We help IT Professionals succeed at work.

Routers

48K

Solutions

30K

Contributors

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

We utilize Fortigate vdoms for  many school districts. Currently, as recommended by Fortigate, we extend the school vlans across our WAN. The vlans become virtual interfaces on the Fortigate vdom which firewall policies are applied to. This works very well for us but, recently, this design caused issues on our WAN because of LAN issues at one of the districts bleeding over to the WAN. The solution we are currently implementing is to create a single, transient vlan and route all other vlan subnets through it to the Fortigate. This works for simple configurations but is not a viable solution for complex Fortigate configurations. The best solution would allow us to  extend the district layer 2 vlans across a layer 3 connection and then pick up the vlan again at the Fortigate so it can be used as a virtual interface with the same subnet as what is used at the school district. (See drawing) .

The switches we are currently using are Aruba 3810s

What options are available in this scenario?

Thank you for assistance!
Layer-3-link.pdf
0
We upgraded our circuit to a 200 meg circuit (Fiber)  200 up and 200 down.  I need to verify that the vendor is supplying us with fastest speed.   When I run a speed test, and I am connected directly to the router, my download speed is about 90 mbps  and the upload speed is about 180 mbps.  
I checking our sonic wall for any throttling and found none.  I looking for suggestion on the data I received and what I can do to validate the circuit?
0
SDN and SD WAN and SD Access and DNA Center

I have read about SDN and SD WAN.  if I understand They both are based on Centralized Control Plane.

So if I have  the Traditional Local Area Network  made up of Access/Distribution/Core   Layers,  and when I want to Implement SDN Technology , at what layer should I integrate SDN.
in other words if there is a hardware on which SDN is installed on, where should that hardware be located ?

SD WAN is WAN Technology , if I want to implement that technology  where should  I put the hardware that holds the SD WAN software.

if you can briefly give the    difference between SDN , SD-Access, SD WAN, DNA Center that might also help clear up the Terminology confusion.

THank you
0
A friend of mine recently recommended I get an access point in addition to the router I have.  What access point should I buy?  I have an Apple AirPort acting as my router/access point for about 30 wireless devices in the house.

My plan is to have my router hard wired to my desktop and smart tv, then an access point setup to serve the rest of the devices that use wireless (Nest, Baby monitoring cameras, cell phones, ipads, etc).

When you recommend an access point should I make the Apple AirPort the main router or have the new recommendation be the router and turn the AirPort into the access point?

Thank you.
0
Hi experts,

Previously I used SoftEther VPN to connect from home with my corporate network. That's because it works through the ISP firewall & Corperate firewall & no static public IP needed. Although I found SofthEther difficult to setup.

I am searching for a guide or software to setup a VPN between the network of my clients & my own network over the internet. What can you advise / recommend?
0
Is there a network appliance that can monitor primary and secondary internet links/circuits and if the primary link/circuit were to go down, this network device can automatically enable ports on devices connected to secondary internet link/circuit that have duplicated IP settings of the primary router's devices? And subsequently shut down the ports on devices connected to the secondary internet link/circuit when the primary internet link/circuit comes back online. The ports of devices connected to the secondary internet link/circuit should always remain disabled while the primary internet link/circuit is active and working because those devices' ports will have duplicated settings of the primary router's devices and should only be activated by the network appliance when the primary internet circuit goes down.
0
HI,
I know this is a weird question. but I'm sure you can help me with some suggestions please.

Bought a samsung smartthings wifi & hub thinking I can take it anywhere  (portable) but I realized it has to be connected wired (ethernet) to function. Since I have show a demo with this smartthings where I cannot get a ethernet and I have to depend on my wireless modem (portable) for this demo.

