I am looking to develop an automation tool that can assist a NOC operation with WAN outage recovery without technician interaction. The automation tool will run in the lan environment (with no external access) and interact directly with the WAN interface. Please note this tool will not interact with any third party devices outside of the WAN environment. The test environment has Cisco Routers/Switches and uses Spectrum Monitoring.  Looking for suggestions on use cases and example event flow to develop on.

Hi We usually use Solarwind to monitor network. but I am not sure the function Netflow. Anyone can tell about the relation between Netflow and Solarwinds? Thank you

For Nighthawk X6 R8000, how to restrict remote Admin Login? in other words, admin can only login via Wired connection, wireless is not allowed.

I am trying to buy Cisco router ISR4451-X-SEC/K9 with below specification. My question is can this router be configure for dual autonomous system (AS) in (BGP)? So, if one IP range blocked for some reason the second one will be available and the service not interrupted. If yes, is there any guide to do that?

ISR4451-X-SEC/K9     Cisco ISR 4451 Sec Bundle, w/SEC license
CON-SNT-ISX451-X      SNTC-8X5XNBD Cisco ISR 4451 Sec b
SL-44-IPB-K9              IP Base License for Cisco ISR 4400 Series
MEM-4400-DP-2G      2G DRAM (1 DIMM) for Cisco ISR 4400 Data Plane
SL-44-SEC-K9             Security License for Cisco ISR 4400 Series
MEM-44-4G                     4G DRAM (1 x 4G) for Cisco ISR 4400
SISR4400UK9-166     Cisco ISR 4400 Series IOS XE Universal

Thanks

Hi All,

This is one of those, 'I was asked a question, and I don't know the answer'.

A client has a double-NAT setup (good reasons), and is not on a fixed IP, but uses a dynamic DNS setup (NoIP but that shouldn't matter I think).

They asked if there is any downside to setting up the Dynamic DNS updates in both routers, rather than just the external one.

I cannot see any issues with this, but figured I would garner opinions here.

The external router is already doing the udpates, and working fine as it has been for some time.

The inner router can do it, and has a 'web' option to determine its actual external, routeable IP.  I have turned off the outer router updates, and activated the inner one, and it successfully and correctly updates the dynamic IP (I manually reset it to 1.1.1.1 in the NoIP web interface, then updated via the router and it changed back to the actual external IP).

I know I could just test it, but I don't want to do that, think it is all okay, leave, and get a call later that something is not working or causing a problem.

So, is there any issue with turning on both?  I'm not sure there is much upside either, but the question I have been asked is, why not turn both on?


Thanks,

Alan.

I am using Freepbx 14 and working fine but I got thousands of attacks and in Intrusion Detection, my public ip  has been blocked sometimes and because of this calls are not working. I am using fortigate firewall and opened the 5060 to 20000 ports for the FreePBX so My question is 1. are ports forward mandatory for inbound route ( if I change the sip registration port from 5060 to other and do same with the trunk provider ) . Please let me know how I can make this FreePBX more secure so call disturbance would not occurred in future.

I've just bought a DrayTek Vigor2620Ln (ADSL/VDSL router/firewall with backup WAN port and 4G LTE modem built in - UK version)

I want to be able to create a site-to-site (or LAN to LAN in DrayTek's terminology) VPN via an IPSec tunnel to a Netgear ProSafe firewall I have running at another site. Simultaneously I want to be able to access a L2TP VPN Server running on Windows 2012 RRAS (behind the DrayTek at primary site), via passthrough when I'm out and about.

Having created the site-to-site VPN with a few issues along the way, I have got it working. I have also got the L2TP VPN passthrough working so I can connect from my Windows laptop when away from the main network. HOWEVER, it seems impossible to get both working at the same time. For the site-to-site to work, I have to tick the 'Enable IPSec VPN Service' under the Remote Access Control settings on the Draytek. But once I do this, passthrough of the L2TP Windows VPN fails. If I untick, it is the other way around with the Site-to-site failing and the L2TP passthrough working.

I suspect someone out there will confirm DrayTek routers simply cannot both have a site to site and L2TP passthrough connection connected simultaneously (I momentarily achieved it once, on initial bootup). I appreciate both VPN types use IPSec, however every single Netgear and Linksys router I've owned and used to date has been able to do both simultaneously with zero problems. I'm hopeful I'm missing something, but fear I'm not and the …

Setup: PepLink Balance One router, using LogMeIn Hamachi for remote access VPN.
Goal: Replace LogMeIn Hamachi VPN with PepLink's built in Remote User Access.
Anyone has experience using PepLink's own Remote User Access, is it worth the while, secure?
Need detailed instructions please.

Hi,

I have a client who needs a fast router/firewall as they will be hosting an App from their office.

This is a start up so money is tight, ensuring I put in a business grade router/firewall what is my best option for speed and security.

Thanks
Gareth

Hello Experts,

Good day to you all!

I am not well versed with Cisco equipment but know a little bit with networking, that's why I decided to learn Packet Tracer. So, I was following a video online that simulates an internet connection configuration. I followed the video and recreate the Packet Tracer file and after I was done, everything was working. A workstation was able to access the simulated internet setup.

Now, I modified the setup from the example in the video to be a little bit close to what I have in the office. I added an ASA 5505 in between the Modem and Router 1841.

That's where my challenge started. I cannot for some reason, find out how make ASA work together with the rest of the set up.

I was hoping somebody here would be able to help what am I doing wrong.

I am also not sure what to attach or post here, to help you guys troubleshoot. I'm starting with a diagram and the configuration files of the ASA and Routers, and please let me know if there's anything else you need to help me out troubleshoot challenge i have.

Thank you in advance!

Regards,
BASTi

P.S. - I forgot to mention, I tried changing the type of cable connection from "straight-through" to "cross-over", between the modem and the ASA, and there's no difference.


-------
ISP Router 1841 - Running Config
-------

version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
…

This is in reference to my previous ticket, that has not been really resolved fully:
https://www.experts-exchange.com/questions/29151189/How-can-I-separate-the-IP-phone-system-from-computers-for-less-than-50-users.html
To double the number of hosts, I was suggested to just change the subnet mask from 255.255.255.0 to 255.255.254.0. That is supposed to bring up the number of hosts to 510.
Because I haven't done this before, I would need assistance with:
- how to do it (if it's possible at all in our case)
- what else it implies
And any other detailed info you could suggest.
Thanks in advance and feel free to ask questions.

Our customer is connected to internet via a static route to ISP, now they want to advertise a subnet to internet, is it possible to do that, please help.

Anyone used these before and any opinions on these?    Please advice.
>>>This tiny device can double internet speeds & supercharge your Wi-Fi signal up to 300%.>>

https://www.thegadgetreviewguy.com/en/pre-1.html?loader=1&fomo=1&Affid=2906&s1=&s2=&s3=&s4=1673&s5=&domain1=www.esplma.com&network_id=69&ea=5NX37TX&eo=3XZ8Z8Q&uid=2545&DirectLink=Y&cc=2906CC1673&iep=true&gclid=CjwKCAjwkenqBRBgEiwA-bZVtoWWaWwlrmZ76narqtKKcCrcRngPP3o8TpUmYQwBhq661djWokvOBBoC0eAQAvD_BwE