Hi guys and girls, I am so sorry for this long time. It was really awesome how Alpine Linux is. I have tried in my home lab to make some different ntp server on my different vm on different proxmox hypervisors. I have tried OpenNTPd. Unfortunately I was not able to make it works. My Cisco switches cry with :

.Apr 16 21:56:47.016: NTP: rcv packet from 10.20.0.3 to 10.20.0.252 on Vlan200:
.Apr 16 21:56:47.016:  leap 3, mode 2, version 3, stratum 2, ppoll 64
.Apr 16 21:56:47.016:  rtdel 0328 (12.329), rtdsp 0000 (0.000), refid 5242284F (82.66.40.79)
.Apr 16 21:56:47.016:  ref EBAA89A0.323EAFFF (21:55:12.196 CET Wed Apr 16 2025)
.Apr 16 21:56:47.016:  org EBAA89FF.049EF92D (21:56:47.018 CET Wed Apr 16 2025)
.Apr 16 21:56:47.016:  rec EBAA89FD.D3E977FF (21:56:45.827 CET Wed Apr 16 2025)
.Apr 16 21:56:47.016:  xmt EBAA89FD.D3E9C7FF (21:56:45.827 CET Wed Apr 16 2025)
.Apr 16 21:56:47.016:  inp EBAA89FF.056B27F5 (21:56:47.021 CET Wed Apr 16 2025)
.Apr 16 21:56:47.016: NTP: packet from 10.20.0.3 failed validity tests 20
.Apr 16 21:56:47.016: Peer/Server Clock unsynchronized

And :

You probably already have this warning and think you have correctly installed php8.X-imagick. You check lot of times, but don’t search how to remove it.

Try this :

# apt-get install libmagickcore-6.q16-6-extra

$ whois -h whois.ripe.net POEM-RIPE55-SONG
[...]

% Information related to 'POEM-RIPE55-SONG'

poem: POEM-RIPE55-SONG
form: FORM-PROSE
descr: At his first RIPE meeting, Gary wrote this and performed at
descr: the closing plenary. It was truly awesome.
descr: http://www.youtube.com/watch?v=_y36fG2Oba0
descr:
text: A long long time ago
text: I can still remember
text: when my laptop could connect elsewhere.
text:
text: And I tell you all there was a day
text: the network card I threw away
text: had a purpose - and it worked for you and me.
text:
text: But 18 years completely wasted
text: with each address we've aggregated
text: the tables overflowing
text: the traffic just stopped flowing...
text:
text: And now we're bearing all the scars
text: and all my traceroutes showing stars.
text: The packets would travel faster in cars
text: the day the routers died.
[... continued ...]

1. To be able to correct “Too many redirection” 

Add this code to the backend pool. Services -> HAProxy -> Settings -> Virtual Service -> Backend Pools -> your backend pool -> Edit -> Advanced Mode -> Option pass-through:

#force SSL redirect redirect scheme https if !{ ssl_fc } # close open connections option http-server-close # add X-FORWARDED-FOR option forwardfor # add X-Forwarded-Proto http-request set-header X-Forwarded-Proto https if { ssl_fc }

If you need to use ACME plugin to register certificate (by using nsupdate (RFC2136)), you could be faced on the problem below

Nov  6 07:58:24 Sagitarius named[121]: client @0x7f68640c70d0 10.20.3.1#50544/key opnsense: signer "opnsense" approved
Nov  6 07:58:24 Sagitarius named[121]: client @0x7f68640c70d0 10.20.3.1#50544/key opnsense: updating zone 'clucas.fr/IN': adding an RR at '_acme-challenge.cloud-home.clucas.fr' TXT "-_UEEMEIYvUxwoHWhBbdxiSzil62dgNoHCBfZJCzIiE"
Nov  6 07:58:24 Sagitarius named[121]: /etc/bind/clucas.fr.zone.jnl: create: permission denied
Nov  6 07:58:24 Sagitarius named[121]: client @0x7f68640c70d0 10.20.3.1#50544/key opnsense: updating zone 'clucas.fr/IN': error: journal open failed: unexpected error

You can try to ’touch’ this file, here “clucas.fr.zone.jnl”. Even if you change owner, permission (even 777), you will not ble able to make it work. You will be face this time on :

I don’t really easily documentary to configure BFD (RFC5880 and you could read precedent blog-post : BFD : Bidirectional Forwarding Detection (RFC5880)) between IOSXE and IOSXR boxes.