Looking for a wireless adapter or some device which can connect to my portable wireless and have an ethernet output, So I can take the ethernet out to connect my smartthing wifi & hub

Not sure, if these can help.

https://www.amazon.com/IOGEAR-Ethernet-2-WiFi-Universal-Wireless-GWU637/dp/B018YPWORE/ref=pd_bxgy_147_img_2/143-2950792-7340004?_encoding=UTF8&pd_rd_i=B018YPWORE&pd_rd_r=f00f570d-18c1-424c-9867-3d348918e8e0&pd_rd_w=IqSur&pd_rd_wg=ZufOP&pf_rd_p=09627863-9889-4290-b90a-5e9f86682449&pf_rd_r=S0WK0D7XKM8ZW597ZFZ9&psc=1&refRID=S0WK0D7XKM8ZW597ZFZ9

https://www.amazon.com/Vonets-VAP11G-300-Wireless-Multi-Functional-Amplifier/dp/B014SK2H6W/ref=pd_cp_147_1/143-2950792-7340004?_encoding=UTF8&pd_rd_i=B014SK2H6W&pd_rd_r=5798979a-a45b-48dc-819c-6887cacfcb20&pd_rd_w=zVvEF&pd_rd_wg=Zq4Zm&pf_rd_p=0e5324e1-c848-4872-bbd5-5be6baedf80e&pf_rd_r=X2N3XK2HTHB9ZEM9K8NQ&psc=1&refRID=X2N3XK2HTHB9ZEM9K8NQ
0
Hi Guys,
can you recommend a very cheap/refurbished VDSL2 modem ONLY with rj11 (POTS) WAN connection?
I want only modem or bridge feature because I have a dedicate firewall.

For now i have seen Draytek Vigor 130
0
I am unsure of the functions of the Ubiquiti Unifi Security Gateway.

The installation I am working on has 8 Ubiquiti Unifi wireless access points.  At the present time I have the Ubiquiti Unifi controller running on a Windows machine.

Is the Security Gateway also a router?  The cable company - Optimum Online - provided a cable modem and a wireless router. Can I replace the cable company's equipment and connect the Security Gateway between the cable modem and the network switch?  

The website says "Integration with UniFi Controller.  This is unclear as to whether the UniFi Controller is built into the Security Gateway, or whether I need to continue using the controller computer.
(I assume that I program the Security Gateway using a computer.)

Ubiquiti also mentioned that the device allows remote management.
Does this require purchasing two units, and then setting up the VPN server?

Thanks and Merry Christmas to all!
0
HI,

Although I have worked on Cisco routers for many years I have little experience on Cisco ASA. Recently I have started managing a site that uses ASA between two offices. The foreign office is managed by another Vendor. I sometimes feel like the foreign offices vendor is feeding me BS as things sometimes seem to fix themselves overnight with out change on his part "apparently"

Example. the following packet tracer was performed

packet-tracer input inside udp 172.27.1.9 domain 10.1.1.112 domain
 
Phase: 1
Type: UN-NAT
Subtype: static
Result: ALLOW
Config:
nat (inside,outside-tm) source static NO-NAT-LOCAL NO-NAT-LOCAL destination static NO-NAT-REMOTE NO-NAT-REMOTE
Additional Information:
NAT divert to egress interface outside-tm
Untranslate 10.1.1.112/53 to 10.1.1.112/53
 
Phase: 2
Type: ACCESS-LIST
Subtype: log
Result: ALLOW
Config:
access-group global global
access-list global extended permit ip any any
Additional Information:
 
Phase: 3
Type: NAT
Subtype:
Result: ALLOW
Config:
nat (inside,outside-tm) source static NO-NAT-LOCAL NO-NAT-LOCAL destination static NO-NAT-REMOTE NO-NAT-REMOTE
Additional Information:
Static translate 172.27.1.9/53 to 172.27.1.9/53
 
Phase: 4
Type: NAT
Subtype: per-session
Result: ALLOW
Config:
Additional Information:
 
Phase: 5
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
 
Phase: 6
Type: INSPECT
Subtype: np-inspect
Result: ALLOW
Config:
class-map …
0
Network DiagramPossible Routing issue.

I am trying to connect to a specific server over a vpn connection.    

