Go Premium for a chance to win a PS4. Enter to Win


Network Operations





Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.

Share tech news, updates, or what's on your mind.

Sign up to Post

Everyone has always said HUBs are bad and send information to ALL devices

I have an employee that needs another PC setup next to them ASAP and I do not have time to run another 100' CAT6 cable from the switch to this PC, therefore I just setup a small $10 cheap hub as follows

 1. patch cord from SWITCH to HUB
 2. patch cord from HUB to PC #1
 3. patch cord from HUB to PC #2

Which one of the below options will happens since a HUB is now in the mix when PC #2 updates a file on the Windows 2012 R2 file server since I did not wire back to the Cisco switch ?

    ** Option #1 = PC #2 sends info to ALL 100+ devices on my network, with only the file server accepting the data

    ** Option #2 = PC #2 sends info to ALL devices that are plugged into the hub (i.e. only PC #1 and the switch), with only the file server accepting the data

   ** Option #3 = something else ?
Keep up with what's happening at Experts Exchange!
LVL 11
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Hi All

I have a couple of clients with SonicWALL TZ 300 routers, and am considering having them purchase SonicWALL’s Capture Advanced Threat Protection because it seems like a damn good idea! As I understand it, it's cloud based sandbox system.

Would appreciate hearing everyone's thoughts, concerns or experiences with the product or similar products.

Thank you!

I have  router R1 connected to router R2.
R1 has some loopbacks and the networks that the loopbacks are on, are advertised to EIGRP

R1 has some Networks( that I need to filter out, so that they do not end up in R2 routing table:
on R1 , I have created Route Map , but before even I specify anything in Access-List and make route map match the Access-list . I have found that the Network has already  been filtered out from R2 routing table... I wonder what has filtered it out .

R2(config)#do sh ip route | inc 172.16

you see there is nothing about  in R2

R1(config-route-map)#    do sh ip interface br
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0/0      YES NVRAM  up                    up      
FastEthernet0/1            unassigned      YES NVRAM  administratively down down    
FastEthernet1/0            unassigned      YES NVRAM  administratively down down    
FastEthernet1/1            unassigned      YES NVRAM  administratively down down    
Loopback0              YES manual up                    up      
Loopback1              YES manual up                    up      
Loopback2              YES manual up                    up      

Open in new window

R1(config-route-map)#do sh run
Building configuration...


Open in new window

People moving into the new office but the network gear may not be ready yet.  Looking for a quick alternative for WiFi access just so users can go online.  
Saw that thread below from 2015 where a person says they ran office of 30 off this device following hurricane Sandy.
My office would be about 10-12 people day one.

Would that work as a temp solution?  Any suggestions appreciated.  Thanks!!

Acounts for people using Cradlepoint:

I need to add a route to our ProCurve switch which will allow all traffic from my network destine for a network in our parent company.

All traffic from going to needs to go thru (edge router)

My parent company sent me the edge router and setup a VPN tunnel using this device, which has the interface. The VPN is working as If I add the command  "route ADD MASK" to my computer I am able to reach the server at our parent company.

Not sure how to add the route to the ProCurve

Below is the config for my ProCurve

hostname "ProCurve 2910al-24G Switch"
time timezone -300
time daylight-time-rule Continental-US-and-Canada
module 1 type J9145A
ip default-gateway
ip routing
vlan 1
   name "DEFAULT_VLAN"
   untagged 1-12
   ip address
   no untagged 13-24
vlan 2
   name "OSAI"
   untagged 13-24
   ip address
timesync sntp
sntp unicast
sntp server priority 1 3
ip route
snmp-server community "public" unrestricted
snmp-server contact
Hi Guys,

I had to switch our two WAN Interfaces on SonicWALL, (Thus X1 & X2)

1.  I switched the public IP configuration under Interface Settings
2.  and changed all the NAT policies, switching X1 & X2 for all rules

My questions,

a.  Is there any other rule(s) that need to be changed to switch primary internet access for LAN users between X1 & X2?

b.  I've noticed that some NAT rules refer to an "address object" rather than the interface (X1/X2) directly.  
These I did not change as the object's public address was still correct.  Is there a difference in referring to the interface (X1/X2) directly, or using an object instead?  
In my case, where I had to switch X1 & X2 ... the rules with objects made things a bit easier as it stayed the same.  Is this the only difference using an object or referencing to the interface directly?