Here it comes :-)

IOSXE : 

R0# show run | sec bfd 
bfd fast-timers-on-slow-interface
bfd-template single-hop BFD
   interval min-tx 200 min-rx 200 multiplier 3
[...]
R0#show run int port-ch 14
Building configuration...

Current configuration : 373 bytes
!
interface Port-channel14
description *** Vers R1_Be10000 ***
mtu 9202
ip address 172.18.255.29 255.255.255.252
ip ospf authentication message-digest
ip ospf message-digest-key 10 md5 7 XXXXXXXXXXXXXXXXXX
ip ospf network point-to-point
ip ospf bfd
ip ospf cost 20000
no negotiation auto
mpls ip
port-channel bfd destination ipv4 172.18.255.30 BFD
end

R0#

IOS XR : 

AS me if you want to use plotly.express module and you fail with somethink like :

ImportError: Plotly express requires pandas to be installed.

It seems obvious : “pip3 install pandas”. But it can fail with :

>> import pandas
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/__init__.py", line 48, in <module>
from pandas.core.api import (
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/api.py", line 47, in <module>
from pandas.core.groupby import (
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/groupby/__init__.py", line 1, in <module>
from pandas.core.groupby.generic import (
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/groupby/generic.py", line 77, in <module>
from pandas.core.frame import DataFrame
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/frame.py", line 171, in <module>
from pandas.core.generic import NDFrame
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/generic.py", line 148, in <module>
from pandas.core.describe import describe_ndframe
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/core/describe.py", line 43, in <module>
from pandas.io.formats.format import format_percentiles
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/io/formats/format.py", line 105, in <module>
from pandas.io.common import (
File "/root/src/tango-batch/venv/lib/python3.9/site-packages/pandas/io/common.py", line 8, in <module>
import bz2
File "/usr/local/lib/python3.9/bz2.py", line 18, in <module>
from _bz2 import BZ2Compressor, BZ2Decompressor
ModuleNotFoundError: No module named '_bz2'

the way to correct it (if as me you have compiled your version of Python) :

J’ai eu de bonnes intentions en début d’années de produire du contenu en Français sur différents sujets réseaux et télécoms de niveau basiques, mais j’avoue que cela s’est vite arrêté.

Le but était de fournir tout en un :

• Video explicative ;
• Une fiche d’étude rapide au format cheatsheet ;
• Un guide de travail ;
• Un accès à un lab guidé

Bon j’avoue cela prend énormément de temps et d’autres projets personnels sont venus s’intercalés.

If as me you have EVE-NG (2.0.3) and lab some Cisco XRV9K-Full on a virtualized box running AMD Ryzen processor, you have probably encountered problem to start the image. After reading lot of website, it seems the answer is change the command line.

My original command line is :

-enable-kvm -smbios type=1,manufacturer="cisco",product=\"Cisco IOS XRv 9000\",uuid=[...] -cpu host

I correct to :

-enable-kvm -smbios type=1,manufacturer="cisco",product="Cisco IOS XRv 9000",uuid=[...] -cpu qemu64,+ssse3,+sse4.1,+sse4.2

For one time this blog post will not be around Telecom and Cisco/Juniper/Nokia or something like this.

Just to keep in mind how to replace a faulty device in a ZFS pool.

I have :

root@pve:~# zpool status -x
root@pve:~#  zpool status
  pool: pve-zfs
 state: DEGRADED
status: One or more devices could not be used because the label is missing or
        invalid.  Sufficient replicas exist for the pool to continue
        functioning in a degraded state.
action: Replace the device using 'zpool replace'.
   see: http://zfsonlinux.org/msg/ZFS-8000-4J
  scan: resilvered 41.9M in 0 days 00:00:11 with 0 errors on Sun Jul 24 13:38:51 2022
config:

        NAME                        STATE     READ WRITE CKSUM
        pve-zfs                     DEGRADED     0     0     0
          mirror-0                  DEGRADED     0     0     0
            wwn-0x50014ee267b78b52  ONLINE       0     0     0
            2534239155907356895     FAULTED      0     0     0  was /dev/sdb1
          mirror-1                  ONLINE       0     0     0
            wwn-0x50014ee267b63342  ONLINE       0     0     0
            wwn-0x50014ee2bd0cf6b4  ONLINE       0     0     0

errors: No known data errors

But how to replace this faulty device when all the howto on the net talk about replace/make offline the old disk… But in my situation I have made an RMA on the disk and don’t have mind to make the faulty device offline.