Aruba Networks, ClearPass

ClearPass – dual interface and routing

René Jorissen on February 20, 2017 0 Comments • Tags: #clearpass #data #mgmt #routing

When you are using both interfaces on a ClearPass server (MGMT and DATA) than ClearPass uses the DATA interface to connect to services, like LDAPS to Active Directory, SMTP delivery, Active Directory joining and more. ClearPass uses the DATA interface as default gateway if no specific route is available on the MGMT interface. That being … Read More

Routing

XS4ALL, Cisco 877 and IPv6

René Jorissen on February 1, 2011 1 Comment • Tags: #advertisements #autoconfiguration #bvi #cscej5092 #delegation #dhcpv6 #generalprefix #ipv6 #otherconfigflag #prefix #router #routing

A while ago my ISP XS4ALL started with the distribution of IPv6 prefixes to their customers. So as a network engineer I wanted to have my own /48 prefix. Sadly I didn’t had time to start testing at the beginning of the IPv6 “launch”. Last week I found some time to start my testing. I … Read More

Configuration Example, Routing

Policy-based routing in a nutshell

René Jorissen on October 13, 2010 1 Comment • Tags: #based #c #cisco #pbr #policy #routing

Lately I received some questions about routing decisions and how to influence the routing decisions via access control lists. The following example shows a simple configuration for policy-based routing. The example uses the following logical setup: I configured two routers and connected each router to two PVC’s on the same ATM interface. I configured one … Read More

Configuration Example, Routing

HSRP and ACL’s

René Jorissen on October 1, 2008 0 Comments • Tags: #1985 #access #accesslist #acl #hot #hsrp #list #multicast #protocol #routing #standby #udp

I added a Guest VLAN to a network environment with two multi layer switches running HSRP. To secure the internal network from the Guest VLAN, I added a ACL to the Guest VLAN SVI. The ACL is stated below: ip access-list extended GUEST-DENY-RFC1918 remark Allow DHCP permit udp any eq bootpc any remark Deny RFC … Read More

Configuration Example, Routing

Policy-Based Routing Catalyst 3560

René Jorissen on June 30, 2008 13 Comments • Tags: #3560 #based #pbr #policy #routemap #routing

Today I visited a customer where the power a Cisco Catalyst 3548XL blew up. The switch had a manufacture date of December 2000. It is an old one, but still I haven’t seen a power supply being blown up from a Cisco switch from that age. But oké, the switch needed to be replaced. The … Read More

Firewalling

Cisco Firewall Design and Deployment

René Jorissen on June 25, 2008 0 Comments • Tags: #access #active #asa #bridging #context #dynamic #fwsm #mixed #mode #multicontext #multicast #multiple #protocol #redundancy #redundant #remote #routed #routing #sitetosite #standby #transparant #virtualization #vpn

The session about firewall design and deployment didn’t reveal a lot of new things about the Cisco ASA appliance or FWSM module. The only new thing for me was the possibility to configure a redundant interface for a Cisco ASA appliance. The screen shot below shows the cabling scheme for an implementation with and without … Read More