Blog

How to Enable/Disable ZBFW with Just One Command

  • 2014-07-30
  • Posted by jcarvaja

Have you ever worked with a ZBFW deployment when you think the FW is the issue but you are not totally sure so your next troubleshooting step is to disable it to see if you were right??? Well.. While I was a Cisco TAC engineer that was one of the steps that we used to perform in order to probe the customer those were not Firewall issues.

Read More

Understanding the ASA 5505 User License Restriction

  • 2014-07-30
  • Posted by jcarvaja

As you might have seen whenever you get an ASA 5505 out of the box from Cisco with a default license (Base License) you will see a restriction with the amount of users available through the Firewall (I know, I know, this SUCKS). The good thing is there are some licenses you can use in order to increase the amount of hosts, the bad thing is you will need to pay for it (Cisco World).

Read More

How to Access your SRX via the GUI after configuring Dynamic VPN

  • 2014-08-09
  • Posted by jcarvaja

It is a commom misconception thinking that as soon as you enable the SRX Remote Access VPN on an interface you will not have access to it via the GUI. This happens because by default when you attempt to connect you will be redirected to the Dynamic VPN portal.

Read More

Multicast BGP

  • 2014-08-01
  • Posted by jcarvaja

This is one of the topics that if by any chance you encounter it in the CCIE lab you are going to get mad as you might not seeing it in the past or at least provide it the attention needed to such an easy topic but let's start with the basics: It's usage.

Read More

Enabling AAA New-Model Must Know

  • 2015-01-24
  • Posted by jcarvaja

Read More

IPv6 Tunneling Part 2: IPv6 Over IPv4 GRE Tunnels

  • 2015-07-30
  • Posted by jcarvaja

Read More

IGMP Notes

  • 2015-07-30
  • Posted by jcarvaja

Read More

GRE Point-To-Point Configuration

  • 2015-07-15
  • Posted by jcarvaja

Read More

How to Configure QoS Policing on a Junos Box

  • 2014-08-05
  • Posted by jcarvaja

To all of the Juniper Lovers Out there, Today I was working on a case with one of my customers and decided to write about it here. Basically my customer had a QoS policy in place to rate limit traffic from a specific subnet (let´s say 192.168.10.0/24) to 2 mb with a exceed action of dropping the traffic.

Read More

MPLS The Fundamentals Part 1

  • 2014-08-07
  • Posted by jcarvaja

MPLS is one of those protocols that you must know if you attempt to reach the CCIE Level Knowledge in your career, is one of those topics that will give you a really hard time at the beginning while you understand how it operates, the different flavors available but once you understand it you will see it's just Mind-Blowing.

Read More

Spanning-Tree MST "Shr Bound(PVST)"tree

  • 2014-08-13
  • Posted by jcarvaja

I have came across an issue lately where one of my customers was reporting that a specific port on their switch shown a different port-type than the rest of them.

Read More

Dynamic GRE Tunnels Part 1

  • 2015-07-24
  • Posted by jcarvaja

Read More

IPv6 Tunneling Part 1: Manually Configured Tunnels

  • 2015-07-29
  • Posted by jcarvaja

Read More

IPv6 Tunneling Part 3: Automatic 6to4 Tunnels

  • 2015-07-30
  • Posted by jcarvaja

We are now in Part 3 of this IPv6 Tunneling Series and we are about to talk the Automatic 6to4 Tunnels and how they work.

Read More

How to Enable QoS Priority Queue on the Cisco ASA Firewall

  • 2014-08-01
  • Posted by jcarvaja

Today I am going to show you what's needed in order to successfully configure and enable a Priority Queue on the Cisco ASA platforms. I will be using the Hierarchical model  as this is the only option regarding QoS in the ASA Firewall that

Read More

Spanning-Tree MST "Shr Bound(PVST)" Tree

  • 2015-01-24
  • Posted by jcarvaja

Read More

The Usage of the Packet-Tracer Feature on the ASA

  • 2014-09-02
  • Posted by jcarvaja

I am going to talk today about one of the most fundamental and useful features that the ASA will provide us : "The Packet-Tracer". This tool is unique for the ASA and it's main function is to let us know if a packet  will be permitted or denied by the configuration of the security appliance so it will basically show us all of the security checks that a packet must go through in order to be allowed with an ASA.

Read More

Dynamic GRE Tunnels Part 2

  • 2015-07-26
  • Posted by jcarvaja

Hello to all of our followers, It's time to continue with the mGRE topic. The last time we saw how the spokes were able to send traffic dynamically from spoke to spoke through the hub but now we will see how to make the Spokes talk to each other without having to go through the hub.

Read More