I am playing around with DHCP Snooping on a switch before I deploy the config out. I have a very simple lab. Router that provides DHCP to a switch with a host on it. I enabled DHCP snooping on my vlan and on the switch

IT_SWITCH#sh run | i snooping
ip dhcp snooping vlan 1
ip dhcp snooping

Open in new window

No trusted ports have been configured on any port even the trunk to the router so technically, I shouldn't get DHCP IP address to my host? Correct? If so, I am. Am I doing something wring? No trusted port was configured so I should not get dhcp
I have a situation.  Moving users to the new office.  Cisco gear however 4 to 6 weeks delayed.  Looking for a temp solution.  
I have a Juniper EX4300 switch.   Can I configure it as layer 3 as a router to serve the purpose.  Would that be any difference than having a router?  It should have GBIC ports for ISP.   And enough mbit ports for the users.   There should be only 10-15 users initially.

Any other temp ideas guys?  Thanks.
How do I change a Public Network to Private. Windows 8.1 and 10.

There is no ability to Make this PC discoverable.


R4 has Loopback 0 in area 0
other physical interfaces as shown in the topology they are in area 1,2,3

I have configured on R4:
R4#sh run | beg ip prefix
ip prefix-list INTO-AREA3 seq 5 deny
ip prefix-list INTO-AREA3 seq 10 permit le 32
ip prefix-list INTO-AREA3 seq 15 deny
ip prefix-list INTO-AREA3 seq 20 deny

router ospf 1
 area 3 filter-list prefix INTO-AREA3 in

when I go to R3 I see the routes below still there when they should be filtered out:

I have changed the sequence number of this command to sequence 25:
ip prefix-list INTO-AREA3 seq 25 permit le 32

and now I see the filtering worked. When I go to R3 which is in area 3. I do not see the routes:

Any Expert to explain the logic that the route has used in regard to the  ip prefix-list sequences. ?

Thank you
Get Certified for a Job in Cybersecurity
Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

I downloaded and install the free SolarWinds Real-Time Bandwidth Monitor. I need help to configure it. Its asking for the Community String. What's the Community String? Where do I find it?
We are using a Sonicwall TZ 205 firewall behind a Barracuda Link Balancer 330. I have two ISP connections coming into the Barracuda (Sprint and Comcast). I have 5 public IPs from each ISP. We currently have the following servers behind the firewall (Exchange 2013, Microsoft Remote Access for VPN and an ISeries database server) that are accessed using the Sprint public IPs.

Internet ---Sprint Router (65.xxx.xxx.17)

Internet ---Comcast Router (173.xxx.xxx.142)

Barracuda Link Balancer 330 (65.xxx.xxx.18 and 173.xxx.xxx.139)
Sonicwall TZ205 (65.xxx.xxx.20)

Internal Servers

In the Sonicwall, the Sprint public IPs are all NAT's to the internal private IPs.

 I would like to setup some inbound redundancy for these servers by mapping them to some of the Comcast public IPs. The Barracuda has only one connection to the Sonicwall so I don't know if I need to add another physical interface to the Sonicwall on interface X2 and configure it with the Comcast information and then put a switch between the Barracuda and Sonicwall. I know how to setup the DNS records to check if one line goes down, but I am unsure as to the physical connections.

Thank you.
Question about Cisco support.
Is it required to buy a Cisco smartnet support option?  Is there a default manufacture support from Cisco?
Do I need to buy a support that re-seller is offering besides the manufacture support from Cisco?
Cisco gear in question - ISR, Firepower, mgig switches, WAP controllers and WAPs.
Hi, ASA5505 cannot be accessed by console. When trying to access the ASA, CRT show nothing and just keep stuck status without any refusing error message ( it looks like the ASA can keep stuck forever). Please see picture attached. The console cable is confirmed to work well ( in other device). the ports lights can be up once cable is plugged into ports. That means the ASA already began to work.
So I think there are two possible things:
One is ASA console port is broken and the device still can work.
Second is some configuration issue. if so, can we set it back to factory status?

Any suggestion would be appreciated.
on the topology above MPLS IP command is enabled on all physical interfaces of the routers. OSPF is configured on all physical and Loopback interfaces of the routers.
I would like to know if  IP packets from end to end get Tunneled through MPLS "Tunnel" ?

PE1#sh run | beg router ospf
router ospf 1
 network area 0
 network area 0

interface FastEthernet0/1
 ip address
 mpls ip
P#sh run | beg router ospf
router ospf 1
 network area 0

interface FastEthernet0
interface FastEthernet0/0
 ip address
 mpls ip
interface FastEthernet0/1
 ip address
 mpls ip

PE2#sh run | beg router ospf
router ospf 1
 network area 0
 network area 0

interface FastEthernet0/0
 ip address
  mpls ip

PE1#traceroute source loopback 0            

Type escape sequence to abort.
Tracing the route to

  1 [MPLS: Label 17 Exp 0] 48 msec 20 msec 20 msec
  2 44 msec 44 msec 20 msec
Hi ladies and gents

