Pair Of Cisco 4506s And A 2950 Replaced By Three Brocade ICX6610s

I few weeks ago, I did a replacement of a company core switch.  They had two Cisco 4506s (that were not configured for HSRP) and a 2950 for Internet connectivity.  I came in with three ICX6610s and got these ready for deployment.  This scenario gave them a better solution for redundancy, performance, power savings, real estate gains, etc.  Plus, financially, it was cheaper than other options.  Here are some interesting pictures I took.
Below in this picture, you can see the three ICX6610s in top right.  The two 4506s in the bottom of each rack6

Now, after the 4506s and 2950 (still pictured) are taken out:

FINAL RESULT: Although these Cisco were good to the network, the customer will get better performance, more rack space, and save money with the ICX6610s as the core.

Algo SIP Alerter: SIP Config

Where to go to configure the SIP settings in the Algo ringer.  Great product if you need a boost in the ringing sound for loud environments.  I integrated this with a ShoreTel phone system.

Sunday Thought: The Original

Sometimes you just can not trust "translations".  I mean, I think that when we come across disagreements in Biblical studies, you just have to go back to the original Hebrew and Greek.  You may say that you dont know those languages.  Neither do I, but that doesnt stop me from doing my best to learn what I need to know.  I found a good translator from the Hebrew and Greek to English (and others) that I think is helpful.  Its called the Interlinear Scriptural Analyzer.  It was a free download.
Now you have read before where I have given my reasons for the 'gap theory' being false.  Im going to use one of the arguments they have in this case.  They say that the Bible says to 'replenish', and that means that it was populated before.  Well, lets take a look back to the original Hebrew and lets see if that holds true.  See below.  You have to do the research on this stuff, and sometimes you just have to go back to the 'original' language.

Cisco ASA: Troubleshooting Remote-Access Client Problems

I think Cisco does a really good job at the CLI.  I really like CLI and anyone who knows me knows I prefer CLI over the GUI anytime.  I guess Im just more comfortable with it.  So when it comes to finding out VPN info that I need when troubleshooting my login (or anyone's login), I use this command below.  See highlighted for quickly troubleshooting a remote-access client who was having some issues.  "show vpn-sessiondb detail ra-ikev1-ipsec filter name name" helps you see both phase I and phase II info that you will need to know.

5512ASA# sh vpn-sessiondb det ra-ikev1-ipsec filter name shane.killen

Session Type: IKEv1 IPsec Detailed

Username     : shane.killen         Index        : 2680
Assigned IP  :         Public IP    :
Protocol     : IKEv1 IPsecOverNatT
License      : Other VPN
Encryption   : IKEv1: (1)AES128  IPsecOverNatT: (1)AES128
Hashing      : IKEv1: (1)SHA1  IPsecOverNatT: (1)SHA1
Bytes Tx     : 800                    Bytes Rx     : 19561
Pkts Tx      : 8                      Pkts Rx      : 245
Pkts Tx Drop : 0                      Pkts Rx Drop : 0
Group Policy : VPN_ONSU               Tunnel Group : RemoteRA
Login Time   : 13:37:35 UTC Thu Jul 17 2014
Duration     : 0h:05m:13s
Inactivity   : 0h:00m:00s
NAC Result   : Unknown
VLAN Mapping : N/A                    VLAN         : none

IKEv1 Tunnels: 1
IPsecOverNatT Tunnels: 1

  Tunnel ID    : 2680.1
  UDP Src Port : 6871                   UDP Dst Port : 4500
  IKE Neg Mode : Aggressive             Auth Mode    : preSharedKeys
  Encryption   : AES128                 Hashing      : SHA1
  Rekey Int (T): 86400 Seconds          Rekey Left(T): 86091 Seconds
  D/H Group    : 2
  Filter Name  : VPN_ONSU
  Client OS    : WinNT                  Client OS Ver:

