Category: Switching
User tunnel not operational
HPE Aruba switches have the concept of user-based tunnelling. In short, the wired connections behave like a wireless connection. All traffic from the wired client is tunnelled to the central controller. This provides functions like central firewalling and micro-segmentation by blocking inter-user traffic. Yesterday I had a customer complaining that multiple clients weren’t able to … Read More
Aruba Networks, Configuration Example, Switching
AOS – WireShark: remote capture
AOS switches have the option to monitor / copy traffic from port A to port B. You also have the option to send the monitor traffic to a remote switch or even to a remote host. When the remote host is running WireShark, the monitored traffic can be analysed on the remote host. First you … Read More
Aruba Networks, ClearPass, Configuration Example, Security, Switching
Downloadable User-Roles and NTP sync
The HPE Aruba switches have this cool feature called downloadable user-roles (DUR). DUR enables the switch to use a central ClearPass server to download user-roles to the switch for authenticated users. More and more customers want to implement wired authentication to strengthen the security level of their network. Via DUR the switches perform an HTTPS … Read More
Cisco IOS-XE 16.x
Cisco has release new IOS-XE software, called IOS-XE Denali 16.x. This software is available for Cisco ASR routers and Cisco Catalyst 3850/3650 switches. In the end IOS-XE Denali should be available for all switches. A good overview of Cisco Catalyst IOS XE Denali is explained in this Youtube video from Tech Field Day. Below you … Read More
Configuration Example, Switching
ProCurve – Secure Management
Managing networking components is possible via a web interface or via a command-line interface. It doesn’t matter which method you prefer, but it does matter that the connection should be secure. If you use telnet (cli) or http (web interface) the management traffic is send clear-text across the network. I still notice that a lot of … Read More
Cisco cable-diagnostics with TDR
Some Cisco switches have a way to check the condition of copper cables. This can be done via de command test cable-diagnostics tdr. TDR stands for Time Domain Reflector. More information about Time Domain Reflector can be found at the Cisco Support Community. The command can be very useful for basic layer 1 troubleshooting. core01#test … Read More