Skip to main content


Showing posts from May, 2018

What is Clock Rate and Why is it Set

Clock rate is set or provided to fix the speed at which the data is to be received. DCEs and DTEs are used in WAN connections. The communication via a WAN connection is maintained by providing a clock rate that is acceptable to both the sending and the receiving device. For example, if a device connected via a WAN link is sending its signal at 1.544 Mbps, each receiving device must use a clock, sending out a sample signal every 1/1,544,000th of a second. The timing in this case is extremely short. The devices must be able to synchronize to the signal that is sent and received very quickly. By assigning a clock rate to the router, the timing is set. This allows a router to adjust the speed of its communication operations, thereby synchronizing with the devices connected to it. Clock rate is set on Router’s Serial Interface, if the router is running as a DCE (Data Communication Equipment). Generally clock rate is provided by teleco or Internet Service Provider through

What are Inferior and Superior BPDUs of STP

Today i want to have a very brief talk about what the Spanning-Tree Inferior and Superior BPDUs are and what is the difference between them. Inferior BPDU of STP The BPDU is considered inferior, if it carries information about the root bridge that is worse than the one currently stored for the port, or the BPDU has longer distance to reach the current root bridge. Inferior  BPDUs may appear when a neighboring switch suddenly loses its uplink and claims itself the new root of the topology. By default, every switch should ignore inferior BPDUs, until the currently stored BPDU expires (time=Max_Age – Message_Age). This feature intends to stabilize STP topology in situations where an uplink on some switch flaps (goes down and up frequently for any malfunction), causing the switch to start sending inferior information Superior BPDU of STP A superior BPDU is one that has a lower Bridge ID. An inferior BPDU would have a higher Bridge ID. This can’t be judged on a single BPDU basis. It’s

How to install iperf3 on CentOS 7 offline

To install iperf3 on CentOS 7 in offline mode, you need to download two files one for EPEL libraries and one for iperf3, upload to your CentOS machine with WinSCP and then follow two command (given below) to install the iperf3. Click  here  to download the latest version of iperf3 Click  here  to download the latest EPEL library file EPEL libraries file should have name like this  epel-release-*.rpm Upload both files to your CentOS machine, say in /tmp folder Take SSH Session of CentOS Machines Go to the folder where you uploaded both files, i.e. /tmp Install EPEL release rpm with following command # rpm -Uvh epel-release-*rpm Install iperf3 with following command #rpm -Uvh iperf3-*.rpm iperf3 has been successfully installed on your CentOS machine.

Configure fencing on RedHat for Cisco UCS

How to configure fencing on RedHat or CentOS Linux installed on Cisco Unified Computing System UCS blade Servers. Below is a single command to shut a blade server when configuring fencing on Linux Command to enter on redhat machine #fence_cisco_ucs -a UCS-Domain-VIP -l User-ID -p ******** -z -n org-root/SERVICE-PROFILE-NAME -o status replace above in blue font with the following information UCS-Domain-VIP                 =              UCS manager IP User-ID                                   =              User ID ******                                       =              password of User ID SERVICE-PROFILE-NAME =              replace it with the service profile name of the server Create a new ID in UCS Manager with only power on/off rights, and use that ID to send fencing poweroff command to the UCS Blades from RedHat Linux

ESXi vmnic shows 20gb or 40gb instead of 10gb On UCS

After configuring UCS Service profile, installing VMWare ESXi and configuring Nexus 1000v, i found VMWare vmnics were showing 20 gbps per nic. It was little confusing for me as each UCS Server port from blade to Fabric Interconnect should show 10 gbps. I started exploring it and found an interesting design of Cisco UCS VIC Cards 1340/1380 or UCS Port expander. As you can see there is  hardware port channel  between the virtual nics, and the outward ports connected to the IO modules.  As you can see it depends upon different type of connectivity between VIC cards and IO Modules, if you are connecting VIC 1340 without port expander then hardware port-channel see only two 10 gig interfaces connected to it and it presents 20 gig connections to each server Ethernet link, vmnic on ESXi in our case. And if a port expander is connected then the hardware port-channel sees four 10 gig interfaces connected to it so it represents as 40 gig connection for each Ethernet link down the Serv

What is Secure Shell (SSH) and how to configure SSH in Cisco Devices

What is Secure Shell (SSH) and how to configure SSH in Cisco Devices What is Secure Shell (SSH) Secure Shell is a protocol that can be used in the place of well known Telnet protocol to remotely connect to your Cisco Router or Switch. Telnet has long been used to manage network devices; however, Telnet traffic is sent in clear text. Anyone able to sniff that traffic would see your password and any other information sent during the Telnet session. Secure Shell (SSH) is a much more secure way to manage your routers and switches. It is a client/server protocol that encrypts the traffic in and out through the vty ports. Cisco routers and switches can act as SSH clients by default, but must be configured to be SSH servers. That is, they can use SSH when connecting to another device, but require configuration before allowing devices to connect via SSH to them. They also require some method of authenticating the client. This can be either a local username and password, or authentica