  Tunnel ID    : 2680.2
  Local Addr   :
  Remote Addr  :
  Encryption   : AES128                 Hashing      : SHA1
  Encapsulation: Tunnel
  Rekey Int (T): 28800 Seconds          Rekey Left(T): 28490 Seconds
  Rekey Int (D): 4608000 K-Bytes        Rekey Left(D): 4607981 K-Bytes
  Idle Time Out: 30 Minutes             Idle TO Left : 29 Minutes
  Bytes Tx     : 800                    Bytes Rx     : 19561
  Pkts Tx      : 8                      Pkts Rx      : 245

  Reval Int (T): 0 Seconds              Reval Left(T): 0 Seconds
  SQ Int (T)   : 0 Seconds              EoU Age(T)   : 310 Seconds
  Hold Left (T): 0 Seconds              Posture Token:
  Redirect URL :


SonicWall: Stealth Mode

I think there are some cases where some firewalls actually might make sense.  Im a big fan of Check Point and Palo Alto.  But in small office cases where they just need Internet and protection, I dont necessarily see anything wrong with other brands.  In a case I had recently, I have a small doctors office that just needs Internet, and nothing else.  A SonicWall was just fine for them and at a decent cost.

SonicWall does have this checkbox that I recommend for this very type of scenario.  Its the "Enable stealth mode" box.  See below.

SonicWall: No Voice And No Active Sync For Email

A customer called me up and told me that their voice and active sync on their phones (for email) was not working.  There is a setting on the SonicWall that will help resolve this issue.  Its for keeping port numbers from changing.  See below.  I had to check this box to make the voice and active sync work again.

Brocade Switch: How To Configure The Enable Password

I got asked this the other day.  I wanted to post how to configure the enable password on a ICX series Brocade switch.  It pretty simple:

SSH@6610(config)#enable super-user-password mynewpa$$w0rd

Server/Closet Room Temperatures, Again

I have mentioned server room temperature and closet temperatures before.  This is no exception, but sometimes it happens.  Thankfully in this case, they put in switching gear that can monitor the temperature and alert you when  things go wrong with HVAC.

Brocade Switch: How To Configure Radius Authentication With LDAP

I like configuring radius authentication for logging into network devices.  Its much more manageable than changing each switch when someone leaves a company.  Just disable their AD login and you are in good shape.  On the ICX series, this is what I normally do for a template.  Just put in your server IP, etc for your template:

radius-server host auth-port 1645 acct-port 1646
radius-server key pa$$w0rd
aaa authentication login default radius local
username shane pri 0 password pa$$w0rd

SonicWall: How To Install GVC (Global VPN Client) On Your System

One of my customers bought a SonicWall TZ215 and wanted remote-access into the facility. Here is the walk through on how to install the Global VPN Client:
Run the executable, you will then see this below.  Click on "Next".

"Agree" with the terms, and click "Next".

Below, click "Next".

Below, click "Next".

Below, click "Next".  Unless you want the VPN client software to start every time you boot the system up, then check the box and click "Next".
Below, click "Next".
Below, fill in your SonicWall public IP address, and click "Next".
Below, click "Finish".

Sunday Thought: I Feel The Need To Declare

It seems like during this season in my life, I run into more people (both Christians and non-Christians) who do NOT believe the error-free Word of God than I do people who DO believe in the inerrant Word of God.  Let me explain.  I am finding more and more people who say at least one of the following:
1.  They believe in evolution  (This is just laughable.  This is usually people who do not want to believe in God. To start, there are no transitional fossils, etc)
2.  They believe in a gap theory (meaning there was life here before Adam.  There is neither any Biblical reference to this that I find, nor is there any logic to this.  IF this were true, that would make other statements in the Bible not true.  Like Romans 5:12, as one example) Beware of false teachers, even among the brothers.
3.  They believe that aliens brought them here, possibly  (Really?  What evidence is there for this?)
4.  They believe the Earth is millions of years old  (Not possible.  You should be able to walk across the ocean if that were the case, since there would be so much salt in it you should be able to, literally, float on top of the water.  You don't see that, do you?  Not to mention many other things.  Plus, the Bible does not support that, which also knocks out #1, #2, and #3)
5.  They don't know how all this got here  (I guess if they would pick up the Bible, they would find out how they got here).

