all about networking
In several meetings I get the question, how can I sent different DHCP options to different devices. The answer is to use the DHCP Vendor Class Identifier, DHCP option 60. Every device sends this option to the DHCP Server, and each DHCP Server can answer with specific options, depending on the option 60. I will … Read moreDHCP Vendor Class Identifier – DHCP Option 60
This is the second post on the TACACS+ topic. This time the post is all about TACACS+ operator command authorization and accounting. This is very helpful for logging who does what at which time and makes troubleshooting easier. Operator command authorization and accounting means, that all commands issued at the device, are sent to the … Read moreOperator Command Authorization and Accounting with ClearPass TACACS+
This post is all about operator login with ClearPass. I show the implementation of authenticating a network operator to Aruba Switches, Comware based switches, Aruba Controller and AirWave. For some devices, I will show the process with TACACS+. For those, which do not support TACACS+, I use radius authentication, which I describe in a later … Read moreOperator Login with ClearPass TACACS+
I did this post for two reasons. First I would like to demonstrate the possibility to extend a layer 2 network with VXLAN over a WAN connection and second to show the configuration of two VSR routers creating an IPSec tunnel with one router being on a dynamic IP address. The reason for me, to … Read moreVXLAN WAN and IPSec
In this post I would like to show how I created an IPSec tunnel between my lab and my workstation. I have a static IP only for my lab, but not for the workstation and I was looking for an easy way to interconnect both to do some wireless testing without sitting in the noisy … Read moreHowTo: IPSec Tunnel with dynamic IP’s
In this post, I will describe how you can configure SNMPv3 on Comware based and provision based switches. SNMP is used by management systems to monitor and configure network devices. As the information which are send and received by the SNMP speaking devices could be sensitive, you should have security in place to protect the … Read moreHowTo: Configure SNMPv3
This post will show, how to configure Tacacs device authentication in iMC TAM, on a Comware device and on a provision based device. If you would like to use Tacacs device authentication together with Active Directory, you can manage this by connecting iMC TAM to Active Directory, using this how to: How To: iMC Tacacs+ … Read moreHowTo: Tacacs Device Authentication
This post is about the IRF MAD detection methods, used with in HPN Comware based switches. The purpose of IRF MAD is to prevent the split-brain scenario. If a split-brain occur, an IRF stack is broken, because of an link failure of one or more IRF links, or one or more IRF member switches experience … Read moreIRF MAD Detection
In the last days we get a new software version for the MSM controller and the HP Unified Solution and a new AP, the HP 525 dual-radio 802.11ac AP. MSM Version 6.5 The released MSM version 6.5 brings support for the HP 560 802.11ac AP and the autonomous mode for this AP. Now, you can … Read moreMSM Version 6.5, Unified P32 and HP 525 AP
This time I would like to show, how to use the UAM captive portal with the MSM solution. As the MSM solution did not support the portal protocol, which is used to transfer all the necessary information from the UAM captive portal server to the access device, we have to use at least one Comware … Read moreHowTo: MSM with UAM Captive Portal