Cloud Computing and Data Center Predictions for 2012



Solid State Drives Go Mainstream 
The terrible flooding in Thailand has caused a shortage in hard drives. Hard drive prices have increased. I expect price increases from SAN manufactures such as NetApp, EMC, HP, and others. These shortages will also increase costs for Cloud Computing providers like Rackspace, Google, and Amazon.

Credit
www.soultravelmultimedia.com 
As reported in the Wall Street Journal, LSI CEO Abhi Talwalker said that companies are turning to solid state drives to relieve some of the hard drive back log. SanDisk, Marvell, and Micron have stated they have seen or expect to see increasing demand for SSD. InfoWorld reported on IDC market research that SSD shipments increased 66% in Q3 with the biggest advances coming from Enterprise (storage and servers) and Client (PCs). Price increases in traditional hard drives will provide a boost to solid state drive adoption rates in consumer PCs and SANs deployed in enterprise and service provider clouds. Also the increasing volume of SSD shipments will be accompanied by lower SSD costs. Look for more SSD in the SANs.


Hybrid Cloud Computing
In-house solutions such as Cisco Flexpod, VCE, HP Cloud, Microsoft, and others will see accelerated growth as enterprises have seen the benefits of public Cloud Computing but prefer some of the comforts of in-house private Clouds. I expect growth in Hybrid Cloud Computing deployments.

With the Hybrid model specific aspects of IT infrastructure is moved to the cloud. This allows you to mix and match the resources between in-house infrastructure which is difficult to scale and cloud resources that’s scalable and can be provisioned on demand. An example would be a Business Intelligence application where the data is located in-house cloud and the processing is performed in the cloud.


Data Center Fabric Infrastructure Takes Hold
Cisco, Juniper, and Brocade have been touting the benefits of a data center “Fabric”. In 2012, I expect to see data center fabric networks, running over 10Gb Ethernet, to move from the “early adopter” phase to the “mass adoption” phase. (It could be argued that this is already happening).

Fibre Channel over Ethernet (FCoE) and Data Center Bridging (DCB) allows storage and network traffic to be transported across common lossless Ethernet links. Server adapters called Converged Network Adapters (CNA) unify storage and network I/O to FCoE data center switches.

Benefits of a Data Center Fabric infrastructure:
  • Consolidated server I/O
  • Reduced cabling
  • Reduced power consumption
  • Increased Virtual Machine mobility
  • High-Speed, low latency interconnectivity
  • Layer-2 connectivity

What do you think?

Home

Cisco Overtakes HP in Data Center Market


Cisco UCS 5108 Server Chassis
The global data center infrastructure hit US$26.2 billion in the third quarter of 2011, with Cisco Systems overtaking HP on aggregated revenue to take pole position, according to Canalys.
In a report released Wednesday, the research firm said worldwide data center infrastructure market grew 2.7 percent from US$25.5 billion in second-quarter 2011. Data center virtualization and consolidation, as part of efforts to migrate to private cloud, data center refresh and optimization project helped drive overall growth.
Industry standard servers remained the biggest part of the market in the third quarter, accounting for 39 percent of total investment, followed by storage at 25 percent, and Ethernet networking at 21 percent, Canalys said.

On an annual basis, industry standard server revenue increased by about 9 percent, but the strongest growth was in server virtualization which rose by approximately 30 percent.
Delving into vendor analysis, in the third quarter, Canalys said Cisco overtook HP to take pole position in the data center infrastructure market, followed by IBM in third position, Dell in fourth and EMC in fifth. In the x86 blade server market segment, Cisco is currently third but is expected to be second to HP by the end of 2012, the research firm predicted.

Putty Beta 0.62 Released

Putty

Putty version 0.62 has been released by Simon Tatham. Putty is my favorite Telnet, SSH, Serial Terminal Emulation client.

Cisco UCS-C Servers Rack Mounting Adapter Kit

The Cisco UCS-C Series servers come with a terrific tool-less slide rail kit. The rail kit is compatible with 3/8" square hole and 1/4" round hole racks. The rail kit does not work with 2post racks and threaded hole racks.

I found two adapter kits from The Server Rack.




The Threaded Hole Rack Adapter Kit


The 2Post Rack Adapter Kit


http://www.server-racks.com/ciscos-slide-rail-kit-for-ucs-c200-c210-c250.html

That is all...

Home

VMware ESXi 4.1 Optimizations for Cisco UC on UCS

In my previous post I discussed the importance of installing the latest version of VMware Tools on UC virtual servers in a Cisco UC on UCS deployment. A second and equally important VMware 'tweak' is disabling Large Receive Offload (LRO) on VMware ESXi hosts.

VMware Knowledge Base Article 1027511 addresses some Linux TCP/IP stacks perform poorly when handling LRO-generated packets. This results in poor TCP performance.

    Cisco UCS Servers at VMworld
  1. Log into the ESXi host or its vCenter with vSphere Client.
  2. Select the host > Configuration > Software:Advanced Settings.
  3. Select Net and scroll down slightly more than half way.
  4. Set the following parameters from 1 to 0:
    1. Net.VmxnetSwLROSL
    2. Net.Vmxnet3SwLRO
    3. Net.Vmxnet3HwLRO
    4. Net.Vmxnet2SwLRO
    5. Net.Vmxnet2HwLRO
  5. Reboot the ESXi host to activate these changes.

