> Question: Have also seen comments in foreeum like. The best practice for this Hub and Spoke is to use TWO VRF in Hub site – “From-Spoke” and “To-Spoke” This is immaterial implementation detail. Some shops do this, because their automation system abstracts VRF into set of import/export statements and clients share set and… Lees verder Central Services Topology
Fortigate FGSP
https://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD46111&sliceId=1&docTypeID=DT_KCARTICLE_1_1&dialogID=164542366&stateId=0%200%20164540878%27 https://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD46242&sliceId=1&docTypeID=DT_KCARTICLE_1_1&dialogID=164542366&stateId=0%200%20164540878%27
Ansible – Fortigate
Ansible : https://docs.ansible.com/ansible/latest/user_guide/playbooks_loops.htmlhttps://docs.ansible.com/ansible/latest/reference_appendices/YAMLSyntax.htmlhttps://docs.ansible.com/ansible/latest/modules/fortios_system_email_server_module.html#status https://help.github.com/en/github/setting-up-and-managing-your-github-user-account/setting-your-commit-email-address https://github.com/ansible/ansible/issues/48859 https://docs.ansible.com/ansible/latest/user_guide/vault.html IOS: https://docs.ansible.com/ansible/latest/network/user_guide/platform_ios.htmlhttps://docs.ansible.com/ansible/latest/plugins/connection/network_cli.html Fortigate: Modules (overzicht)https://ftnt-ansible-docs.readthedocs.io/en/latest/fortios_modules.htmlhttps://docs.ansible.com/ansible/latest/modules/fortios_ipv4_policy_module.html https://galaxy.ansible.com/fortinet/fortioshttps://pypi.org/project/fortiosapi/https://docs.ansible.com/ansible/latest/modules/fortios_alertemail_setting_module.htmlhttps://ftnt-ansible-docs.readthedocs.io/en/latest/fortios_playbooks/fortios_alertemail_setting.html Fortios playbooks Policy’s Fortigate RestAPI Config Backup – FortiOS 6.0.4
Taskkill
taskkill /f /im Openwith.exe /t > NULL
Fortigate Troubleshooting
https://yurisk.info/2010/03/26/fortigate-bgp-configure-and-debug/index.html https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/150448/troubleshooting-for-dns-filter
Fortinet & SNMP
NPU info : https://help.fortinet.com/cli/fos50hlp/54/Content/FortiOS/fortiOS-cli-ref-54/config/system/npu.htm https://help.fortinet.com/fos60hlp/60/Content/FortiOS/fortigate-hardware-acceleration/NP6.htm https://docs.fortinet.com/document/fortigate/6.0.5/hardware-acceleration/177344/np6-and-np6lite-acceleration Technical Tip: How to query specific VDOMs using SNMPv1/v2 https://kb.fortinet.com/kb/documentLink.do?externalID=FD45872 per VDOM SNMP OID’s to monitor CPU, Mem etc https://forum.fortinet.com/tm.aspx?m=163412 Fortigate MIB: OIDs for the Fortinet-FortiGate-MIB SNMPb https://sourceforge.net/projects/snmpb/
Cisco MPLS Inter/AS
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l3_vpns/configuration/xe-16-6/mp-l3-vpns-xe-16-6-book/mpls-vpn-route-target-rewrite.html?bookSearch=true
Cisco VTI IPsec
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ike2vpn/configuration/15-mt/sec-flex-vpn-15-mt-book/sec-cfg-ikev2-flex.pdf https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_vpnips/configuration/xe-3s/sec-sec-for-vpns-w-ipsec-xe-3s-book/sec-ipsec-virt-tunnl.pdf https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ike2vpn/configuration/xe-3s/sec-flex-vpn-xe-3s-book/sec-cfg-flex-serv.html#GUID-DB69AED1-1068-4700-B837-5F2967CCD9D2 https://www.cisco.com/en/US/technologies/tk583/tk372/technologies_white_paper0900aecd8029d629.html https://learningnetwork.cisco.com/thread/127085 https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_vpnips/configuration/xe-3s/sec-sec-for-vpns-w-ipsec-xe-3s-book/sec-ipsec-virt-tunnl.html#GUID-334CA827-6CC6-4743-9DC8-D4F8F31F79B5
Cisco spanningtree
https://www.cisco.com/c/en/us/support/docs/smb/switches/cisco-250-series-smart-switches/smb71-configure-multiple-spanning-tree-protocol-mstp-on-a-switch.html
IPv6 – SLAAC
https://www.ietf.org/id/draft-gont-v6ops-slaac-renum-00.txt (https://tools.ietf.org/html/draft-gont-v6ops-slaac-renum) is being discussed at the v6ops wg of the IETF, where there is an ongoing call for adoption: https://mailarchive.ietf.org/arch/msg/v6ops/HmcZYGY4Lu2h7NUND3o2UiOsKXA https://github.com/fgont/draft-slaac-renum/blob/master/draft-gont-6man-slaac-renum-02.txt