Tips

Tips

• Business is 'destroying' the application delivery process

  Business has changed, and so must the application delivery process. It's time for IT to go from being provider of services to a broker between clouds and end users. Here's how.  Continue Reading

• Discover three ways to get your WAN software defined

  There are three ways to get your WAN software defined: overlay, replace and as a service. Learn what these entail and how they can reduce costs and improve WAN performance.  Continue Reading

• How to troubleshoot iPhone and iPad connection problems

  As iPhone and iPad Wi-Fi clients proliferate in the enterprise, IT must troubleshoot Wi-Fi connection problems. Here's how to solve basic iPhone and iPad connection problems.  Continue Reading

• IPv6 connectivity: Ignore at your own peril

  Gathering knowledge on IPv6 connectivity and implementation is critical to success in modern IP networking.  Continue Reading

• Predictions for SDN development in 2016

  This promises to be an exciting year for software-defined networking enthusiasts, with SDN development poised for explosive growth. Analyst John Burke shares his predictions.  Continue Reading

• Common network errors and their causes

  Network not behaving? Learn how to identify the most common network errors -- like discards and collisions -- and how to implement solutions to get your network humming again.  Continue Reading

• Are you ready for an SDN deployment?

  The principal motivation behind SDN deployments is the need for a responsive and nimble IT organization. While the network architecture is definitely in the future, not all are ready for it.  Continue Reading

• How to troubleshoot Android Wi-Fi connection problems

  Android smartphone and tablet users now abound in the enterprise, making Android Wi-Fi connection troubleshooting a key element of enterprise wireless network connection management.  Continue Reading

• Persuading management to support the IT buying process

  What steps should you take to get your network buying needs approved by top management? One piece of advice: Learn what your manager needs.  Continue Reading

• Time to get your cloud network architecture ready

  Enterprises need to ensure their cloud network architecture is ready for the future. Here are some concepts network managers should think about.  Continue Reading

• Is a hybrid WAN architecture right for you?

  Hybrid WANs have a lot of benefits, but make sure you understand how they can work in your organization.  Continue Reading

• Do managed software-defined WAN services make sense?

  By offering managed software-defined WAN services -- and potentially hastening MPLS' demise -- are providers sabotaging themselves? Our expert says no.  Continue Reading

• OPM hack two months later: What was learned?

  Network security expert Michele Chubirka shares her thoughts about June's OPM hack and what steps IT should take to fend off future attacks.  Continue Reading

• Three ways to measure wireless network performance

  Trying to find ways to assess your wireless network performance? Here are some tools that can help.  Continue Reading

• With MPLS-TP and SDN, a simpler dynamic control plane

  MPLS-TP transforms carrier networks for packet switching, but SDN could take it a step further. Combining the technologies, engineers could reduce complexity in the dynamic control plane and gain flexible service creation.  Continue Reading

• Network timing: Everything you need to know about NTP

  As more applications use IP networks, reliable distribution of authoritative timing information is becoming critical.  Continue Reading

• GENEVE primer: The answer to network virtualization interoperability?

  The GENEVE network encapsulation protocol is more flexible than VXLAN and NVGRE. Will it bring interoperability to network virtualization overlays?  Continue Reading

• How to buy: Assessing next-gen firewalls

  Is there a next-gen firewall in your future? Our How to Buy guide offers advice you need to ensure you purchase the best platform to meet your needs.  Continue Reading

• Don't ignore this great wireless training resource

  Online wireless support communities are a great resource for IT professionals who need their questions answered quickly.  Continue Reading

• Hyper-V networking: The three virtual switches that fuel connectivity

  In this Hyper-V networking primer, learn about the three virtual switches behind Microsoft virtualization connectivity.  Continue Reading

• Centralized vs. decentralized SDN architecture: Which works for you?