Your guest VMs should now have normal TCP networking performance.

References:
http://docwiki.cisco.com/wiki/Disable_LRO
VMware Knowledge Base - KB Article 1027511
Cisco UC on UCS - Don't Forget VMware Tools

Home

Cisco UC on UCS - Don't Forget VMware Tools

Recently we upgraded a Cisco Unified Communications system running on physical HP servers, to Cisco UCS C-Series rack mount servers. Three days after the upgrade, all of the UC applications slowed down.

When users picked up their phone handset, there was a noticeable delay before dial tone. Delayed dial tone is a classic symptom of an overworked CallManager.

The Cisco UCS C210M2 servers were more than adequate for the load. Each UCS-C210M2 hosted VMware VMs of CallManager, Unity Connection, and UCCX. All of the VMs were deployed using the Cisco prescribed OVA templates.


Cisco UCS-C210M2
Cisco UCS C210M2

So what is “VMware Tools”?

According to docwiki.cisco.com/wiki/VMware_Tools:

VMware Tools are specialized drivers for virtual hardware that is installed in the UC applications when they are running virtualized.

Now I understand Drivers. Up to date drivers are a good thing. Docwiki goes on to state:


It is very important that the VMware tools version running in the UC application be in sync with the version of ESXi being used.

Anyone who has read Cisco documentation before should realize, Cisco doesn’t often use the phrase “it is very important”. This is as close as Cisco gets to saying “you have to do this”.
So we installed VMware tools on all of the VMs and the Cisco voice system has been stable ever since.

Cisco has 3 methods for installing VMware Tools on Unified Communications Application VMs dependent on the UC Application version. Visit DocWiki-VMware Tools to find the appropriate method.

Please Note: VMware Tools will have to be re-installed anytime VMware ESXi is patched or upgraded.


Home

Touchpad Lack of Apps? I don't need no stinking apps

I have had my Touchpad for about 4 weeks. It have spent most of this time tweaking and reading books with the Kindle App. For the last year I have been debating whether to get an iPad or Android tablet or an eReader such as a Kindle or Nook.

I have an iPhone which I really like. I like the vast array of applications. My favorite and most used iPhone apps are Echofon (twitter), Google+, Evernote, SkyGrid, AP Mobile, CNBC, YouTube, MLB.com, Zynga Poker, Yelp, Dropbox, USA Today, YouVersion Bible, and Amazon Kindle.

I primarily use my iPhone for, besides talking and texting, to keeping up with Twitter and Google+, news and stock information, reading books work related PDFs. I really enjoy the iPhone Kindle app. In the last year I have read about 10 books.  The screen is small and I just get into a rhythm of turning the page every 5 seconds.

So I wanted a tablet type device specifically for reading. Being stubborn and difficult, I didn't want to forego the opportunity to surf the web. In short I wanted an eInk  reader that could switch to an iPad. Well that device doesn't exist, so I kept reading on my iPhone.

Then we got a call in the office. Our company had purchased a quantity of HP Touchpads. These were made available for sale, one per employee. I did a Google search and saw the Kindle was available on the Touchpad. So I bought one.

After 4 weeks I can say I am love the Touchpad as an eReader, and I am adjusting to the new mindset of the WebOS. I love the Kindle app (enough about that). I keep thinking the WebOS is hindered by the lack of apps.

However, WebOS supports Flash. This causes a bit of a change in mind set. Many iPhone/iPad apps exist because a webpage running a Flash app isn't possible. So if a web site I frequent uses Flash, WebOS supports Flash, the Touchpad doesn't have an app for the site, and I can just go to the website and do what I want, do I care there isn't an app?

Here is a more concrete example....Sunday I was watching the NFL games and wanted to track my Yahoo Fantasy Football team. My iPhone doesn't support the flash based "stattracker" realtime interface. The iPhone Yahoo Fantasy Football app will show updated stats in a vanilla interface that reloads every minute.  Basically the app is the same experience was the iPhone web page but with automatic reloads.

I pulled out the HP Touchpad, went to the web site, and launched the flash based stattracker and followed the beautiful realtime stats. Wow! The web page was great, no special app needed.

Home

9/11 - My Day

9/11/2001 Started out as a normal day for me. I remember it was a beautiful day. Mid 70s and not a cloud in the sky. If things at work went well I was going to sneak out early.

I was at a customers integrating a firewall with a web content filter. I had the basics working and moved on to the more advanced parts. One of the customer's employees came into the room and announced two planes had crashed into the World Trade Center. She found a TV and moved it into the conference room.

I hurried to get my work done so I could get to watching TV. I felt numb. I remembered the previous attack on the WTC. I had assumed that was an isolated incident by a few radicalized, American hating, muslims whom learned how to build a "fertilizer" bomb from the Internet.

My phone rang a couple of times. It was my wife. I was thankful she called. We shared in our shock at what was happening and exchanged "I Love You's".

Then my phone rang again. I didn't recognize the number other than it was a downtown Chicago number. I answered the phone to hear an obviously crying female voice say hello. I recognized the voice as a customer.

The last couple of months I was doing some work for her company. Her office was in an unique location. Her office, and the computer systems she supported, was located within the Federal Reserve Bank of Chicago.

The Federal Reserve Bank of Chicago is a few blocks of the former Sears Tower.

Hearing her sobs I said, "Hello. Are you ok? What can I do for you?".

What she said stunned me....

