|
I just received some of my hardware for my CCNA lab, and my two 2950s came without any IOS image. After much googling, it seemed like xmodem was the only way to get an image on the switches - so I set the BAUD rate to 115200 on both the switch and my com port (which is a usb-to-serial adapter), and started the transfer. Well, it's going pretty slow - only about 211 Bytes/s - it should be going faster than that, right? Any ideas why it wouldn't?
|
# ¿ Jul 20, 2013 22:23 |
|
|
# ¿ May 15, 2024 01:00 |
|
less than three posted:Are you transferring in xmodem 1k mode? Not sure. I ended up canceling the transfer and switched term emulators (from terma to securecrt) and started the transfer again - worked fine. Moving onto my router brought me more issues, though. I got a 2621xm from amazon (specifically, SAM networks). Hooked it all up, set the baud rate to 9600 - no console response. Changed the baud rate around to the various possible rates, still no response. Take a look at my front LEDs and sure enough: quote:Blink (500 ms ON, 500 ms OFF, 2 seconds between codes)—In is what I'm getting. Is my router probably shot?
|
# ¿ Jul 21, 2013 02:05 |
|
nzspambot posted:If you can;t get to ROMMON I think you are boned; that being said I do believe (and I might be wrong) that the ROMMON for a 2600 is replaceable. I just ended up getting a refund, fortunately. Another question, though. Got my other router in, working fine - but I went to set-up SSH v2, and it's missing the 'version' part of the command. code:
code:
e:figured it out - apparently even though SSHv2 was first introduced in 12.2, it's not available for the version of IOS that I have. sudo rm -rf fucked around with this message at 03:18 on Jul 23, 2013 |
# ¿ Jul 23, 2013 03:07 |
|
I don't actually work in the industry yet, only just got my CCENT/studying for the CCNA, but is there a problem with having a Cisco-only shop?
|
# ¿ Aug 6, 2013 03:53 |
|
So I've got a phone interview with a company tomorrow that works with Cisco UCS B and C series servers - and welp, I've never heard of them before today. What are they? How do they relate to the rest of Cisco's products? The extent of my technical knowledge is CCNA-level, and these devices don't even appear to be dedicated towards networking.
|
# ¿ Sep 12, 2013 22:19 |
|
So I started working at my first "real" job out of college, and I'm basically going to be taking over a few server rooms that each have four/five racks as well as a couple classrooms with some lab computers. The equipment is a mix of Cisco video products (think QAM modulators), server products (UCS, DNCS, etc), and networking products (various routers and switches). I also get a /23 to play with, but at the moment everything seems to be thrown into a single network - no logical or physical subnets at the moment. The server rooms are kind of cluttered. No real cable management - coaxial and ethernet everywhere. No real documentation either. About 25% of the equipment is no longer being used, and there aren't any real-time monitoring systems in place. I feel like I can do this, I just haven't done it yet, so I'm not sure where to start. I started building an inventory using an excel sheet to get an idea of where things are physically - I figure the next step is to document how everything is connected. I want to get into a position where this equipment can be centrally managed and monitored. I figure you guys could point me in the right direction.
|
# ¿ Oct 9, 2013 03:54 |
|
What kind of switches should I be looking at for top-of-rack 10g uplinks to a core 6509-e? Something like the 3650-X?
|
# ¿ Oct 18, 2013 07:23 |
|
Badgerpoo posted:Are you looking for 1Gb or 10Gb edge ports? Do you want to stack? 1 GB, and I don't think stacking is a priority.
|
# ¿ Oct 18, 2013 13:14 |
|
This might be a obscure, but is anyone familiar with Cisco's ROSA products? I've got an Element Manager I'm using as an SNMP trap, but the trap its getting from our 4948E is coming with the incorrect severity levels (linkdown and linkup are being received as INFORMATION instead of CRITICAL or ALARM). Is there a way to change the severity levels on the switch itself? Running 15.0.code:
|
# ¿ Dec 5, 2013 16:50 |
|
Any resources/books you guys can point me to for data center design/infrastructure? It's becoming increasingly likely we're going to be doing a complete rebuild of our four labs that total around 24 racks.
|
# ¿ Dec 16, 2013 22:22 |
|
I'll be a little more forth-coming - I'm part of a small, specialized team within a 'certain' large IT organization that everyone of you should be very familiar with. Certain infrastructure costs will be heavily-discounted and our purpose is pretty niche (Service Provider Video), so it's not something that can be done off-site. I'm just a recent college graduate that was brought in to support these labs - I want/need to learn about data center design as much as possible.
|
# ¿ Dec 17, 2013 00:00 |
|
The latter stuff.