Cisco CLI Command to Quickly List out Availale Interfaces and their status

The Cisco CLI Command which i often use when i am running a New Cisco Device (Router or a Switch) to quickly list out the available interfaces and to check their status up or down. See the command and the output below Router#show interfaces description Interface Status           Protocol Description Fa0/0     up                     up Fa0/1     admin down     down Se1/0     up                     up Se1/0.1   up                    up Se1/0.2   up                    up Se1/1     admin down     down Se1/2     admin down     down Se1/3     admin down     down

Cisco IOS different names with different Features

Different types of Cisco IOSs with different features are available for download with different names. Cisco IOSs can be selected and downloaded as per the features they provide. Here is the brief definition of Eight Different types of IOSs having specific features. Choose what you need for you company by understanding with IOS name. • IP Base IP Base without Crypto-Entry level Cisco IOS Software image (Classic IP Data + trunking and DSL) • IP Voice IP Voice without Crypto, Adds VoIP, VoFR to IP Base (Adds Voice to Data) • SP Services Adds SSH/SSL, ATM, VoATM, MPLS, etc. to IP Voice (Adds SP Services to Voice & Data) • Advanced Security Adds Cisco IOS FW, IDS/IDP, NAC, SSH/SSL, IPsec VPN, etc. to IP Base (Add Security/VPN to Data) • Enterprise Base Enterprise Base without Crypto, Adds Enterprise Layer 3 routed protocols (AT, IPX, etc.) and IBM support to IP Base (Add Multiprotocol Services to Data) • Enterprise Services Enterprise Services without Crypto4-Adds ful

Telnet Client is Disabled Enable it to use it from this application

This is a Cisco Network Assistant (CNA) error when you want to telnet any Cisco Devices from within CNA. Solution to remove this error is related to Windows 7 or Windows Vista. First of all you need to Add TELNET program from Control Panel, which by Default is not added in fresh installation of Windows 7. For adding and using Telnet Program in Windows 7 , Click Start > Control Panel > Uninstall a Program > Turn Windows Features On and OFF > Scroll to TELNET and Select it > Press OK After Adding Telnet Program into the Windows 7 you need to Copy Telent.exe from C:\Windows\System32 folder and paste it to C:\Windows\SysWOW64\ Now you should not get the same error.

Roundcube webmail tries to send mail from @

This issue happens when you login to your roundcube webmail with your email ID only and not writing full email address with domain name, so it writes your identity in email from box as abc@ If you log out and again login in with full user name including domain name, i.e then you can see your send email from is correct to you full email address and not abc@ So either you can always login to the webmail with full email address or do one change in the roundcube configuration to add your email domain to the login id automatically. Go to the configuration folder of roundcube. I am using iRedmail with default installations on Ubuntu, so my default path is located at /opt/www/roundcube/configs/ open this configuration file in text editor and uncomment the follwoing $config[‘username_domain’] = ”; after uncommenting add your email domain in the inverted commas, like below $config[‘username_domain’] = ‘’; after making changes, rest

Capture Cisco CSR packets and Examine with Wireshark

As you know the Cisco’s Cloud Services Router is a virtual router either installed and configured in public Clouds like Amazon Web Services, AWS, or in your private cloud hosted locally. I needed to capture and monitor the traffic on its interfaces with Wireshark. One way I could found is to capture your desired traffic on any interface of CSR, export it to your local disk and open it with Wireshark. The following procedure can also be used to capture packets on other physical Cisco Routers running following IOS versions. Cisco IOS Release 12.4(20)T or later Cisco IOS-XE Release 15.2(4)S – 3.7.0 or later Lets start capturing traffic here on Cisco CSR. First we specify the interface to capture the packets on; csr#monitor capture GIG2 interface GigabitEthernet 2 both Here GIG2 is any name to create a file and store packets in it, both means to capture both inbound and outbound packets on interface gigabitethernet 2 You can specify ipv4 or ipv6 traffic, select protocol o

