web-archive-net.com » NET » M » MAJORNETWORK.NET

Total: 263

Choose link from "Titles, links and description words view":

Or switch to "Titles and links view".
  • Junos authentication-order Configuration – Majornetwork
    s and if the servers are not responding then local users are checked BUT additionally if the external server returns Access Rejected then the local users are checked as well This is not something that happens with very similar Cisco configs This makes it possible to use the device local fixed accounts for daily access instead of sticking with the centralized AD accounts or whatever With authentication order radius Junos checks the external server s and if there is no response then the local users are checked In case of a Rejected response code from the servers then it really is the final verdict and the local users are not checked This is usually the desired way of working centralized user databases are checked and the local users are configured only as a backup if the servers cannot be used This is nothing surprising for the old Junos engineers but the Cisco familiar specialists may want to specifically note this Updated July 4 2013 21 24 Tags authentication junos radius Previous Post Next Post Leave a Reply Cancel reply Search for Markku Leiniö Senior Network Architect Senior Technology Consultant and CCIE 26438 Routing Switching in Finland Majornetwork on Twitter Markku Leiniö on Google Your IPv4 IPv6 Status You are using IPv4 address 81 198 240 36 Recent Posts majornetwork net Is Now TLS Enabled IPsec VPN Tunnel between F5 BIG IP and Juniper SRX SoftEther VPN with a VPN Address Pool Juniper SRX IPsec LAN to LAN VPN Part 2 Juniper SRX IPsec LAN to LAN VPN Part 1 Tags 15 0SY 15 1SY ba bridge assurance cat6500 catalyst 6500 cisco cli cmp console cygwin dual homed esxi fabric extender fabricpath fast hello fex hypervisor ios ipsec ipv6 issu juniper junos lacp linux nexus 5000 nexus 5500 nexus 7000 nx

    Original URL path: https://majornetwork.net/2013/07/junos-authentication-order-configuration/ (2016-04-25)
    Open archived version from archive


  • Review: Sena Parani-SD1000 Bluetooth Serial Adapter – Majornetwork
    adapter also obeys some AT commands I haven t touched them read the manual from the manufacturers site if you re interested I just set the switches to 9600 bps and continued Keeping the Pairing button pressed a couple of seconds using a paperclip it starts to look for a partner At this point the Bluetooth discovery can be started in the computer The adapter presents itself as SD1000v2 0 8 xxxxxx After pairing there were two COM ports added in Windows 7 I don t actually know yet why there are two ports I have just used the first of them COM8 and been happy with it The PIN code was 1234 and it can probably be changed with some AT commands In the following uses it is enough to just switch the adapter power on and it will automatically pair with the last partner Again there can be some even more sophisticated logic but that s how I ve used it this far The console connections with laptop cannot get any easier than this Conclusions The few occasions I have used the adapter so far I ve been extremely happy with it It is easy to use and gives me the flexibility I wanted The price about 130 EUR with all the accessories above and shipping from Sweden to Finland is quite high but good stuff always tends to cost something I got mine from LAWICEL www lawicel shop se I haven t really explored all the adapter options yet For example the data sheet says it supports up to 4 simultaneous connections I guess that is something good Updated July 14 2014 21 48 Tags adapter bluetooth console parani sd1000 sena serial Previous Post Next Post 15 Comments Add a Comment Irfan July 17 2013 at 19 47 Hi sir It is very nice to see this effort I am trying to communicate this device between arduino mega 2560 and PC attached parani SD1000U USB But I am struggling hard to get the communication There are errors called Receive message timeout when I am trying to upload the program to the serial port COM 17 Can you please help me in this regard Thanks Irfan Reply Markku Leiniö July 17 2013 at 22 07 Hi Irfan unfortunately I don t have any experience on the USB model of the device If I understand this correctly you have plugged SD1000U on the Arduino Are you sure it should work on Arduino at all Some kind of drivers are presumably needed built in or customized depends on the kernel I would assume I would at least try to run some kind of terminal emulator like Minicom and Putty on both sides to be sure that basic level communication is happening if possible before doing anything more exotic Reply Kyle Duren February 27 2014 at 06 54 Just got one of these a few weeks ago and man its AWESOME Makes working in the data center so much more comfortable

    Original URL path: https://majornetwork.net/2013/06/review-sena-parani-sd1000-bluetooth-serial-adapter/ (2016-04-25)
    Open archived version from archive

