I have been working with RPZ policy blacklists to do DNS firewalling. A great introduction to DNS firewalling can be found here An overview of the syntax can be found at this link I had previously done blacklisting at home using pi-hole and wanted to migrate to an RPZ based solution. I wrote a python… Continue reading New Python Project for RPZ Blacklists
I have transitioning from a primary Windows desktop environment to a Linux desktop, and found that I wanted to get my saved connections from superputty, which my co-workers are using to a Linux tool. I found a tool called PAC Manager which does what I needed. The main thing I wanted was a tree hierarchy… Continue reading Moving SuperPutty config to Linux Pac Manager
Things have been crazy this past year. After 10 years of working at my old job, last march I took a position at a new job. I am moving from working as an engineer working on IOS and IOS-XR service provider networks, to now working in the Healthcare industry at a regional health care provider.… Continue reading Moving to the dark side
I had an interesting issue where I had to use BGP traffic engineering to work around an unusual quark with a major backbone provider. The site I was working with was dual-homed using a major national provider and a smaller local provider. In order to better load traffic between the circuits we attempted to use… Continue reading BGP workaround for backbone issue
Cisco has a set of OID that can be used to copy things to and from a router using SNMP.
Following up on my Formating mac addresses using python post I have a better way of using Mac addresses. I have been using the netaddr library for ip and mac address manipulations. To convert a binary mac address to an EUI object you can use the following code import netaddr from netaddr import EUI def convertMac(octet): """ This Function… Continue reading Better way of formatting Mac Addresses in Python
Earlier today I was needing to verify two pieces of configured equipment were using the correct 802.q trunks by using a packet capture.
As I have been working with different routers I have squired a small repository of configuration files that I use for examples, backups, and ways of remembering the way the network was set up before a change. At the start I maintained each config as a separate file, usually containing the date (i.e. router1-071012.cfg). While… Continue reading Mercurial for Tracking Cisco Configs
Preparing for putting together some posts on BGP I looked up to see if there were documentation AS numbers reserverd for documentation, just like the ip addresses in one of my previous posts the following AS Numbers are reserved.
I worked recently to add a Calix E7 to a network to do GPON Fiber for Ethernet customers. The customers would need to get a dhcp address for a dhcp server, and I needed to add DHCP Option 82 logging for record keeping purposes.