We don't install all our servers in the same DC. But what about clouds? Would you trust one Cloud Server Provider for all your applications? This is the premise of Multicloud. Aviatrix I've been reading about Aviatrix for a while, registered for the Aviatrix ACE training a few times and canceled for $busyness reasons. …

For $reasons it happened a few times that I needed to renumber a VLAN in a campus or DC network. The first time the customer had to remove all the clients in VLAN 1 to comply with the network design standards of the company after a merge with a large international group. In other cases, the customers assigned the same …

This post is about the lack of best practices, workarounds, L2 extensions, tunnels and loops. Fasten your seatbelt and prepare for a ride down the rabbit hole. Warning The scenario I describe is not recommended. Stay away from L2 extension as much as you can. Business requirements Every project should start with a …

In the last post I used a webhook to notify a listener to run a remediation script. In this post I'll document how to configure the listener. FastAPI There are many options to setup a webhook listener. After a brief research I decided to use FastAPI instead the more common Flask. Webhook What is a webook? In essence, …

IP Fabric network discovery can collect the network state. Release 3.7.0 introduced webhooks. Let's see how webhooks can be used for automated remediation. Brownfield automation In a common brownfield scenario, an existing network is carefully configured box-by-box by CLI huggers network engineers. It is not unusual to …

This blog has been selected as a finalist in the Most Educational category of the 2020 IT Blog Awards, hosted by Cisco. Being part of a community is not a zero-sum game, we're all winners when knowledge spreads, high-quality content is created and new relationships are built among a group of motivated and talented …

My blog has been selected again as a finalist in the Most Inspirational category of the 2019 IT Blog Awards, hosted by Cisco. The goal of the IT Blog Awards is to recognize the broader community of IT bloggers I am particularly happy to be in the Most Inspirational category. Imagining that my blog may inspire somebody …

A few weeks ago Krypt.co appeared in my Twitter timeline so I decided to try it. Here's the result. Two factor authentication (2FA is the way to go for authenticated access for anything than is more than a lab. I use an Yubikey to protect my personal accounts and the password manager1 I use to maintain unique password …

During Cisco Live this year I had a chance to stop by IP Fabric booth and exchange a quick chat about their product and the problem they're trying to solve. After the event I had the opportunity to run a trial to better understand the product and the features if offers. What struck me was that the product solves …

On May 10th I had a chance to attend again ITNOG in Bologna. Even if ITNOG seems to be an event with focus on ISP I find it very educative for anyone working in the enterprise market. The boundaries between enterprise and ISP network are a common ground for negotiation about connections, routing, security, SLA. Sun Tzu …

AKIPS network monitoring. Network documentation and monitoring are topics that never lose interest to me. Over the years I worked with many products, Nedi, Observium, Librenms,, NetBox, Icinga, NetShot, Smokeping to name a few. Each product has its strengths and weaknesses that in some cases are nothing more than the …

I really enjoy discussing network design and deploy details with colleagues, customers and fellow network engineer. I find these discussions challenging, stimulating. An open, sincere and collaborative discussion gives a chance to better understand the real needs, fears, doubts of other professionals and to validate …

At ITNOG4 I recevied a complimentary RIPE Atlas probe! What is RIPE Atlas? RIPE Atlas employs a global network of probes that measure Internet connectivity and reachability, providing an unprecedented understanding of the state of the Internet in real time. The probe is based on a TP-Link TL-MR3020 hardware. Right back …

I'm pleased to announce that my blog has been selected as a finalist in the Most Entertaining category of the IT Blog Awards, hosted by Cisco This blog is a project that I have been carrying out for years in the (little) free time between a demanding job, the study and the family. I think it is important to dedicate …

I've been working on a data center migration from regular switches to a Cisco ACI fabric in the last couple of months. I can't say that's enough to be defined as an ACI expert but I'll share here what I learned from the experience. The project started with a Network Centric approach for an one-to-one migration from the …