Category Archives: Podcast

Episode 8 – Network Troubleshooting

We returned to record our eighth episode on Sunday July 3, 2016. Happy 4th of July America!

Interesting News and Events

Copa America – Chile defeats Argentina in penalty shots (I honestly felt bad for Lionel Messi)

Roundtable Discussion – Network Troubleshooting

  1. Understanding the problem.
    1. Is the problem impacting all users/systems or just a small subset?
    2. What this ever worked? Whatever is broken has worked in the past?
    3. Any scheduled changes that might be somehow involved in the problem?
  2. Identifying the individual components involved.
    1. Is the problem impacting all devices, mobiles, laptops, desktops?
    2. Is the problem impacting only specific applications or systems?
    3. What network components are involved? Firewall, load balancer, switch, router?
  3. Capturing/replicating the problem
    1. Is this problem easily replicated by yourself or someone else?
  4. Work the problem to resolution
    1. Be careful not to make the problem worse by jumping to conclusions.
  5. Document the fix and learn
    1. You’ve solved your first problem, make sure you document it in case you ever run into the same problem again, this way you’ll know what to-do and how to quickly fix it.
    2. If the problem is repeating and systemic then work to determine how to resolve the issue permanently. You may need to involve the hardware manufacturers to validate if you have a software bug.

Stelios Antoniou from PluralSight wrote an article back in 2009 titled, Cisco Network Troubleshooting for Beginners. It’s still a great resource for those trying to understand how to use the different tools available while troubleshooting.

What tools are you using?

I wrote about Ditto back in 2014 in an article titled, Windows Clipboard Manager – Ditto. I’m still a big fan of Ditto and I’m still using it today on all my Windows 10 systems. This clipboard manager saves me a lot of time as I cut and paste between applications. It’s also allowed me to go back and verify that what I actually cut-n-pasted was correct since it has a lengthy buffer and saves that buffer between reboots. You can even search the clipboard history. I’ve setup a few custom shortcuts that allows me to cut and paste multiple items at the same time.

Thanks to Damian from @PacketBrigade for giving us some feedback the last episode’s audio. While networking, firewalls and load balancers are second hand to Dominik and myself we’re both learning how to podcast and produce good content.

If you have any questions, thoughts, or feedback please leave a comment below.

Cheers!

Episode 7 – NextGen Network Firewalls

We returned to record our seventh episode on Sunday June 19, 2016. Happy Father’s Day!

Interesting News and Events

We got so caught up in the network firewalls discussion we didn’t even cover any of the news stories.NGN

Roundtable Discussion – Network Firewalls

Is the Firewall only a defective router?

What do we want to achieve with a firewall:

  1. Visibility
  2. Security Zones / segmentation
  3. Policy enforcement

Running ACLs on switches vs a real firewall appliance
Statefull inspection Firewalls
VPN functions
SSL Intercept

NextGen Firewall

  1. Deep packet inspection , protocol and content aware
  2. IDS/IPS
  3. Sandboxing (Palo Alto: WildFire)
  4. automated updates >> cloud integration
  5. behavior based protection

Vendors: Palo Alto, Checkpoint, Cisco Firepower, Fortinet, Juniper SRX,
Dell SonicWall, Barracuda, Watchguard, Intel/McAffee Forcepoint,

Management: Palo Alto Panorama , Cisco Threat Defense, Checkpoint Multi-Domain Security Management, Fortinet FortiAnalyzer
Vendor Independent: AlgoSec, Tuffin

Virtualization: VMware NSX, Cisco ACI, Skyport Systems

What tools are you using?

WANem WAN emulation tool – available in appliance (ISO file) form from Tata Consultancy Services. Leverage variables such as delay, jitter, packet loss, duplication, packet reordering, corruption and bandwidth limitations.

Has your email address or username shown up in a user dump from a recent hack?
‘;–have i been pwned?

Cheers!

Episode 6 – Discussion with Avaya’s Roger Lapuh

We returned to record our sixth episode on Sunday May 22, 2016.

Discussion

This week we had the opportunity to speak with Roger Lapuh, Product Line Manager and Architect for Avaya.

Past

The history of Avaya Networking, Wellfleet and SynOptics merged to form Bay Networks back in 1994. Northern Telecom acquired Bay Networks in 1998 and renamed itself Nortel. In 2009 Avaya acquired Nortel’s Enterprise Voice and Data business units through a bankruptcy auction.

In 1997 Bay Networks acquired Rapid City which spawned the first layer 3 switch in the Accelar product line. The product line was renamed to Passport and would eventually be renamed to the Ethernet Routing Switch.