|
# ¿ Dec 17, 2013 00:57 |
|
ruro posted:Most of DC design is super obvious if you've ever had to support or manage a DC, but if you haven't done it before you'll get caught out on things like air flow design or not running sufficient fibre (run more than you need!). If you are in a large organization do they have any other DCs you can visit? If so is there another group of internal people who can give advice? I think that would be a good place to start. I'm sure they do. I'm just pretty new and the organization is quite large.
|
# ¿ Dec 17, 2013 00:58 |
|
Is there a golden standard for patch panels and racks that you guys shoot for? We're gonna be grabbing a couple racks and need to get a bunch of patch panels eventually.
|
# ¿ Feb 4, 2014 21:41 |
|
Ashley Madison posted:Are you looking for a brand or a way of putting the rack together? I guess brands. We just got in two 5548s we're going to use as a collapsed core with 2k fabric extenders in an EoR position. Right now we don't have any patch panels and literally run our copper from switch to server for each instance. As you can imagine it's a bit of a mess and I'm trying to do everything that I can to make the lab/data center as standardized and efficient as possible.
|
# ¿ Feb 4, 2014 23:00 |
|
So I'm pretty loving excited. I got to do this for the first time on a nexus device today.code:
|
# ¿ Feb 7, 2014 21:35 |
|
Any advice on removing stripped rack ear screws?
|
# ¿ Feb 19, 2014 20:43 |
|
vPC is blowing my loving mind. It was so simple to enable and set up, but I have no idea how everything else works now. I'm trying to create a trunk link between a port on my vPC'd fabric extender and the esxi host I have connected to it. Do I configure the vlan information and fex interfaces on only one of the n5ks? Both? How do SVIs work now? If we were going to do routing on the N5Ks between our vlans, do only one of the N5Ks need the necessary SVIs? Either I can't find the answers, or they're just that beyond my level of understanding that I can't even recognize them as answers. Help, you're my only hope.
|
# ¿ Mar 5, 2014 19:54 |
|
You guys are the best, that helped a lot.
|
# ¿ Mar 5, 2014 22:17 |
|
I'm back! How do I set up NTP on a 5548UP so that devices on its various vlans can use it as the NTP server? Is this possible?
|
# ¿ Mar 6, 2014 17:43 |
|
We're on 5.2 (1), but I was able to get ntp to some devices using 'ntp distribute'. Fortunately the devices that need NTP are some cisco call managers and telepresence vcs appliances - so I'm guessing CFS works with them.
|
# ¿ Mar 6, 2014 21:25 |
|
chestnut santabag posted:Depends on what you've got configured for NTP already. Yeah you're probably right. We didn't realize the 5k was actually working until I went back into our little video appliance and attempt to test a windows box I had started working on. In another update from sudo's first networking job, gently caress ASAs. I'll probably be asking for help about that later this weekend, but right now my brain needs time to recover.
|
# ¿ Mar 8, 2014 01:37 |
|
One of our Nexus 5ks restarted over the weekend. Any ideas what this means?pre:Reset Reason for this card: Image Version : 5.2(1)N1(4) Reset Reason (LCM): Unknown (0) at time Wed Mar 26 11:30:34 2014 Reset Reason (SW): Unknown (0) at time Sat Mar 22 06:17:30 2014 Service (Additional Info): Reset Reason (HW): uC reset code: 0x0100 ADM1066 Power Good Triggered Reset at time Sat Mar 22 06:17:30 2014
|
# ¿ Mar 26, 2014 18:04 |
|
zenthursdays posted:Give this a look: https://tools.cisco.com/bugsearch/bug/CSCue71612 Thanks, looks like that matches my issue pretty well.
|
# ¿ Mar 26, 2014 20:32 |
|
Is Spiceworks as useful as it looks? The training lab I admin for needs some sort of network monitoring solution, and spiceworks seems pretty interesting. We basically have nothing but cisco equipment (switches, telepresence, spv), which is why I'm asking you guys.
|
# ¿ Apr 11, 2014 14:59 |
|
What about Cisco Prime? Has anyone used it?
|
# ¿ Apr 14, 2014 15:53 |
|
What's the proper way to handle PIM rendezvous points in a vPC topology where my two N5Ks are also serving as gateways for my multicasting VLANs? Should I use BSR? What interfaces would I use for it? Here's what the SVIs look like:code:
|
# ¿ Jun 19, 2014 02:30 |
|
Yeah I haven't done either, so I guess my question would be - what interface do you use? Other than my SVIs, I don't have any layer 3 interfaces for the N5Ks. Looking at a configuration guide led me to believe that you would use a loopback interface, but if the second N5K doesn't have a route to the first N5K's loopback I'm not sure how that would work.
|
# ¿ Jun 19, 2014 15:37 |
|
I don't have an IGP running. The only routing going on is between my VLANs. Would that break multicast in a vPC topology? You can tell this is pretty new to me.
