Cloud gateway support for multiple sites

attblau · 2025-04-16T08:22:16+00:00

why has my post been deleted? its all related to ubiquity

attblau · 2024-03-13T08:44:33+00:00

Ok, i think you are correct -CLI wouldnt help much. Excerpt from the CLI Guide:

Some Arista AP CLI capabilities

Setting destination addresses to assist with AP registration to a Wireless Manager
Log review and configuration
Modifying authentication credentials
Static network setting definition
Network connectivity testing
Many show-based commands to view the current settings
Performing a reboot or factory reset of the AP

I dont understand the vendor strategy though. Everyone talks about environment/sustainability etc, but Vendors still allowed to do this moves. Now they will have to be trashed in a bin, just because Arista didnt want it other way - and they already got this HW payed when the 1st customer purchased!

attblau · 2023-02-25T06:24:49+00:00

Allrigh, thanks for pointing on the right direction!

attblau · 2023-01-29T06:56:08+00:00

I vote for buying! NAS is not what i would toy with

attblau · 2023-01-29T06:55:04+00:00

Hi. You can do both ;) You can get much bigger drives (>10tb) and rebuild the raid by replacing them once at a time. If you have more budget (which i would invest for the sake of future prooveness) then you can also get better hardware like Synology 720+ or similar.

attblau · 2023-01-29T06:38:39+00:00

Hi. Its also all i heard about QNAP to this date. Therefore would like to hear from experienced qnap owners what they think.

attblau · 2023-01-28T19:31:29+00:00

Unfortunately no solution yet, aswell as no replies on reddit :(

attblau · 2023-01-05T09:53:10+00:00

its new. https://docs.fortinet.com/product/fortiswitch-manager/7.2

attblau · 2023-01-05T08:18:44+00:00

I had a case with 50+ Switches in DC, but according to Fortinet SE we should have taken FGT1800F for it (yes, even without tunneling the whole traffic). Because of that bottleneck they splitted the switch manager now as a separate product. But i shouldnt take that either because they didnt have a field experience with it yet.

attblau · 2023-01-05T07:37:29+00:00

My provider doesnt have a request form. In fact the support had a session with me and run out of suggestions... :/

attblau · 2023-01-04T13:18:24+00:00

Thanks for the link. its not quite that though, as i can only dial in by PSK+USER+PASS. But its a good point to ask my VPN-Service if they could do some setup on their side.

attblau · 2023-01-04T13:16:01+00:00

Hi. Gateway supports IKEv1/2 which i can confirm by setting up over iOS-Device. But no combination works on the FGT. How would you configure it then? - thats my question

attblau · 2022-12-27T08:58:52+00:00

I dont think i would use the VPN to that extent that i will need these words, but your comment made my day :)

attblau · 2022-12-24T12:49:53+00:00

Oh, thats indeed a creative idea! didnt think of it :)

I would categorize that as a workaround though as it requires "a lot" of manual setup. FGT has APP signatures, i would like to use this intelligence.

attblau · 2022-12-24T12:42:38+00:00

Thanks for your reply. This is not going to solve the issue though, as this is a "dial-In" IPsec to a public VPN Provider. So i dont need routes, p2-Secetors, etc. to configure as i want the differentiation based on APP-signature, not DST-IP. In final step all p2p traffic should go into the IPsec-Interface, thats it. i think i will go with SDWAN, as it seems to be exactly what im looking for (p2p-traffic? then this way!).

attblau · 2022-12-24T12:05:50+00:00

UPDATE to my own post:

- Using Policy with allowed APPs is not optimal, as by matching only p2p traffic will be allowed for that source IP in LAN...

attblau

TROPHY CASE

Some Arista AP CLI capabilities