You are browsing archives for
This is the second post on the TACACS+ topic. This time the post is all about TACACS+ operator command authorization and accounting. This is very helpful for logging who does what at which time and makes troubleshooting easier. Operator command authorization and accounting means, that all commands issued at the device, are sent to the […]
This post is all about operator login with ClearPass. I show the implementation of authenticating a network operator to Aruba Switches, Comware based switches, Aruba Controller and AirWave. For some devices, I will show the process with TACACS+. For those, which do not support TACACS+, I use radius authentication, which I describe in a later […]
I did this post for two reasons. First I would like to demonstrate the possibility to extend a layer 2 network with VXLAN over a WAN connection and second to show the configuration of two VSR routers creating an IPSec tunnel with one router being on a dynamic IP address. The reason for me, to […]
In this post I would like to show how I created an IPSec tunnel between my lab and my workstation. I have a static IP only for my lab, but not for the workstation and I was looking for an easy way to interconnect both to do some wireless testing without sitting in the noisy […]
In this post, I will describe how you can configure SNMPv3 on comware based and provision based switches. SNMP is used by management systems to monitor and configure network devices. As the information which are send and received by the SNMP speaking devices could be sensitive, you should have security in place to protect the […]
This post will show, how to configure Tacacs device authentication in iMC TAM, on a comware device and on a provision based device. If you would like to use Tacacs device authentication together with Active Directory, you can manage this by connecting iMC TAM to Active Directory, using this how to: How To: iMC Tacacs+ […]
This post is about the IRF MAD detection methods, used with in HPN comware based switches. The purpose of IRF MAD is to prevent the split-brain scenario. If a split-brain occur, an IRF stack is broken, because of an link failure of one or more IRF links, or one or more IRF member switches experience […]
In the last days we get a new software version for the MSM controller and the HP Unified Solution and a new AP, the HP 525 dual-radio 802.11ac AP. MSM Version 6.5 The released MSM version 6.5 brings support for the HP 560 802.11ac AP and the autonomous mode for this AP. Now, you can […]
This time I would like to show, how to use the UAM captive portal with the MSM solution. As the MSM solution did not support the portal protocol, which is used to transfer all the necessary information from the UAM captive portal server to the access device, we have to use at least one comware […]
Today, I would like to show the installation of the HP VSR (Virtual Service Router) on an ESXi host. It should also work for ESX. The VSR is a virtual router, running on VMWare and KVM. It will also run in VMWare player and workstation without consuming a lot of resources, which makes it ideal […]