
Do we need to perform VA/Pentest again after enabling WOL?

Q4:
Is WOL applicable only on Cisco switches only or routers as well?

Q5:
When WOL is enabled, any security or non-security precautions need to
be taken on the PCs/laptops & servers that they are connected to?
0
Hey Team EE,

I have a user base with a highly mobile workforce that goes in and out between home, project sites and several corporate offices.
I'm looking for a Windows 7 and higher script to do the following rough outline:
    run at user login (using Task Scheduler, I'm thinking, when they are away from the corporate office and no, the Network condition would not work as it looks like it ONLY uses names and not dotted decimal subnets)
      detect for specific IP subnets (checks if they are in one of the corporate offices where the Active Directory script runs normally)
        exits if one of the specified subnet is found
          Else, if not one of the  specified subnets if found then, run a command to set a local logical printer ie. Adobe PDF
            End

            Thanks!
            0
            Are the patches applicable to Cisco routers/switches applicable to
            TACACS appliance IOS?
            0
            Try to the WAN IP with 59.148.x.241/59.148.x.240 but it prompt that invalid IP Netmask. Any idea ? 59.148.x.240 should be valid.

            This is a fortigate 100D.

            Thx
            0
            Raise the IQ of Your IT Alerts
            Raise the IQ of Your IT Alerts

            From IT major incidents to manufacturing line slowdowns, every business process generates insights that need to reach the people required to take action. You need a platform that integrates with your business tools to create fully enabled DevOps toolchains.

            You need xMatters.

            If a port is configured with auto qos and has the command mls qos trust cos, but doesn't have a voice vlan meaning that the data and voice share the same subnet, does the ethernet frame still have a cos value in it.  Show mls qos int seems to show that outbound voice traffic is being tagged with cos value 5.   guess the question is why?    cos value is in the 802.1p priority field in a 802.1q trunk frame.  Without the voice vlan command are the voip frames still being encapsulated as 802.1q frames?  




            show mls qos int gi0/22 stat
            GigabitEthernet0/22

              dscp: incoming  
            -------------------------------

              0 -  4 :    59320375            0            0            0            0  
              5 -  9 :           0            0            0            0            0  
             10 - 14 :           0            0            0            0            0  
             15 - 19 :           0            0            0            0            0  
             20 - 24 :           0            0            0            0      1560499  
             25 - 29 :           0            0            0            0            0  
             30 - 34 :           0            0            0            0       129330  
             35 - 39 :           0            0            0            0            0  
             40 - 44 :           0            0            0            0            0  
             45 - 49 :           0       164281            0        54011            0  
             50 - 54 :           4            0            0            0            0  
             55 - 59 :         …
            0
            we have had complaints from various budget holders in departments in the company that hardware refresh (e.g. end user kit, such as desktop/laptop) and software refresh programs (e.g. new versions of office) are often poorly communicated and "dropped" onto budget holders last minute and this doesnt allow them to properly budget year on year for these kind of exercises. Currently a bit unsure on what kind of process or policy should be in place to allow budget holders for forsee ICT costs to build into annual budget planning. How are your budget holders informed at your companies, what policies/processes do you have in place to keep them informed?
            0
            https://docs.oracle.com/cd/E37710_01/install.41/e18475/ch3_asr_assets.htm#ASRUD138
            Above is the link explaining & below are the background

            I'm looking for ways to best secure the connections from our Solaris servers/assets to Oracle
            & attached are the firewall rules Oracle requests to permit.

            Q1:
            Does Oracle ASR offers tunneling or site to site VPN to them for this  service?

            Q2:
            For outgoing connections, we plan to make our Solaris servers go out via a proxy to
            Oracle : is this going to make it more secure or the practice with other customers?

            Q3:
            I suppose for incoming connections, people don't normally make them go thru
            proxy.  Is there any way to secure this or it's just via firewall NAT?

            Q4:
            Should we dedicate a specific NIC / LAN port on the Sun servers (say Backup LAN's
            port)  for this purpose or it doesn't matter?

            Q5:
            is there any way to capture detailed connection logs or  traffic logs with Oracle for this setup?

            Any other ways to secure this?