I have configured the Firewall to provide an IP address in the 192.168.100.0 range.   When I connect to it I can see the local network.  I can ping and connect to the local servers.  The single server I can not connect to is 1.1.1.1.  I can ping and connect to other servers on the 1.1.1.0/24 subnet without issue.

I ran a tracert from my local computer and I get to 1.0.1.90 then 1.1.1.1.   If I run it from the remote computer over the vpn I get to 1.0.1.90 then nothing.  

I have checked the firewall and there are no rules specific to 1.1.1.1  on it or on 1.0.1.90 which is the default Gateway.  There is a route for the 192.168.100.0/24 on the Gateway
"Route 192.168.100.1 255.255.255.0 1.0.1.61"

I have talked to the vendor who provided the server and they say there is nothing on the server which would block any traffic.  

Any suggestions on what to check next?
0
Our network has a Sonicwall router NSA 220W connected to Cisco unmanaged switches but the wireless signal is horrible. How would I configure the NSA 220W to use another wireless router to provide the WiFi for the office. I have a netgear wifi router that used to give us a strong WiFi signal for this. Thanks for the help.
0
Network access/routing issue.  The configuration that is place worked perfectly fine until the broadband ISP switch out their cable modem.  See attached diagram for clarification.
The issue at had is before the cable modem gateway was replaced, any workstation on the local LAN (192.168.1.x) was able to access the DVR/NVR camera system using it's address of 10.1.10.101.  However, now that address is pingable from the 192.168.1.x network, but no other network access works (ie. the NVR software can't connect to it).  The NVR system is still accessible from offsite by using the public static ip of the ISP gateway which has port forwarding to the NVR device.  In an ideal world, I would have had the camera system installed behind the network firewall so all devices were on the same ip network.  So I am looking for some input on what might be going on here.  Why would the old ISP gateway allow the communication but the new gateway appears to not.  Is there something that we should communicate to the ISP to change in their gateway to fix this issue?

Any insight is appreciated.
Network-Diagram.pdf
0
Seeking information from Australian IT Pro's

A stalemate with the Internet provider and their supplied router has me stuck.

We needed to add an additional port fwd rule to the device a Telstra V7610 (we have 4 at present) and when added it fails to fwd the 5th port.  The Internet Provider confirmed it was an issue and has:
  • Downgraded the firmware and it failed to rectify.
  • Sent a Technician to our site to repeat the process and confirm I am seeting it up right, and was able to confirm that it fails.
  • Upgraded the firmware to a yet to be released version which created its own new list of problems, one of which was the loss of access to the management interface as soon as the connection to the NBN was online.

Like many we had to remove a perfectly good apliance (Draytek Vigor Series) and replace it with the Telstra/Netgear V7610.  In two years we've had the V7610 replaced 3 maybe 4 times to address problems with DOT and connection quality.

Do you have a solution to retianing the V7610 for DOT and another device for all other services, even better do you have one that addresses a V7610 with a Draytek Vigor appliance?
0
I will begin studying for a CCNA exam come January.  (New Year's resolution.)  Wondering if anyone has a suggestion on a decent model Cisco router to purchase on eBay for my SoHo?  Thanks.
0
Hi.

I am setting up a SOHO.
Equipment is as follows.
1)  4 security cameras that record to the cloud through a Northern system
2)  Home wireless system mesh network
3)  Usual computers,  printers, etc
4)  Other "internet of things devices"  such as thermostats, lights.
5)  I have a total of 10 Ethernet jacks in our home, but only 6 in current use.

I will be installing a 19 inch 6U Wall Mount Patch Panel Bracket - 13.75 inch deep (also 24 port Cat 5E patch panel etc)
Gigabit internet.


I have concerns about putting all these things on one switch.  I like the idea of segmenting my network.  
I have heard good things about the Ubiquiti.  I am not an expert on routers, but I not a unfamiliar either.  
I am thinking about a router/switch capable of VLANS and POE for the cameras.  If I am misguided, then new insights are welcome.

With that in mind,  I would appreciate any help in selecting  a router / switch that would be appropriate but not more expensive than I need.

