A pretty generic image for a pretty generic discussion, this is intro course #2 that is going to be centered around Data Models such as NETCONFIG / RESTCONFIG / YANG, so this is a very generic overview of why Data Models are needed. This does have some relevance in my next Intro to YANG post, … Continue reading ENAUTO – Another Intro post for the NETCONF and RESTCONF / YANG course, try not to fall asleep reading it! 🙂
I tried to find a Jason Mask in ASCII but I settled for this image, I think its up there with the elephant with its Trunk stuck to a womans face, pretty awesome stuff 🙂 This was kind of mess to throw together (as you will see) though I believe I got most of the … Continue reading ENAUTO – JSON LIVES(!), review of all things JSON (Objects, Strings, Arrays), object example, and awesome website / learning method to EASILY LEARN JSON!
Cisco DNA (Digital Network Architecture) Center is an all-in-one physical appliance (as of this writing), which works off "Intent Based Configuration" its own Proprietary "Single Glass Pane" GUI, which allows for Centralized Automation of the entire network and all network elements. What all DNA Center does for a network and what "Intent Based Configuration" is … Continue reading ENAUTO – DNA Center Fundamentals, Architecture, DNA Specific APIC / API, ISE Security Services, and lots of other info!
GIT is something you will need to be able to work with, as this is how you will find your own needed Data Model Templates in Code Repositories such as GitHub or BitBucket, so I wanted to hit this topic hard and keep everything as concise as possible. Developers do not need to be on … Continue reading ENAUTO – Working with GIT (and installing it in Linux), Terminology Discussed, and a look at different Branching and Merging concepts!
Using this Topology I will work across the EIGRP Domain using EIGRP Named Mode, possibly mixing some "Classic" mode EIGRP Routers in there as well, just to see how things are different once I've gotten into a Named Mode groove of configuration. Honestly before running through this lab (when studying for my CCNP R/S) I … Continue reading EIGRP – Quick review of EIGRP Named Mode, walk through of “Named Mode” EIGRP Configuration with Authentication across the entire EIGRP AS 100 Domain!
No PE to CE Adjcancencies, we are getting this entire lab rocking, tonight! 🙂 I don't usually blow away labs as I learn along the way, as I essentially turned all customer into 1:1 mappings across the MPLS, and its just not worth your time reading (you can refer to here for 1:1 Customer mappings). … Continue reading MPLS – Re-Engineering a 1:1 Customer MPLS L3 VPN Tunnel to serve entire company, tons of ENARSI Topics included in lab, including gotchas for exam day! 🙂
This won't be a real long lab, as its more just removing OSPF as the WAN, configuring the ISP Router with point to point static routes to each site, then adding a single default route out to the Internet like you would any site in the Front Door VRF and associating both the Physical and … Continue reading DMVPN w/ Front Door VRF – Finally got it with static routing instead of trying to use OSPF over the WAN to form Adjacencies!
I have to honestly say, I am so relieved (for now) to have this smaller Topology to demonstrate how and why Front Door VRF's work, why they work and why we care about them at all when no Cisco training material mentions them. Warning - This is another post that doesn't really teach you how … Continue reading DMVPN / Front Door VRF – A long lab of trying to get this to work, but it is fighting me all the way, to be continued…
One thing to note when going through DMVPN / Legacy or VTY Site-to-Site IPSec VPN profiles, is the IPSec configuration is basically always the same, though it has many variables that can be fine tuned whether its building an IPSec Profile to apply to a Tunnel Interface or building a Crypto Map both require basically … Continue reading Site-to-Site VPN – VTI (Virtual Tunnel Int) VPN discussion, configuration, and differences from Legacy Site-to-Site VPN!
This is referred to as "Legacy IPSec Site to Site VPN" which is kind of surprising to me that its already labeled legacy (outdated), however I'll get through a very light weight configuration specifically to encrypt communication between 18.104.22.168/32 and 22.214.171.124/32. All other traffic will be passed normally, those two specific src / dst IP's … Continue reading Site-to-Site VPN – Legacy IPSec Site-to-Site VPN Tunnel configuration demo, some verification, very straight forward!
I have not delved too deeply into QoS in general in my network studies (shame on me), however I will try to make this as intelligible as possible for my first time really looking at the basic concept of getting QoS to work on packets being encapsulated and encrypted! Quick review of IPSec built-in QoS … Continue reading DMVPN – QoS over DMVPN Tunnels using built in ToS Byte Preserve, then a lab on class-map configuration and “QoS Pre-Classify” configuration for DMVPN!
There will actually be no labbing of this one, as the same configurations will still apply to building tunnel interfaces, with just a few tweaks for the Routing Protocols swapped. What type of OSPF Area is used, why it is used, and additional OSPF configs Being that these Branches are going to have a single … Continue reading DMVPN – Quick review (non-labbed) of configs needed for OSPF as the Branches IGP with BGP running over the WAN!
The above Topology has already been configured with its respective IP Addressing / Routing Protocols, all Adjacencies are Up/Up, and we are ready to jump straight into NHRP (Next Hop Resolution Protocol) configuration on the Hub / NHS (Next Hop Server) which will be PHX1 Router in this Topology and then onto the DMVPN Spokes! … Continue reading DMVPN – Huge DMVPN Lab, multi-branch deployment considerations, Phase 1 to Phase 2 DMVPN clearly demonstrated, lots of configuration and verification!
Above is a Topology that demonstrates a few things right off the bat, A) it wants to establish an mGRE Tunnel to Branch2 from Branch1, b) To do this it needs to send an "NHRP Query" Packet to the NHRP Server HubRouter to get information on HOW to create a tunnel with Branch 2, c) … Continue reading DMVPN – NHRP Client / Server Protocol review, how dynamic tunnels are formed, the different NHRP Phases, and an Intro to DMVPN definitions!
On April 5th 2016 (4/5/2016), I made my first post to this blog, and today on October 10th 2019 (10/10/2019) I have passed my final CCNP Exam the TSHOOT 300-135 🙂 Along the way I have hit many major life events that could very well have stopped my progress, gave me a reason to put … Continue reading CCNP R/S Certified – 1,283 days and 286 posts on Loopedback.com later! 🙂