Having a slight problem working with one of our Extreme Summit 48 (ugh) switches - I've figured out most of the basics, but I can't seem to find any way to add a secondary IP address to a VLAN! This, I would have thought, would be a pretty basic feature to have. Typing "config vlan [vlanname] ipaddress 1.2.3.4/24" works for setting the primary IP, but I can't figure out how to add any more - and doing the command again just overwrites the first one.
So... does anyone have any tricks up their sleeve, or is this something that Extreme neglected to add to this model switch?
I just picked up a Summit 24e3 and found it that the extremeware inside has no SSH (OMG) and Web interface. I am wondering if anybody got a firmware laying around that I may able to download off.
Anyone using an Extreme Networks Summit x450a for aggregation/edge? I'm looking for a switch to handle aggregating a few racks (~10) and provide bandwidth accounting, rate limiting, and port filtering by IP address (not port). Any reviews?
I would like properly address Matt Ayer's (WiseOne) continual claims that user created swap in xen can lead to disastrous situations. This doesn't make any sense from a Kernel point of view. Linux kernel treats Swap not as a additional memory, but as auxiliary storage, and will use it only sparingly. So a larger than ordinary swap has effectively zero impact on performance.
Quote:
I just don't have the time. Try this quick though. Create as many 64MB RAM Xen VPS's as you can, make a 1GB swap file inside each VPS, run a memory hogger, and then finally watch your system die due to horrific disk I/O. Not fun, I'll tell you that.
Conclusion: User controlled swap in a shared environment is a very, very, very bad thing.
Now let us assume there is a hostile user who is egregiously bent on creating excess disk I/O for the host and has purposefully hired vps to enact his revenge on the provider. Further assume that, for this nefarious purpose he has taken a 64MB xen and is running a full 1GB real memory allocated workload (To get create such a load itself would be difficult unless he writes his own programs to do this). Now note that, for the offending vps, the impact of the disk I/O is at the memory level, while the impact on the host is at the disk level. So very trivially, the vps would be so crippled to make it pretty much useless much before this starts having significant effect on the main server. And if engendering excess disk I/O is the sole purpose of user, then all he need to do is write a program to consecutively load and free all the files in the entire harddisk. This will create worse disk I/O than the convoluted method of using large swap. And the latter can be done on both virtuozzo and Xen--though I think in recent versions both have methods to throttle disk I/O.
The problem that UnixShell ran into with Xen was owing to their use of Snapshot, which is something that's prohibited, unless of course, you are running on a desktop with a single virtual machine. LVM snapshot will exactly double the disk I/O. The real problem that the usage is insidious and will not affect the actual vps that's leading to the excess load, but will affect the entire server as a whole.
Xen does have some drawbacks, but it can have all the important features which most providers here think are unique to virtuozzo.
I have purchased a domain, and installed WAMP on my local computer. Now, I want to attach the domain name to WAMP such that when I entered my designed site on WAMP on my computer, I'll see my own domain instead of C://localhost/.../...
I have been told that the company that owns my domain should address its DNS to my own DNS?
Postfix in the /etc/postfix/main.cf I added the following configuration parameter recipient_delimiter = + Managed a sieve script in webmail which contains the following: 1: # Sieve Filter 2: # Erzeugt von Ingo (http://www.horde.org/apps/ingo/) (03.02.2015, 02:53:39) 3: require "fileinto"; 4: # Plustest 5: if address :all :comparator "i;ascii-casemap" :contains "To" "+plustest" { 6: fileinto "INBOX.plustest"; 7: stop; 8: }
I created a folder in my INBOX with the name plustest, now I sent me an email from an outside freemail-account to see if it works. In the logfile /var/log/maillog I can see the following entry:
Feb 3 15:06:25 mail postfix-local[18290]: cannot chdir to mailname dir <name>+plustest: No such file or directory Feb 3 15:06:25 mail postfix-local[18290]: Unknown user: <name>+plustest@<dom.tld> Feb 3 15:06:25 mail postfix/pipe[17708]: 0ECAF4C1B3: to=<name+plustest@dom.tld>, orig_to=<aliasname+plustest@dom.tld>, relay=plesk_virtual, delay=0.61, delays=0.52/0/0/0.09, dsn=2.0.0, status=sent (delivered via plesk_virtual service)
I changed my real name to <name> and my domainname to <dom.tld> in this post.