Thank you for your help.
0
We just migrated second link on BGP on for customer. The link is up and advrtising customer prefix to the internet and is load sharing the traffic w/ another (different) providers' link (Separate from ours). The customer thinks that the Route distribution on our link is at least 20% less than other providers'. Can anyone comment on what could happening ? I looked thro' looking glass portals and our BGP link is not preferred (Mostly).  Please comment.

My initial question is does it depend on type of ISP Provider, (the other link is provided by Tier 1 ISP Provider)?

Thanks;
0
I am trying to log sonicwall capture logs to an FTP server but it fails I have attached a pcap file of the failurefailed-ftp.pcapng
0
How to backup the existing running configuration of Cisco routers and switches? So that l can load the configuration to another replacement device if failure
0
I purchased a EdgeRouter X  so that I can take advantage a 200 MEG connection. When I plug directly into the cable modem I get about 175. When I plug the router in, I get about 10 mbps down and 13 up. This router is brand new, replacing and old Netgear ac1200.

I did upgrade to the latest firmware with no change.

ubnt@ubnt# show
 firewall {
     all-ping enable
     broadcast-ping disable
     ipv6-receive-redirects disable
     ipv6-src-route disable
     ip-src-route disable
     log-martians enable
     name WAN_IN {
         default-action drop
         description "WAN to internal"
         rule 10 {
             action accept
             description "Allow established/related"
             state {
                 established enable
                 related enable
             }
         }
         rule 20 {
             action drop
             description "Drop invalid state"
             state {
                 invalid enable
             }
         }
     }
     name WAN_LOCAL {
         default-action drop
         description "WAN to router"
         rule 10 {
             action accept
             description "Allow established/related"
             state {
                 established enable
                 related enable
             }
         }
         rule 20 {
             action drop
             description "Drop invalid state"
             state {
                 invalid enable
             }
1
I have a network with the range 10.4.240.x to 10.4.243.x. I should be able to reach / ping any device on the network from any address. For the most part, I can. The servers /printers and other resources are all on the 10.4.240.x subnet. From any other subnet I can ping the servers and printers and access them fine. What I can't ping or access is the routers gateway on 10.4.240.125. It does not respond to a ping request and isn't accessible. Any computer on anything other than 10.4.240.x does not have internet access because the device can not see the gateway. I have no idea why this one ip address isn't responding.

I'd appreciate any ideas to try to resolve this problem.

Regards,

Bill
0
Customer is connected to their DC via Internet. Is there a way we can support WAN Acceleration over Internet to their cloud? We are looking for a way to support Acceleration ,if it can be. Riverbed Steelheads can be supported for Both POP and Customer DC.

Site -- Internet 1G ---> Our POP ---> Customer Cloud DC
0
I have a user of an 8 port managed router.  I got two of the ports up and running.   Now the user wants the other 6 ports up and running.   They seem to want to just want to use the ports to add to their network.   When I go to "light the ports up", I take it I will turn them on and just use the same scope of IP addresses, Correct?  It is a Ubiquiti router.
0
Ubiquiti Edgemax Edgerouter X

Router has been working without issue for the past few months.  Today, over the past hour I have been losing internet connectivity.  At first I thought it was an ISP problem but logs show that is fine.

The router is not showing any logs indicating it is having a problem but if I reboot the router everything returns to normal.

This just started today.

I am online for about 15 min, then offline for about 5 min, then online again and then offline again.  Cycling over and over.

No config changes, no maleware, virus, or other.

Thoughts?

Thanks.
0
Hi,

Our company internet provider set us up with a new modem which would deliver faster speeds and has the IBGP failover ability. In order to use the IBGP failover we would need to designate 1 (or 2?) IP's from our small block of IP's, or get rid of the current ones and use a larger block of IP's.

Does it make sense to just consolidate our current IP's instead of purchasing a larger block of IP's? We currently have 5 public (outside of the broadcast)

Is it best practice/ industry standard to purchase larger amount of public IP's?

Thank you.
0

Routers

48K

Solutions

30K

Contributors

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.