Knowledge with Hands-on Experience and Troubleshooting

I have knowledge and hands-on experience with PTCL and Alibaba cloud but for AWS till today it was just knowledge. Today we have created an IPSEC tunnel with AWS and our on-prem DC, Before starting the process i study some material which is shared by AWS and it was quite helpful to understand the flow. Below mentioned are the steps which one need to take before creating the tunnel. 1)Decide which CIDR/Subnet you will use over the cloud so at AWS end you can create a VPC with same CIDR. 2)List down your public IP which will be use for the tunnel end point at on-prem DC. 3) Get a Public IP at AWS end which in AWS language we call it Elastic IP. 4) Decide you will use public IP or private IP subnet for VPN tunnel inner packet headers. Steps which we follow for the deployment: 1)First step is to create a VPC in respective region at AWS and assign planned CIDR to it. You can further divide VPC into subnets with desire subnet mask.  2)Create customer gateway, it will contain the informat...

Well for the first time I had interaction with Ansible back in 2017 at that time I did't knew how to spell it properly, Thanks to Google it gives me result by guessing it. In between I didn't use ansible at all till now. This time I need to use ansible for the automation of operations task on F5 and other network devices. I have started by installing the ansible on my virtual machine and enable SSH communication in between them. Further below mentioned are the steps for deploying ansible and then doing other setting for the first playbook to be run on F5. Installation of Ansible For different Linux flavors we do have different commands you can search it over the internet as per your requirements yum -y install ansible      ansible --version ansible 2.9.25 config file = /etc/ansible/ansible.cfg  configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules']   ansible python module location = /usr/lib/python2.7/site-pack...

  A network Engineer always has two solutions for a problem either search over the internet or go for TAC support. As per my practice i try both sometime first one gets failed, so you know failover happen. I am writing this blog so guys searching to solve OSPF problem can use first option. I was creating OSPF neighborship between Huawei Firewall and Cisco router, but it was in init state always so started debugging on router as well as on firewall what i found was interesting. Below are the steps of Troubleshooting: 1)Cisco router was sending the Hello Packets towards the peer but no Hello reach at Cisco end over the IPSEC tunnel. 2)Huawei Firewall playing well was receiving the Hello packets on tunnel interface and also sending back (only in debug) so I was like All well at Huawei end so start looking at Cisco end and also on Huawei firewall policies, as it was IPSEC tunnel, so policies was ruled out now culprit was Cisco Router and i was into it to find out. 3)I try my best to ge...