Posts in 2013
-
QoS Part I: Classification and Marking
Friday, January 11, 2013 in Cisco Networking
QoS Part I: Classification and Marking Quality of Service (QoS) is the ability to provide different levels of performance for individual applications and services that run over the networks. Different application attributes such as constant vs. burst …
-
OSPF: Advertising routes on the Interface
Thursday, January 03, 2013 in Cisco Networking
The routes can be advertised using the “network” command, but there is also another way. You can do an entire configuration on the Interface Level! ** Cisqueros_R2(config-if)# ip ospf network point-to-point** ** Cisqueros_R2(config-if)# …
Posts in 2012
-
ACE Load Balancer: Configure the Load-Balancing Service
Monday, December 24, 2012 in Cisco Networking
There are quite a few ways to structure the configuration of the Load Balancing Service on a Cisco ACE device, or a Load Balancer (LB). The official Cisco documentation can be a bit overwhelming, as you can see here. Heres the approach that I´ve …
-
ACE Load Balancer: Redirection - HTTP to HTTP/HTTPS
Monday, December 03, 2012 in Cisco Networking
In this document I´ll explain how to filter the http protocol on a Cisco ACE Load Balancer, and how to redirect the filtered http traffic to another URL. This concept is widely used for http-to-https redirection. Step 1 Create the redirection rserver …
-
DAI - Dynamic ARP Inspection
Friday, November 23, 2012 in Cisco Networking
(config)#ip arp inspection vlan 2 <— Inspect ARP within the VLAN 2 You can create a ARP Access List and map the IP to MAC, and apply it to DAI: ** (config)#arp access-list ARP_ACL_20** ** (config-arp-nacl)#permit ip host 20.1.1.2 mac host …
-
ACE Load Balancer SSL Certificate Part I, Generate the CSR
Sunday, November 11, 2012 in Cisco Networking
ACE Load Balancer SSL Certificate Part I, Generate the CSR (Certificate Signing Request) You have more than one Real Servers, and its much more practical to install an SSL certificate once, on the ACE Load Balancer, then to install it on each and any …
-
ACE Load Balancer SSL Certificate Part II: Install the SSL Certificate
Wednesday, October 10, 2012 in Cisco Networking
ACE Load Balancer SSL Certificate Part II: Install the SSL Certificate Once you´ve obtained an actual certificate from one of the Certificate Authorities, such as VeriSign or Thawte you may proceed to the certificate implementation. As you may see on …
-
VTP - Should we use it?
Monday, September 17, 2012 in Cisco Networking
VLAN Trunking Protocol: most commands can be configured in PRIVILEGED, CONFIGURE or DATABASE mode - Have in mind that there is no way to dis-configure the VTP DOMAIN NAME (by default its NULL). You have to delete flash:vlan.dat and erase the Startup …
-
Spanning Tree: Root Election and Path Tuning
Wednesday, September 12, 2012 in Cisco Networking
The concept is rather simple - The Switches send these probes called the BPDUs (Bridge Protocol Data Units) to discover loops in the network. If the BPDU “returns” – there is a loop in the network! BPDU = 4-bit-PRIORITY + MAC Address Spanning tree is …
-
Dot1q Tunneling: 802.1q, QinQ Tunneling
Monday, July 23, 2012 in Cisco Networking
When a TUNNEL port receives Customers Traffic - INGRESS PORT adds 2 Byte EtherType field 0x8100 + 2 Bytes for CoS and VLAN Eggress tunnel port STRIPS THESE 4 BYTES ** (config-if)#switchport access vlan 100** ** (config-if)#switchport mode …