  Two SDN architecture models -- centralized and decentralized -- have much in common, but key differences center on the use of the OpenFlow protocol.  Continue Reading

• Using virtual appliances and desktop virtualization

  IT organizations are implementing desktop virtualization and virtual appliances for virtual WAN optimization and virtual application delivery, but there are challenges to overcome along the way.  Continue Reading

• Troubleshooting remote scripting using Network Monitor 3.0 -- Managing Windows networks using script

  Learn how to use Network Monitor 3.0 for troubleshooting a remote scripting error in this tip originally published on WindowsNetworking.com.  Continue Reading

• Optical networks: Core network design best practices

  Core optical network design must take into consideration network requirements specific to the core, including a high degree of aggregation, low reconfigurability, and large geographic scope, while confronting such challenges as router adjacency, ...  Continue Reading

• Cisco wireless access point configuration from scratch

  Learn what the Cisco 1242 wireless access point can do for you and how to configure one from scratch. This tip covers basic security settings, enabling the wireless radios, and how to make a successful connection. The 1242AG is a powerful ...  Continue Reading

• Cisco WLAN design best practices

  Wireless LAN (WLAN) technology has built-in security features, but a one-size-fits-all approach won't ensure adequate security for your organization. This tip provides best practices for designing your security architecture, including user community...  Continue Reading

• MPLS load sharing and high availability, Part 2: IP routing

  MPLS has become a trusted transport option for convergent networks that require guaranteed levels of service, but successful implementation can require increased levels of redundancy to support failover. Robbie Harrell discusses how to enable high ...  Continue Reading

• LAN administration guide

  LAN administration is an arduous task and your responsibilities often involve many different aspects and may include many tasks. This guide will help you with each step and task.  Continue Reading

• IP addressing and subnetting: Calculate a subnet mask using the subnet's formula

  IP addressing and subnetting are an important part of networks. Learn how the subnet's formula works and why it's important to know how to calculate the subnet mask "longhand."  Continue Reading

• How IPsec provides secure communications

  IPsec provides secure site-to-site VPNs, remote access and host-to-host communication. In this tip, we peek inside the tunnel and examine how IPsec works.  Continue Reading

• VPN client alternatives: Layer 2 Tunneling Protocol (L2TP) over IPsec

  This month, Lisa Phifer discusses a robust VPN client alternative: Layer 2 Tunneling Protocol (L2TP) over IPsec.  Continue Reading

• Network test plan: Checklist for architecture changes

  For every change you make to your network architecture, you should have a test plan and a backout plan. In this tip, learn how to build a test plan and review a sample checklist of things to include.  Continue Reading

• How SSL and TLS secure network transactions

  SSL and TLS are protocols that were developed primarily to protect Web transactions, but they can be used to protect any type of network traffic that utilizes TCP at the transport layer, including the popular SSL VPN. In this tip, learn how SSL and ...  Continue Reading

• Router Expert: Building a WLAN proxy server, DHCP services: Part 1

  Router expert Michael Martin discusses DHCP implementation options and provides sample configurations to support various SSID network models in this continuation of his series on building a WLAN proxy server.  Continue Reading

• IP addressing and subnetting: What network administrators need to know

  IP addressing and subnetting are an important part of networks. Learn about how IP addresses work, subnet masks, classful vs. classless IP addresses, default gateways and more.  Continue Reading

• OSI: Securing the stack, Layer 2 -- Understanding the role of ARP

  Security expert Michael Gregg continues his layer-by-layer discussion of OSI model network security with this tip on the vulnerabilities present in Layer 2, the Data Link Layer, and specifically addresses the Address Resolution Protocol.  Continue Reading

• How round-trip time and limiting data rate impact network performance

  This tip reviews how network parameters such as round-trip time and limiting data rate affect network performance.  Continue Reading

• OSI: Securing the stack, Layer 1 -- Physical security threats

  Security expert Michael Gregg kicks off his layer-by-layer discussion of OSI model network security with this tip on securing Layer 1 against physical security threats.  Continue Reading

• Duplex mismatch

  What is duplex, and what is the difference between half and full duplex? What is a duplex mismatch? How can autonegotiation help or hurt your network? How can you resolve duplex conflicts? In this tip, David Davis helps networking engineers and ...  Continue Reading

• IPSec and NAT incompatibility

  Learn why Authentication Header (AH) doesn't work with Network Address Translation (NAT) or Port Address Translation (PAT) and that Encapsulating Security Payload (ESP) is also incompatible with PAT.  Continue Reading

