Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - mta772000

Pages: [1]
Deployment / WANOS Over DmVPN (IPSEC)
« on: June 05, 2014, 10:40:19 AM »
Hi Antonie, good day...

before explain my case below, I'd like to suggest open a new Technical page for WAN Links (or something like that) instead of submitting in the general forum (in WANOS Support index), just for grouping the topics in one technical portal.

My case:
kindly note that we currently almost finished revamp our WAN Network (we actually migrate from leased lines point-to-point which is very costly into DmVPN Cloud, kindly see attached)
Note:- attached diagram is Phase-I, Phase-II we'll add another 3 sites (Sub branches) to HQ-1 site

Now, we don't know how to and where to setup WANOS in our network. as you can see there are HQ-1 and HQ-2, site HQ-2 had 2 sub-branches 1&2.

HQ-1 provides E-mail for all sites, as well the Microsoft Active directory services (LDAP and DNS).
HQ-2 provides File-Server for all sites, as well the Microsoft Active directory services (LDAP and DNS) as backup.

I'm really confused between Cores and Edges, but I'm sure there are 2 Edges in the sub-branches 1&2, but what about the HQ sites. i want each HQ to have the orther site facilities and services, but the problem that each HQ should has a WANOS-Core, that's one. second question is can the WANOS-Core also works as an Edge to benefit from the other site.

Thank you.

Features / Hardware load balancing
« on: May 20, 2014, 01:01:04 PM »
Hi Antonie,

Today we finished our last day of POC witch Cisco WAN Acceleration, but we tested only for today the Hardware Load balancing (2 WAN Accelerators Active-Passive with auto-sync for caching) as attached. and was successful. however it was very complex in configuration.

My Question is: Can WANOS "maybe in Future" can support Hardware load balancing for Hardware redundancy. or is there other any to fulfill the fail-over.

Thank you.

Features / Advanced Logging
« on: May 18, 2014, 12:19:12 PM »
Hi Antonie, and good day

Can you please advise in the plus/commercial version there will be advanced monitoring and logging as below:

1- more detailed report (per source/destination in IP)
2- How many times the policy/rule were been hit (No. of hits)
3- Files been Cached (what they are) in order to locate the most wanted files
4- Top ten (Files, Source-IP, Dest-IP, etc...)
5- Customized Reports (one technical, and one summarized for Top Management monthly meeting)
6- Customized Interface for Hikma (in order to unify with our web standards)
7- ability to add/insert web-page link into our websites
8- ability to export into CSV, PDF and Zipped for sent-to-email
9- Search Field

Sorry for the long list, but wish all to be think about it in the coming version updates.

Firstly and Lastly, Thank you million times

Troubleshooting / MACFLAP_NOTIF
« on: May 08, 2014, 01:24:53 PM »
Hi Antonie,

Today i and my colleague  Abdallah were installed new WANOS_VM_1.8 on the same ESX that holds the old WANOS_VM_1.7(x.x.34.242/23, VLAN34)(out-of-band-mgt port is gig1/0/34), we create new VHD, new VSwitch for the new VM, what happened is that when assign IP (x.x.34.244/23, VLAN34) when VM is up, sudden al the network is hanged and many messages appear on the Cisco_Switch_log which in generaly a MAC flapping between WANOS mgt port with all Cisco Switch Uplinks

interface GigabitEthernet1/0/34
description WANOS CORE
switchport access vlan 34
switchport mode access

%SW_MATM-4-MACFLAP_NOTIF: Host 001d.9267.59e8 in vlan 34 is flapping between port Gi1/1/2 and port Gi1/0/34
004144: May  8 12:39:22.454: %SW_MATM-4-MACFLAP_NOTIF: Host 4055.3903.b541 in vlan 34 is flapping between port Te1/1/2 and port Gi1/0/34
004145: May  8 12:39:23.183: %SW_MATM-4-MACFLAP_NOTIF: Host 001d.ba1d.5c83 in vlan 34 is flapping between port Gi1/1/2 and port Gi1/0/34
004146: May  8 12:39:23.687: %SW_MATM-4-MACFLAP_NOTIF: Host 001d.9267.59e8 in vlan 34 is flapping between port Gi1/1/2 and port Gi1/0/34
004147: May  8 12:39:24.383: %SW_MATM-4-MACFLAP_NOTIF: Host 082e.5f04.f9d7 in vlan 34 is flapping between port Gi1/1/1 and port Gi1/0/34
004148: May  8 12:39:24.685: %SW_MATM-4-MACFLAP_NOTIF: Host 082e.5f0b.949c in vlan 34 is flapping between port Gi1/1/1 and port Gi1/0/34
004149: May  8 12:39:32.201: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/34, changed state to down
004150: May  8 12:39:33.199: %LINK-3-UPDOWN: Interface GigabitEthernet1/0/34, changed state to down

ITC.CM_SW1#sh cdp nei
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
                  S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone,
                  D - Remote, C - CVTA, M - Two-port Mac Relay

Device ID        Local Intrfce     Holdtme    Capability  Platform  Port ID
ITC.BS_SW1.*.com         Gig 2/1/1         146              S I   WS-C3560- Gig 0/1
ITC.GF_SW1.*.com         Gig 1/1/2         130              S I   WS-C3750X Gig 1/1/2
HP-DC01-N7K01.*.com   Ten 1/1/2         138            R S I C N7K-C7010 Eth 2/8
ITC.1F_SW1.*.com                               Gig 1/1/1         154              S I   WS-C3750- Gig 3/0/1
HP-DC01-N7K02.*.com    Ten 2/1/2         161            R S I C N7K-C7010 Eth 2/8
COM-WAN-R1.*.com                              Gig 1/0/3         138             R S I  CISCO2911 Gig 0/0
COM-WAN-R2.*.com                              Gig 2/0/3         172             R S I  CISCO2911 Gig 0/0
ITC.NOC_SW1.*.com                              Gig 2/1/2         124              S I   WS-C3560X Gig 1/1

all uplinks config are

 switchport trunk encapsulation dot1q
 switchport mode trunk

your help is highly appreciated

Admin edit:
For your network security the post has been edited slightly to remove some of your confidential info.

Troubleshooting / WAN Acceleration/Optimization over IPSEC
« on: April 19, 2014, 02:05:41 PM »
Dear Admin,

Good evening...

Kindly advise our case, we have one HQ with 30Mb Internet, and 4Mb leased line(point-to-point) with one branch, currently we setup WANOS to optimize/accelerate the traffic over the leased line and it is perfect. our management now want to reduce cost by replace the leased line with Internet 8Mb line in the branch (Figure-1).

My question is: can WANOS run over IPSEC Tunnel, or may i need to ask where i need to install WANOS over 7 Mb VPN IPSEC-Tunnel(Figure-2).  what do you suggest ?

The branch will have 8 Mb internet (dedicate 7Mb for VPN, and 1Mb for Internet), firewall will be Fortinet 100D, and cisco internet router 2911, VPN will be established over Fortinet firewall and not on cisco router

Thank you.

Pages: [1]