  • Configuring BGP Sessions in IPv6 – Majornetwork
    removed from session Capability changed Apr 24 16 20 18 377 BGP SESSION 5 ADJCHANGE neighbor 2001 DB8 2 IPv6 Unicast topology base removed from session Capability changed Apr 24 16 20 18 377 BGP 5 ADJCHANGE neighbor 2001 DB8 2 Up cat6500 config router af cisco3925 config router Apr 24 16 20 17 899 BGP 5 ADJCHANGE neighbor 2001 DB8 1 Down Peer closed the session Apr 24 16 20 17 899 BGP SESSION 5 ADJCHANGE neighbor 2001 DB8 1 IPv4 Unicast topology base removed from session Peer closed the session Apr 24 16 20 18 383 BGP 5 ADJCHANGE neighbor 2001 DB8 1 Up cisco3925 config router BGP session was flapped due to address family reconfigurations I ll go and activate IPv6 address family on the other router as well cisco3925 config router address family ipv6 cisco3925 config router af nei 2001 db8 1 activate cisco3925 config router af Apr 24 16 21 57 971 BGP 5 ADJCHANGE neighbor 2001 DB8 1 Down Capability changed Apr 24 16 21 57 971 BGP SESSION 5 ADJCHANGE neighbor 2001 DB8 1 IPv4 Unicast topology base removed from session Capability changed Apr 24 16 21 58 279 BGP 5 ADJCHANGE neighbor 2001 DB8 1 Up cisco3925 config router af Apr 24 16 21 58 283 BGP 1 2001 DB8 1 rcvd UPDATE w attr nexthop 2001 DB8 1 FE80 21A 30FF FEDB 5C00 origin i metric 0 merged path 1 AS PATH Apr 24 16 21 58 283 BGP 1 2001 DB8 1 rcvd Apr 24 16 21 58 283 BGP 1 Revise route installing 2001 DB8 1111 1111 128 2001 DB8 1 FE80 21A 30FF FEDB 5C00 to main IPv6 table cisco3925 config router af cat6500 config router af Apr 24 16 21 57 966 BGP 5 NBR RESET Neighbor 2001 DB8 2 reset Peer closed the session Apr 24 16 21 57 966 BGP 5 ADJCHANGE neighbor 2001 DB8 2 Down Peer closed the session Apr 24 16 21 57 966 BGP SESSION 5 ADJCHANGE neighbor 2001 DB8 2 IPv4 Unicast topology base removed from session Peer closed the session Apr 24 16 21 58 274 BGP 5 ADJCHANGE neighbor 2001 DB8 2 Up cat6500 config router af Apr 24 16 21 58 278 BGP 1 base 2001 DB8 2 send UPDATE format 2001 DB8 1111 1111 128 next 2001 DB8 1 metric 0 path Local cat6500 config router af Looks fine we immediately got signs about a BGP prefix update cisco3925 config router af do sh ip bgp all For address family IPv4 Unicast For address family IPv6 Unicast BGP table version is 2 local router ID is 172 20 47 116 Status codes s suppressed d damped h history valid best i internal r RIB failure S Stale m multipath b backup path f RT Filter x best external a additional path c RIB compressed Origin codes i IGP e EGP incomplete RPKI validation codes V valid I invalid N Not found Network Next Hop Metric LocPrf Weight Path 2001 DB8 1111 1111 128 2001 DB8 1 0 0 1 i For address family IPv4 Multicast cisco3925 config router af do ping 2001 db8 1111 1111 Type escape sequence to abort Sending 5 100 byte ICMP Echos to 2001 DB8 1111 1111 timeout is 2 seconds Success rate is 100 percent 5 5 round trip min avg max 1 1 4 ms cisco3925 config router af network 2001 db8 2222 2222 128 cisco3925 config router af Apr 24 16 25 07 403 BGP 1 2001 DB8 2222 2222 128 route sourced locally Apr 24 16 25 07 403 BGP topo global IPv6 Unicast base Remove fwdroute for 2001 DB8 2222 2222 128 Apr 24 16 25 07 403 BGP 1 redist event 1 request for 2001 DB8 2222 2222 128 Apr 24 16 25 07 403 BGP 1 base 2001 DB8 1 send UPDATE format 2001 DB8 2222 2222 128 next 2001 DB8 2 metric 0 path Local cisco3925 config router af cat6500 config router af Apr 24 16 25 07 399 BGP 1 2001 DB8 2 rcvd UPDATE w attr nexthop 2001 DB8 2 FE80 C671 FEFF FE88 A980 origin i metric 0 merged path 2 AS PATH Apr 24 16 25 07 399 BGP 1 2001 DB8 2 rcvd 2001 DB8 2222 2222 128 Apr 24 16 25 07 399 BGP 1 Revise route installing 2001 DB8 2222 2222 128 2001 DB8 2 FE80 C671 FEFF FE88 A980 to main IPv6 table cat6500 config router af do sh ip bgp all sum For address family IPv4 Unicast BGP router identifier 192 168 2 1 local AS number 1 BGP table version is 1 main routing table version 1 Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRcd 2001 DB8 2 4 2 9 10 1 0 0 00 03 44 0 For address family IPv6 Unicast BGP router identifier 192 168 2 1 local AS number 1 BGP table version is 3 main routing table version 3 2 network entries using 336 bytes of memory 2 path entries using 208 bytes of memory 2 2 BGP path bestpath attribute entries using 272 bytes of memory 1 BGP AS PATH entries using 24 bytes of memory 0 BGP route map cache entries using 0 bytes of memory 0 BGP filter list cache entries using 0 bytes of memory BGP using 840 total bytes of memory BGP activity 2 0 prefixes 2 0 paths scan interval 60 secs Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRcd 2001 DB8 2 4 2 9 10 3 0 0 00 03 44 1 cat6500 config router af do sh ip bgp all For address family IPv4 Unicast For address family IPv6 Unicast BGP table version is 3 local router ID is 192 168 2 1 Status codes s suppressed d damped h history valid best i internal r RIB failure S Stale m multipath b backup path f RT Filter x best external