• VPNs for disaster recovery: IPsec vs. SSL

  Using a VPN as a failover mechanism when a primary communications link may be unavailable due to a disaster can be a smart move -- as well as an easy one to implement. In this tip, learn about the pros and cons of IPsec and SSL VPN options for ...  Continue Reading

• Troubleshooting wireless networks: A systematic approach

  Troubleshooting wireless networks can take up a lot of time for network operations staff with a wireless LAN (WLAN) environment. Wireless guru Lisa Phifer discusses the tools and processes involved and breaks down how to approach and resolve ...  Continue Reading

• DNS for a wireless network: Router Expert

  DNS services are essential for building a secure wireless LAN. Our Router Expert provides complete instructions for setting up a DNS server, including implementing BIND, configuring a non-authoritative server and creating zone files.  Continue Reading

• T1 vs. VoIP for branch office connectivity

  Learn how to decide between a T1, fractional T1 and VoIP for connecting branch offices.  Continue Reading

• WAN optimization and bottlenecks: Is the WAN really the weakest link?

  "How much traffic" is no longer a good enough measure of WAN bandwidth. In this tip, Carrie Higbie looks at how today's ever-increasing expectations for data transfer rates require increased attention to WAN optimization, and suggests how ...  Continue Reading

• Duplex mismatch: Why duplex conflicts plague the network, part 1

  Duplex mismatch problems -- caused by two ends of the Ethernet attempting a full-duplex connection, resulting in packet loss -- simply will not go away. After a decade of plaguing IP networks, duplex conflicts still seem to be the single worst ...  Continue Reading

• How to move an SSL certificate between Exchange servers

  SearchExchange.com contributor Serdar Yegulalp provides step-by-step instructions on how to move an SSL certificate from one Exchange server to another, and explains a couple of gotchas to watch out for during the process.  Continue Reading

• Security and the TCP/IP stack

  Each layer of TCP/IP has security mechanisms, protocols, and applications. This tip describes the more popular ones that are associated with each layer of TCP/IP.  Continue Reading

• Five steps to stamp out unsafe Wi-Fi use

  Lisa Phifer helps dispel the top myths of wireless security and explains five steps that network administrators can take to lead their users toward safer Wi-Fi usage.  Continue Reading

• Reducing false positives in network monitoring

  Network managers need to be aware of the importance of choosing the right tool to monitor their system's internal counters. In this tip, Brien Posey narrows in on alert mechanisms for Windows servers and helps you understand how to reduce false ...  Continue Reading

• OpenNMS, an introduction: Affordable network management

  Open source expert Maria Winslow brings network managers up to speed about the free open source enterprise-grade network-management system OpenNMS.  Continue Reading

• IEEE 802.3at: Power over Ethernet plus

  802.3af Power over Ethernet (PoE) has been widely adopted for powering VoIP phones, wireless access points and a number of other network-connected products. But it provides a limited amount of power. In this tip, David Jacobs investigates the latest...  Continue Reading

• VPNs: Fundamentals and basics

  VPNs are discussed in this introductory tip on the fundamentals of virtual private networks.  Continue Reading

• Content Delivery Networking: an introduction

  Doug Downer gives an overview of Content Delivery Network (CDN) technology and its components, which bring together the functionality of file access, caching, multimedia delivery and application processing.  Continue Reading

• Configuring and troubleshooting wireless LAN clients

  An understanding of wireless LAN (WLAN) client and WLAN access point communication mechanisms is critical to anyone attempting to initially connect or troubleshoot a WLAN connection. In this tip, Robbie Harrell discusses some of the issues that can ...  Continue Reading

• Securing your Layer 2 network: Don't overlook the basics

  Before dropping substantial cash on a fancy surveillance system, most sensible home owners would ensure that their doors and windows were locked. Similarly, there are simple security measures you can take to configure your systems for Layer 2 ...  Continue Reading

• Understanding network traffic flow analysis

  Network traffic flow is often compared to highway traffic flow. In this tip, Lindi Horton shows parallels between those two worlds and explains why traffic flow analysis is such an essential piece of knowledge for engineering a network.  Continue Reading

