IT LABS

Spanning Tree Protocol is not a good idea especially if we take into consideration data center. Wasting of bandwith by blocking links in environement which demands the highest throughput, is not desirable. Virtual Port Channel feature sorts it out in simple and clever way.

FlexVPN is being called “one to rule them all” and there is no exaggeration in this statement. VPN that allows you for site to site connection with the remained VPNs like VTI, DMVPN and by the way for remote access as well. Let’s break FlexVPN down  based on site to site configuration. 

When we think AAA server we think about Radius and TACACS+ servers. The servers that are responsible for authentication, authorization and accounting. What is, what we may get of AAA server and how to use its, let’s check it on real examples.

In simple network that doesn’t consists of a large numbers of routers, doesn’t relay on more than one routing protocol or doesn’t use BGP you may never come across Route Maps, but if one of above conditions is fullfiled then for sure sooner or later you will have to consider using route maps. What are, when and…

Everything is going seamlessly regarding redistribution if we have only one point of redistribution, but when we add another router on the edge of 2 routing protocols, for instance in order to provide “high availability” by adding another point of failure to get redundancy,  then our network is exposed to very inefficient sub-optimal routing.

Since ASDM and “wizards” are being used, knowing Command Line Interface on ASA to configure its seems to be unnecessary, but knowledge about what particular commands are responsible for and how they work is demanding if you will have to  troubleshoot SSL. In this topic you will se how to configure Remote Access with SSL and VPN.with command…

There is no doubt, on the edge of the network some kind of the redundancy is always desireable.In this article I am going to discuss 2 examples to provide redundancy. First one: there is ONE router with 2 WAN connections leading to different ISPs and second one we have TWO switches with 2 WAN connections leading…

If we can virtualize  layer 2 with Vlans, maybe there is a solution that enables us to virtualize layer 3 on a router? If we could separate the traffic within the same  interface and prevent particular flow in participating in choosen routing processes. In other words alike on ASA where we create contexts in order to split one single chassis…

One of the first things that you will have to configure on the new router is configuration of  a service which is called NAT or to be more specified PAT in case if you got only one public IP address. This article explained what are public and private addresses and what is a difference between Network Address Translation  and…

There are 2 kinds of VPN IPSEC tunnels : Policy Based which is based on “crypto maps” and implementation them on the physical interfaces and Route Based which is based on virtual interfaces (tunnel interfaces). In this article I will talk them over, show how to implement them, when we may to pick up particular…

  If we are going to inject networks from one routing protocol into another, in order to do that we need to conduct redistribution process. There are a few ways to accomplish that. I would like to focus on 4 of them: simple redistribution, with Redistribution lists, with Prefix Lists and with Route Maps. 

VTI – Virtual Tunnel Interface has been invented as a simple deployment of VPN in conjunction with IPSec. Easiness of implementation, multicasts and QoS support, makes VTI interesting alternative to GRE Tunnel.

In both routing protocols OSPF and EIGRP route summarization and default route propagation are crucial, especially if you have complex network with a lot of prefixes. Properly implemented summarization can save a lot of router resources. Let’s check how to implement both features and what is “mystery” null0 interface involved in summarization.

Enhanced Interior Gateway Routing Protocol (EIGRP) is considered deprecated routing protocol. In my opinion unfairly. Despite  EIGRP is distance vector protocol (or rather hybrid protocol) is still being utilized in small and medium networks. Reliability and efficiency in connection with simplicity of deployment  make EIGRP still worth of considering routing protocol, especially, that has DUAL algorithm .

Menu