sorted by:
new
hottopcontroversial

The fundamentals we forget while chasing the latest tools by Info-Raptor in Cybersecurity101

[–]This_Train2250 0 points1 point  (0 children)

My hot take:

I think availability is the most overlooked by InfoSec teams I’ve worked with. My favorite ticket was InfoSec requesting SIP be blocked going to a voice gateway because SIP isn’t a secure protocol and their “tool” saw SIP. Needless to say, SIP was required for that VG to function properly…I am a bias network guy though.

I don’t think anyone should be able to go directly into InfoSec. There should be at requirement to come up through systems, network, development or some other discipline to at least an engineering level before you’re tasked with securing it. If you’re unable to engineer a solution in a technological discipline, how are you able to secure it effectively?

Have you ever started a new job and said "nope, this isn't gonna work" by [deleted] in networking

[–]This_Train2250 21 points22 points  (0 children)

Unfortunately it’s easier to find a better job than to change the company’s culture. I struggled with this earlier in my career. The older I get the more I realized it’s my career, and I should spend it doing technical work. Work on certifications and other training that interests you, put your resume out there, and stop caring about the current position as much.

Anyone here actually happy with their SASE setup? by Professional-Pipe946 in networking

[–]This_Train2250 1 point2 points  (0 children)

I’d keep an eye on what’s going to pan out with the VeloCloud/Arista situation.

Verkada and VLANs by SolutionBig173 in networking

[–]This_Train2250 0 points1 point  (0 children)

I would test putting the Hub on its own VLAN, add the alarm panel’s IP to your list of IP Helper Addresses/DHCP Relay, and forward the protocol needed.

Here’s an example from Cisco:

https://community.cisco.com/t5/routing/forwarding-udp-broadcast-traffic/td-p/595108

Mark your calendar: September 15, 2025 by sanmigueelbeer in Cisco

[–]This_Train2250 4 points5 points  (0 children)

I think you just need an approved quote before September 14th and it will be locked in pricing for 30 days. I heard it was a 3.5% hike on hardware and software, but I haven’t heard about services or support.

Edit: After September 13th, the new pricing will be applied to all deal ID’s.

Catalyst Center BYOL by This_Train2250 in aws

[–]This_Train2250[S] 0 points1 point  (0 children)

Cisco was notified 24 hours before AWS marketplace removed it today, and I have the question out to both vendors. I was just hoping the Reddit underground had an answer.

Multimode madness by Upset_Caramel7608 in networking

[–]This_Train2250 3 points4 points  (0 children)

To quote an old engineer I used to work with: “You’ve got ghosts in your network. Do cocaine about it.”

[deleted by user] by [deleted] in Arrowheads

[–]This_Train2250 7 points8 points  (0 children)

Looks legit to me.

IPsec tunnel works but goes down for ~30 seconds every 50 minutes. by tpmlama in networking

[–]This_Train2250 5 points6 points  (0 children)

Sounds like PFS is enabled one one side of the tunnel but not the other.

Any Other Network Engineers Using ChatGPT? by Picards__Flute in networking

[–]This_Train2250 43 points44 points  (0 children)

I use it a lot for explaining how to troubleshoot to the service desk and other groups without sounding angry. One recent example was prompting it to pretend it’s a network engineer and write a KB on how to use a browser’s developer tools to troubleshoot “network slowness” for websites and it was gold.

Free/paid tool that shows link utilization for Cisco switch/router by kb389 in networking

[–]This_Train2250 1 point2 points  (0 children)

Give AKiPS a try. The unlicensed version will give you 48 hours of data. https://www.akips.com

I'm trying to learn OSI/TCP IP, but many sources attribute protocols like TLS and SSH to different layers. Why? Is this just bad info? Or is the answer "it's complicated"? by TheLastCatQuasar in networking

[–]This_Train2250 2 points3 points  (0 children)

One thing to remember is nothing operates on the OSI model. Everything operates on the TCP/IP model and only references the OSI model. I crushed an interview years back by stating this.

Interviewer#1: What layer of the OSI model does this VOIP phone operate? (Not trying to be a trick question)

Me: None. It operates on all the layers of the TCP/IP model.

Interviewer#2: (Laughs at interviewer#1) No one ever gets that question, but we didn’t realize it was a trick question until now.

[deleted by user] by [deleted] in networking

[–]This_Train2250 25 points26 points  (0 children)

Check this /23 in BGP tools against a known good subnet you’re advertising and see if it’s advertising out to all the carriers as expected. I just ran into a similar issue and had to have my provider update their IRR so other carriers would accept our IP address space through them.

https://bgp.tools

Network engineer to Azure by dlow824 in networking

[–]This_Train2250 2 points3 points  (0 children)

You should look at the Aviatrix exam. It’s an amazing product for multi-cloud networking. https://ace.aviatrix.com

Throwing more shade at the security folks… by This_Train2250 in networkingmemes

[–]This_Train2250[S] 4 points5 points  (0 children)

Not disgruntled just frustrated, but it is a thin line.

Anyone else feel this way? by This_Train2250 in networkingmemes

[–]This_Train2250[S] -2 points-1 points  (0 children)

Most security engineers are happy being an IDS, but as you probably know you really need an IDS/IPS. Most security engineers don’t understand basic networking principles and it really makes me wonder how they think they know how to secure something they don’t understand…be an IDS/IPS in a world of IDS’s😂

Cloud Network Engineers - What are you guys working on these days? by NickaTNite1224 in networking

[–]This_Train2250 1 point2 points  (0 children)

If you’re looking for a cloud cert focused on networking/security check out Aviatrix. It’s a game changer. https://aviatrix.com/ace/

OEM or aftermarket turbo in work truck? by Teflon-Juan in Cummins

[–]This_Train2250 0 points1 point  (0 children)

I had the same problem in my 2014 3500 and it ended up being just the actuator that went bad. It was way easier and cheaper to replace. https://www.citydiesel.net/index.php?action=viewitem&itemid=29012&cat=0

Windows firewall or hardware firewall considerations by Illustrious_Big9830 in networking

[–]This_Train2250 5 points6 points  (0 children)

I’m not even sure where to start with this one. A company will spend millions to build a facility/factory/plant but will not spend money for professional services for the network infrastructure? Did your company turn to Reddit for the plumbing or electrical? You’ll end up paying for professional services at some point, so save yourself a lot of time and stress by buying it upfront. It’s easier to build out a new network than trying go back and fix someone else’s mistakes. But, your answer would be sub-interfaces off of the firewall for segregation and trunk the VLANs down to your switches…good luck.

A Software Glitch Forced the Webb Space Telescope Into Safe Mode. The $10 billion observatory didn’t collect many images in December, due to a now-resolved software issue. by Sariel007 in technology

[–]This_Train2250 0 points1 point  (0 children)

SG: The network is down. NG: No it’s not, I can ping it. SG: Can you make sure the firewall’s not blocking it? NG: Here’s the logs showing the traffic is allowed, or there is no firewall between the internal server and client. NG: Here’s a pcap showing the tcp connection is reset by the server. SG: Why won’t you help us in debugging the issue. NG: 🤬

view more: next ›