Jump to content

brwainer

Member
  • Posts

    3,303
  • Joined

  • Last visited

Reputation Activity

  1. Agree
    brwainer reacted to Skiiwee29 in Which are the best youtube channels that teach configuring network, WAN, firewall, vlan, vpn, etc?   
    Network chuck is a good channel to learn basics of networking. 
     
    https://youtube.com/@NetworkChuck?feature=shared
     
  2. Agree
    brwainer reacted to LAwLz in SDWAN (ipsec) vs MPLS   
    On paper yes, but a better question is, does it matter? In most cases, it doesn't. The small amount of overhead or the delay from encryption are in many cases so small the benefit outweighs the drawback.
     
     
    Something worth keeping in mind is that if you have MPLS, you might not want to use IPSec on top of that. The interface that is connected to MPLS can still be an SD-WAN member though.
     
    SD-WAN is at its best when you have multiple paths to the same destination. For example, you might have an MPLS connection, a regular Internet connection, and an IPSec tunnel sourced from the regular Internet-facing interface. 
  3. Agree
    brwainer got a reaction from Lurick in SDWAN (ipsec) vs MPLS   
    In strict terms, the things you asked about are true. However, there are other factors that can mitigate these.
    The SDWAN appliances can do header compression/decompression of the headers within the traffic being tunneled, frequently canceling out the added header of the tunnel itself (at least the one we use can, not a general promise of feature availability) When using a known secure underlay such as MPLS, you can choose to send traffic without encryption (again, at least our SDWAN can) which means it just has a minimal header added to get to the other end the added latency of encryption and decryption is generally negligible compared to the latency of just getting to the other side (speed of light * distance latency)
  4. Agree
    brwainer reacted to mynameisjuan in how prevalent is cisco networking gear in the real world   
    The irony in that statement in which Cisco is considered vendor locked where as Ubiquiti isn't.
     
    Learning IOS-* paves the way for ease of transition to a large majority of other vendors.
     
    Even the most regarded GUIs are meh at best and it becomes clear whenever you get familiar with any NOS' CLI. You will never get responsiveness, verbose/condensed output, more fluid configuration or a multitude of methods to interface with a GUI the way you do with CLI. CLI is still king and will be the go to for the foreseeable future.
     
    Don't fall in the trap that GUIs are easier as in most instances they are not (there are exceptions of course for specific configs). Some GUIs can make things more convoluted or tedious requiring a dozen or more steps across various unrelated directories where the same config would be a few lines at worse. Unifi is notorious for this and one reason why I consider it among one of the worse GUIs on the market. Pretty != good/easy.
     
    GUIs have their use cases but each one is easily replaced by almost any NMS if possible.
     
     
    show | compare commit check commit confirmed commit and-quit FTFY
     
    RFCs are not standards, they are strongly recommended guidelines to abide by.
  5. Like
    brwainer got a reaction from MiszS in how prevalent is cisco networking gear in the real world   
    I’m working at a Fortune 500 company as a Lead Network Engineer. A few weeks ago, myself and three of my colleagues flew out to a new datacenter to rack and set up $2 million worth of Cisco and F5 equipment. Nexus 9K switches in spine and leaf topology, with Catalyst 9300L switches for the out of band management, and Catalyst 8500 routers. Each one we performed initial setup on purely from serial console. All programming of them done via CLI after they got online too. The VXLAN config will be done via Nexus Fabric Manager, but that’s it and we’d be comfortable doing it by hand if we hadn’t been given it for free. We’re connecting console servers to provide OOB serial access as well. If we had gone with Arista or Juniper for this deployment, the overall methods would have been the same - I haven’t seen a GUI yet that is good enough to completely replace the speed at which you can get precise information out of a CLI. GUIs are good when you are taking a larger overall view at something, or to enable templates and standardized workflows.
     
    Except for when they try to teach their automation tools, anything you learn about Cisco will be transferable to general networking principals and other vendors. I had a networking class in college that was just using a CCNA Study Guide as the course material, and at my first job after that I mainly touched Aruba/HP and then later Ruckus/Brocade switches, and the knowledge I gained follow the Cisco methods was still useful to me.
     