• Using Snort, Nessus and Tripwire for network security

  Why pay a proprietary vendor a ton of money for a security application you can get for little or no money? In this tip, learn the pros and cons of open source network security tools Snort, Nessus and Tripwire.  Continue Reading

• IP network design, part 4: LAN design

  This final section of the IP network design series relates to the issues encountered with campus LAN design. The benefits of Ethernet switching over a traditional hub environment are first explained. The motivation behind the deployment of virtual ...  Continue Reading

• Certifications that will earn you the most money

  Ed Tittel takes a look at the five network certifications that earned the most money in 2005.  Continue Reading

• IP network design, part 3: Designing the WAN

  The wide area network (WAN) is the single biggest contributor to a corporate network's cost of ownership. Therefore, this is the area where the cost-versus-performance tradeoff is most pronounced and most critical. This article explores the various ...  Continue Reading

• Implementing software restriction policies

  This tip explains how you can use software restriction policies to keep your workstations in pristine shape and cut down on help desk calls at the same time.  Continue Reading

• LAN connectivity problem: Blame DNS, NIC or firewall?

  ITKnowledge Exchange member "BinooDas1234" had connectivity issues with a troublesome LAN, and fellow techies jumped in to help out. But does the answer lie in the DNS configuration, the NIC drivers or elsewhere? Here is a portion of the ...  Continue Reading

• Router Expert: Initial configuration of a Cisco 1200 802.11g WLAN access point

  Our router expert continues his series on building a secure wireless LAN with a Linux base. This article explains how to utilize a single Cisco 1200 series access point to provide access to three different IP network segments using VLANs and ...  Continue Reading

• IP network design, part 2: The IP addressing plan

  The IP addressing plan is the foundation upon which a successful logical design is built. Part two of this tip explains how to formulate a scalable IP addressing plan that can support the network as it grows.  Continue Reading

• IP network design, part 1: Fundamental principles

  A competent network design is the foundation upon which all successful network implementations are built. This is the first of four articles that focus on the design of IP-based networks, due to the prevalence of IP as the de-facto standard desktop ...  Continue Reading

• OSI: Securing the Stack, Layer 5 -- session hijacking

  To help secure your systems against session hijacking, this tip walks you through the steps hackers use to hijack active sessions and take over your network. You'll also learn how to detect and prevent session hijacking attacks, a major security ...  Continue Reading

• Making sense of Windows routing tables

  When routing packets across a network, things do occasionally go wrong. In these situations, it is helpful to be familiar with the Windows routing tables. Routing tables dictate the flow of packets from the machine in question. This tip will show ...  Continue Reading

• Network security checklist

  While 100% security is hardly a possibility, there are several things that you can do to make your network more secure. Learn about them with this network security checklist.  Continue Reading

• VRFs and routing

  Doug Downer continues his series about VPN routing and forwarding instances focused on the task of configuring and verifying a VRF scenario with a requirement for separate customers on a shared device. In this tip, he shows how to configure a method...  Continue Reading

• Router numbers

  Many of the routing protocols implemented in Cisco's IOS require a number to follow the command that enables the routing protocol in question. If you're new to routing, these numbers can be a little confusing, as they mean something different to ...  Continue Reading

• Wireless LAN security: 802.11i

  What is 802.11i, and is it really practical for you to implement in your organization? Robbie Harrell explores how the new wireless standard can improve security -- and reasons why you may want to switch to 802.11i or stick with WPA.  Continue Reading

• Router Expert: Building VLAN interfaces in Linux and IOS

  Segmenting a wireless LAN with VLANs can increase security. Find out from our router expert how to support VLAN interfaces in Linux and Cisco IOS.  Continue Reading

• Cache poisoning attacks and how to prevent them

  Want something scary to think about? A compromise of your name servers could cut you off from the Internet or redirect your customers to a competitor. It could even shunt sensitive electronic mail through an intermediate mail server or reroute your ...  Continue Reading

• VPN security: Where are the vulnerabilities?

