All_about_network

Let me first say that these two features are supposed to do very similar things – they are designed to separate access users so their traffic cannot go directly between them without any control. This is a must as most of the attacks are actually executed from inside your own network and specifically in the same subnet where the Continue reading

This article is just about small, handy and not-so-widely known command in all Huawei’s equipment. The command is in user-view and is called send.

If you are wandering what exactly does this do the answer is quite simple – it is sort of instant messaging built into every VRP I have seen. It enables to send message to any console/terminal Continue reading

So this is an article I was not really thinking to write but after certain experience I decided to put some light into this topic. Even though this is explained in the documentation (even though very chaotically) I put here some simple and easily adjustable examples of NAT/NAPT or if you want PAT.

So first thing you need to know Continue reading

So after previous post the whole setup should be working. But there are some things to be done yet. The heading says that the missing part is the QoS. So let’s have a closer look.

Step one is easy – just create some ACLs to match the traffic in our case it is goes like this:
#
acl number 3001 name black
rule Continue reading

Ok so in my previous posts I described the most common config of IPsec with IKE. For troubleshooting this config there are few simple things one should check for basic troubleshoot.

No. 1 Check display IKE sa command in user view

Output of this command should show you two IKE entries. It is necessary to be two because if there is Continue reading