Looking to upgrade to a new switch and have the following in mind. Budget is around 1-2k. We're pushing 500mbps upstream so i want to make sure that the unit can handle that well. Lots of full speed traffic between servers too.
No fancy features required, and the only need is port trunking, which all of these have.
I look at the specs for latency and pps, but I'm not sure if you can trust these figures.
Anyone have experience with the following.
HP Procurve 2910al-24 $1430 latency <2.9us 131 Mpps 176 Gbps Bonus: 10Gb capability with expansion module
I have been trying to look for the damn thing everywhere and I can't find anywhere that has it either apart from extreme support of course which they want my life out of me.
I am after a good extreme 24e3 firmware that supports SSH and Web GUI since mine one for some reasons do not have that feature.
I have around 20 bucks (not alot i know but hey that all i got in my paypal)
I had the chance to work with the summit24 switches, and I personally liked them. It is straight-forward in my opinion for the Web Interface compared to others I have seen and the pricing seems to be reasonable.
I was wondering if anyone has had any experience with any of their switching devices.
I work for a company with a highly trafficked site (about 100,000 unique daily visitors). We have our "MANAGED" hosting through Rackspace for quite the pretty penny per month. It includes a dedicated back end / DB server and cloud servers for the front end.
The setup has been functioning perfect for 10 months now; but this past Monday the speed of the site immediately dropped. Page load times fell from 1-2 seconds to between 10-20 seconds, and sometimes not at all. As far as we know (and as far as Rackspace says), no server setting were modified. No new code was introduced on our end. It's a mainly static site, with minimal user interaction with the backend at all.
We've monitored the traffic, checked IPs, etc. We've even tunes down several site features in the interest of reducing server load. Upon a server reboot, the active threads/processes running on it IMMEDIATELY jump back up to maxed out levels. It seems like once our daily traffic reaches 10MB/s, a type of queue forms and the delays begin. Rackspace assures us that we're not limited to that.
Versions: OS: cent OS on cloud OS: Redhat on Dedicated Server Apache: 2.2 PHP: 5.3 / MySQL: 5.1.69
Some more background info: The site is typically busiest from 7am until 3pm EST. For the past few days, we've noticed that between 7am and 9-10pm the server has just lagged incredibly. However, at around that 9-10pm mark, something changes and the pages go back to loading almost instantly. (There is still decent traffic though.) Then at around 7am again it slows to a crawl.
Rackspace has offered solutions such as spinning up another server and incorporating their load balancing - they are in the process of this BUT they do NOT think the traffic is the issue. At one point they actually said there was potential packet loss somewhere in the network, but no progress has been made.
Is there a VPS provider that will sell me a VM , and put it up somewhere, and can make me another VM in the future, on the same VLAN as the original VM ?
For example, pretend VM #1 has a NIC at 10.0.0.100
in the future, I want another VM with a nic at 10.0.0.101
I was looking at Go-Grid , but I'm not sure how their pricing works.
I need a basic L3 switch for maybe 25 mbps that will do hopefully up to 50 VLANs and which will not require me to hire someone to configure it.
As much as I like Cisco, that rules them out.
The reason I'd like a Layer 3 switch is so that I can run my backups and inter-server transfers without adding to my bandwidth bill. Also, VLANS are a critical requirement as i have a lot of customers with root on their managed servers.
So i am looking at HP [gasp] switches. How "easy" is the web-based configuration widget? [I'm an advanced unix admin but networking is a mystery to me.]
This is a starter switch and once i have a full cab of servers I'll be able to spend $7K on a pair of 3560s and hire someone to configure them for me ... but until then what can i get to meet my requirements?
I'm trying to implement VLANs on my network and can't get connectivity to host servers. Here's how the network is configured. Pardon the bad ascii diagram.
In this example my upstream is providing two subnets:
111.111.111.16/28 (I'm using an IP from this subnet to manage the 3550)
222.222.222.16/29
I am attempting subdivide the /29 into two /30's in order to place a server into it's own /30 subnet & VLAN ............
I'm not sure exactly how to phrase the question. But, I'm researching how to PXE boot a server without having a DHCP/PXE server in each vlan.
