The idea of this lab is to craft an IPv6 packet from scratch using Python and Scapy library. The IDE I use is JetBrains PyCharm Community Edition 2018.3.1 x64 which is available for free...
Read More
BGP session keepalive and hold times
At the beginning of the BGP peering establishment, the BGP neighbors agree on the hold time value (included in OPEN message): the time a peering would be maintained without the reception of a KEEPALIVE...
Read More
Setup a Check Point Lab using VirtualBox and GNS3 on Windows
In this lab we implement a basic security architecture. Our network is segmented into four zones: Two security gateways (SG) are management by a single security manager server (SM). A management PC is configured...
Read More
Static routing with intermediate address in Check Point
It is not possible to configure a static route with an intermediate address in a Check Point security gateway. BUT … In out lab setup R4 tries to reach R3 using its loopback0 interface...
Read More
Vlan propagation and Cisco FabricPath
PC-A and PC-B belong to the same broadcast domain that is defined by vlan X. Without FabricPath (FP), a frame that is sent by PC-A is received by FP-SW1. PC-1 MAC source address is...
Read More
At the begining, … it was not DMVPN!
The simplest way to interconnect 3 or more routers in the same broadcast domain (and the same subnet) is by attaching them to a switch (or hub) in the same vlan. In case they’re...
Read More
EIGRP over a vNET trunk
New IOS release 15.x introduced Easy Virtual Network (EVN) functionality to leverage some existing deployment features such as VRF-Lite and QinQ. Its ease of configuration is a real advantage. The idea is very simple:...
Read More
VPNv4 BGP AS-Override Feature into play!
AS-Override feature applies to sites that have the same AS number and are linked by another AS number. In BGP, loop prevention would prevent any site from learning other site routes due to the...
Read More
Point-to-Point OSPF Network Operation over a LAN that connects multiple routers
What happens when LAN interfaces are configured as point-to-point network type OSPF interfaces instead of default broadcast type? And more than 2 ospf routers are present on this media? Let’s test this on network...
Read More
DUAL route FSM Processing of EIGRP Queries
An interesting case of how DUAL route FSM operates. First let’s note that an EIGRP router send a Query to its neighbor to find a better route to a destination that has passed from...
Read More
1 Minute
Understand RIP Routing Timers All in One Shot!
Cisco’s RIP implementation defines 4 times tight to one periodic update interval and 3 states: invalid, hold-down and flush. The misleading information is that they are referred to as “timers” in configuration part! Apart...
Read More