    At my second job, we used hardly any Cisco equipment. And even so, when talking to my manager about what I should study and certifications to try to get to further my career both with that company and in general, I was told to continue on the Cisco certification path.
     
    At my current employer, when I applied for my first position here, the role was for removing Cisco routers from over 1000 branch locations and replacing them with a non-Cisco SDWAN appliance. And yet the fact that I was CCNA certified was a deciding factor between me and another candidate.
     
    Try to recognize in your studies what is an industry standard, such as protocols and RFCs that everyone has to abide by, and what is Cisco’s way of implementing things. Sometimes the way Cisco does things becomes the standard that everyone follows, and sometimes they go off on their own, and its only the requirement of interoperability that keeps things minimally compatible.
  6. Agree
    brwainer got a reaction from da na in Why tf are server chassis so expensive   
    Also consider that a Chassis like that typically includes the drive backplane and often the PSU(s) as well, which are low-volume specialized parts as far as these things go. If you look at the cost breakdown of a Backblaze pod you’ll see the backplanes cost as much or more than the bent metal, and they designed fairly simple ones that just need to do SATA, not full SAS.
  7. Like
    brwainer got a reaction from Needfuldoer in how prevalent is cisco networking gear in the real world   
    I’m working at a Fortune 500 company as a Lead Network Engineer. A few weeks ago, myself and three of my colleagues flew out to a new datacenter to rack and set up $2 million worth of Cisco and F5 equipment. Nexus 9K switches in spine and leaf topology, with Catalyst 9300L switches for the out of band management, and Catalyst 8500 routers. Each one we performed initial setup on purely from serial console. All programming of them done via CLI after they got online too. The VXLAN config will be done via Nexus Fabric Manager, but that’s it and we’d be comfortable doing it by hand if we hadn’t been given it for free. We’re connecting console servers to provide OOB serial access as well. If we had gone with Arista or Juniper for this deployment, the overall methods would have been the same - I haven’t seen a GUI yet that is good enough to completely replace the speed at which you can get precise information out of a CLI. GUIs are good when you are taking a larger overall view at something, or to enable templates and standardized workflows.
     
    Except for when they try to teach their automation tools, anything you learn about Cisco will be transferable to general networking principals and other vendors. I had a networking class in college that was just using a CCNA Study Guide as the course material, and at my first job after that I mainly touched Aruba/HP and then later Ruckus/Brocade switches, and the knowledge I gained follow the Cisco methods was still useful to me.
     
    At my second job, we used hardly any Cisco equipment. And even so, when talking to my manager about what I should study and certifications to try to get to further my career both with that company and in general, I was told to continue on the Cisco certification path.
     
    At my current employer, when I applied for my first position here, the role was for removing Cisco routers from over 1000 branch locations and replacing them with a non-Cisco SDWAN appliance. And yet the fact that I was CCNA certified was a deciding factor between me and another candidate.
     
    Try to recognize in your studies what is an industry standard, such as protocols and RFCs that everyone has to abide by, and what is Cisco’s way of implementing things. Sometimes the way Cisco does things becomes the standard that everyone follows, and sometimes they go off on their own, and its only the requirement of interoperability that keeps things minimally compatible.
  8. Like
    brwainer got a reaction from Lurick in Why tf are server chassis so expensive   
    Also consider that a Chassis like that typically includes the drive backplane and often the PSU(s) as well, which are low-volume specialized parts as far as these things go. If you look at the cost breakdown of a Backblaze pod you’ll see the backplanes cost as much or more than the bent metal, and they designed fairly simple ones that just need to do SATA, not full SAS.
  9. Like
    brwainer got a reaction from Lurick in how prevalent is cisco networking gear in the real world   
    I’m working at a Fortune 500 company as a Lead Network Engineer. A few weeks ago, myself and three of my colleagues flew out to a new datacenter to rack and set up $2 million worth of Cisco and F5 equipment. Nexus 9K switches in spine and leaf topology, with Catalyst 9300L switches for the out of band management, and Catalyst 8500 routers. Each one we performed initial setup on purely from serial console. All programming of them done via CLI after they got online too. The VXLAN config will be done via Nexus Fabric Manager, but that’s it and we’d be comfortable doing it by hand if we hadn’t been given it for free. We’re connecting console servers to provide OOB serial access as well. If we had gone with Arista or Juniper for this deployment, the overall methods would have been the same - I haven’t seen a GUI yet that is good enough to completely replace the speed at which you can get precise information out of a CLI. GUIs are good when you are taking a larger overall view at something, or to enable templates and standardized workflows.
     