    Original URL path: https://majornetwork.net/2013/04/configuring-bgp-sessions-in-ipv6/ (2016-04-25)
    Open archived version from archive

  • Cisco Nexus 7000 Features Available on Modules – Majornetwork
    and F2e series modules interoperability with other modules in the same VDC Currently available announced modules M1 series modules 1G modules N7K M148GT 11L N7K M148GS 11L 10G modules N7K M108X2 12L N7K M132XP 12L M2 series modules 10G module N7K M224XP 23L 40G module N7K M206FQ 23L 100G module N7K M202CF 22L F1 series modules 1G 10G module N7K F132XP 15 F2 series modules 1G 10G module N7K F248XP 25 F2e series modules 1G 10G modules N7K F248XP 25E N7K F248XT 25E F3 series modules 40G module N7K F312FQ 25 100G module N7K F306CK 25 Updated July 22 2013 20 26 Tags cisco fabric extender fabricpath fcoe fex lisp macsec mpls nexus 7000 otv Previous Post Next Post 8 Comments Add a Comment Colby April 19 2013 at 22 34 There are some ERSPAN limitations on the F2 as well Might not be worth mentioning but it s something that bit me recently Reply Markku Leiniö April 19 2013 at 22 45 Colby you are absolutely right there really are other differences as well in the features They may not seem big issues but once you hit them they usually matter at that point very much Thanks for the comment now that you said it I need to inspect it myself as well a bit further SPAN ERSPAN limitations are very strange in Nexus 5500 series as well Reply Joel Knight April 22 2013 at 07 07 Markku great post Just a further point about the F2 cards True F2 cards must reside in a VDC by themselves or with F2e Additionally F2e cards cannot be in the same VDC as non F2 e cards either The roadmap for NX OS 6 2 calls for a VDC type that will allow F2e M1XL and M2 to coexist Note I did not mention F1 in that list As the F2e data sheet explains http goo gl NOYhy when run in a VDC with M series cards the F2e will operate in Layer 2 only mode and proxy L3 functions to the M series card I hope this is helpful to your readers Reply Markku Leiniö April 22 2013 at 09 01 Thanks Joel you have a valid point there In short know what you are doing when implementing F2 e modules with other modules I reworded the note a bit Reply Harry May 2 2014 at 11 18 Perhaps you also want to mention that full NetFLow is supported on the M series models whereas only sampled NetFlow on F series Reply sai November 19 2014 at 18 05 Can ERSPAN frames from the Nexus 5548 be forwared through the vpc up to the 7010 if the vPC interface on the 7010 is on a F1 series module Thanks SK Reply Markku Leiniö November 19 2014 at 20 26 Hi SK I don t see any problem in that case Are you thinking about some specific detail that would prevent the frames from being received correctly on the 7010 Reply

