Hardware:
- (1) Cisco SG250 26P PoE switch
- (2) Ruckus WiFi ZoneFlex R610 access points (using their Unleashed setup)

I'm about to create/implement my first VLAN's, I'm pretty stoked I finally get to play with VLAN's. I've been doing IT/networking since 1991 but never did VLAN's. I've configured Sonicwall firewalls from scratch but this is my first Cisco device I get to admin; thankfully it has a GUI. I've already researched the heck out of VLAN's, trunk ports, tagging, & more, & I feel I'm ready to do it. I have the freedom to create this new network as if it were the original network built for this office. Almost all the employees are out of town for next week so it's an ideal time to build a new network. There are no Windows servers or any network services on this WiFi network; all that stuff is on the "corporate" network. This WiFi network I'm replacing/upgrading is what could be referred to as a "rogue" network that this department installed themselves just so they'd have faster Internet.

I'm creating VLAN's so our business can separate the Guest WiFi traffic to its own VLAN but also allow some inter-VLAN routing to allow our screen-sharing solution (Airtame) that guests will be using to talk to our big screens in the conf rooms, which will remain on our internal/business VLAN.

We currently have a Netgear Orbi Pro WiFi network setup but that's not quite robust/sophisticated enough for what we need to do. I'm keeping this existing Orbi WiFi network hardware …

I have four peer to peer computers using Windows 10.   "net view"  only returns a 6118 error for all computers.  I can ping each computer by IP address.  

I have tried everything. Nothing works.   So each computer cannot fully communicate with each other except using HomeGroup which is limiting.   "The list of servers for this workgroup is not currently available."

thank you

I need help in configuring HA/load balance from Site A to Site B. Site A is the PRODUCTION and Site B is the BACKUP SITE. We have lease two Private line with two different providers running different speed. I need to configure Load Balance from Site A to Site B and vice-versa if possible, but i am more concert Site A to Site B.
We have Cisco 3850 on Site A, and two interfaces  connected to each ISP. Site B, we have Cisco 3750, and two interfaces connected to each ISP as illustrated.
ISP #1 is live with IP 10.10.10/32 passing all traffic between two site as of now. Type of traffic is IP, UDP, TCP, HTTPS, and FTP.
I need help configuring ISP#2 . I need to use both private line at the same time for load balancing using these two switches, and automatically fail-over if one line is down.  
I heard of Ether-channel, IP Based Policy, and Network load balancing. I need help with commands and scenario in the illustration below.  I greatly appreciate with the right directions.
Thanks a lot.

Cannot Route-MAP Loopback IPA into OSPF.

Setting static routes I'm able to ping from a PC to IP Address (IPA) 192.168.100.7.  I would like to have IPA 192.168.100.7 distributed via OSPF to illminate static routes.

I've attempted to use Extended ACL but have failed.
Trouble-Shooting.vsd

I have recently been assigned a task to compare Wireless Router RV130W with another model of devices which happened to have the same function.

Appreciate if anyone can provide expert ideas on what and how to compare Cisco, DLINK, TP-LINK and etc..

STP Topology Change and Loop

I would like to know in which case an STP loop can be formed.
I believe I know that  Topology Change can  cause one of the blocking mode to switch to forwarding and  one of the forwarding port to become blocking.

What about STP Loop? unless if you disable STP , I do not see in which situation where the Loop can be formed .

Thank you

I haven't dealt much with SBS Exchange / certificates.  

This network is getting this popup recently. Clicking on details, I see the certificate expired a couple weeks ago - I think that's when the users started getting the error message.

Realistically, what is the argument for paying the money to get a new certificate vs. removing the old one ( any tips on how to do that)?

This is a location that is not concerned about security - everyone in the office knows everyone else's passwords / they don't change their passwords, they are really frugal.  

How do I explain why they need / should spend the money for a new certificate (and who do you like getting them from?) or what's the downside of just removing the expired cert?

VRRP to HSRP!?
We are moving from incumbent ISP who manage our WAN and firewalls.  The current config is the following:

HP L3 switch
vlan1 192.168.3.0/24
vlan20 192.168.100.0/24
vlan50 (no IP)

Firewall connected to vlan1 and vlan20
Router(s) running VRRP and connected to vlan50..

We now are changing the setup slightly for the new config.
Same principle but the firewall is in the cloud as an MPLS.

What/how best to deploy the routers in HSRP?

Thanks

How does DHCP work with VoIP phones?  Do they phones need to get restarted every time the DHCP lease expires?  Or it works no different than a regular computer client?
For the first time phones need to be booted to obtain IP addresses.  Also when DHCP or DNS server changes.  What about a regular DHCP refresh at the end of the lease duration?
We use Polycom ip phones over poe.
Please advice.

Are there any things to consider when adding another subnet to eBGP router?

Existing:
router bgp 43447
 bgp router-id 192.168.0.111
 address-family ipv4 unicast
  bgp attribute-download
network 16.17.236.0/22

Proposed:
config t
router bgp 43447
network 17.18.236.0/22
exit
wri mem

Do I need to notify the ISP? Any other gotchas? This site has had the one /22 for ages and
want to add this new network as unobtrusively as possible. Any tips appreciated!

I've changed the configuration of FTP on my Synology NAS from unencrypted to encrypted.
When I now attempt to connect using Filezilla the directory listing never appears:

Status:	Connecting to XXX.XXX.XXX.XXX:21...
Status:	Connection established, waiting for welcome message...
Status:	Initializing TLS...
Status:	Verifying certificate...
Status:	TLS connection established.
Status:	Logged in
Status:	Retrieving directory listing of "/My_Remote_Directory"...
Command:	CWD /My_Remote_Directory
Response:	250 CWD command successful.
Command:	TYPE I
Response:	200 Type set to I.
Command:	PASV
Response:	227 Entering Passive Mode (XXX,XXX,XXX,XXX,XXX,242)
Command:	MLSD
Error:	Connection timed out after 20 seconds of inactivity
Error:	Failed to retrieve directory listing

Select all Open in new window

I've set Filezilla to use Passive transfer mode

My NAS settings are

I am trying to understand what the best practice is to set the metric when redistributed BGP to EIGRP. In my case, at my main location, I have it set as the code below. I know that EIGRP only uses k1 and k2 in its calculation. I did not configure this so I am not sure what k1 is 44.2 Mbps when my MPLS circuit is 300Mbps. It looks like my delay is not the default as well.

...
router eigrp 10
 network 10.0.0.0
 redistribute bgp 65001 metric 44200 2000 255 1 1500
...

Select all Open in new window

I am familiar with making DHCP reservations in Windows Server But am now doing in SonicWALL TZ 215 I can see how this is done, But have some questions when doing this in the ARP section:

What does it mean to Publish Entry?

I assume that I want to bind the MAC address or why would I be setting this up in  the first place?

What is meant by Update IP address dynamically?

In the big picture the user will use PPTP from the Windows server to VPN in.  They have a business app that is Unix based and requires the client system to maintain the same IP address (reservation or static).  So, I need the client to obtain that same IP whether they are in the office or out on the road.

Thank you.