Yes, looks officially supported since IOS XE 3.6S: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l2_vpns/configuration/xe-3s/asr1000/mp-l2-vpns-xe-3s-asr1000-book/mp-rt-pw-rt-vpls.html 

Continue reading routed PW in ASR1K

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l2_vpns/configuration/xe-3s/mp-l2-vpns-xe-3s-book/vpls-auto-bgp-xe.html Hi everyone.  I’m trying to understand vpls with a hub & spoke topology a little better but I’m having a hard time grasping which site(s) need to have the no split-horizon configuration added to them.  Not sure if this is even possible with the autodiscovery option vs using manual.So right now I’ve got four …

Continue reading VPLS hub & spoke

https://www.asmus-consulting.com/en/blog-category-active-directory-and-windows-server/item/41-disable-ipv6-tunnel-adapter Use these 3 lines to disable the Adapters by netsh: 1 netsh int ipv6 isatap set state disabled 2 netsh int ipv6 6to4 set state disabled 3 netsh interface teredo set state disable You can also disable Tunnel Adapters by GPO– open Group Policy Management Editor– select an existing or create a new GPO– Computer Configuration -> Administrative Templates -> Network …

Continue reading Uitschakelen Windows tunnel interfaces

Cisco CoPP Best practices Cisco CoPP Cat6k http://events.cisco.hu/2014/techtorial/doc/lavarga_v1.0.pdf Hi All, Thanks for all the valuable input! I wrote up a CoPPs policy, and deployed it in a non-limiting fasion and monitored for a while. Once happy we enabled the policers and its working fine, however the software counters are going up, and it’s not clear to …

Continue reading Cisco CoPP

FlowViewer / SiLK handles IPv6. Web-based, graphical tracking and analysis. Free. http://sourceforge.net/projects/flowviewer/ http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3850/software/release/3se/flexible_netflow/configuration_guide/b_fnf_3se_3850_cg/b_fnf_3se_3850_cg_chapter_010.html#reference_A9019899140647F2B3F87ABABCFC170D http://qosient.com/argus/

Continue reading Netflow viewers

In order to keep the same interfaces indexes, the only way to achieve that easily is moving the nvram:ifIndex-table from the old SUP to the new SUP. This document says that the file can be downloaded and viewed: http://www.cisco.com/c/en/us/support/docs/ip/simple-network-management-protocol-snmp/28420-ifIndex-Persistence.html   Procedure: Old SUP: #copy nvram:ifIndex-table disk0: New SUP: #delete nvram:ifIndex-table #copy disk0:ifIndex-table nvram: #reload

Continue reading Cisco IOS sup-720 SNMP

MAC bindings In the IPv4 world, the DHCP server allocates IPv4 addresses and thereby stores the MAC addresses of the clients. In the IPv6 world, if SLAAC (autoconfiguration) is used, no network or security device per se stores the binding between the MAC (layer 2) and the IPv6 (layer 3) addresses from the clients. That is, a subsequent …

Continue reading IPv6 security

Link ASA OS MIB ondersteuning Result of the command: “show snmp-server oidlist” ————————————————- [0] 1.3.6.1.2.1.1.1. sysDescr [1] 1.3.6.1.2.1.1.2. sysObjectID [2] 1.3.6.1.2.1.1.3. sysUpTime [3] 1.3.6.1.2.1.1.4. sysContact [4] 1.3.6.1.2.1.1.5. sysName [5] 1.3.6.1.2.1.1.6. sysLocation [6] 1.3.6.1.2.1.1.7. sysServices [7] 1.3.6.1.2.1.1.8. sysORLastChange [8] 1.3.6.1.2.1.1.9.1.2. sysORID [9] 1.3.6.1.2.1.1.9.1.3. sysORDescr [10] 1.3.6.1.2.1.1.9.1.4. sysORUpTime [11] 1.3.6.1.2.1.2.1. ifNumber [12] 1.3.6.1.2.1.2.2.1.1. ifIndex [13] 1.3.6.1.2.1.2.2.1.2. ifDescr …

Continue reading Cisco ASA SNMP