Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a OSPF domain across a region (mainly 6500 switches) thatmake up the distribution layers. Off these are aggregation routers which is where we have customerBGP peerings. These aggreagation routers are usually in each of the geographic areas.Cur...
All,Need to get some validation on the below.In summary, our border routers dont have any filtering on, but this needs tostart happening in a slow progression (eg blocking our address space inbound etc)I am proposing an ACL that is applied to our IP ...
Hi All,I have devices on our inside LAN (10.0.0.0/24) that are hardcoded to speak to an IP address: 1.1.1.1. Now 1.1.1.1 is being decomissioned, and I want to ensure that when our internal hosts route attempt to route to 1.1.1.1 they are forwarded to...
hi all,
i have SWITCH A connected to SWITCH B with two parallel links between them. Both links are trunks.
SWITCH A is the root for all vlans.
on one of the links between switches I have a device inline -a tcp accelerator device and as such I need ...
Hi all,
I work in the service provider industry and recently took on the responsibilities of the transit and peering. I am working through extending the use of communities to control traffic within our business over some current as path filtering and...
Hi thanks for both of your replies. The aim is to start to clamp down on the environment and in this case I want to allow traffic from known sources to terminate vpn tunnels behind our border routers, everything else to be blocked at the border. By ...
Hi Paul and John,Apologies for not replying sooner.There has been a change in direction on this solution as it appears we are not able to DNAT due to limitations on the systems. Unfortunately because of this, I wasnt able to progress this any further...
Hi mark,
thank you for your valuable input. One question, what impact does setting the cost on SWITCH A on port away from the root have towards SWITH B? I was under the impression the cost is used to influence the cost to the root bridge, and in this...
Hi Philip,
thank you. I would tag the routes from IX and tag our transit routes as well both with different communities and ensure the IX learned routes do not get sent out the transit and vice versa. This to me is best practises.
im just considering...
Hi mark,
sorry for the late response and thanks for the reply.
i did clear the ip arp at the router as well but not at the same time as doing the switch, maybe 20 mins later or so. Not sure if I should have done them immediately after each other but ...
