Dan Massameno
Author Archives: Dan Massameno
- Home → Author's archive:
Dan Massameno
Part 4 – Monitoring PSN Load Balancing
The best way to know that your configuration is working properly is to measure with a tool outside of ISE. Unfortunately, authentications per second is not available via SNMP or the REST API. What does happen is for each authentication a SYSLOG message is generated. The following messages are for every passed and failed authentication: […]
The post Part 4 – Monitoring PSN Load Balancing appeared first on Packet Pushers.
Part 3 – IOS-XE Load Balancing
Cisco is a large organization. Sometimes different software development teams don’t talk to one another as much as we would like. As it happens, the IOS-XE team developed a way of load balancing RADIUS request across multiple RADIUS servers. I can’t claim to have read every Cisco whitepaper and I haven’t seen every Cisco Live […]
The post Part 3 – IOS-XE Load Balancing appeared first on Packet Pushers.
Part 2 – Enter the Load Balancer
In Part 1 we explored the simplest configuration possible. Now let’s introduce a load balancer appliance. I’m just going to put it out there. Load balancers are a necessary evil. They are for protocols that are too dumb to figure out how to load balance themselves at the application layer. But we’re going to find […]
The post Part 2 – Enter the Load Balancer appeared first on Packet Pushers.
Part 1: Cisco ISE Load Balancing
There are many ways to build a Cisco Identity Services Engine (ISE) installation. This is a four-part series on load balancing multiple RADIUS servers and we’ll use Cisco’s Identity Services Engine in our examples. If you want to jump ahead: Part 1: This Page! Part 2: Load Balancer Appliances Part 3: Simple, Fast, Cheap… all […]
The post Part 1: Cisco ISE Load Balancing appeared first on Packet Pushers.
Windows ISATAP Client, Part 3
In Part 2 we did the initial ISATAP configuration for our Cisco router. Here we’ll show the config we use on our Windows clients and server. netsh interface isatap set router 203.0.113.30 netsh interface isatap set state enabled Normally I tell system admins to never hard-code IP addresses into their application; always use DNS names! […]
Author information
The post Windows ISATAP Client, Part 3 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Windows ISATAP Client, Part 2
In Part 1 we discussed how to turn off ISATAP on Windows host—which is a great idea. Turning off unnecessary components of your network simplifies everything. But ISATAP can be useful in certain scenarios. For instance, if you want to test an application on IPv6 you clearly don’t want to turn on IPv6 everywhere and […]
Author information
The post Windows ISATAP Client, Part 2 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Windows ISATAP Client, Part 1
Last month I had the opportunity to work with a company to perform an IPv6 pilot. There are a lot of elements to light up for an organization to use IPv6, most of them (but not all) being technical in nature. One of the mechanism I used was ISATAP. In the past I have not […]
Author information
The post Windows ISATAP Client, Part 1 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Secret CEF Attributes Part 6, The BGP Connection
In the first five parts of this series we covered all the steps necessary to distribute QoS and monitoring to a large backbone. I guess at this point I should mention that this technology has a name (and acronym, of course.) Cisco calls it QoS Policy Propagation through BGP (QPPB.) I hope these blog posts […]
Author information
The post Secret CEF Attributes Part 6, The BGP Connection appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Secret CEF Attributes, Part 5
So far we’ve explored some very cool features of CEF and the attributes we can push into the FIB to identify certain kinds of traffic. We can color the prefixes in the RIB and FIB with a particular IP-Precedence, QoS-group or traffic_index and we can then perform traffic monitoring, shaping and policing and packet marking […]
Author information
The post Secret CEF Attributes, Part 5 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Secret CEF Attributes, Part 4
In Parts 1, Part 2 and Part 3 we saw we can use the CEF table to express all sorts of different QoS policies. In Part 4 we describe how to attach a policy to the packet that will follow it around the network. Like many policies (security, shaping, etc.) it’s best to classify the […]
Author information
The post Secret CEF Attributes, Part 4 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
CEF Secret Attributes, Part 3
In Part 1 we saw we can mark prefixes in CEF with certain attributes that might give us interesting things to play with. In Part 2 we found we could track traffic patterns with the traffic_index tag. We will now turn our attention to the qos-group parameters. Let’s say we would like four categories of […]
Author information
The post CEF Secret Attributes, Part 3 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
CEF Secret Attributes, Part 2
In Part 1 we saw there were three markings that can be potentially applied to a prefix in CEF. They are the Precedence, qos-group and traffic_index. It’s unfortunate these terms were used because we also find that we are marking prefixes in CEF, not packets, so these terms don’t perfectly map to our traditional sense […]
Author information
The post CEF Secret Attributes, Part 2 appeared first on Packet Pushers Podcast and was written by Dan Massameno.
Secret CEF Attributes, Part 1
Welcome to the first in a series of articles that will explore some of the interesting properties we can insert into CEF, Cisco’s implementation of the Forwarding Information Base (FIB) in Layer-3 rotuers. CEF represents the high-speed forwarding architecture in the Cisco platforms. If we can insert data into the CEF memory structure we can […]
Author information
The post Secret CEF Attributes, Part 1 appeared first on Packet Pushers Podcast and was written by Dan Massameno.