In this post, I worked on collecting a code that works with Jinja template. the nice thing in working with Jinja is that you can have baseline configs that will be used to all devices and also have variables that will be changed according to your need. for example: in each device which can be a router, you will have: 1. southbound links to switches and let's assume an interface used for this G1/0/48 2. you have NTP servers to be configured on these routers 3. hostnames 4.routing protocol .......etc. all these can be variable in Jinja template which we can use along with python to gene ..read more

  Code below can be created using shell script on a Linux or MAC machines, you can use it to ping list of IP addresses, and you can also add some other features like running the script from time to time and email the result to your business email. I like using Bash scripts because they require nothing but a Linux machine, unlike Python which requires the installation of the Python and knowledge will be required to know how to write/run the code. steps: Open Terminal and use $vi pingtool.sh #!/bin/bash #this a ping tool that sends 1 icmp packet to remote host and return is host is up or ..read more

 In this post we are going to talk about how to login to the firewall using public key generated from your Linux machine (Network Jumper box) which can be useful in case you want to push scripts to the firewall without the need to authenticate with username and a password, let's go: 1. generate the key samer@Samers-MacBook-Pro ~ % ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/Users/samer/.ssh/id_rsa): /Users/samer/.ssh/id_rsa already exists. Overwrite (y/n)? y Enter passphrase (empty for no passphrase): press enter Enter same passphrase again: p ..read more

 you can use curl from your terminal for example: samer@Samers-MacBook-Pro ~ % curl -X GET 'http://192.168.1.250/api/?type=op&cmd=<show><system><info></info></system></show>' -u "api:password@199" note that the -u the two words api and password@199 are username and password to authenticate the session while trying to fetch data from firewall while using CURL. or, you can use the Postman app ..read more

 This is going to be very short post. simply, when you login to the FTD and you see the command prompt as ">", issue the following command. > system support diagnostic-cli after this, you will be changed to the classic command prompt of Cisco ASA ..read more

Hello everyone, As you know, many of us study and struggle a lot in order to reach the level where we can call ourselves Network Engineers, however studying and learning process is not enough because we will forget what we studied after a while if we don't use it, and while trying to learn new things and stay up-to-date, landing new jobs will need to stay fresh on many of the networking topics. you might be a great network engineer, but you will not be able to get the job based on incomplete answers about topics you already know but forgot how to talk or explain them in an interview. I was t ..read more

 In this post, I will be talking about a problem that you may face with PaloAlto Networks Firewall. the problem is: 10>Dec 6 23:40:04 FMC-PA-820-PRMARY 1,2021/12/06 23:40:04,0120010412345,SYSTEM,device-telemetry,2561,2021/12/06 23:40:04,,send-failed,,0,0,general,critical,"Failed to send: file the problem above is informing us about the existence of an issue in sending telemetry file to PaloAlto cloud. what does this means? The firewall collects and forwards different sets of telemetry data to Palo Alto Networks based on the Telemetry settings you enable. The firewall collects the ..read more

 In this post I will be configuring Cisco Call manager to allow users to join a phone call to make a conference. follow the following steps: 1. Login to CM Administration page 2. Go to Call Routing > Conference NOW 3. Add new > and configure something similar to the following: Add a number that you will be dialing to join a conference like (*3000) select the route partition, and choose the Music on Hold option if want to. now note that for the number that you want to dial a conference with, it must have the following configs under End User. Go to > End User > search ..read more

Hi, I read some interesting article about the issue you will face when you have an ASA firewall between two Cisco routers that are peering in eBGP and the MD5 used to secure the peering process. I will be posting in my labbing results and findings during this and the small topology I used EVE-NG community to implement. the picture below explains some of the configs: R1<<<< ASA >>>> R2 you will need to configure the ASA interfaces as below: G0/0 (ip address and nameif) G0/1 (ip address and nameif) then configure both routers interfaces and ping to make sure ASA is rea ..read more

 Ansible proved to be a very useful tool that can make our life easier. today, I am writing about my learning experience using Ansible and what my baby-steps toward the automation and programmability world of networking! let's start with mentioning that Ansible has two ways (as I know) of configuration to interact with network devices or servers. 1. the short way > ad-hoc 2. the more advanced way > ansible playbooks Ansible ad-hoc provides an easy and fast access to devices from your terminal and enables you to execute commands faster then the usual process, and also can help you ac ..read more