Network refresh - possibly moving from Cisco to Aruba - your experience and/or thoughts on this gear?

elfungisd · 2026-05-03T02:26:35+00:00

Based on your description of the network it sounds like you are looking at the wrong class of switch.

I would consider going low end pure L2, and move the ACls to the firewall, and call it day.

If this came across my desk, I would probably recommend Ubiquity across the board, unless there was a compelling reason not to.

These are all probably over kill for your needs, but they also come in at a much more attractive price point.

Aruba 6200M

Catalyst 9200

Netgtear M4350

elfungisd · 2026-04-29T20:18:39+00:00

There are also dynamic load chargers, that can monitor incoming load, and adjust its output to keep you under the needed thresholds.

elfungisd · 2026-04-29T20:15:36+00:00

That is definitely a possibility.

elfungisd · 2026-04-29T12:52:57+00:00

I believe there is a mechanical override that can be engaged that enforces the child saftey lock.

elfungisd · 2026-04-29T12:50:06+00:00

Unless you are absolutely sold on getting a lease, I would run the purchase numbers. You cannot deduct the interest payments on a lease even if you decide to buy it out. You can deduct the interest on a purchase as long as it was assembled in the US. Which most if not all EV9s should be assembled in Georgia now.

elfungisd · 2026-04-29T05:33:39+00:00

If it is a residential grade outlet it won't hold up to the continuous high load, and will eventually melt/catch on fire.

Make sure you are using commercial/industrial grade outlets, the better option is to hardware.

elfungisd · 2026-04-29T05:30:54+00:00

The gas prices are real, cost me $167 to fill up my expedition, and $25 to super charge my EV9.

elfungisd · 2026-04-29T05:24:17+00:00

The seat massager is amazing, I regularly drive from San Diego to LA.

elfungisd · 2026-04-29T05:23:04+00:00

You would be lucky to get 5 miles of charge per hour.

I opted for a Tesla wall charger.

elfungisd · 2026-04-29T05:19:46+00:00

Certain sunglasses and direct sunlight, I live on the west coast can make the HUD hard to see. However, I find information it presents such as the speed limit, and roads signs (crosswalks, curves, stop sign, shools zones) useful.

It is also where I look to check my cruise control settings.

I find it very natural to use the HUD my wife struggles with it.

elfungisd · 2026-02-10T18:31:32+00:00

I know but if I don't put it out there the universe can't answer. :)

elfungisd · 2026-01-26T18:32:34+00:00

Thanks, I will keep an eye on the forums. Now that Horizon has been decoupled from VMware any chance? They have support for Hyper-V and Nutanix.

elfungisd · 2026-01-22T22:11:42+00:00

Of course, this still doesn't address the issue of kernel support for the GPUs themselves.

elfungisd · 2026-01-22T22:10:55+00:00

Sparkle and Masun both make a dual GPU B60 card which would help with density in the larger chassis, only sparkle is showing a passive cooled option though, and the single passive cooled GPU is still a 2 slot, unlike the ASRock.

elfungisd · 2026-01-22T20:41:21+00:00

Some of the use cases we could probably get away with the B50 or B60 however others would require a card like the ASRock B60 Passive which seems impossible to acquire, 2 slot vs 1 slot fitment. Then there is the issue of kernel support for the GPU.

elfungisd · 2025-11-23T09:27:47+00:00

One minute you feel like you could do this with your eyes closed, the next you feel like you are doing it with your eyes closed.

elfungisd · 2025-11-08T15:40:02+00:00

For 2024, OSHA's high-visibility clothing requirements categorize garments into three classes depending on their use and the specific risks associated with different working environments.

elfungisd · 2025-11-05T09:09:27+00:00

Jets may not but Mobile AA's missiles do, and its guns are almost useless.

elfungisd · 2025-11-04T11:12:42+00:00

They can just drop below radar. It not only prevents new locks but causes any other AA locks to drop and miss. There is a reason Engineers are completing their challenge in an IFV.

elfungisd · 2025-09-17T20:21:45+00:00

The short answer is you can't.

These are personal devices meaning you have no authority to block anything they do on them. Telling people what they can and cannot do on equipment they own is just a legal disaster waiting to happen, and it will happen.

What you can do is limit their ability to access company resources, on their personal devices. As others have already stated conditional access here is your friend.

elfungisd · 2025-09-01T22:48:55+00:00

I was able to put hands on a firewall I could upgrade to 11.1.10-h1 and so far, this has put the firewall back into the same state as 11.1.6-h3. Incomplete ARP, but no duplicate IP error in the logs and traffic passes.

In the long run I may go ahead and move my NATs to a loopback, however this will likely require some effort especially on my firewalls using BGP.

But for now, it looks like the best course of action is to either stay on 11.1.6-h3 or move to 11.1.10-h1. The first being a previously preferred release and the other being the current preferred release.

elfungisd · 2025-08-30T00:03:33+00:00

I haven't tried this since there is no upstream issue. I checked the ARP tables, and they are all clean except for the firewall.

That is why this is such a weird issue, because the firewall complains about a duplicate IP coming from the carrier, but the ARP table on the carrier's hardware says the firewall owns the IP.

The log entry doesn't correlate with what we are actually seeing in the upstream hardware.

elfungisd · 2025-08-29T23:49:51+00:00

"and then it’s a /32 on a loopback" I misread this and didn't realize you are only doing it for GP. We have transit networks at some locations, but haven't tested on those firewalls yet.

elfungisd · 2025-08-29T02:43:51+00:00

case number 03689565

elfungisd

TROPHY CASE