Struggling to compose herself she said, "Two plans flew into the World Trade Center. We were just told a plane is flying towards the Sears Tower. The building is being evacuated. My boss told everyone to get out."

The gentle sobs erupted into a flood of fear, panic, and terror. "My boss told everyone to get out except me... I have to stay and watch our systems to make sure they are secure." "He said if someone else will watch the systems, I can leave!!"

"Go!!" I said. "Thank you" is all I heard.

I talked to her a couple of times in the next two or three days, but never after that. For the next week I monitored their systems and saw nothing unusual.

I was happy to learn she left her employer a few weeks later.

Putty Version 0.61 and Putty Connection Manager


I wanted to update this post. Putty Connection Manager is no longer active.

I have switched to SuperPuTTY. It is available here SuperPuTTY. SuperPuTTy does not use "login scripts". For SSH connections you can pass username and password, however you can not do this for telnet. Here is a SuperPuTTY new session configuration using SSH and passing username and password.

SuperPuTTY New Session Dialog





I use Putty for telnet, SSH, and serial connections to. Putty is an excellent terminal program. I also use Putty Connection Manager for Tabbed windows and login scripts.

Putty Connection Manager is a Free Putty Client add-on. http://puttycm.free.fr/cms/index.php

Simon Tatham has released version 0.61 of Putty. Putty 0.61 can be downloaded at: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html


2011-07-12 PuTTY 0.61 is released
PuTTY 0.61 is out, after over four years (sorry!), with new features, bug fixes, and compatibility updates for Windows 7 and various SSH server software.
These features are new in beta 0.61 (released 2011-07-12):

  • Kerberos/GSSAPI authentication in SSH-2.
  • Local X11 authorisation support on Windows. (Unix already had it, of course.)
  • Support for non-fixed-width fonts on Windows.
  • GTK 2 support on Unix.
  • Specifying the logical host name independently of the physical network address to connect to.
  • Crypto and flow control optimisations.
  • Support for the zlib@openssh.com SSH-2 compression method.
  • Support for new Windows 7 UI features: Aero resizing and jump lists.
  • Support for OpenSSH AES-encrypted private key files in PuTTYgen.
  • Bug fix: handles OpenSSH private keys with primes in either order.
  • Bug fix: corruption of port forwarding is fixed (we think).
  • Bug fix: various crashes and hangs when exiting on failure,
  • Bug fix: hang in the serial back end on Windows.
  • Bug fix: Windows clipboard is now read asynchronously, in case of deadlock due to the clipboard owner being at the far end of the same PuTTY's network connection (either via X forwarding or via tunnelled rdesktop).
Putty Connection Manager Features
Features
  • Tabs and dockable windows for PuTTY instances.
  • Fully compatible with PuTTY configuration (using registry).
  • Easily customizable to optimize workspace (fullscreen, minimze to tray, add/remove toolbar, etc...).
  • Automatic login feature regardless to protocol restrictions (user keyboard simulation).
  • Post-login commands (execute any shell command when logged).
  • Connection Manager : Manage a large number of connections with specific configuration (auto-login, specific PuTTY Session, post-command, etc...).
  • Quick connect toolbar to quickly launch a PuTTY connection.
  • Import/Export whole connections informations to XML format (generate your configuration automatically from another tool and import it, or export your configuration for backup purpose).
  • Encrypted configuration database option available to store connections informations safely (external library supporting AES algorithm used with key sizes of 128, 192 and 256 bits, please refer for the legal status of encryption software in your country).
  • Standalone executable, no setup required.
  • Localizable : English (default) and French available (only when using setup version, standalone is english only).
  • Completely free for commercial and personal use : PuTTY Connection Manager is freeware.


Home

How I passed the CCIE R&S Lab on my 1st Attempt

CCIE 10 Year

I am studying for my CCIE Re-Certification. This has re-kindled my interest in many of the “CCIE Lab” study materials out in the Internet. With all of this material available, I wanted to share what I did to pass the CCIE R&S Exam.

I passed the CCIE Routing and Switching Lab 12 years ago on August 26, 1999. I took my lab exam in the beautiful Halifax, Nova Scotia. This was one of the most beautiful places I have ever visited. I took my exam on a Monday and a Tuesday (yes, back then it was a 2 day exam). My wife accompanied me; we arrived on Saturday and spent a day and a half being tourists.

When people in the “know” realize I am a CCIE I am often asked, “How many attempts until you passed”. My response is “one”. I say this, not to brag, but to give some credibility to what I am sharing.

When I started to study there was no study guides. People who had taken the exam would not talk about the test, even the number of routers they saw. The big rumor was there was a major Frame-Relay component, but no one would talk about this.

I found Bruce Caslow’s book “Cisco Certification: Bridges, Routers and Switches for CCIEs”. This was not a “how to pass the CCIE Exam”; it was a structured road map for preparing for the lab. From this book I discovered and learned how to study technologies inside and out.

I put together my CCIE lab rack. I quickly realized there was no need to constantly change the cabling. I needed a configuration that gave me a Frame-relay Point-to-Point connection and a Point-to-Multipoint connection. If I needed additional interfaces I could use Loopback interfaces. Quick tip, If you have an Ethernet interface, but no switch/hub to plug it into, “keepalive 0” will make the interface come up.