    Except for when they try to teach their automation tools, anything you learn about Cisco will be transferable to general networking principals and other vendors. I had a networking class in college that was just using a CCNA Study Guide as the course material, and at my first job after that I mainly touched Aruba/HP and then later Ruckus/Brocade switches, and the knowledge I gained follow the Cisco methods was still useful to me.
     
    At my second job, we used hardly any Cisco equipment. And even so, when talking to my manager about what I should study and certifications to try to get to further my career both with that company and in general, I was told to continue on the Cisco certification path.
     
    At my current employer, when I applied for my first position here, the role was for removing Cisco routers from over 1000 branch locations and replacing them with a non-Cisco SDWAN appliance. And yet the fact that I was CCNA certified was a deciding factor between me and another candidate.
     
    Try to recognize in your studies what is an industry standard, such as protocols and RFCs that everyone has to abide by, and what is Cisco’s way of implementing things. Sometimes the way Cisco does things becomes the standard that everyone follows, and sometimes they go off on their own, and its only the requirement of interoperability that keeps things minimally compatible.
  10. Agree
    brwainer reacted to YoungBlade in Why tf are server chassis so expensive   
    While the raw materials cost of the chassis isn't going to be much, sure, the cost of machining and assembly for a 60 drive chassis is not insignificant. All of the drive bays and the chassis itself are going to be built to spec with smaller tolerances than what you would get in a consumer case. This is because, once 60 drives are involved, the amount of vibration from them is pretty extreme. The chassis cannot be allowed to rattle about as a result of the drives spinning, so it needs to be built more precisely. It's also highly likely that it needs to ultimately be assembled by hand, which is going to require someone with experience - not a minimum wage employee - and there would be a lot of QC checks.
     
    A business isn't going to blink at spending $2000 AUD, or even $2000 USD, for a chassis for their server, but they will be beyond furious if the chassis causes drive failures and loss of data.
     
    Basically, while it might seem excessive for a case, the company likely isn't making that extreme of margins on it at the end of the day once you take the complexities of such a case into account.
  11. Agree
    brwainer reacted to Needfuldoer in how prevalent is cisco networking gear in the real world   
    Cisco is the de facto standard in enterprise deployments.
     
    Once you get up to speed with the CLI, it's so much faster than re-learning the web UI on new gear. Even other brands tend to imitate the way IOS handles when they make their own interfaces. (Brocade is almost identical.) It's also extremely convenient to dump a config out to a text file, and the commands you learn on an old 2600 series still generally apply to current hardware. It's like learning how to use Bash.
     
    Ubiquiti is prosumer at best. Propose rolling that out at a large company and you'll get laughed out of the room.
     
    Always remember: copy run start
  12. Agree
    brwainer reacted to MiszS in how prevalent is cisco networking gear in the real world   
    I'm also learning networking, but in high school, and CLI really is faster when you get used to it, especially when you can copy paste most of the configuration, and just change things like ip addresses
  13. Agree
    brwainer reacted to Nuzicx in how prevalent is cisco networking gear in the real world   
    CLI is easier than GUI once you get use-to autocomplete, it's also safer as scripts can be checked by work colleagues before implementing.
  14. Agree
    brwainer reacted to AbydosOne in If you dim light does it consume less electricity?   
    Yes.
  15. Agree
    brwainer got a reaction from kadxprime in ISP NOT LETTING ME HAVE OPTION TO ENABLE DISABLE WIFI/ WLAN   
    Harhar tin foil hat.
    but seriously if you actually want to “turn on and off” the wireless often and quickly, a shielded box that you can place over it is going to be effective. Faster to walk over and remove the box than to log into a page and change a setting. (Depending on the size of the house).
     
