jinja2 Revisiting Jinja2 Switch Templating Revisiting Jinja2 switch templating for Cisco switches using FreeZTP; optimizing templates and processes.
cisco Network Security: Black-hole Bad Actors Network security will always be more important than ever before. Those of us who are trusted to implement and administer infrastructure would be wise to never remain complacent with our security policies.
cisco ASA Email Notifications - AnyConnect VPN How to configure email alerts for AnyConnect VPN client activity on the ASA platform.
cisco Cisco Trunk-splosion Protection On IOS switches with EEM, protect yourself (and less careful Jr engineers) with this applet that will prevent allowed-vlan-mishaps on trunks!
jinja2 Jinja2 Switch Templating with FreeZTP This is a sanitized example of a switch template that I built out with a strong focus on keeping the process as simple and unbreakable as possible for the intended end-users.
cisco Cisco EEM: Auto Interface Descriptions These applets will automatically update the description of an interface where a new CDP neighbor is detected, if not already described accordingly.
cisco Cisco Smart Install - IOS-XE Stack Auto-Allocation When this snippet is added to a Jinja2 template it will automatically build out an EEM applet that will set switch priorities and renumber all switches in the stack.
cisco Cisco Smart Install - IOS-XE Upgrade Caveat IOS-XE 3.7.4 cannot upgrade to 16.3.6 via smart-install because *new force* isn't appended. This workaround uses EEM applets in the FreeZTP J2 switch template to download install the updated image.
cisco AnyConnect VPN with(out) DUO 2FA A user's status can be set as 'Bypass' in the Duo Admin Panel (to bypass 2FA), but as an exercise we can also use Duo's Auth Proxy along side a separate authentication server in an environment with Duo 2FA users and non-2FA users.
cisco NX-OS Default Interface from Enable Mode Considering the 9000v is really only for labbing this isn’t a huge deal, but I was able but to default an interface from enable mode; config mode is not required.
cisco NX-OS Dynamic Routing over vPC VLAN Configure EIGRP on the N9K platform to establish dynamic routing adjacencies and achieve ECMP on a vPC VLAN.
cisco Fix: Cisco MARS Upgrade from Recovery Recently I received an RMA replacement for a CS-MARS-20 unit that had a failing drive. After restoring the backup from version 6.1.5 everything was back to normal, but we needed to get onto the latest version (6.1.8).