    Original URL path: https://majornetwork.net/2013/04/cisco-nexus-7000-features-available-on-modules/ (2016-04-25)
    Open archived version from archive

  • Networking – Page 2 – Majornetwork
    database is used if external servers are not responding If the external server says rejected then the local database is not consulted In Junos you use Read Post Review Sena Parani SD1000 Bluetooth Serial Adapter Markku Leiniö June 1 2013 Networking 15 Comments I have always disliked using serial console connection to a switch or other network device with my laptop The serial cable just ties me to that particular place and device Depending on the situation you may have options like using a console server or a dedicated management network connection But every now and then the Read Post Configuring BGP Sessions in IPv6 Markku Leiniö April 24 2013 Networking 2 Comments My colleagues were faced with an IPv6 implementation case where the router IOS feature set prevented them from configuring the BGP sessions I labbed something for them and thought this overall IPv6 BGP session configuration would be worth of documenting here because there are some differences when compared to the usual IPv4 only BGP configurations I Read Post Cisco Nexus 7000 Features Available on Modules Markku Leiniö April 19 2013 Networking 8 Comments In the Cisco Nexus 7000 series switches there are several features that are bound to the hardware meaning that your module selection restricts the features you can run on the switch ports Thus here is once again a summarization of the module dependent features Update 20 Apr 2013 Added OTV and LISP clarified M1 FEX support Update 22 Jul 2013 Read Post Cat6500 FEX or Smart Install Markku Leiniö February 26 2013 Networking Comments I was surprised when I got a broschure in Cisco Live London 2013 that said Catalyst 6500 is supposed to support FEXes Fabric Extenders in the future Does it make sense A FEX is a device that looks like a

    Original URL path: https://majornetwork.net/category/networking/page/2/ (2016-04-25)
    Open archived version from archive

  • BIG-IP – Majornetwork
    F5 BIG IP 11 6 0 HF5 ENG11 F5 BIG IP is connected here in one arm setup The SRX240 is not an interesting device in this demonstration It is just a firewall and Read Post Search for Markku Leiniö Senior Network Architect Senior Technology Consultant and CCIE 26438 Routing Switching in Finland Majornetwork on Twitter Markku Leiniö on Google Your IPv4 IPv6 Status You are using IPv4 address 81 198 240 36 Recent Posts majornetwork net Is Now TLS Enabled IPsec VPN Tunnel between F5 BIG IP and Juniper SRX SoftEther VPN with a VPN Address Pool Juniper SRX IPsec LAN to LAN VPN Part 2 Juniper SRX IPsec LAN to LAN VPN Part 1 Tags 15 0SY 15 1SY ba bridge assurance cat6500 catalyst 6500 cisco cli cmp console cygwin dual homed esxi fabric extender fabricpath fast hello fex hypervisor ios ipsec ipv6 issu juniper junos lacp linux nexus 5000 nexus 5500 nexus 7000 nx os private vlan pvlan qsfp srx srx100 sup2t sup32 sup720 switch profile sxi sxj vmware vpc vpn vsphere Archives October 2015 July 2015 May 2015 February 2015 January 2015 December 2014 November 2014 August 2014 June 2014 May 2014 September 2013 August 2013

    Original URL path: https://majornetwork.net/tag/big-ip/ (2016-04-25)
    Open archived version from archive

