How to configure an open SSID with MAC address filtering on the Cisco 3850.
Python script combining APIC-EM uniq and PSIRT APIs.
Python APIC-EM script for software inventory
During a recent Nexus 5k upgrade task Layer3 features were preventing non-disruptive ISSU’s from taking place. It became apparent that some N5Ks had unused features/ applications installed and the licenses deployed across the estate were unknown. So I wrote a Python APIC-EM script to audit and download this information. The script has the following flow/... Continue Reading →
! hostname R1 ! ipv6 unicast-routing ! interface Loopback1 ipv6 address 2001:A:B:1000::1/64 ipv6 enable ! interface FastEthernet0/0 ipv6 address 2001:A:B::2/127 ipv6 enable ! interface FastEthernet1/0 ipv6 address 2001:A:A:1000::2/127 ipv6 enable ! router eigrp CONFIG-IF ! address-family ipv6 unicast autonomous-system 65000 ! af-interface default passive-interface exit-af-interface ! af-interface FastEthernet0/0 no passive-interface exit-af-interface ! af-interface FastEthernet1/0 summary-address... Continue Reading →
I am currently experimenting running an IPv6 only WLAN at work, so thought I'd try experimenting at home. Whereas at work we have a CSR1000v to perform the NAT64 and a separate Linux VM for DNS64, the config below details combining both functions on a Raspberry Pi (RPi). The topology looks like this: apt-get install... Continue Reading →
This configuration details how to setup an SSL VPN in 'tunnel mode' on a router running v15 IOS. Such a configuration could be run implemented on a small to mid-size remote site utilising an ISR router. Firstly install the AnyConnect package onto the router: ! webvpn install svc flash:/anyconnect-linux-64-4.2.01035-k9.pkg sequence 1 ! Confirm the package... Continue Reading →
I recently upgraded the IPSec tunnel running between a customer site and my ASA used for SNMP monitoring. The same customer was also having ADSL2 issues at another site so a spare ISR G1 (1841) router from my lab was deployed. Problem with the first generation ISR is that they do not support IKEv2. This... Continue Reading →
Half way through our ISE pre-production testing it was decided to move all of the nodes into a new sub-domain. Moving the PSN and secondary Administration node was simply a case of de-registering and re-adding the nodes. From notes I had read online, it was not possible to do the same with the Primary Administration... Continue Reading →