Articles in the networking category

  1. load-interval 30: For and Against

    Posted on in networking

    The "load-interval" command is used in network configuration settings, particularly in Cisco routers and switches, to specify the interval at which the interface's load statistics are updated and collected. Setting "load-interval 30" means that the device will collect load statistics for the interface every 30 seconds. The choice of this …

  2. Most Popular Network Reliability Technologies in 2023

    Posted on in networking

    The most popular network reliability technologies in 2023 are:

    • Network automation: This is the use of software to automate network tasks, such as provisioning, monitoring, and troubleshooting. Network automation can help to improve network reliability by reducing human errors and increasing efficiency.
    • AIOps (Artificial Intelligence for IT Operations): This is …
  3. What is TCP1323Opts?

    Posted on in networking

    TCP1323Opts is a registry value that controls the use of the TCP Timestamp and Window Scaling options. These options are described in RFC 1323, which is an update to the original TCP/IP specification.

    The TCP Timestamp option allows TCP to measure the round-trip time (RTT) between two hosts. This …

  4. TACACS Detected 'Invalid Argument'

    Posted on in Networking

    As always, I've changed pertinent details for reasons.

    I was working on an ASR the other day and received the follow error:

    RP/0/RSP0/CPU0:ASR9K(config-tacacs-host)# commit
    Fri Jul 29 12:55:46.243 PDT
    
    % Failed to commit one or more configuration items during a pseudo-atomic
    operation. All …
  5. [OS X] Disable IPv6 Address Privacy

    Posted on in Networking

    For those that are really into privacy, the Privacy Extensions defined in RFC 4941 are a really good thing. This extension circumvents SLAAC and has the result of randomizing your IPv6 address. Like I said, if privacy is a big deal for you, this is definitely something you want enabled …

  6. [Cisco] Telnet/SSH work, HTTP Gives Permission Denied

    Posted on in Networking

    Here are a few tips that might be helpful if you are having trouble accessing your Cisco router or switch via the web server.

    • Make sure you have the right password! This is pretty obvious, but it's definitely the first thing worth checking.
    • If you're using aaa new-model, you will …
  7. Disable Spanning-Tree Per VLAN

    Posted on in Networking

    If you need to disable spanning-tree on a particular VLAN in your Cisco-based network, use the following command:

    Switch(config)# no spanning-tree vlan 13
    

    This will disable spanning-tree on unlucky VLAN 13.

    If you have some good examples of why you might want to disable spanning-tree for a VLAN, please …

  8. Recover Lost Pre-Shared Keys

    Posted on in Networking

    Not everyone has a great password maintenance process. If you run into a situation where the group pre-shared keys for your VPN are lost, you face the option of changing the existing key (and breaking any users that are currently working), or creating a new group with a new key …

  9. Cisco IPS Inline Bypass Mode

    Posted on in Networking

    On occasion, you may need to put your Cisco IPS into bypass mode. Bypass mode allows the IPS to pass traffic without inspecting it. This may be useful if you suspect the IPS is causing a problem, if you are going to run a one-time scan that would set the …

  10. Enabling Stateful Switchover in the Cisco ASR1000

    Posted on in Networking

    When you get your brand new Cisco ASR1000 series router, Stateful Switchover (SSO) is disabled by default:

    Router# show redundancy states
           my state = 13 -ACTIVE 
         peer state = 1  -DISABLED 
               Mode = Simplex
            Unit ID = 6
    Redundancy Mode (Operational) = Non-redundant
    Redundancy Mode (Configured)  = Non-redundant
    Redundancy State              = Non Redundant
    

    Enable SSO!

    Router# config …
  11. What are BGP Update-Groups?

    Posted on in Networking

    You've certainly noticed when look at individual BGP routes on your Cisco routers that the route is advertised to specific update-groups. It isn't obvious from that output just what those update-groups are.

    Router#show ip bgp 8.8.8.8       
    BGP routing table entry for 8.8.8.0/24 …
  12. Cisco Catalyst NVRAM Corruption

    Posted on in Networking

    This is an annoying problem:

    Switch#write
    startup-config file open failed (Not enough space)
    
    Switch#dir nvram:
    Directory of nvram:/
    
    %Error opening nvram:/ (Function not implemented)
    
    1048576 bytes total (1034573 bytes free)
    

    Cisco Catalyst switches simulate NVRAM on their flash. Once in a blue moon, this simulated NVRAM will become …

  13. QM FSM Error? Check Your Transform-Set

    Posted on in Networking

    If you see an error like the one below in your Cisco ASA log files, check with the other end and make sure your transform-set matches.

    QM FSM error (P2 struct &0xd7fed708, mess id 0xcc86fb64)!
    

    The QM FSM error message usually relates to a configuration mismatch. Although checking the crypto …

  14. Alternative to 'show policy-map interface' on Catalyst Switches

    Posted on in Networking

    Old Cisco Systems LogoIf you're using policy-maps on your Cisco Catalyst switches to handle rate-limiting, you may have noticed that on some models, the show policy-map interface command does not seem to work. The CLI accepts the command and returns properly formatted output, but the output is all zeroes. There is no information …

  15. Brand New ME3400G Can't Ping!

    Posted on in Networking

    Old Cisco Systems LogoAfter cracking open a brand new Catalyst ME3400G, we weren't able to get it upgraded to the latest version of software. In fact, we couldn't even ping anything on the local subnet.

    In order to use Cisco's Metro Ethernet switches, it's important to understand the new concepts that are introduced …

Slaptijack's Koding Kraken