LACP For AP’s With Two Ethernet Ports

LACP for AP's - Set GRE Striping IP

Reading Time: 9 minutes I was asked on how to configure LACP for AP’s connected to a controller and I was not able to answer this question out of my mind so I decided to figure it out for myself. And as always, when I need to test something, I write a post about it. This is my post … Read more

DHCP Vendor Class Identifier – DHCP Option 60

Reading Time: 4 minutes In several meetings I get the question, how can I sent different DHCP options to different devices. The answer is to use the DHCP Vendor Class Identifier, DHCP option 60. Every device sends this option to the DHCP Server, and each DHCP Server can answer with specific options, depending on the option 60. I will … Read more

Operator Command Authorization and Accounting with ClearPass TACACS+

Reading Time: 4 minutes This is the second post on the TACACS+ topic. This time the post is all about TACACS+ operator command authorization and accounting. This is very helpful for logging who does what at which time and makes troubleshooting easier. Operator command authorization and accounting means, that all commands issued at the device, are sent to the … Read more

Operator Login with ClearPass TACACS+

Reading Time: 10 minutes This post is all about operator login with ClearPass. I show the implementation of authenticating a network operator to Aruba Switches, Comware based switches, Aruba Controller and AirWave. For some devices, I will show the process with TACACS+. For those, which do not support TACACS+, I use radius authentication, which I describe in a later … Read more

VXLAN WAN and IPSec

Reading Time: 7 minutes I did this post for two reasons. First I would like to demonstrate the possibility to extend a layer 2 network with VXLAN over a WAN connection and second to show the configuration of two VSR routers creating an IPSec tunnel with one router being on a dynamic IP address. The reason for me, to … Read more

HowTo: IPSec Tunnel with dynamic IP’s

Reading Time: 5 minutes In this post I would like to show how I created an IPSec tunnel between my lab and my workstation. I have a static IP only for my lab, but not for the workstation and I was looking for an easy way to interconnect both to do some wireless testing without sitting in the noisy … Read more

HowTo: Configure SNMPv3

Reading Time: 3 minutes In this post, I will describe how you can configure SNMPv3 on Comware based and provision based switches. SNMP is used by management systems to monitor and configure network devices. As the information which are send and received by the SNMP speaking devices could be sensitive, you should have security in place to protect the … Read more

HowTo: Tacacs Device Authentication

Reading Time: 6 minutes This post will show, how to configure Tacacs device authentication in iMC TAM, on a Comware device and on a provision based device. If you would like to use Tacacs device authentication together with Active Directory, you can manage this by connecting iMC TAM to Active Directory, using this how to: How To: iMC Tacacs+ … Read more

IRF MAD Detection

Reading Time: 5 minutes This post is about the IRF MAD detection methods, used with in HPN Comware based switches.  The purpose of IRF MAD is to prevent the split-brain scenario. If a split-brain occur, an IRF stack is broken, because of an link failure of one or more IRF links, or one or more IRF member switches experience … Read more

MSM Version 6.5, Unified P32 and HP 525 AP

Reading Time: 2 minutes In the last days we get a new software version for the MSM controller and the HP Unified Solution and a new AP, the HP 525 dual-radio 802.11ac AP. MSM Version 6.5 The released MSM version 6.5 brings support for the HP 560 802.11ac AP and the autonomous mode for this AP. Now, you can … Read more