Scenario: Datacenter with dozens of servers. 1 VLAN per server. Cisco switches and routers. Each server has a serial console available for remote management (OS and BIOS are configured for serial console). If an admin wants to re-install OS, they should be able to reboot the server and tell the BIOS to initiate a PXE boot request. A central install server is available to provide the DHCP and PXE boot images.
Has anyone tried this? I have been reading about the 'ip helper-address' for Cisco to relay DHCP requests. Interested in hearing about real-world setups. Or is there a better way to accomplish remote OS installs?
I have two servers both in a same vlan. Both may access Internet and be acceessed from Internet I setup db server and web server internal IP each as follows:
I used ifconfig to check both status, both of them are up. both of them may ping google, but when I try to ping their each other through internal IP, nothing returns.
I used command tracert to follow, found all packages were sent to Internet rather than an internal IP.
My host tells me to do it by making NAT, I have no idea on it. Anyone may help me out on how to do with NAT?
I'm looking for a solution that I can place a firewall between 2 vlans on a BigIron router with L3 enabled.
For this moment there is one big vlan2 with a ip-route 0.0.0.0 0.0.0.0 123.123.123.123 and a router-interface ve2 with the IP of the router, the address I use as gateway on the machines behind it.
The WAN port has the IP address to communicate with to the GW of the carrier-router (123.123.123.122)
Because I want to let the BigIron the routing I was thinking of 2 vlans, one for the lan-vlan and one for the wan-vlan, but this will be a problem because I only have one IP-block what I can use.
So the sitiuation must be as follow on the BigIron:
WAN => vlan2 => firewall => vlan3(lan)
Because of the fact that the firewall will be transparent, this should be no problem to place it between the vlans. The actual problem is how to manage this. In simple words, I should be able to replace the firewall with a cross-cable and it should still work.
Cisco for an example has a SVI solution for this, but I can't find such thing for a Foundry router.
We offer colocation & dedicated servers as well as shared & reseller hosting services.
Our colocation customers and dedicated server customers are definitely on their own VLANs for obvious reasons.
Up until now, we have been using separate VLANS and ip allocations for each of the servers in our shared & reseller server fleet. I'm starting to question this policy for many reasons:
1) We directly manage all of the servers and it is very rare that any servers are compromised to the point where they can steal an IP address.
2) We are wasting IP addresses - network, broadcast and gateway addresses are required for each vlan. Additionally, if a server needs 1 more IP address, we need to add a whole new block.
If all of the servers are under our direct management, does it make sense for us to use any vlans at all? It seems that it only serves to complicate things, waste ips and add management overhead.
I've read that all ethernet switches in a MST Region need the same Name, Revision number, and list of member vlans for each Instance. So what happens when you need to change the range of VLANs in a MSTI ? Let's say that you need to add a range of vlans to an instance that spans 20 switches? How would you do that?
Can you make a recommendation for a switch-based L3 router which can
- hold a moderate number of routes (interface routes, a few hundred statics + default) - OSPF and BGP - MST - 1024 layer-3 dot1q subinterfaces (or maybe VLAN interfaces) with + traffic policing in and out per subinterface/vlan + VRRP/HSRP/NSRP - IPv4 & IPv6 native - 2x GigE ports - Not tip-over under 1gbps DDoS towards a VLAN interface.
I've been using 3560Gs, but they seem to lack the output traffic policing. I'd prefer to have subinterfaces which don't run spanning-tree, versus Vlan Interfaces to a trunk interface which runs spanning-tree. These switches sit at the L3 boundary between two L2 networks.
Cost is a big factor; but I also must carry vendor licenses & support contract, if the vendor asserts that not doing so is illegal in US.
We are co-located at a datacenter and host web sites, and corporate email systems, as well as host dedicated servers for customers.
We currently have two /25 internet facing subnets from our provider. We have a Watchguard X5500e 8 port gigabit firewall that supports routing as well as VLANs. We also currently own QTY4 2848 HP Gigabit switches.
We currently have each switch connected in a loop with 2 gigabit ports trunked using static LCAP. The switches are connected as follows: A > B B > C C > D D > A
Rapid STP is turned on. One thing is - is this the ideal trunking scheme?
The more important question is this. We would like to separate ips from each other using VLANing.
IE: we might have a client with 5 different IPs in one or more subnets and we would like to group them together.
We ideally do not want to break up the subnets into smaller ones as it makes it hard to reconfigure and it wastes ip addresses, as we do not have that many.