Combining the Caslow book with my own plans I did a couple of things structurally that helped:

  • Lab Time
    • Monday – Thursday 7:00pm-Midnight
    • Saturday or Sunday – 8hr
    • Stop Time
    • On Monday – Thursdays I had a hard stop time of midnight.
    • If I completed my tasks with lots of time to spare, I erased the configurations and did it again
    • Otherwise, I used the hard Midnight stop time to pressure me to get it done
    • This way I built in the time factor every day
  • Typical Study Week
    • Each week I had a “topic”
    • One week would be OSPF, the next IS-IS, the next IGRP/RIP redistribution into OSPF/EIGRP/RIP/IGRP, the next week BGP
    • For the week, I would spend the first two days on the easy stuff.
    • The next three days would be “advanced topics
    • On Saturday or Sunday for the 8hr session, I would configure the advanced scenarios from the week and add on other topics to fill out my time

To summarize what it took me to pass the CCIE Lab…
  • From day 1, I followed a regime that enforced timed deadlines. Every day I was pressured by time
  • Each week I focused on a topic learning each and every the nuance
  • I didn't have study guides that gave me a long string of “sample” test questions
  • I studied each of the protocols in detail to learn how they worked
  • I had a relaxing day and a half before my test

-Billy

Comcast, Skype announce partnership - Does this kill Cisco umi?

I found this article by Larry Hettick at Network World. Comcast, Skype announce partnership

Comcast and Skype announced a strategic partnership that will bring HD video calls, audio calls, and messaging to Comcast customers' television sets. The announcement was timed to coincide with the annual National Cable & Telecommunications Association's "Cable Show" held in Chicago.

Under the arrangement, Comcast subscribers will be able to connect to each other and to the global base of Skype users. Video calls from the television using Skype will be able to connect to other TVs, PCs, compatible smartphones or tablets...

The service will be delivered to the HDTV through an adapter box, and it comes with an HD video camera and microphones that sit atop the TV set, along with a specially designed remote control that combines a keyboard for texting, TV controls and audio/visual communication controls. The other calling party does not need any special equipment beyond what is needed to use Skype.

The IT Conflict: The Network vs. Users. Part 1


We can all agree, working in IT has its challenges. A friend recently asked me "What has been the most significant challenges in IT recently?"

To that I say "how much time do you have?"

Over the years we have seen many technology innovations.  Some have been business focused while others have been consumer focused.  Business focused innovations improved network performance and reliability, application intelligence, business efficiencies, and security. Consumer innovations have focused on features, functionality, and ease of use. Often, consumer innovations have created headaches for the IT department.

I remember, back in the day, installing VPN servers when dial-up modems were the norm. Who would use a VPN when they could just dial in? A short time later, broadband Internet connections exploded, end user signed up like mad, and nobody wanted to access corporate resources through a dial-up modem any more. We struggled to install VPN servers with enough capacity.

Then wireless Ethernet appeared. Business users could connect their company provided laptops to their home wireless networks, but still had to plug-in at work. Why did they have to plug-in at work?  “Can’t the IT department implement wireless as easy as at home?”

So we struggled to install standalone wireless access points. They were cumbersome, then we figured out centrally managed wireless networks were much more efficient.

Today many organizations have deployed remote-access VPNs and centrally managed wireless networks. Business users, from home, hotel rooms, conference rooms, airports, Starbucks, or other locations, can securely connect to the corporate network. In the physical office, business users can connect with wired or wireless connections and easily access the same systems. We even can support “Guest” wireless connections
We could finally rest,  IT finally caught up to the users. But, like Steve Jobs likes to say, “but there’s more”. ...Great!@$%

Now we have business users bringing in other devices not provided by the IT department. I have a customer who has a XBOX in a conference requiring wireless Internet access.

It is now a reality; IT Departments now have to support Smartphones. Business users expect “always on” connectivity.  Users expect to not only have continuous access regardless of their platform.

Not only does the IT department have to pay for the Data plans, they now have to support the wireless Ethernet connectivity requirements. It would be easy to not support wireless Ethernet connectivity, but the cost of cellular data usage has to be considered. It is now financially prudent to allow Smartphones onto the business network.
Now, do we want the smartphones on the “Guest” wireless network, or the “internal”. Both have their advantages. “Guest” lets the user connect like they are at home but they may have to sign in to a “Guest” splash screen.  An “internal” wireless connection may open up the network to security hazards.

And then someone in management had to go and get a tablet. It could be an iPad or an Android device, it doesn’t matter. The IT department didn’t buy it, but it needs to connect to the network.  When the connection doesn’t work, we hear “what do you mean ‘no more IP addresses are available’”, “when I’m in my office, Angry Birds is slow”.

In my next installment; Unified Communications – home user features vs. business users’ functionalit


Home

As We May Think - Atlantic Mobile

Director of the Office of Scientific Research and Development, Dr. Vannevar Bush, 1945

http://theatlantic.com/magazine/archive/1945/07/as-we-may-think/3881/


As Director of the Office of Scientific Research and Development, Dr. Vannevar Bush has coordinated the activities of some six thousand leading American scientists in the application of science to warfare. In this significant article he holds up an incentive for scientists when the fighting has ceased. He urges that men of science should then turn to the massive task of making more accessible our bewildering store of knowledge. For years inventions have extended man's physical powers rather than the powers of his mind. Trip hammers that multiply the fists, microscopes that sharpen the eye, and engines of destruction and detection are new results, but not the end results, of modern science. Now, says Dr. Bush, instruments are at hand which, if properly developed, will give man access to and command over the inherited knowledge of the ages. The perfection of these pacific instruments should be the first objective of our scientists as they emerge from their war work. Like Emerson's famous address of 1837 on "The American Scholar," this paper by Dr. Bush calls for a new relationship between thinking man and the sum of our knowledge. —THE EDITOR

By Vannevar Bush, 1945

Click here to read the full article

-Bill Carter

My Networking, Virtualization, Storage, Wireless, et al. Google Custom Search Engine

When I started this blog it had a single purpose. I had discovered the Google Custom Search Engine and I needed a web site to host it. I had become very proficient in structuring Google search to get the results I wanted. However, was primarily limiting these searches to vendor sites.