We have a router that has been long been configured with a single interface to the internet across which we ran two tunnels between Melbourne - Singapore and Melbourne - Kuala Lumpur. this config served us well until our KL office started to get more and more users so I thought I would order a second internet connection with symmetrical 100/100 throughput. Our basic ADSL connection had very limited upload however it had a number of static IP's which I didn't want to mess with as aprt of this change. My approach was to keep the ADSL connection as our primary WAN interface however use the new Exetel interface to run the tunnels over. However it just wont work and im pulling my hair out trying to troubleshoot it. When I switch tunnel1 over to the new interface known as dialer1 the tunnel stand up and both routers can ping each other. However I cannot ping any reources in Melbourne from KL (subnet . One resource is our SIP Voice Gateway which is As soon as I switch the tunnel back to dialer0 it all comes back working. as there is no nat involved I cant understand why its not working. I even tried putting a deny statement in to ensure that no return packets are going out via nat.

My config:

! Last configuration change at 18:42:00 UTC Fri Oct 6 2017
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname mbicrtr01
I’m an ICT Tech in a school and even though I have a degree and over 5 years experience I don’t really have too much know how in networking. Know the basics though

I really want to practical experience

I know there is comptia Network Plus which gives you a good grasp of networking

I’m currently watching mike Meyers videos on Lynda.com

I think I may probably need past papers as well

Any advice from anyone on passing network Plus and gaining the kind of practical experience?

What do you all suggest ?
Dear Experts, we got this error in our router. Can you please give us some advises? The router keep restarting unexpectedly each few hours

R1_LLNetnamFpt#sh version
Cisco IOS Software, C3900e Software (C3900e-UNIVERSALK9-M), Version 15.2(2)T, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Wed 16-Nov-11 01:18 by prod_rel_team

ROM: System Bootstrap, Version 15.1(1r)T1, RELEASE SOFTWARE (fc1)

R1_LLNetnamFpt uptime is 1 hour, 35 minutes
System returned to ROM by bus error at PC 0x2B920B3, address 0x2B920B3 at 14:43:33 ICT Tue Sep 26 2017
System restarted at 14:45:04 ICT Tue Sep 26 2017
System image file is "flash:c3900e-universalk9-mz.SPA.152-2.T.bin"
Last reload type: Normal Reload
Last reload reason: bus error at PC 0x2B920B3, address 0x2B920B3

Open in new window


We are going to migrate the email address over to the new company because of acquisitions . How to use office 365 migration tool to migrate mailbox from existing company A to new company B.

Automating Your MSP Business
Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Our firewalls are not sync'ed to public DNS so we can't create rules by URL of playstore or appstore.

Our corporate mobile devices need to have push notifications & apps install :
what's the range of IP for appstore & playstore required & the ports to permit?

I heard appstore is a Class A subnet while playstore is probably a Class B:
is it a good practice to permit firewall rules to such big subnet ranges ?

Earlier this week we switched ISP's and started to use a new physical router with a different IP address on our lan.

At the same time we updated the default route on the Extreme switch so that it used the IP address of this new router as its gateway (therefore internet traffic goes out via this new router) .   The default route on the extreme switch is configured to use the "VR-Default" VR.

Everything has gone well with our production network, but we also have WiFi connections on a number of different  IP ranges (away from our production network).  We are unable to get an internet connection to clients on these WiFi networks.

These WiFi networks are also configured to use a different gateway (with an Ip in the range of the network) which ultimately returns them back to the the Extreme switch.  These WiFi networks/routes are also configured to use the "VR-Default" VR.

I would like to understand how I can examine the details/configuration of the 'VR-Default' VR to understand what IP address it is using to route out to the internet on.
I need to reset the logon password for a  Dell SonicWall TZ600 router which I would like to do without erasing any of the existing settings or configurations.

How can this be done?
for example check the nodes about flapping,down , restarting reasons etc
Nader Al-Kahtani
We have a computer who is accessible by placing   '\\pc-name\j$'  in the Windows Explorer.  We also have that same location mapped using the command 'net use j: \\pc-name\j$'.

When in the command prompt we use   'Dir \\pc-name\j$'   or   'Dir J:\'   works excellently - total access.

However, if place   'J:\'   in the Windows Explorer or if we type   'start.', in order to open explorer at that point, it gives the following error:


How can we successfully use Windows Explorer to access this   'J:\' ?

I have a couple of WAN connections and used by few users to access company services like : Mail,Web Applications...etc.
Both Lines have "A" Records with our ISP. if one line is down,  is it possible to redirect the users to access services through the back up line ? or can you suggest best scenario ?

Best Regards

Network Operations





Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.