ASR920 vs NCS5000

Cisco live on-demand library is a good starting point:
https://www.ciscolive.com/online/connect/search.ww
 – just search for “920” and it will return two presentations (although I was expecting more than just 2 presos on these),  there are some comparisons as well as scaling numbers.

Well there are only 3 branches in ASR900 family tree as far as I know,
900 Series (902 & 903),
920 Series,
901 Series,
but yes I guess it’s fair to say they are very different to each other.

Regarding the NCS5k(or QFX counterpart), the same rule apply as always, there’s a reason why these are so darn cheap compared to high-end platforms(like e.g. NCS6k), there are architectural sacrifices that were made during the platform development resulting in numerous limitations and only once all these are understood the device can be considered for a given environment.

Cisco ME1200 iCLI

ME1200 expert, who gave us some hidden commands to enter.
Log in to the default shell, and then enter:
v i e
v i v
(note there’s a space between each letter, hit enter after each line) That got us to the iCLI interface, so hopefully it will work for you too.

I believe the newer images for this device drop into a normal IOS by default.

Linux starter guide for ME

Basis CentOS minimum

  • yum upgrade

Vervangen van Firewalld voor Iptables (geen regels mee nemen)

  • sudo yum install iptables-services
  • sudo systemctl stop firewalld
  • sudo systemctl start iptables
  • sudo systemctl start ip6tables
  • sudo systemctl enable iptables
  • sudo systemctl enable ip6tables
  • sudo systemctl disable firewalld
  • sudo systemctl mask firewalld

Howto source

Aanpassen van standaard SSH settings:

  • vi /etc/ssh/sshd_config
    • Poort nummer
      • Port 22522
    • Disable root login
      • PermitRootLogin no
    • Disable X11
      • X11Forwarding no
  •  systemctl restart sshd

Toevoegen van remote SSH toegang:

  • iptables -L
  • vi /etc/sysconfig/iptables
  • Standaard : “-A INPUT -p tcp -m state –state NEW -m tcp –dport 22 -j ACCEPT”
  • specifieker met source IP (vb 192.0.2.1)
    • -A INPUT -p tcp -s 192.0.2.1 -m state –state NEW -m tcp –dport 22522 -j ACCEPT
  • systemctl restart iptables.service
  • iptables -L
1 2 3 4 5 6 20