I found Google Custom Search rand realized I needed a website to host the search engine. So I created my blog billyc5022.blogspot.com

I am now up to 107 sites indexed. I use the Google CSE, everyday, all day. I find great results in my searches without obscure, meaningless sites.

I would like to do two things. #1 invite everyone to try it out. #2 solicit from you which sites I should add.

Please try it out and give me some feedback.

-bill




Home

Telex Radio Dispatch System Integration with Cisco Unified Communications. Part 3

A reader has asked about our progress with this and it reminded me I haven't talked about our results.

I want to just reiterate what the Telex Radio Dispatch System is.

Telex provides an integration with multiple communications systems. This is commonly used in an environment where dispatchers communicate on multiple communications systems. The Telex C-Soft console provides dispatchers a point and click interface to interact with the various communications systems. Dispatchers can increase or decrease audio volumes from a specific radio system. They can also click on a specific radio system and, through their headset, talk on a particular radio system. The Telex Radio Dispatch System also allows for a phone system integration.

For example, consider an ambulance company. Their ambulances provide services for town A, town B, town C. All these towns communicate on specific radio channels. The ambulance company has radio towers and systems that connect to each radio channel/network. For each radio channel/network/town, Telex has a VoIP adapter that converts the radio communications to VoIP. The Telex system multicasts the audio from the radio system to the dispatchers.

For Cisco centric people, think Cisco IPICS.

We were brought in to integrate a Cisco CallManager phone system with the Telex system.

The primary problem we had was the integration between the physical phone and the Telex C-Soft Dispatch console. The physical integration is provided via in-line adapter connected to the phone (See Part 1). Often a NENA compliant phone is used. Cisco, as well as most other vendors, do not have NENA compliant phones (We later learned NENA compliant phones can cost several thousand dollars a piece). When an inbound call is presented to the dispatcher, they can answer the call by clicking on the appropriate icon on the dispatch console.

We connected a Cisco IP Phone to the Telex in-line adapter. On an inbound call, the dispatcher had to physically press the appropriate button on the phone to answer the call. This would not work, the customer wanted to use the C-Soft Dispatch Console to click and answer the call.

We tried removing a physical phone all together and use the C-Soft SIP phone. This worked ok for receiving calls. The C-Soft SIP phone was configured as a basic SIP phone in CallManager. To place outbound calls, dispatchers had to append @10.1.1.1 (CallManager's IP Address) to every outbound call, either internal or external. I held out hope the SIP client would work, but it looked to me like a freeware no frills SIP softphone. For the customer, this was a no go.

We found a small company in California which produces a box which connects to a physical phone (pretty much any phone) and provides the proper signalling to integrate with Telex (Sorry I don't have the companies name right now, but I can find it on request). With this box, dispatchers could click to answer the call, however C-Soft didn't pickup the audio.

After much troubleshooting we found the phone system needed to generate a tone or a beep when the call was answered to cause C-Soft to "hear" the call and mix the audio. After banging our heads together a co-worker suggested enabling the "call recording tone" on the dispatchers phones. This is normally used to play a tone to callers indicating the call is being recorded. We were not using a call recording system, but playing this tone caused the C-Soft console to recognize the call and mix the audio.

Telex Radio Dispatch System Integration with Cisco Unified Communications. Part 1

Telex Radio Dispatch System Integration with Cisco Unified Communications. Part 2

Home

Cisco Wireless AP - LWAPP: How to Recover an AP from Mis-Configuration

I am quickly learning Cisco Wireless. I had a problem with a Cisco LWAPP AP located at a remote office. This AP had not previously registered with a Wireless LAN Controller (WLC). We rely on the DNS discovery method where the AP boots up and does a DNS lookup for CISCO-LWAPP-CONTROLLER or CISCO-CAPWAP-CONTROLLER.

Well this is were the fun began. IP address and name-server was manually configured in the AP, but the name-server IP address was fat-fingered. The APs will save their IP and LWAPP configuration automatically. On a reboot, the AP came up with the same configuration. I was finally able to restore the configuration to factory default and have it discover and join the controller.

To do this a console connection to the AP is required. I had a user at the remote office connect a console cable to a notebook and let me RDP in..

1) I need to clear the static IP address settings, convert to DHCP, and have the AP connect to the WLC. With LWAPP/CAPWAP APs, you can't just go into the config and change things.

"debug lwapp console cli" (if that doesn't work try "debug capwap console cli" )

This allows me to make changes to the running configuration, but these changes can not be saved to what us router-jockeys call "startup-config". The "magic" here is that when a LWAPP/CAPWAP access point connects to a WLC, it saves the controllers address in nvram. Thus when reboted, the AP always knows which WLC to try to connect to.

