Skip to main content

From IOS to Junos – Final Day – Part 4 (BGP)

This serious show clearly how tiredness cause simple mistakes :)










Some Troubleshooting



Comments

Popular posts from this blog

ASR1006 Dual Route Processors Password Recovery - Tip

I recently ran into an issue when trying to perform dual route processors password recovery on a Cisco  ASR1006
Problem
After breaking into rommon mode and using confreg to ignore the startup configuration, during the rest the ASR1006 loaded the startup configuration!!!!!!!!
Solution
So quick and simple, I pulled one of the RP and preformed password recovery running on a single RP. All went according to the Cisco documentation

http://www.cisco.com/en/US/docs/routers/asr1000/install/guide/routers/asr1_hwc.html#wp1045971



After the system running on a single RP was recovered and fully booted I waiting for 5 minutes just to be sure; then I inserted the second RP and allowed everything to sync up.



All was well again :) phew



Note: The system was previously fully functioning with dual RPs; a configuration error was made during Tacacs+ configuration which resulted in lockout.


Summary
I hit an issue recovering and ASR with dual RPs, so rather that spending hour researching, I decided very quickly to go …

Where are all the AAA and PKI solutions gone for Dot1x

More Question than answers
(This series will be based on an enterprise with >20,000 dot1x devices)

I have been looking into dot1x authentication for Wired and Wireless devices based on device identity using x.509 Certificates. While I understand PKI, AAA, PEAP and sorts I had never really had the opertunity to bring these technologies together. I quickly found out that despite this stuff being around for years,  it was difficult to answer the following questions:

Which PKI solution should I use?
Which AAA solution should I use?
How to setup the PKI solution?
Does the PKI server need to be part of AD?
What if the clients are not in AD e.g. Wireless Tablets?
How do I issue certificates for devices?
How to configure the devices (wired and wireless)?
What AAA server do I use?
How do configure the rules and policies and identify clients?


What are the answers?
I am going to kick off a series here at networking-guru.net that tries to address the question above; I have limited time but hopefully I can …

NetGuruSubnetCalc

This is a straightforward no nonsense Subnet Calculator. It does however allow you to pull up the subnet information you have been working on in the iPhone Todays Widget View. This means that the subnet information is just a slide away.




Developed my me. Now Available

http://itunes.apple.com/gb/app/id941632787