Can you make a recommendation for a switch-based L3 router which can
- hold a moderate number of routes (interface routes, a few hundred statics + default)
- OSPF and BGP
- 1024 layer-3 dot1q subinterfaces (or maybe VLAN interfaces)
+ traffic policing in and out per subinterface/vlan
- IPv4 & IPv6 native
- 2x GigE ports
- Not tip-over under 1gbps DDoS towards a VLAN interface.
I've been using 3560Gs, but they seem to lack the output traffic policing. I'd prefer to have subinterfaces which don't run spanning-tree, versus Vlan Interfaces to a trunk interface which runs spanning-tree. These switches sit at the L3 boundary between two L2 networks.
Cost is a big factor; but I also must carry vendor licenses & support contract, if the vendor asserts that not doing so is illegal in US.
I just came across this listing for Corning Optical Fiber LEAF(R) on eBay [url]. I've never used optic fiber cables before and want to experiment with them for indoor and inter-floor(friend below) use. The listing says that the coating is CPC6, which is some kind of acrylic coating over the fiber.
My question is: Can the above cable be used without further sleeving or some other protection/covering over it? I read somewhere that the cable must be reinforced and covered with PVC jacket or something,
I need a basic L3 switch for maybe 25 mbps that will do hopefully up to 50 VLANs and which will not require me to hire someone to configure it.
As much as I like Cisco, that rules them out.
The reason I'd like a Layer 3 switch is so that I can run my backups and inter-server transfers without adding to my bandwidth bill. Also, VLANS are a critical requirement as i have a lot of customers with root on their managed servers.
So i am looking at HP [gasp] switches. How "easy" is the web-based configuration widget? [I'm an advanced unix admin but networking is a mystery to me.]
This is a starter switch and once i have a full cab of servers I'll be able to spend $7K on a pair of 3560s and hire someone to configure them for me ... but until then what can i get to meet my requirements?
I'm not sure exactly how to phrase the question. But, I'm researching how to PXE boot a server without having a DHCP/PXE server in each vlan.
Scenario: Datacenter with dozens of servers. 1 VLAN per server. Cisco switches and routers. Each server has a serial console available for remote management (OS and BIOS are configured for serial console). If an admin wants to re-install OS, they should be able to reboot the server and tell the BIOS to initiate a PXE boot request. A central install server is available to provide the DHCP and PXE boot images.
Has anyone tried this? I have been reading about the 'ip helper-address' for Cisco to relay DHCP requests. Interested in hearing about real-world setups. Or is there a better way to accomplish remote OS installs?
I'm looking for a solution that I can place a firewall between 2 vlans on a BigIron router with L3 enabled.
For this moment there is one big vlan2 with a ip-route 0.0.0.0 0.0.0.0 126.96.36.199 and a router-interface ve2 with the IP of the router, the address I use as gateway on the machines behind it.
The WAN port has the IP address to communicate with to the GW of the carrier-router (188.8.131.52)
Because I want to let the BigIron the routing I was thinking of 2 vlans, one for the lan-vlan and one for the wan-vlan, but this will be a problem because I only have one IP-block what I can use.
So the sitiuation must be as follow on the BigIron:
WAN => vlan2 => firewall => vlan3(lan)
Because of the fact that the firewall will be transparent, this should be no problem to place it between the vlans. The actual problem is how to manage this. In simple words, I should be able to replace the firewall with a cross-cable and it should still work.
Cisco for an example has a SVI solution for this, but I can't find such thing for a Foundry router.
Having a slight problem working with one of our Extreme Summit 48 (ugh) switches - I've figured out most of the basics, but I can't seem to find any way to add a secondary IP address to a VLAN! This, I would have thought, would be a pretty basic feature to have. Typing "config vlan [vlanname] ipaddress 184.108.40.206/24" works for setting the primary IP, but I can't figure out how to add any more - and doing the command again just overwrites the first one.
So... does anyone have any tricks up their sleeve, or is this something that Extreme neglected to add to this model switch?
I've read that all ethernet switches in a MST Region need the same Name, Revision number, and list of member vlans for each Instance. So what happens when you need to change the range of VLANs in a MSTI ? Let's say that you need to add a range of vlans to an instance that spans 20 switches? How would you do that?
I've read that Virtuozzo 4.0 supported ipv6. I'm having problems finding anything to help setup the node for ipv6. I can't anything on the web except for some people talking about how to disable ipv6. So I was just wondering if anyone else has seen anything.
Edit: I don't think I posted in the correct section. Opps. Could a moderator move this to the right section?
I did a little research about availability of dedicated servers with native IPv6 and my results are... Well, let's just say that they are worse than I expected them to be.
Only providers that I found (with IPv6 carriers in brackets) are:
- OVH, FR (Teleglobe, Global Crossing),
- CoreIX, UK (Tiscali, Teleglobe),
- Goscomb, UK (NTT/Verio, Global Crossing),
- FDCServers, US (NTT/Verio, Hurricane Electric).
There is also LeaseWeb (and I found one IPv6 server running on their network), but I didn't find any information regarding IPv6 on their page.
If you know others, please update the list (with IPv6 transit providers if you know them, no peering/IX please).
As you can see, there are at least 5 carriers who provide native IPv6. What bothers me is the fact that most of the US providers use NTT/Verio, Global Crossing or both of them in their BGP mix. Why don't they enable IPv6 connectivity? All their hardware supports it as IPv6 isn't anything new, so I really don't see a reason why they don't do it... Anyone want to enlight me?
As this isn't 'offers request' thread, I guess it wouldn't be against the rules for providers to say 'we do IPv6'
When I do an ifconfig I see a regular IP as well as an IPv6 one.
Does this mean my server is accessible via IPv6 as well, and would that bypass any firewall I have set on the regular IP? I noticed theres a ip6tables as well but I don't have it started. I'm fairly new to iptables in general so I'm not touching ipv6 now, unless I have to. Would it be safe to just block everything through ipv6 or would that be bad?
I'm kind of interested in learning more about IPv6 and eventually actually supporting it, but for now I rather not until I learn more about it.
I want to start a private ircd that is only accessible to ipv6 clients, but I can't find a provider who can provide me with this. I've contacted FDC Servers about this, but they can't provide me with an ipv6 address on a vps.
Nginx is listening on port 7080 with ipv6 protocol only.ipv6 isn't use on the server (ipv4 only).If I disable ipv6 support on the server, is this stopping nginx to use ipv6 ? (and some other process)How can I disable IPv6 on Plesk 12 ?