    Or as @Heats with Nvidia says, get your own router. You won’t get anywhere with most ISPs with the argument that other ISPs let customers do this because your ISP probably has no competition. Or else move to the competition.
  16. Funny
    brwainer got a reaction from PDifolco in ISP NOT LETTING ME HAVE OPTION TO ENABLE DISABLE WIFI/ WLAN   
    Harhar tin foil hat.
    but seriously if you actually want to “turn on and off” the wireless often and quickly, a shielded box that you can place over it is going to be effective. Faster to walk over and remove the box than to log into a page and change a setting. (Depending on the size of the house).
     
    Or as @Heats with Nvidia says, get your own router. You won’t get anywhere with most ISPs with the argument that other ISPs let customers do this because your ISP probably has no competition. Or else move to the competition.
  17. Like
    brwainer got a reaction from leadeater in Persistent errors in zfs while no errors in smart test   
    This “smells” like a SATA cable/backplane issue to me.
  18. Agree
    brwainer reacted to AbydosOne in Persistent errors in zfs while no errors in smart test   
    CRC Error count > 0 makes me think this is the issue. I've seen it a few times, actually.
  19. Agree
    brwainer reacted to Electronics Wizardy in Proxmox install using zfs with hot spare?   
    Wow I read that wrong. 
     
    IN that case, I'd just do raidz2 instead of a hot spare then.
  20. Agree
    brwainer reacted to RollinLower in I am not sure about this plug   
    looks like LAN, you can probably lift up the little flap you see now and underneath should be RJ45
  21. Agree
    brwainer reacted to Electronics Wizardy in Unraid ZFS vs TrueNAS ZFS   
    Should be rougly the same code for ZFS
     
    Truenas has a much better gui for working with ZFS, and unraid doesn't handle a lot of ZFS changes that well, so I'd probably skip ZFS on unraid for most uses.
  22. Like
    brwainer got a reaction from CryptoKnight614 in Subnetting not segmenting my network like it used to   
    Having different subnets means that devices won’t expect an IP outside of their subnet to be local, and therefore will use the default gateway instead. If there is a shared router between the subnets, and it doesn’t have firewall policies prevent the two from talking to each other, then it will happily route traffic between the subnets - that is in fact the main job of a true router, the way they were used originally.
     
    You mention “Guest Network” - some routers or APs will have this function, and it normally includes automatic firewall policies to let the devices on it talk to the internet but not anything local. Maybe something happened to the settings on your guest network? Did you need to allow it to reach a printer or something like that at some point?
     
    Finally, you mention subnets, but you didn’t mention VLANs. If you have two subnets, but don’t have VLANs, then those subnets are in the same “broadcast domain” - meaning that they will hear broadcast and multicast packets from each other. That may be a contributing factor to the behavior you are seeing.
     
    Hopefully this will help you determine what has changed. But I can promise you that the fundamentals of the subnet mask have not.
  23. Like
    brwainer got a reaction from leadeater in TrueNAS Used Space Mismatch - Missing 5TB   
    Alternatively, have you been doing automatic snapshots? What’s the timeframe on those? In ZFS this is the difference between “Used” and “Referred” - Referred being the current data, and Used including snapshots.
  24. Agree
    brwainer got a reaction from LIGISTX in TrueNAS Used Space Mismatch - Missing 5TB   
    Alternatively, have you been doing automatic snapshots? What’s the timeframe on those? In ZFS this is the difference between “Used” and “Referred” - Referred being the current data, and Used including snapshots.
  25. Agree
    brwainer got a reaction from Smith6612 in icx 6430-48p question   
    6430’s only do 1Gb SFP
     
    https://webresources.ruckuswireless.com/pdf/datasheets/ds-icx-6430-6450.pdf
×