LACP For AP’s With Two Ethernet Ports

LACP for AP's - Set GRE Striping IP

Reading Time: 9 minutesI was asked on how to configure LACP for AP’s connected to a controller and I was not able to answer this question out of my mind so I decided to figure it out for myself. And as always, when I need to test something, I write a post about it. This is my post … Read more

DHCP Vendor Class Identifier – DHCP Option 60

Reading Time: 4 minutesIn several meetings I get the question, how can I sent different DHCP options to different devices. The answer is to use the DHCP Vendor Class Identifier, DHCP option 60. Every device sends this option to the DHCP Server, and each DHCP Server can answer with specific options, depending on the option 60. I will … Read more

Operator Command Authorization and Accounting with ClearPass TACACS+

Reading Time: 4 minutesThis is the second post on the TACACS+ topic. This time the post is all about TACACS+ operator command authorization and accounting. This is very helpful for logging who does what at which time and makes troubleshooting easier. Operator command authorization and accounting means, that all commands issued at the device, are sent to the … Read more

Operator Login with ClearPass TACACS+

Reading Time: 10 minutesThis post is all about operator login with ClearPass. I show the implementation of authenticating a network operator to Aruba Switches, Comware based switches, Aruba Controller and AirWave. For some devices, I will show the process with TACACS+. For those, which do not support TACACS+, I use radius authentication, which I describe in a later … Read more

VXLAN WAN and IPSec

Reading Time: 7 minutesI did this post for two reasons. First I would like to demonstrate the possibility to extend a layer 2 network with VXLAN over a WAN connection and second to show the configuration of two VSR routers creating an IPSec tunnel with one router being on a dynamic IP address. The reason for me, to … Read more

HowTo: Configure SNMPv3

Reading Time: 3 minutesIn this post, I will describe how you can configure SNMPv3 on Comware based and provision based switches. SNMP is used by management systems to monitor and configure network devices. As the information which are send and received by the SNMP speaking devices could be sensitive, you should have security in place to protect the … Read more

HowTo: Tacacs Device Authentication

Reading Time: 6 minutesThis post will show, how to configure Tacacs device authentication in iMC TAM, on a Comware device and on a provision based device. If you would like to use Tacacs device authentication together with Active Directory, you can manage this by connecting iMC TAM to Active Directory, using this how to: How To: iMC Tacacs+ … Read more

IRF MAD Detection

Reading Time: 5 minutesThis post is about the IRF MAD detection methods, used with in HPN Comware based switches.  The purpose of IRF MAD is to prevent the split-brain scenario. If a split-brain occur, an IRF stack is broken, because of an link failure of one or more IRF links, or one or more IRF member switches experience … Read more