Telecom

When your router takes so long time to learn routes, do not try to tweak too long Time your bgp router process… Think mtu ;-) it is not unique solution but it is big one ;-)

I was reading all my RSS feeds and I am subscribed to http://mellowd.co.uk/ccie/ . I have noticed this post for you : http://mellowd.co.uk/ccie/?p=2923 It talks about RD, RT and label about MPLS. I found this post really clear about this terms and concepts.

To sum-up :

• RD = marks routes with an ‘id’. This ‘id’ is composed by two terms (IP_ASN:number)
  • IP_ASN : IP address or ASN
  • Number : which identify the VPN

I recommand to use IP in IP_ASN. I understand it is really easy to read : 3215:100 and not 81.252.160.88:100. The last one is less easy, but when you deploy a large MPLS cloud and you must supply some load-balancing or fail-over on different PE, the RR(Route Reflector) will choice the best route in the two : 3215:100:192.168.1.0 which is received). With IP1:100:192.168.1.0 and IP2:100:192.168.1.0 the two routes will be used, so you will be able to load balance trafic over two links.

For those of you which need to access by means of “Remote Desktop” you can use :

• Nomachine NX
• Teamviewer
• VNC

And you can use both LogmeIn Hamachi and VNC. Hamachi is a software which can make network betweeen devices. Against logmein product which lot of you know, here it is at Level2 (OSI).

 

How you create your VPN ?

For Linux users, you must install vnc4server and hamachi (supplied by LogmeIn) package (dpkg is your friend). Then you launch your vnc server :

You can find a little challenge below :

The MPLS is not working… There’s no problem on the Frame-Relay cloud (it works perfectly). But you cannot ping from R5 to R4 :(

• R4.cfg
• R5.cfg
• R6.cfg

Troubleshoot it. It is not really hard.

For those of you which configuring IPSec and have packet loss in transit… Perhaps this configuration could help :

crypto ipsec client ezvpn REGISBTP
 connect auto
 group VPN-CLIENT2 key jsdfxkqwpoe
 local-address FastEthernet0
 mode network-extension
 peer 22.22.22.22
 username ipsec1@client2.vpn password jsdfxkqwpoe
 xauth userid mode local

interface FastEthernet0
 ip address 192.168.1.36 255.255.255.0
 ip mtu 1460
 no ip route-cache cef
 ip tcp adjust-mss 1420
 duplex auto
 speed auto
 crypto ipsec client ezvpn CLIENT2
!         

interface Vlan1
 ip address 10.20.0.1 255.255.255.0
 ip mtu 1460
 ip virtual-reassembly
 ip tcp adjust-mss 1420
 crypto ipsec client ezvpn CLIENT2 inside
!         
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.1.254

The really interesting command (which resolves packet loss) is :

Hello,

I don’t know if you already have had to reply with multiple same type of attributes (with FreeRadius) such as multiple : “Frame-Route”.

You can do this with the operator ‘+=’ (when you use FreeRadius with MySQL backend).

Hope this helps…

Hi guys,

If like me, you begin in Brocade world and must quickly upgrade a Brocade device such as a CER2000, you can find here some (stupid) tips.

You must upgrade this device in two parts :

• Upgrade your ironware
• Upgrade your PBIF (FGPA)

Yo upgrade your ironware :

In my example, I have make the choice to put the ironware on secondary flash. For thus of you which come from Cisco world, it is not seen such a disk, where you can copy what you want.

To begin : How to calculate the ASN 4 bytes we need to configure it ?

So : ASN-decimal = 197632.

197632 % 65536 = 3

And

197632 - (65536 * 3) = 1024

Ok. Now we can configure it on a Cisco router :

router bgp XXXX

nei 197.66.55.33 remote-as 3.1024

I let you go on the configuration as always it works.

I have had to use this feature on Brocade hardware stuff. I know how to do this on Cisco devices, but it is the first time I must do on Brocade switches to sniff trafic.

To do this :

FCX(config)# mirror-port ethernet 1/2/4

FCX(config)#interface ethernet 1/2/11

FCX(config-if-e1000-11)# monitor ethernet 1/2/4 both

Hope this tip can help :)

Ok. If you have read my last post, you could say : “Ok, but when do you begin for real ?!”

I have beginning by working on a study plan. When the ennemy is hard as can be CCIE, you must have a plan to beat it. This is what I have now. I think I will update it during the journey toward my objective, but I think it is a right roadmap. For me, it is a TODO List and something which remind/force me to go on…