Using Cisco ASA NAT to Translate Outbound DNS Lookups to OpenDNS

So you have decided to use Cisco Umbrella or OpenDNS as your recursive DNS. Good choice! You update your internal DNS servers to point to

All done, right?

Then you check your firewall logs and notice there are devices sending DNS queries directly to public DNS servers. How can you force those devices to use

With NAT!

First you need to identify which external DNS servers are being used. Then you need to NAT DNS requests to those external DNS servers to the OpenDNS server.

NetApp ONTAP 9 Simulator and Free eBook

Just a quick post.

I found Neil Anderson on Twitter @flackboxtv. Neil is a CCIE as well as NetApp, VMware, FlexPod, Microsoft and AWS certified. His blog, Flackbox, is about Cloud and Data Center technologies.  Neil has many great video tutorials on NetApp and, more broadly, on SAN and NAS Storage Basics.

Neil is also offering a free 177 page eBook "How to Build A NetApp ONTAP 9 Lab". The lab is built on VMware Player with VyOS routing between networks. The lab includes two NetApp ONTAP clusters, SnapMirror, SnapVault, Windows and Linux hosts. To minimize host memory usage, not every VM needs to be powered on at the same time.

Flackbox is definitely worth checking out.

Cisco Prime Infrastructure 2.1 - Upgrade VMware Tools

Cisco Prime Infrastructure includes a built-in evaluation license valid for 60 days and 100 devices. You can download the virtual appliance from the Cisco Promotional Software Store. I am running this in my lab on a VMware ESXi 5.5 host.

After I installed and configured Prime Infrastructure (PI) vSphere Client reported the PI vm was running an outdated version of VMware Tools. To upgrade VMware Tools you need to enable root access on the PI appliances, then follow the VMware instructions for "Manually Install or Upgrade VMware Tools in a Linux Virtual Machine".

Step 1 - SSH into the appliance and login.

Step 2 - Enable root shell and set the password, then log into root

lab-prime/admin# root_enable
Password :
Password Again :
Root enabled
lab-prime/admin# root
Enter root password :
Starting root bash shell ...

Step 3 - On the VMware host, enable Interactive Tools Upgrade. Right click the VM, Guest, Install/Upgrade VMware Tools, and select Interactive Tools…

Attending Cisco Live 2014 Online

I am not attending Cisco Live San Francisco this year, or should I say, I won't be in San Francisco for Cisco Live 2014. I wanted to share some information on Webcasts and Broadcasts available to anyone not attending.

Anyone can sign up for a free account. This is also often referred to as Cisco Live 365. Simply go to and create an account. Once your account is created and you login here is what you see:

The On-demand Library is where you can find PDFs of all the breakout sessions. Yes that's correct, you can download any and all the PDFs for Cisco Live!!

But wait there's more... Every session is video recorded. Soon these videos will be uploaded right here. This year Cisco has Fastracked Sessions  "A link to early release, on-demand videos of selected session will be posted here each night of the conference on May 20, 21 & 22. "

The lat section of I wanted to share is the Online Events. After clicking Online Event…