SMLT Story and development
Layer 3 extensions RSMLT //  VRRP BackUp Master

Present

The first ideas to Shortest Path Bridging (SPB), the  development of SPB and the challenges presented in its design. The standards process in IEEE 802.1aq, the first implementation in the Ethernet Routing Switch 8600.

Packet Pushers Show 44 – The Case For Shortest Path Bridgingwith Paul Unbehagen and Peter Ashwood-Smith (Huawei).

Future

Distributed Virtual Routing (DVR) resolves the network tromboning between the Layer 2 fabric and Layer 3 gateways.

Port Mirroring over an SPB fabric creating a virtual tap network.

We have a large vibrant community using Avaya equipment over on the Network Infrastructure Forums, I would strongly urge you to stop by and see what’s going on.

Thanks again to Roger Lapuh for joining us!

Cheers!

Episode 5 – Network Monitoring

We returned to record our fifth episode on Sunday May 15, 2016.

Interesting News and Events

Roundtable Discussion – Network Monitoring

  • Network Monitoring (is something up or down?)
  • Performance Monitoring (how is something performing?)
  • Application Monitoring (is an application functioning properly?)
  • Environmental Monitoring (how humid or hot is my data center?)
  • Electrical Monitoring (what’s the state of my PDUs, UPSs, generators?)
  • Why should we monitor
  • What should we monitor
  • How should we monitor: SNMP , Agent …
  • Categorys of Monitoring Tools : Alarming , Graphs, Trap receivers , Flow Analyzer,
  • Vendor specific tools
  • Overview of available tools at Wikipedia:   https://en.wikipedia.org/wiki/Comparison_of_network_monitoring_systems
  • Vendor Products: PRTG, SolarWinds, HP OpenView, CA Spectrum, Microsoft SCOM, Statseeker, WahtsupGold, Grafana, Zabbix
  • Open Source: Nagios, Icinga, Check_MK (OMD), MRTG, RRD, Cacti,
  • Custom crafted Monitoring:
  • US department of Energy (https://my.es.net/)
  • Challanges:
    • Active vs passive monitoring (MPLS Explorer)
    • Visibility (https://my.es.net)
    • Maps and visualization
    • Keep it up to date
    • custom check development

What tools are you using?

Dominik highly recommends that folks check out Check_MK, if they are interested in looking at a new monitoring solution. Mike suggests you also give a look at PRTG, there is a 100 sensor version of PRTG available for free.

Cheers!

Episode 4 – Evolution of Broadband Internet

We returned to record our fourth episode on Sunday April 24, 2016.

Interesting News and Events

Roundtable Discussion – Evolution of Broadband Internet

  • 1972 Acoustic coupler modem
    • 1,200 bits by sending 600 symbols per second (600 baud) using phase shift keying
  • 1984 9600 modem (2400 baud) (V.32)
  • 1998 56k modem (8000/3429 baud) (V.90) digital modulation
  • 1988 Integrated Services for Digital Network (ISDN)
    • 64-kbit/s with 2 channels 128kbit/s
    • no market penetration in the US :   It Still Does Nothing
    • Primary Rate Interface (PRI), which is carried over an E1 (2048 kbit/s)
  • X.25 in the 1980s  universal and global packet-switched network
  • 1998 ADSL Asyncron digital subscriber line started at 8.0 Mbit/s1.0 Mbit/s
  • 2008 ADSL2+ITU G.992.5 Annex MADSL2+M 24.0 Mbit/s 3.3 Mbit/s
  • 2001 VDSL Very-high-bit-rate digital subscriber line 55 Mbit/s3Mbit/s
  • 2006 VDSL2 100 Mbit/s100 Mbit/s
  • 1997 DOCSIS Data Over Cable Service Interface Specification
  • 2013 DOCSIS 3.1   >> 10 Gbit/s downstream and 1 Gbit/s
  • FTTH fiber-to-the-home (Verizon FiOS, Google Fiber, etc)

What tools are you using?

Opengear console servers for building out-of-band management networks. Michael wrote about Opengear back in 2013 in a post titled, Opengear Console Servers – Never leave the office without one! One of the first things I did when I arrived at my new employer over 2+ years ago now was to deploy a number of Opengear appliances to make sure that we had out-of-band access to all the critical network infrastructure.

Cheers!

Notes: this week Mike accidentally had Audacity recording my Logitech webcam microphone and not my Blue Yeti and Dominik had his microphone volume turned up just a little too high.