|
# ¿ Jun 19, 2014 17:12 |
|
Is there a way to limit debugging output to a specific vrf in NX-OS?
|
# ¿ Jul 10, 2014 20:00 |
|
1000101 posted:Not really. What are you debugging specifically? Maybe you could filter it via some other means (say interface or source/destination address?) Wanted to investigate the conversion between a dhcp server and its clients.
|
# ¿ Jul 10, 2014 22:38 |
|
Hey friends, nat question. I am currently not NAT'ing for a DMZ that I admin. We've got a /24 of public IP space. Our upstream firewall blocks basically everything that isn't on a list of a few standard ports. I have a synology NAS that seems to only want to host its management web page on port 5000. There doesn't seem to be a good way to change this on the device itself, and most of the recommendations seem to point to port forwarding, which makes since for a consumer NAS. My NAT'ing is a little rusty, so my question is this. Can I static NAT for a single IP address, solely for doing a 80 -> 5000 translation, without affecting non-NAT traffic for any other device? Or will all other traffic attempt to NAT itself once I add a nat rule? This is on an ASA 5520.
|
# ¿ Jan 28, 2015 20:08 |
|
ragzilla posted:This pains me to even suggest it- but I wonder if enabling directed broadcast on the interfaces, then setting helper addresses to both other subnet broadcast addresses would work. It looks like 137/138 are supported by default. Funny enough, this solution was literally mentioned by Jeremy Cioara in the latest CCNP SWITCH course as a work-around where he encountered a very similar NetBIOS issue. Speaking of CCNP SWITCH - I destroyed my home lab with a nasty broadcast loop, and I just want to make sure I understand the cause. This my home topology: Basically I started turning all my po interfaces off so that I could gently caress around with some STP stuff. I started with my two 2950s, which had this running config: code:
code:
code:
code:
Here's where I think I hosed up. I had added an additional trunk between 3550t and 3550b that was not on my topology, at fa0/13 on both switches. When I went to remove port fa0/23 from the port-channel on 3550b, since link aggregation was just "on" and not using LACP, my other 3550 was still pumping out packets through fa0/23 without really caring. Am I on the right track? Here's what happened from the perspective of 3550b: code:
|
# ¿ Mar 6, 2015 03:07 |
|
CCNP studying, had a question. What would the best practice IP scheme look like for the layer 3 part of this design? I was putting down a bunch of /30s but I wasn't really sure where I should be starting or ending when thinking about scalability or summarization. e: If there's a book or resource that goes into this kind of thing, I'd jump all over it as well.
|
# ¿ Mar 9, 2015 05:19 |
|
What's the best way to do an IGP like ospf between two eBGP neighbors without mucking with either organization's internal routing table (assuming they were using ospf internally)?
|
# ¿ Jan 19, 2016 22:30 |
|
tortilla_chip posted:1. Use BGP Can you expound a bit? I'm not sure if you're suggesting that using an IGP underneath eBGP neighbors isn't recommended but that if I had to do it I'd use a VRF, or if it's fine/common and that this is the proper way to do it.
|
# ¿ Jan 19, 2016 23:12 |
|
The use-case in my head is where you have a multi-homed edge router to an ISP, and you're using loopback addresses to establish the eBGP neighbor relationships.
|
# ¿ Jan 19, 2016 23:14 |
|
tortilla_chip posted:Yes as you've guessed my point was to not run an IGP with an organization outside of your control. As was mentioned above, if you want to do multiple links you can use static routes with eBGP multi hop. You can also run multiple parallel sessions. Each approach has its own merits. unknown posted:Almost always that's handled via static routes on each end. Word, thanks guys.
|
# ¿ Jan 19, 2016 23:38 |
|
sup friends i'm trying to create a ZBF config on a router inside our corporate network, and i'm not super experienced with zbf. is there a preferred way to differentiate traffic from sources inside a given zone? like if i want to treat traffic coming from the outside internet to my dmz slightly differently than traffic from the rest of the corporate network. right now i just have an acl for an object-group that lists some internal networks. how would i implement something similar in a ZBF?
|
# ¿ Dec 6, 2018 19:12 |
|
|
# ¿ May 15, 2024 01:00 |
|
so i'm going to have this, basically: one interface - outside (faces larger corporate network and also internet) one interface - workstation subnet (i want this mostly open to my corporate network but mostly locked down to the internet) one interface - lab (i want this mostly locked down, only open to the workstation subnet and only outbound connections to the outside interface) i think i have the basics of this down, my main question is on how i differentiate traffic in the outside zone from "mostly ok corporate traffic" to "mostly not ok internet traffic". fortunately i don't have the added complication of dealing with nat, this is all publicly routable.
|
# ¿ Dec 6, 2018 20:15 |