Friday, October 30, 2015

Need to debug your dns performance?

Turn to this great peice of code from Google

Rather extensively tests and reports on dns performance.  Helps considerably as most applications can appear slow...when its really just latency related to DNS performance

Tuesday, June 30, 2015

PVID mistmatch errors on your @hp_networking swtich?

If you're getting errors about PVID mismatches between two pieces of HP gear such as a HP 560 access point connect to a HP 5130 switch, just fix it with the following:

no lldp config <port> dot1TlvEnable port-vlan-id

int <name>

 undo lldp tlv-enable dot1-tlv port-vlan-id

Wednesday, May 27, 2015

@hp_networking buys @contextream #sdn #nfv

ConteXtream has a carrier grade implementation of the Opendaylight controller and applications for use in service provider networks.    They come to us customers with in production carrier class SDN networks servicing millions of users and billions of flows.

Monday, January 5, 2015

Are you using PSK on @hp_networking unified wireless? #uww #wlan

If the answer is yes and you have more than 4000 devices... my first question why the heck are you not using 802.11x????    ugh...PSK!

Well..ok...i'm be a hater... maybe a little...

If you are, you might be running into a built in limitation on the PSK services on a unified wireless controller.  Its pretty easy to work around, you just need to turn on a dummy mac authenticaiton and you can blast past the 4096 limit. Here's a quick example (note... not my config, stolen from someone else)

interface WLAN-ESS5 
port link-type hybrid 
port hybrid vlan 1 untagged 
mac-vlan enable 
port-security port-mode mac-and-psk 
port-security tx-key-type 11key 
port-security preshared-key 
pass-phrase cipher $c$3$7k97WmbO3E0yA0jT4YQy6xP69Sq
mac-authentication domain isp
wlan service-template 5 
crypto ssid aaa 
bind WLAN-ESS 5 
cipher-suite ccmp 
security-ie rsn 
service-template enable 
domain isp
authentication lan-access none 
authorization lan-access none 
accounting lan-access none 
access-limit disable 
state active idle-cut disable 

self-service-url disable

Adding the following underlined is the fix.