Error Establishing A Database Connection WordPress CentOS

Being novice to WordPress, but maintaining a Apache web server on CentOS 6.5 and maintaining a WordPress website. Surprisingly it was not a database issue, but a DDoS attack!!! After googling a lot related to MySQL database, i started monitoring my web server and found its CPU usage was becoming 100% by lot of Apache processes and after some time my server became unresponsive!!! What I did… Blocked HTTP access from Allowed HTTP access to only my network Public IP. Restarted the Server and found it was working like charm. I again allowed access to and it again became unresponsive and the CPU utilization was 100% or sometimes with “Error Establishing A Database Connection” My next step was obviously to look at which public IP is bombarding http requests to my Server. To check http access logs, use the following command cat /var/log/httpd/access_log Here are the commands to block the IP on the CentOS linux with it native firewall sudo iptables -I IN

Steps to install RAM and NIC Cisco UCS Server

It is always very easy to install additional hardware components to Cisco UCS blade or Rack servers in non-production environment. If you have to add something to Cisco UCS blade or Rack server in your company’s data center or in customer production environments then you are given a small time window to perform your activity and resume the Server or compute infrastructure in production. In this case you have to put extra efforts and create method of procedure MOP, to avoid any delay and surprises during your Change Request CR window and complete the task before the end of the CR window. Writing this post to save your time if you are going to install additional hardware components e.g Memory RAM/DIMM, Network interface cards, NICs, or VIC, hard drives etc. You got to plan it well, otherwise you may stuck with troubleshooting and run out of time in CR window time. Before installing the new hardware components, make sure the new hardware is compatible with your blade/rack server, sup

How to add Python Path in Windows Environment Variables

I got to do this when I need to migrate my customer's Nexus 1000v to the VMWare vDS. Go through the migration documents, first step is to install Python and add the python to the Windows Environment Variable. Python version is 2.7. My Windows Version = Windows Server 2008 R2 Enterprise To add python into the Windows environment variable and then start the python from command prompt. Go to the Go to Control Panel > System and Security > System . Select Advanced system settings. Select Environment Variables as shown in following figure. Under system variable, Click New Add first variable as  Variable Name =  PATH Variable Value =  C:\Python27;%PATH% Add second variable as Variable Name =  PYTHONPATH Variable Value =  %PYTHONPATH%;C:\Python27 Click OK to save newly added two variables, open command prompt window and type python and you should be on the Python prompt. 

vDS operation failed on host xxxxxxx.domainname, got (vmodl.fault.SystemError) exception

This error occurs repeatedly while adding ESXi host to the Nexus 1000v. The problem seems with the VMWare Update Manager (VUM) that it doesn't initiate the required VEM module for the installation on the ESXi host we are adding to the Nexus 1000v. I solved my problem by manually installing the .vib file on the ESXi host. And here are the steps to follow. Go to the Nexus 1000v through web browser You get list of links to download files, download your required .vib file from there. for me it was Cisco_bootbank_cisco-vem-v340-esx_5. Upload that vib file to the ESXi host with WinSCP, say in the /tmp folder Run following command to install the .vib file .i.e. the vem module. esxcli software vib install -v /tmp/Cisco_bootbank_cisco-vem-v340-esx_5. After the .vib file has been installed successfully, add the ESXi host to the Nexus 1000v.

Unable to See and add new ESXi hosts in Nexus 1000v

After the VMWare upgrade from 5.x to 6.x and Nexus 1000v upgrade from 4.2 to 5.2 you are unable to add new hosts into the Nexus 1000v distributed switch, although the older hosts are seed added to the N1Kv distributed switch and running fine without any issues. This happens because Nexus 1000v has no knowledge of new versions of vCenter Server in its postgress database. You have to manually add the new version in the vCenter database to support the new Version. First you need to log in the the VCDB on command line, and for that you need to find the userID and password. To get the userID and password, open C:\ProgramData\VMware\vCenterServer\cfg\vmware-vpx\ file contents should look like this driver = org.postgresql.Driverdbtype = PostgreSQLurl = jdbc:postgresql://localhost:5432/VCDB username = vc password = {FNr2Aad>ws8Xo<Q password.encrypted = false Grab the username and password (default userID happend to be "vc" and th

Reset multiple User passwords in iRedmail with Python Script

Just found a built in python script for resetting passwords of multiple mail users with one go. This python script came with the installation of iRedmail. You can find the python scrip at this path  /etc/www/iredadmin/tools/ All you have to do is to create a csv file in excel and put username+domain and password in plain text, as per below 12345678 Put the password in same cell with space and DO NOT put the password in another cell, otherwise the script wouldn't run.  Save the CSV file with any name, here we put the name as new_passwords.csv  Now upload the CSV to ired mail server on same path /var/www/iredadmin/tools/ Run the python scrip with the uploaded file with below command. python /var/www/iredadmin/tools/ new_passwords.csv You have successfully reset the password for all required email user account.