  • F5 – Majornetwork
    F5 BIG IP 11 6 0 HF5 ENG11 F5 BIG IP is connected here in one arm setup The SRX240 is not an interesting device in this demonstration It is just a firewall and Read Post Search for Markku Leiniö Senior Network Architect Senior Technology Consultant and CCIE 26438 Routing Switching in Finland Majornetwork on Twitter Markku Leiniö on Google Your IPv4 IPv6 Status You are using IPv4 address 81 198 240 36 Recent Posts majornetwork net Is Now TLS Enabled IPsec VPN Tunnel between F5 BIG IP and Juniper SRX SoftEther VPN with a VPN Address Pool Juniper SRX IPsec LAN to LAN VPN Part 2 Juniper SRX IPsec LAN to LAN VPN Part 1 Tags 15 0SY 15 1SY ba bridge assurance cat6500 catalyst 6500 cisco cli cmp console cygwin dual homed esxi fabric extender fabricpath fast hello fex hypervisor ios ipsec ipv6 issu juniper junos lacp linux nexus 5000 nexus 5500 nexus 7000 nx os private vlan pvlan qsfp srx srx100 sup2t sup32 sup720 switch profile sxi sxj vmware vpc vpn vsphere Archives October 2015 July 2015 May 2015 February 2015 January 2015 December 2014 November 2014 August 2014 June 2014 May 2014 September 2013 August 2013

    Original URL path: https://majornetwork.net/tag/f5/ (2016-04-25)
    Open archived version from archive

  • IPsec VPN Tunnel between F5 BIG-IP and Juniper SRX – Majornetwork
    spi a5b74270c20eef8f b94e0f24c366914d Clearly there is something wrong Since SRX said Remote IKE ID 127 0 0 1 something has to be done in BIG IP Let s go back to the IKE peer configuration and change the Presented ID settings Select Override in Presented ID and enter the system s own IP address actually the cluster IP address as this is a device cluster in the value field That helped the tunnel came up in SRX Jul 12 16 55 45 srx210 rpd 1502 EVENT UpDown st0 2 index 83 Up Broadcast PointToPoint Multicast Jul 12 16 55 45 srx210 kmd 1508 Local gateway 203 0 113 2 Remote gateway 198 51 100 10 Local ID ipv4 172 31 31 0 172 31 31 255 Remote ID ipv4 172 17 73 0 172 17 73 255 Direction inbound SPI 0xa71aae87 AUX SPI 0 Mode Tunnel Type dynamic Traffic selector TS 1 Jul 12 16 55 45 srx210 rpd 1502 EVENT UpDown st0 2 index 83 Up Broadcast PointToPoint Multicast Jul 12 16 55 45 srx210 kmd 1508 Local gateway 203 0 113 2 Remote gateway 198 51 100 10 Local ID ipv4 172 31 31 0 172 31 31 255 Remote ID ipv4 172 17 73 0 172 17 73 255 Direction outbound SPI 0x90ed5c76 AUX SPI 0 Mode Tunnel Type dynamic Traffic selector TS 1 Jul 12 16 55 45 srx210 kmd 1508 VPN instance GT F5 TS 1 268173315 from 198 51 100 10 is up Local ip 203 0 113 2 gateway name GW F5 vpn name GT F5 TS 1 tunnel id 268173315 local tunnel if st0 2 remote tunnel ip Not Available Local IKE ID 203 0 113 2 Remote IKE ID 198 51 100 10 XAUTH username Not Applicable VR id 0 Traffic selector TS 1 Traffic selector local ID ipv4 172 31 31 0 172 31 31 255 Traffic selector remote ID ipv4 172 17 73 0 172 Jul 12 16 55 45 srx210 srx210 ip mon reth scan interface st0 2 trigger reth scan Jul 12 16 55 45 srx210 mib2d 1501 ifIndex 535 ifAdminStatus up 1 ifOperStatus up 1 ifName st0 2 And in BIG IP 2015 07 12 16 55 45 INFO respond new phase 1 negotiation 127 0 0 1 500 203 0 113 2 500 2015 07 12 16 55 45 INFO begin Identity Protection mode 2015 07 12 16 55 45 INFO received Vendor ID DPD 2015 07 12 16 55 45 WARNING SPI size isn t zero but IKE proposal 2015 07 12 16 55 45 WARNING ignore INITIAL CONTACT notification because it is only accepted after phase1 2015 07 12 16 55 45 INFO ISAKMP SA established 127 0 0 1 500 203 0 113 2 500 spi 937b460c9efe69e7 c2694ed94cc8ad70 2015 07 12 16 55 45 INFO respond new phase 2 negotiation 127 0 0 1 500 203 0 113 2 500 2015 07 12 16 55 45 INFO best sp match 172 31

    Original URL path: https://majornetwork.net/2015/07/ipsec-vpn-tunnel-between-f5-big-ip-and-juniper-srx/?replytocom=2995 (2016-04-25)
    Open archived version from archive



  •