setup HA Cluster Fortigate 500E

glitchlist Uncategorized Leave a Comment

here a to-do list to setup an HA Active-Passive Cluster Fortigate with 2 FortiGate-500E: Connect to mgmt interface on each FortiGate, DHCP on your laptop and go to https://192.168.1.99 User: admin Password: blank CHANGE the PASSWORD!!! Set an ip on outside interface on both Firewalls Register appliances on https://support.fortinet.com Reserve an additional port (copper or fiber) in addition to the …

Arista mlag

glitchlist Uncategorized Leave a Comment

Multi-Chassis Link Aggregation is the possibility with the Arista switch in order to utilize all interconnects in an active/active manner. We will start from the below design : with the the mlag configured between the 2 switch, all the path are in forward mode CONFIGURATION PORT-CHANNEL NO SPANNING-TREE FOR MLAG VLAN CONFIGURATION INTERFACE PTP CONFIGURATION MLAG VERIFY CONFIGURATION DUAL-HOMED LINK …

Arch Linux with full Disk Encryption

glitchlist Uncategorized Leave a Comment

Full Disk Encryption using LVM on Luks with separate Home, Root and swap Encrypted boot with Grub/Efi First step : Preparing partition Ensure live has booted with UEFI verifying the followings directory –> ls /sys/firmware/efi/efivars Verify disk schema : fdisk -l /dev/nvme01 Create the 3 partion with fdisk. ef type for EFI, 83 for /boot and 8e for LVM Second …

802.3ad between Huawei AR2240 and Cisco 3750X

glitchlist Uncategorized Leave a Comment

IEEE 802.3ad is used to aggregate multiple link ethernet for increase the network speed and availability.You can configure Layer3 to Layer3 LACP or Layer2 to Layer2 Etherchannel, but sometimes you have to do more: Some routers like Huawei 2240 are only configurable in LACP Layer 3 mode but, for design requirements, the Core Switch (ex.: Cisco) have to be set …

BGPv4 – Public peering requests

glitchlist Uncategorized Leave a Comment

as Internet Service Provider you must ensure that packets are passing your network reach the destination as quickly as possible and with the least number of hops. To do this you should exchange your networks with others: Peering. Mosts internet peerings in the world is maded by Handshake Agreement. Here you can find a draft with all important information to …