Free Network Posts

OSI or Open Systems Interconnection model consists of 7 Layers that describes how telecommunication or computing systems use to communicate or operate over a network. It was the first standard model for network communications and still widely used for network isolation and troubleshooting. Layers Functions / Applications Data Types Examples (7) Application End User / Desktop-Mail Services-Directory Services-Network Virtual Terminal-File transfer access/management Data HTTP,SMTP,FTP,SSH,DNS,Telnet,IMAP,POP3,LDAP,HTTPs,TFTP (6) Presentation Syntax/ Data Representation-Translation-Encryption/Decryption (plain to cipher text)-Compression Data ASCII,JPEG,MPEG,GIF,EBDIC (5) Session Dialog Coordination-Session establishment/maintenance/termination-Synchronization-Dialog…

Networking

Here’s the Cisco IOS commands vs Huawei OS commands Cisco IOS Huawei BASIC show display     | include | include exit quit end return configure terminal system-view shutdown shutdown  no shutdown undo shutdown     no undo  clear  reset debug debugging show running-config display current-configuration show startup-config display saved-configuration show version display version    show tech-support display diagnostic-information clear counters <interface> reset counters <int> clear line <line><line number>     terminal length <num>   screen-length disable terminal width <num>…

Cisco

Here’s a sample steps for configuring Netstream or Netflow on Huawe Router: Netstream Server = 192.168.30.100 Netstream UDP port = 9991 version = v9 Loopback IP = 1.1.1.1 Configure Netstream for IPv4 & IPv6 ip netstream timeout active <value> ip netstream export version <version#> origin-as ip netstream export template timeout-rate <value> ip netstream sampler fix-packets <packets> inbound ip netstream export source <source IP> ip netstream export host <Netstream Server IP> <port> ipv6 netstream timeout active <value> ipv6 netstream export version…

Huawei

Here’s a syslog configuration examples for Huawei Routers Remote Syslog Server IP = 10.50.50.50 Pre-configured: sysname <device hostname> Syslog Configuration: 1. Enable the logging functionality info-center enable 2. Configure the channel to send logs to the remote syslog server info-center channel 6 name <channel name> info-center source <source> channel <channel name> trap level <level> debug level <debug level> info-center source <source> channel <channel name> log level <notification | warning> 3. Configure the source interface of the logging info-center loghost source <source…

Huawei

Here’s the SNMP configuration examples for Huawei routers. Taking the following details: SNMP community: snmpcomm123 Loopback/management IP address: 192.168.10.100 SNMP Polling Server: 192.168.20.199 SNMP Trap Server: 192.168.20.200 Pre-config: (assuming Loopback0 is your source interface to send those SNMP traffic) interface LoopBack0     description _ Loopback for Huawei Router ip address 192.168.10.100 255.255.255.255 SNMPv2c Polling: 1. Configure SNMP (version can be set to all to support v1,v2c and v3) snmp-agent sys-info version all 2. Configure SNMP engine ID and community…

Huawei

Configuring Huawei Router to authenticate (also including authorization and accounting) to Tacacs+ server 10.10.10.10 – Tacacs+/ACS/ISE/AAA server#1 10.10.10.11 – Tacacs+/ACS/ISE/AAA server#2 20.20.20.2 –  Loopback/source IP Configure the tacacs server profile or template hwtacacs-server template <PROFILENAME> hwtacacs-server authentication <TACACS IP#1> hwtacacs-server authentication <TACACS IP#2> secondary hwtacacs-server authorization <TACACS IP#1> hwtacacs-server authorization <TACACS IP#2> secondary hwtacacs-server accounting <TACACS IP#1> hwtacacs-server accounting <TACACS IP#2> secondary hwtacacs-server source-ip <SOURCE IP> hwtacacs-server shared-key cipher <TACACS KEY> hwtacacs-server user-name original Sample Config: hwtacacs-server template freenetworktutorials  …

Huawei

One of the Best Security Practice and Recommendation is to configure Huawei Router in client mode and never run as  NTP server. NTP Server1: 192.168.10.101 NTP Server1: 192.168.10.102 Configuration: ntp-service server disable ntp-service ipv6 server disable ntp-service unicast-server 192.168.10.101 ntp-service unicast-server 192.168.10.102 Verification: display ntp-service status display ntp-service sessions If authentication is enabled on your NTP server. -Enable the NTP service authentication function -Configure the NTP authentication key -Specify the NTP key -Configure the NTP server(s) with the authentication key…

Huawei

SSH Configuration Examples in  Huawei Router Here are the configuration examples: whereas: 192.168.100.100 = Jumphost IP (Allowed IP to SSH into the device) Enable the SSH service stelnet server enable 2. Configure key exchange algorithm ssh server key-exchange { dh_group_exchange_sha256 dh_group_exchange_sha1 ecdh_sha2_nistp256 ecdh_sha2_nistp384 ecdh_sha2_nistp521 sm2_kep} 3. Configure encryption algorithm ssh server cipher { aes256_ctr aes128_ctr aes256_cbc aes128_cbc 3des_cbc } 4. Configure HMAC algorithm ssh server hmac { md5 | md5_96 | sha1 | sha1_96 | sha2_256 | sha2_256_96 } 5.…

Huawei

As per Cisco documentation, Smart Call Home offers proactive diagnostics and real-time alerts on select Cisco devices, which provides higher network availability and increased operational efficiency. There are few ways on sending these alerts, it can be either by email or http. Sample Configuration using Email Method: callhome contract-id [value] switch-priority 7 email-contact [email-address] phone-contact [phone number] streetaddress [address] distribute destination-profile [PROFILENAME] destination-profile [PROFILENAME] format XML destination-profile [PROFILENAME] message-size [value] destination-profile [PROFILENAME] message-level 2 destination-profile [PROFILENAME] email-addr callhome@cisco.com destination-profile [PROFILENAME]…

Cisco

As per Cisco documentation: A virtual PortChannel (vPC) allows links that are physically connected to two different Cisco Nexus devices to appear as a single Port Channel to a third device. The third device can be a Cisco Nexus 2000 Series Fabric Extender or a switch, server, or any other networking device. A vPC can provide Layer 2 multipathing, which allows you to create redundancy by increasing bandwidth, enabling multiple parallel paths between nodes and load-balancing traffic where alternative paths…

Cisco