Expired authentication keys

We all know that authentication should be implemented between peers when using a routing protocol. Better still, instead of using a single static key a key-chain should be used so that they can be automatically rotated and via automation you can keep removing and adding keys to the chain to keep the endless cycle going.... Continue Reading →

Static route next-hop

Static routes are a much loved and well used configuration staple but this post will highlight a possible misconfiguration step and explore the behaviour. In cisco IOS a static route is defined by: ! ip route <destination_prefix> <destination_mask> <interface> <next-hop> ! While it may be common to omit the the outgoing interface, it is also... Continue Reading →

Juniper SRX VDSL configuration

Below is the minimum config you would need to get a functional VDSL connection on an SRX. The platform I am using is the old (but still supported!) SRX110H2-VA. One gotcha is the vlan-id setting on the pt- interface, a significant amount of searching was required to determine what this value should be; VLAN ID... Continue Reading →

Running Palo Alto VM under bhyve

Try as I might I had no luck in running the Palo Alto VM under VirtualBox. It is not a supported environment but VMware Player is not available under FreeBSD. this post will look at getting the VM running under the BSD homegrown bhyve. # uname -r 13.0-RELEASE To covert a VMDK file into a... Continue Reading →

Blog at WordPress.com.

Up ↑