So, I'm declaring now, that I do believe in the error-free Word of God, which we call the Bible.  Everything you read in the Bible is absolute Truth.  I will not waiver from that.  ~~Shane
If you stand with me on this, I would like to hear from you. I could use some encouragement from my brothers out there.

Brocade: Another Cisco 6500 Replaced By Five ICX6610s

Man, I see this all the time.  This 6509 being replaced by a stack of 5 ICX6610s.  Brocade is a strong contender in the Routing/Switching market.

Customer Appreciation: I Like This

A coworker of mine who understands customer service sent this to me.  This is a burger joint, but all IT Services companies need this attitude!

TranslatorX Helps In Verifying Call Path

More call traces.  Call gets forwarded out to the PSTN from an internal extension (call forward all).  Looks like its getting dropped at the gateway, according to TranslatorX.

Sunday Thought: Here Is Why The "Gap Theory" Can Not Be True

How can we not believe the Creation and Flood story???  Give the graph below and my outline here some thought:
Notice that Methuselah and Lamech probably knew Adam himself, since they were family.  They probably got the creation story first hand from Adam, since Adam was alive while Methuselah and Lamech was alive.  Also, note that since Adam probably passed that information on to these two, and Noah was the grandson of Methuselah and soon of Lamech, these two probably passed the creation story down to Noah as well.  That means the creation story was passed on directly to Noah's grandfather and father.  So Noah learned of creation personally from people who actually knew Adam.  Also, Noah probably passed this info down to his sons, Shem in this diagram.  Even still, Shem probably heard it directly from Methuselah and Lamech also, since Shem was born and alive during the time of Methuselah and Lamach (again, who knew Adam personally).  Shem was alive during the time when Abraham was alive.  Notice that their timelines DO cross.  It is a good possibility that Shem and Adam probably knew each other, and that Abraham probably heard the creation story from Shem.  We know for sure that God spoke to Abraham anyway, from the Old Testament, so this was no surprise to Abraham.  Abraham knew that God created all of this, and that Adam was the first man.  That is probably why Abraham had a lot of faith in God, since he was spoken to by God, but also his other evidence was that Shem (who Abraham probably knew) knew two people that knew Adam personally.  That would also mean that Abraham personally knew someone who survived the Flood (Shem).  Notice also that Isaac (Abraham's son) also probably knew Shem personally, since their time alive also overlaps by at least 70 or so years.
If you think about this, Isaac knew Shem, who survived the Flood, and probably got the Creation story AND the Flood story directly from someone who survived the Flood and knew two people personally that KNEW Adam.  That makes at least two people who got this information almost first hand.
With that said, look at when Moses was born.  Not only Isaac, who got the Creation story and the Flood story from Shem, but Jacob and Joseph as well, who probably got the Creation story and Flood story from Isaac.  That is very little time between Isaac, Jacob, and Joseph's death to Moses' birth and life.  Don't you think that Moses would have mentioned what he knew was passed on to him?  Well, we know that God did guide him in what to write down in the Torah.  But he also knew these creation and flood facts because he was very close to the original people who heard and lived these truths.  Just something to think about.