"interface f0"
"ip address dhcp"

I created a DHCP pool on the core switch and included the correct DNS server. In about 5 seconds, the AP obtained an IP address and the new DNS server. Then it registered with the controller

2) One problem. After rebooting, the Cisco Wireless AP came up with the old static IP addressing and DNS old/wrong DNS server. I was, however able to register with the controller because it had previously registered with that controller.

3) I logged into the Cisco Wireless Control System (WCS) and found the AP. I removed the Static IP setting and saved. The AP rebooted and registered, still had the wrong DNS server.

In WCS I went to Configure - Access Point and found the AP, scrolled to the bottom for "set to factory defaults", clicked "clear config".

Finally cleared it!

Home

Who Needs English

Looks like I have encountered a licensing issue. Upgrading Unity Connection, customer is in the United States, Unity gives this error.

"The Cisco Unity Connection license file(s) that are installed do not allow you to use U.S. English for language-specific Connection features, and no other languages are installed. Do one of the following:

Download and install one or more Connection languages. Languages for your version of Connection, as well as documentation on how to install them, are available at http://www.cisco.com/kobayashi/sw-center-sw-voice.shtml.
If you have one or more license files that allow you to use U.S. English, go to the Licensing page and install them now.
If you do not have additional license files and you want to use U.S. English, contact your Cisco account team to purchase a license upgrade that allows you to use U.S. English."

Price of an IPv4 address $11.25

Microsoft has just bought more than half a million IPv4 addresses from Nortel Networks for $7.5 million (or $11.25 per address), as part of Nortel’s bankruptcy proceedings. Internet IPv4 addresses are hard to come by these days, notes ZDNet’s Steven Vaughan, so it’s no surprise that Microsoft bought 666,624 of them as demand for Internet addresses increases.

http://blogs.forbes.com/parmyolson/2011/03/28/morning-tech-wrap-apple-google-firefox/

Google Custom Search Engine - Add it to Chrome and Maybe Other Browsers

As part of this blog page, I created a Google Custom Search Engine. You can too at the Google Custom Search Engine page.. My Google CSE searches (as of tonight) 69 different web sites and domains. I have included sites relating to Cisco, HP, EMC, NetApp, and VMware. These include the vendor sites, related youtube sites, wikipedia, partner and consulting companies sites, and many blog sites. In total, 78 web sites are searched.

You can add the Google Custom Search Engine to your browser. The search URL is:

http://www.google.com/cse?cx=partner-pub-9009433438610720%3Aa8n99q4pp4c&ie=ISO-8859-1&q=%s

ps. for those of you who don't hear it enough...Here is the famous Cisco MoH

Virtual Desktop at My House?

As a typical geeky network engineer, I enjoy those times when the awesome technology I work with makes its way home. I remember in the late 90's introducing my wife to the joys of a dial up modem and the Internet. Years later I brought home a Linksys Wireless Router and Comcast Broadband Internet Connection. She wasn't that impressed when I said the cable Internet connection was faster than the T1 I used at work.

I need to preface this with, we have five girls, 10 months to 9yrs. They are very technologically advanced. For Christmas, the four oldest got Apple iPod iTouchs.

The girls like to use our laptops to go to nickjr.com and starfall.com. Ok, we can handle it, we have two laptops, we can all share. Oh No!!! It was World War III in our living room. Four girls, two laptops, "Daaadddd she has been playing for a long time!!"

By the time you read this, we are the proud owners of a 1/4 acre of land with a hole in it. We are building a house. My wife is doing a wonderful job designing the kitchen, selecting flooring, and picking paint colors.

I am working on the technology for the house. Fresh off the girls fighting for laptops, I wondered what could be done. Then the light bulb went off, Virtual Desktop! Why can't we have four Virtual Desktop terminals? I wouldn't have to worry about the kids deleting programs or documents, messing up configurations, and the static nature of having terminals, monitors, keyboard, and mice physically located in their own space.

So I am exploring my home based VDI initiative. I am not sure what I am getting into financially. I can piece together some physical servers with VMware. I need to find some terminals, possible Wyse devices.

Telex Radio Dispatch System Integration with Cisco Unified Communications. Part 2

After much research, calls to our Cisco SE, a PDI case, and a conference call with Telex we have decided...

We are going to implement Telex SIP softphones on the desktops. This will provide the best solution short of rigging up some cables connecting the Cisco IP Phone headset port and auxiliary port to the Telex ADHB-4 box. Telex stated this solution has been available for five years but has only caught on in the last year.

Running this system on SIP softphones leaves me a little unsettled, I am somewhat comforted because Telex seems to be releasing updates to their software on a regular basis. This tells me they are actively fixing problems.

The main downside to this solution is the Cisco UCCX Call Center version 8.5 doesn't support 3rd party SIP phones. I can't say that I blame the UCC Business Unit since this could require testing and certifying many 3rd party SIP phones. In this testing, of course some vendors would be left out, customers would complain, and this would pull key staff away from fixing bugs and preparing the next version.

So I will configure CallManager, excuse me, Unified Communications Manager, with 3rd party SIP devices for the Dispatchers' SIP softphones.

We have two UCMs and the softphones allow for one entry for a SIP server, either IP Address or Domain Name. I read up on creating DNS server entries for SIP servers, so I think I will try creating one DNS SIP SVR entry for two IP addresses.