            Background
            ==========
                           We want to setup and configure the Oracle Auto Service Request [  ASR ] for SUN server hardware .  We seek your approval to implement it and open the required port to talk to outside world (Oracle).


            Auto Service Request is a feature that automates the Support Services process by using  fault event telemetry from your qualified Oracle hardware products to initiate a service request. The software infrastructure detects faults at your site and …
            0
            Hi Experts,

            We just implemented a new VoIP telephone system and we are experiencing so random cracking and static on some of the phone calls.


            The implementation guys are saying this is a network issue but I do not think this is the case since we did a voice readiness test before we started the implementation phase and the report did not show any issues.


            Any suggestions on what ma be causing his issue?

            Any suggestions on a tool that I may use to monitor and track down any phone quality issues?

            Thanks
            0
            Hi,

            Having problems with an edge switch not communication out through core switch. All others switches work fine.

            Edge switch configuration: port 49 is connection to core switch

            interface GigabitEthernet1/0/49
             description Link to Core bkcswp01
             switchport mode trunk
             switchport nonegotiate
            !
            interface GigabitEthernet1/0/50
             description Link to Core bkcswp02
             switchport mode trunk
             switchport nonegotiate
            !
            interface GigabitEthernet1/0/51
            !
            interface GigabitEthernet1/0/52
            !
            interface Vlan1
             no ip address
            !
            interface Vlan900
             ip address 10.194.70.12 255.255.255.0
            !
            interface Vlan990
             ip address 10.192.0.51 255.255.255.0
            !
            ip default-gateway 10.194.2.5

            __________________________________________________

            traceroute shows that it is trying to go through 10.194.70.1, whilst traceroute with working switches going through 10.194.0.1.

            On core i can see the edge switch with CDP nei command.
             Core - show IP route:
            Gateway of last resort is 10.194.2.1 to network 0.0.0.0

            S*    0.0.0.0/0 [1/0] via 10.194.2.1
                  10.0.0.0/8 is variably subnetted, 40 subnets, 3 masks
            C        10.194.0.0/24 is directly connected, Vlan990
            L        10.194.0.1/32 is directly connected, Vlan990
            C        10.194.2.0/29 is directly connected, TenGigabitEthernet5/14
            L        10.194.2.5/32 is directly connected, TenGigabitEthernet5/14
            C        10.194.6.0/24 is directly connected, Vlan130
            L        10.194.6.1/32 is directly connected, Vlan130
            C        …
            0
            Hi i have set up the network but cant ping a vlan from the switches. I have a PC on gi1/0/1 on edge switch can get everything fine but not able to ping from other switches to PC.

            I have pc ip: set static to 10.194.10.2  ..  gw: 10.194.10.1

            From core switch i can ping the PC but not from edge switches


            CORE switch sh ip route :
            Gateway of last resort is 10.194.2.1 to network 0.0.0.0

            S*    0.0.0.0/0 [1/0] via 10.194.2.1
                  10.0.0.0/8 is variably subnetted, 40 subnets, 3 masks
            C        10.194.0.0/24 is directly connected, Vlan990
            L        10.194.0.1/32 is directly connected, Vlan990
            C        10.194.2.0/29 is directly connected, TenGigabitEthernet5/14
            L        10.194.2.5/32 is directly connected, TenGigabitEthernet5/14
            C        10.194.6.0/24 is directly connected, Vlan130
            L        10.194.6.1/32 is directly connected, Vlan130
            C        10.194.10.0/24 is directly connected, Vlan10
            L        10.194.10.1/32 is directly connected, Vlan10
            C        10.194.11.0/24 is directly connected, Vlan11
            L        10.194.11.1/32 is directly connected, Vlan11
            C        10.194.12.0/24 is directly connected, Vlan12
            L        10.194.12.1/32 is directly connected, Vlan12
            C        10.194.13.0/24 is directly connected, Vlan13
            L        10.194.13.1/32 is directly connected, Vlan13
            C        10.194.14.0/24 is directly connected, Vlan14
            L        10.194.14.1/32 is directly connected, Vlan14
            C        10.194.15.0/24 is directly connected, Vlan15
            L        10.194.15.1/32 is directly …
            0

            Network Operations

            9K

            Solutions

            23

            Articles & Videos

            11K

            Contributors

            Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.