More thoughts on this theory:
 I guess another problem I have with death happening before Adam (meaning a 1st flood, which gap theorists believe), is that according to Romans 5:12, death came through Adam: 
"Therefore, just as sin entered the world through one man, and death through sin, and in this way death came to all people, because all sinned—"
Also, I guess I have a hard time believing that there was anything else (outside a God, Jesus, Holy Spirit, angels, and fallen angels) because of some things that Genesis 1 says.  For instance:
Day three is when dry land first appeared, because it had no name until God allowed there to be dry land.  That would mean that anything that was alive before Adam would have to live in water.  Genesis 1:10 "God called the dry ground “land,” and the gathered waters he called “seas.” And God saw that it was good."  He called it "dry land" like it had never been in existence before.
Also, there was no vegetation until day three.  So that would mean no food for anything, unless the beings ate each other, which we know could not have happened because death did not enter the world until Adam sinned, according to the Scriptures.
We also know that all living things need oxygen (created by God), which could not have been in existence because there was no vegetation, which creates oxygen.  
There was also no sun or moon, which is necessary for life.  Plants can not live without sunlight, which in turn, again, would produce oxygen when they are alive.  On day three of creation, it wouldn't matter, since there were no living things on the earth. If there had been something living before, it would matter and oxygen would be important.  Even fish need oxygen to live, or they wouldn't need gills to get the oxygen out of the water.  If there was an existence of life (God created on earth) and there were no plants, they would not be able to breath in oxygen, which would mean they could not live.  We know all living things need oxygen to live, and that oxygen enters into the bloodstream, which is where life is (God said life was in the blood).  Oxygen could not have existed until day three, since vegetation was not in existence until day three of creation.
Notice also, that in Genesis, no living being is mentioned until day five (fish and birds), which would give God time (two days) to allow for oxygen to fill the earth (keep in mind, everything was created perfect, with no defect until sin entered the world. So plants probably could produce oxygen much faster than they can now (meaning entropy has taken place and plants are not as perfect now as they once were)).
With these things said, Genesis says that these things happened on "THE first day", "THE second day", "THE third day", ect.  If there were days beforehand (which couldn't have possibly happened unless everything lived in darkness, which we know could not happen because life has to have sunlight to live, since at a minimum plants could not live without sunlight, therefore could not produce oxygen for living beings to breath in and enter into a being's blood, which requires oxygen to live, since "life is in the blood"). 
Also, God declares a "very good" creation at the end of Genesis 1.  How could things have been "very good" if sin and destruction and death already existed INSIDE of what we have today? (Which we know could not have happened because of Romans 5:12 says death came through Adam's sin, not anything else.) 

Auto Attendant Recording Times: How Long Does It Usually Take?

Don't be surprised if it takes an hour or two depending on how big or small the auto attendant is.  In the best of cases, you can usually spend an hour.  The last one I did was a small doctors office and the girl who did the recordings did really good.  She had to re-record a few times on some, but it went really well.   So finding a quite office, getting a phone ready for recording, getting all involved in the room (office manager, girl recording the voice, and me) and actually doing the work, I would say an hour was not bad.  That seems to be about the normal for a "good" session.

Interviewing Potential Candidates

How do you get an idea of someone's IT skillset? I have seen some really odd ways that people do interviews to try to gage a technical persons skills. Here are a couple:
1. The interviewer asks things like "what have you been doing"? to try to get an idea of their skills. Very generic questions. That's all.
2. The interviewer does not ask technical questions at all. Seems odd considering its a technical position. They ask meaningless questions that have nothing to do with the IT role, and that's all.

I guess I have a different approach to interviewing. This is what I prefer:
1. Get to know the candidate personally. Just talk and find out what they like to do. Find out if they have a positive/negative attitude. Find out if they are militant or not. I like to try to make them comfortable so they will show me the real them. Just talk.
2. Ask the easy and hard technical questions that are appropriate to the job role. Find out where they truly line up with skills.
3. If it's the candidate's first interview, sure, weed the obvious ones who wont make it quickly. But those you feel like do well on #1 and #2 above, spend some time with them. It takes more than an hour to get to know what you really want to know about them, skillset and all.

Another IT Blog To Add To The List

Here is a newer IT blog for network engineers.  I suspect he will be posting regularly, so check it out.  Im adding this one to my "Other IT Blogs" page also.  This blog looks good and is easy on the eyes.  Very good.



I came across this today. Looks like an interesting blog site, plus some.  I'll post this in my "Other IT Blogs" page also.


Cisco Switch: "%SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input queue full"

I ran into this error message when a customer asked me to troubleshoot this SNMP issue.  I was getting this error in the log file:
"%SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input queue full"
Well, I tried to take the config out for SNMP and put it back in, and that worked for about a day.  But I found in the bug toolkit that really the answer is to upgrade the IOS.  I guess Ill put that on the schedule.  

Happy Labor Day - 2014

Happy Labor Day to all those who feel the need to take care of your families and yourself.  You do a good thing for providing, and you should be commended for that.