An email from Cisco referred to the Cisco Interoperability and Collaboration System (IPICS). This system is basically and Cisco UC systems with some Radio over IP integration. Without any experience on this, I this this is a very good and viable option, however the customer has already purchased a solution supporting the Radio, RoIP, and operator console functions. We are just trying to integrate telephony into the system.


Stay tuned...We will see how the Telex SIP softphones cooperate with Cisco UCM 8.5 (did I mention we are doing the Cisco UC on UCS with Cisco UCS-C servers?

FYI...I am also frustrated Cisco doesn't support Cisco Unified Enterprise Attendant Console server installed on the same Cisco UCS-C Class server which also have Cisco UCS installed on them....

While Cisco supports UxAC running on VMware, it is only supported on Cisco UCS-B or UCS-C servers. These servers can not have other Cisco UC systems loaded on them (same host server)...hhmmm....Such is the question...Install CxAC on Cisco UCS servers with VMware, (which is supported) or on Cisco UCS servers without Cisco UC apps are not installed

but not on those servers have other Cisco UC applications (which is not supported), Install on VMware with other Cisco UCS servers (which is permitted) or install on

-Bill

Telex Radio Dispatch System Integration with Cisco Unified Communications. Part 1

I have Telex Radio Dispatch system I want to integrate with a Cisco phone system.

Side note: Using two Cisco UCS C-Servers with VMware. Cisco' UC on UCS. Works great!

Telex system has interfaces to the radio networks and the telephone network. 

Each user has a Telex ADHB-4.  This device mixes the audio from the different Radio networks and the telephone. Coming out of the ADHB-4 is a headset for the dispatcher. The dispatcher has a desktop application were they can select different audio sources and the ability to combine audio channels.

The interface between the phone needs audio tx and rx along with on/off hook switch and ground across 6-wires.  The box/application needs the hook switch to answer and hang up calls.

I am wondering if I can create a cable from the Phone to the Telex Device. Telex provides a basic diagram:



I would think I could get TX and RX audio and Ground from the phones headset port. I would also think I could get Hook Switch from the phones aux port (this is the port used for the wireless hook switch feature).

We will see how today goes, I am almost onsite.

I'll keep you posted.

-Bill

How the Internet went out in Egypt

Good Article. Egypt is just blocking access to their DNS servers. Another good reason to use Goggle's Public DNS servers: 8.8.8.8, 8.8.4.4
How the Internet went out in Egypt

4900M connection to HP Virtual Connect Flex 10 - Not Working

HP Virtual Connect Flex-10

Update: The configuration on the HP Virtual Connect side was incorrect. Once the server team reconfigured their side, all was good.

Today I am posting something I submitted to supportforums.cisco.com.

The customer has consultants configuring the HP side of things. I was asked to configure a Catalyst 4900M to work with the HP Virtual Connect Flex-10. From the Cisco side, this is not complex.

Tomorrow I am going onsite. I will open a TAC case on the way and sit beside the server guys.

4900M connection to HP Virtual Connect Flex 10

I'm Trying to connect a HP-C7000 blade server with a Virtual Connect Flex 10 connection with 10Gb links to a Catalyst 4900M. I have no control of the HP side.

From the HP guide, we are following "HP Virtual Connect Ethernet Cookbook" "Scenario 1:5 - VLAN Tagging (802.1q) with Shared Uplink Set (SUS) with Link Aggregation using LACP (802.3ad) - VMware ESX"

On the 4900M, LLDP sees the Virtual Connect and LCAP up with 2 active links.

Show interface on Ten1/1, Ten1/2, Port-Channel 1 shows 0 packets input.

Basically, we can not get any packets from the HP Server/VMware server side through the Catalyst 4900.

IOS version: 12.2(54)SG

Switch ports are as follows:
!
interface Port-channel1
description HP FLEX-10-VC
switchport trunk allowed vlan 4,8,10,11,16,22-24,69,99-  101,156,192,300,500
switchport mode trunk
switchport nonegotiate
spanning-tree portfast trunk
!
interface TenGigabitEthernet1/1
description HP FLEX-10-VC
switchport trunk allowed vlan 4,8,10,11,16,22-24,69,99-101,156,192,300,500
switchport mode trunk
switchport nonegotiate
spanning-tree portfast trunk
channel-protocol lacp
channel-group 1 mode active
!
interface TenGigabitEthernet1/2
description HP FLEX-10-VC
switchport trunk allowed vlan 4,8,10,11,16,22-24,69,99-101,156,192,300,500
switchport mode trunkswitchport nonegotiate
spanning-tree portfast trunk
channel-protocol lacp
channel-group 1 mode active
!

https://supportforums.cisco.com/thread/2063375

Do we need spanning tree ?

I had an interesting experience last week at a customers. I happened to be onsite to discuss why 4 Catalyst 4500 chassis had failed in 6 months. Each of them had similar symptoms, packets would no longer pass through them and a "show module" would either show the modules as not present or failed.

First we need a description of how the network is designed. This network is divided into "Network A" and "Network B". The separate networks represent the "business users" and the "operations users and systems". At the core of the network they have a single Catalyst 6500 with down links to Network A and Network B Catalyst 4500 switches.

The respective Catalyst 4500s have multiple down links to their respective Network A and Network B distribution Catalyst 4500s. These Catalyst 4500s have uplinks to access-layer switches. Each wiring closet has two switches, one for each network. If it is not clear, there are NO redundant links. There should be no loops in the network.