  SOX compliance mandates have pushed organizations to deliver end-to-end VPN security. This means that the VPN itself is no longer enough. Robbie Harrell explains how organizations can apply security policies to the VPN in this tip.  Continue Reading

• Router Expert: Building 802.11Q VLANs

  Network segmentation can be a great way to increase security. This article covers segmenting with VLANs and the 802.1Q standard.  Continue Reading

• Understanding the differences between IDS and IPS

  We all know that the Internet is a haven for cyber criminals who use the connectivity to launch an unprecedented number of attacks against enterprise networks. IDS and IPS have been developed to combat these threats, but they are not one in the same...  Continue Reading

• Keeping it all separate with VRFs

  A Virtual Routing and Forwarding (VRF) instance can deliver separation across both a shared infrastructure and shared devices, ultimately simplifying management.  Continue Reading

• The network administrator's guide to forensic first response

  The time between discovery of an incident and the handover of digital evidence is critical for the possibility of successful evidence retrieval. Mishandled evidence, whether to be used in court or solely in house, can damage the integrity of the ...  Continue Reading

• Hardening your router in 9 easy steps

  For most enterprise LANs, the router has become one of the most critical security appliances in use. Configured properly, it can keep all but the most determined bad guys out, and if you want, it can even keep the good guys in. But an improperly ...  Continue Reading

• Router Expert: Standard interface configuration for a WLAN proxy server

  Our router expert continues his series on building a secure WLAN with a Linux base. This article covers standard interface configuration of the http proxy server.  Continue Reading

• Troubleshooting Windows VPN servers

  There are several aspects of the Windows remote access server that can create issues when a VPN client connects. This article focuses on some common trouble spots on the server side and offers steps to help pinpoint the problem.  Continue Reading

• Wireless LAN deployment and federal regulations

  A look at the bare minimum requirements to keep your WLAN compliant with federal regulations.  Continue Reading

• Secure WLAN best practices and topology

  Expert Michael Martin provides a list of wireless security "dos and don'ts" and a sample topology for a secure WLAN.  Continue Reading

• Seven steps to ensure project success

  The Value Manager recently had a project fall well below expectations. He reviewed what happened and came up with seven key steps for managing technical risk and one golden rule.  Continue Reading

• Router Expert: Filtering with MAC addresses

  This month our router expert discuss some strategies for controlling host network access using MAC address filtering.  Continue Reading

• Focus Windows port scanning with the netscan command

  How to use the netscan command to focus Windows port scanning.  Continue Reading

• Network administrator security policies

  Some security policy elements that are specific to network administrators.  Continue Reading

• Minimizing Layer 2 problems

  Understanding the fundamentals of Spanning Tree Protocol.  Continue Reading

• Auto-MDIX

  How Auto-MDIX can solve the cross-over cable conundrum.  Continue Reading

• MPLS: Experimental bits and QoS

  MPLS experimental bits are used to provide QoS capabilities by utilizing the bits set in the MPLS labels.  Continue Reading

• VPLS, a new Layer 2 MPLS VPN technology

  A new Layer 2 MPLS VPN technology that provides similar reliablity and QoS as MPLS VPN, but in a more simplified way. But beware, it does have it's limitations.  Continue Reading

• Protocols, Lesson 7: Subnet masks and their effect

  Understand the different effects a subnet mask can have.  Continue Reading

• Protocols, Lesson 9: Subnet routing and communications

  Lesson 9 in our protocol series covers the communications side of subnetting.  Continue Reading

• MPLS - Preparing an RFP (Dos and Don'ts)

  A look at the things to include in an RFP, a request for proposal for VPN service.  Continue Reading

• Preventing Layer 2 security threats

  Layer 2 switched environments, typically found in enterprise customer wiring closets, can be easy targets for network security attacks.  Continue Reading

• Run your VoIP calls over a VPN for enhanced security

  A look at using a VPN to enhance VoIP security.  Continue Reading

• Top 10 'show' commands

  A list of the top ten 'show' commands.  Continue Reading

• MPLS - Label Switched Paths

  A look at some of the details of working with Label Switched Paths (LSPs).  Continue Reading

• Top 10 things to know about network administration

  A list of the most important things network administrators should know.  Continue Reading