sh|no.sh
  • LinkedIn
  • Twitter
  • Reddit
  • GitHub
  • GitLab
  • Credly
  • Synergy Information Solutions, Inc
  • ConvergeOne, Inc.

cisco

Cisco Technologies

jinja2

Revisiting Jinja2 Switch Templating

Revisiting Jinja2 switch templating for Cisco switches using FreeZTP; optimizing templates and processes.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
12 min read
Network Security: Black-hole Bad Actors
cisco

Network Security: Black-hole Bad Actors

Network security will always be more important than ever before. Those of us who are trusted to implement and administer infrastructure would be wise to never remain complacent with our security policies.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
3 min read
cisco

ASA Email Notifications - AnyConnect VPN

How to configure email alerts for AnyConnect VPN client activity on the ASA platform.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
1 min read
cisco

Cisco Trunk-splosion Protection

On IOS switches with EEM, protect yourself (and less careful Jr engineers) with this applet that will prevent allowed-vlan-mishaps on trunks!

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
1 min read
cisco

Cisco NX-API via HTTPS

Secure NX-API calls using HTTPS with a self-signed certificate.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
2 min read
jinja2

Jinja2 Switch Templating with FreeZTP

This is a sanitized example of a switch template that I built out with a strong focus on keeping the process as simple and unbreakable as possible for the intended end-users.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
41 min read
cisco

Cisco EEM: Auto Interface Descriptions

These applets will automatically update the description of an interface where a new CDP neighbor is detected, if not already described accordingly.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
5 min read
cisco

Cisco Smart Install - IOS-XE Stack Auto-Allocation

When this snippet is added to a Jinja2 template it will automatically build out an EEM applet that will set switch priorities and renumber all switches in the stack.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
12 min read
cisco

Cisco Smart Install - IOS-XE Upgrade Caveat

IOS-XE 3.7.4 cannot upgrade to 16.3.6 via smart-install because *new force* isn't appended. This workaround uses EEM applets in the FreeZTP J2 switch template to download install the updated image.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
9 min read
cisco

AnyConnect VPN with(out) DUO 2FA

A user's status can be set as 'Bypass' in the Duo Admin Panel (to bypass 2FA), but as an exercise we can also use Duo's Auth Proxy along side a separate authentication server in an environment with Duo 2FA users and non-2FA users.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
2 min read
cisco

NX-OS Default Interface from Enable Mode

Considering the 9000v is really only for labbing this isn’t a huge deal, but I was able but to default an interface from enable mode; config mode is not required.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
1 min read
cisco

NX-OS Dynamic Routing over vPC VLAN

Configure EIGRP on the N9K platform to establish dynamic routing adjacencies and achieve ECMP on a vPC VLAN.

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
4 min read
cisco

Fix: Cisco MARS Upgrade from Recovery

Recently I received an RMA replacement for a CS-MARS-20 unit that had a failing drive. After restoring the backup from version 6.1.5 everything was back to normal, but we needed to get onto the latest version (6.1.8).

  • Derek, CCNP-E/AIS
    Derek, CCNP-E/AIS
2 min read
sh|no.sh © 2023
Latest Posts Twitter