Here is a very simplified few of the network.



Now we get to the origins of the problem I would experience. The situation has been explained to me as this "when we implemented the network spanning tree was very buggy. So we disabled spanning tree on the 6500. I thought spanning tree would be enabled at some point." Oh boy!!!



So back to my incredibly good timing onsite. We were in a car heading to a building to look at the wiring closet were multiple Catalyst 4500s had failed the past few months. The customer driving the car got a call, users connected to Network B, or the operations and systems network, were unable to connect to their systems. Essentially, the operators were not able to see how the plant was operating. It also looked like the operations management systems were not able to see how the systems were operating. uh oh!!!

We headed back to the main building and I began troubleshooting the network. The CIO and multiple managers were standing behind me anxiously waiting for a diagnosis. I found the top Catalyst 4500s for the Network B side of the house, had its 1 GB uplink running at 95% utilization.


From previous work here, I knew spanning tree was disabled on the 6500, so I was worried about a loop (I have worked with this customer for 2 years. Each time I met with them, I recommend they should enable spanning tree, but there was always strict change controls which discouraged the customer's engineers from enabling spanning tree and a fear of something bad happening).

Suspecting a loop, my suggested to the CIO that I enable spanning tree. Asked about the impact, I said there could be 2 minutes when un-affected users and servers could have connectivity disrupted while spanning tree converged (yes 2 minutes is longer than required I wanted them to have appropriate expectations). He agreed, and on the core Catalyst 6500, I enabled spanning tree for all VLANs and set the switch as the spanning tree root of the network.

I thought I had the Loop in the network blocked. I now expected the network to spontaneously recover. Operations still couldn't connect to their systems. What was wrong?

I looked at the top-most Catalyst 4500 "B" switch. On this switch, I checked the CPU utilization. The CPU was pegged at 99%. A CPU running at 99% is an indication of a switch process switching a ton of packets. There are several types of packets which are processed switched, but I suspected Broadcast packets.

I need to find were the broadcast packets came from. I cleared the interface counters, then ran this command several times over a minute: show interface | include Gigabit|broadcast.

I quickly saw a single interface with a lot of broadcast packets. I connected to the downstream switch connected to the interface and repeated the command looking for an offending interface. I found it and connected to the access-layer switch. Remember, the network is divided between Network A and Network B.

I was connected to a switch named 3560-B-Bldg1. show cdp neighbor revealed the switch was also connected to a switch named 3560-A-Bldg1. I had suspected a loop, but hadn't looked for one or found one. I thought enabling spanning tree on the core switch would take care of it. I had finally found the loop!!



Things should have calmed down, but the had not, why? I looked at the interfaces on the 3560s that connected them together. The interface connected to each other on 3560-A-Bldg1 and 3560-B-Bldg1 had the same configuration:


interface GigabitEthernet 0/#
   switchport access vlan 500
 spanning-tree portfast

Both interfaces were configured as access ports to VLAN 500 and had portfast enabled. What is on VLAN 500? This is the VLAN used by the operations systems, users, and management systems. I had enabled spanning tree at the core, but this did not stop the loop. When spanning-tree port fast is enabled on an access interface, that interface does not participate in spanning tree.

As Astro says, "rut ro!"

I shut down the Gigabit interface on 3560-B-Bldg1. Finally, this should have corrected the problem...

When you have a loop in the network, what is the most damaging type of traffic...Broadcast..So I went back to looking for broadcast traffic. On 3560-B-Bldg1 I resumed running the show interface | include Gigabit|broadcast command. One interface appeared to receive an abnormally large amount of broadcast traffic. In fact the interface received about 55 million broadcast packets in 60 seconds. So I shut down that port.


The network finally recovered!


Observations / Lessons learned

  • Never disable spanning tree globally on a switch
  • Spanning-tree portfast disables spanning tree on an interface
  • consider running on every switch bpduguard 

Introducing BillyC5022

Welcome to my Blog

I have worked in the IT industry since 1994. I survived the Internet boom or the 90's, Y2K, the VoIP boom in the 2000's, and now I am diving headfirst into Virtualization.

I am also married to a wonderful woman and the father of 5 daughters...Ages 1, 4, 5, 6, 9.

I am CCIE 5022, Routing and Switching. I currently work on Routing & Switching, Firewalls & VPNs, Unified Communications, Data Center Architectures. I am now jumping into Virtualization with Cisco Unified Computing Systems (UCS), VMware, NetApp, and EMC.

Customized Search Engine for Networking and Virtualization
The custom Google search engine at the top of the page has been optimized to search domains and websites related to Cisco, VMware, NetApp, and EMC. It is currently referencing 66 distinct urls including YouTube pages for Cisco, VMware, NetApp, and EMC. Many urls are for respected websites and blogs relating to this technology. If you have any suggestions for websites to be included, let me know.

Disclosure and Disclaimer
I work for an IT Consulting company. We have partnerships with the following vendors; Cisco, VMware,NetApp, EMC, HP, Veem, Microsoft, and maybe some others I can't remember.

The opinions expressed herein are my own personal opinions and do not represent my employer's view in any way.

Catch me on Twitter @Billyc5022 
I hope you enjoy.

The Begining

I am starting this blog to share my thoughts, provide a customized search tool, and aggregate the blogs I follow. More to come.

Bill