Category: <span>Cisco</span>

As per Cisco definition: Hot Standby Router Protocol (HSRP) provides redundancy for IP networks, ensuring that user traffic immediately and transparently recovers from first hop router failures. HSRP allows multiple routers on a single LAN to share a virtual IP and MAC address which is configured as the default gateway on the hosts. From the group of routers configured in an HSRP group, there is one router elected as the active router and another as a standby router. The active…

Cisco

As per Cisco documentation, Smart Call Home offers proactive diagnostics and real-time alerts on select Cisco devices, which provides higher network availability and increased operational efficiency. There are few ways on sending these alerts, it can be either by email or http. Sample Configuration using Email Method call-home service active sender reply-to <sender-email-address> sender from <sender-email-address> mail-server <SMTP Server IP> priority <1-100> phone-number <+contact person phone number> contact-email-addr <contact-person-email-add> street-address “<street add,city,state,zipcode> profile <profilename> active destination address email <dest-email-address> destination…

Cisco

Assuming you have this type of card on your Cisco ASR9000 Series Router and inserted on Slot 0 A9K-MOD80-SE –> 80G Modular Linecard, Service Edge Optimized A9K-MPA-4X10GE –> ASR 9000 4-port 10GE Modular Port Adapter Here’s the following commands that can be used: show pfm location all show asic-errors all location 0/0/cpu0 show controllers fabric fia stats location 0/0/cpu0 show controllers np counters all location 0/0/cpu0 show controllers fabric fia stats location 0/0/cpu0 show controllers fabric crossbar statistics instance 0…

Cisco

We are going to configure VRRP between the 2 pairs of routers and the expected behavior, setup as per below: Setup: 1. Routers PE1,PE2,FW1 and FW2 are connected to the same Layer 2 Switch and belongs to the same VLAN. 2. L2-Switch will just function as Layer 2 switch (subnet 192.168.2.240/29) 3. VRRP is configured between PE1 & PE2 3. VRRP is configured between FW1 & FW2   Fig.1 IP & VRRP Configuration: L2-SWITCH L2-SWITCH#conf t a. Setup access VLAN…

Cisco Networking

Here are sample static route configuration on Cisco IOS-XR routers such as CRS and ASR9000. 1.Configure IPv4 default route to next hop 192.168.10.3 (via Bundle-Ether1) router static address-family ipv4 unicast 0.0.0.0/0 Bundle-Ether1 192.168.10.3   2.Configure IPv4 default route to next hop 192.168.10.3 (via Bundle-Ether1) underr vrf management router static vrf management address-family ipv4 unicast 0.0.0.0/0 Bundle-Ether1 192.168.10.3   3. Configure IPv4 for 192.168.0.0/16 range to Null interface (e.g. for BGP advertisement) with 100 distance metric router static address-family ipv4 unicast…

Cisco

It is recommended to implement the separation of management and data/customer traffic in your Datacenter switches like  Cisco IOS and IOS-XE (e.g. ASR1000).  Traffic passing through the management plane should be exclusively for management or administrative access purposes only like SSH, SNMP, NTP and AAA. Here’s the recommended configuration or practices for these management services. Configure Authentication, Authorization and Accounting (AAA) -preferably to setup centralized TACACS+ to manage all your devices, some uses Cisco® Identity Services Engine (ISE) for central…

Cisco

It is recommended to implement the separation of management and data/customer traffic in your Datacenter switches like  Cisco IOS-XR devices (e.g. ASR 9000, CRS).  Traffic passing through the management plane should be exclusively for management or administrative access purposes only like SSH, SNMP, NTP and AAA. Here’s the recommended configuration or practices for these management services. Configure Authentication, Authorization and Accounting (AAA) -preferably to setup centralized TACACS+ to manage all your devices, some uses Cisco® Identity Services Engine (ISE) for…

Cisco

It is recommended to implement the separation of management and data/customer traffic in your Datacenter switches like  Cisco Nexus devices (e.g. Nexus 7000, Nexus 9000).  Traffic passing through the management plane should be exclusively for management or administrative access purposes only like SSH, SNMP, NTP and AAA. Here’s the recommended configuration or practices for these management services. Configure Authentication, Authorization and Accounting (AAA) -preferably to setup centralized TACACS+ to manage all your devices, some uses Cisco® Identity Services Engine (ISE)…

Cisco

As mentioned from the previous post, Bogon prefixes or routes should never appear in the Internet routing table. Network Engineers should implement “Best Practices” in their network, that includes filtering of bogons as it maybe used in DDoS attacks or Spams. Refer to https://freenetworktutorials.com/ipv4-and-ipv6-bogon-address-list  for more info. “Martians” bogons may changed occasionally so at least make sure private address mentioned in https://freenetworktutorials.com/ipv4-classful-and-reserved-addresses are filtered so it wont leak out into the Internet. Here is sample steps and configuration. 1. Create the Ingress…

Cisco

Dynamic Host Configuration Protocol, or DHCP, is a network protocol used (via DHCP server) to dynamically or automatically assign IP address and other info (e.g.Gateway,DNS) to each hosts in the network. Here’s a sample configuration of running DHCP server in a Layer 3 switch. Host Setup: Gateway: 192.168.10.1 Netmask: 255.255.255.0 DNS Server: 192.168.20.254, 8.8.8.8 Layer 3 Switch(tested in Cisco 49xx) VLAN ID: 888 IP Block: 192.168.10.0/24   Fig.A. Hosts connected to switch Configure respective interfaces for access vlan L3-Switch#conf t…

Cisco