About jpl861

jpl861 · 04-25-2025

We have multiple RAVPN firewalls worldwide, including ISE per region. Our admin node is in our EU data center, and we have policy nodes per region. All our RAVPN firewalls have the same configuration, but we’re having a weird issue. The dACLs we’re g...

jpl861 · 10-08-2024

Hello. I am trying to figure out route summary between Tenant or VRF. Let's say I have Tenant1:VRF1 and Tenant2:VRF2. VRF1, let's say have like 1000 10.x.x.x subnets. Then in VRF2, you have an external vendor that would need to monitor your entire ne...

jpl861 · 10-08-2022

Quick question guys. For exam and real world use purposes. What is the more acceptable way to enable SRTE for ISIS?There are two options I have been testing and both of them seem to enable SRTE. Thanks!Option 1:router isis SPaddress-family ipv4 unica...

jpl861 · 06-07-2022

Is there a reserved range for VXLAN VNI that I am not supposed to use? I did a very simple spine and leaf topology, initially I have two spines and two leaves but due to some issues, I turned off the second spine. I tried to map the followingVlan 10...

jpl861 · 04-14-2022

Hello. I'm doing DMZ-Link BW in IOS XR and IOS XE as my internet facing router in the lab. For IOS, the bandwidth is 1024kbps and for XR it is 256k. Configurations below (I removed all unnecessary configs) R1 (XE)interface Ethernet0/2bandwidth 1024ip...

jpl861 · 04-25-2025

Hello. Sorry I didn't see this thread for a long time. Yes, the topology is something like that. I have reached out to someone who's doing ACI and I was told that there is no way to summarize the smaller subnets prior to leaking it out to the other t...

jpl861 · 10-08-2022

Thank you. I actually tested this months ago and if I remember it right, when I used OSPF as the IGP the SRTE policy went up right away and I didn't even define router-id. I also didn't try to configure the mpls te configurations under the routing pr...

jpl861 · 06-23-2022

I was actually doing some lab regarding this and you can actually make this work in IPv4 network as long as the source AS is the same as the receiving AS.Sample below:AS15---AS16---AS17If you advertise networks of AS15 to AS16 then you configure AS-O...

jpl861 · 06-07-2022

Got it! It's just weird because the CLI says I can start with 1. nx9kv3(config-vlan)# vn-segment ?<0-0> Segment-id<1-16777214> Segment-id

jpl861 · 03-19-2022

Virtual environment. I used GNS3 for this one and use the Wireshark capture feature of the software. The MAC addresses look correct but only the VLAN ID is wrong.

Member Since	‎02-02-2007 03:47 AM
Date Last Visited	‎04-25-2025 12:40 AM
Posts	560
Total Helpful Votes Received	187

User Statistics

User Activity

Corrupted dACLs received from ISE

Route Summary Between Tenants or VRF in Cisco ACI

Enable SRTE for ISIS

Is there a reserved range for VXLAN VNI?

DMZ-Link BW using XE and XR

Re: Route Summary Between Tenants or VRF in Cisco ACI

Re: Enable SRTE for ISIS

Re: Understanding BGP AS-Override Feature

Re: Is there a reserved range for VXLAN VNI?

Re: Non Native VLAN 1 Trunk IEEE/SSTP BPDU