DNSSEC Explained (with AWS Route53 Hosted Zone Example)

DNS name resolution is essential to modern connectivity. The ability for hosts to be able to quickly and reliably resolve DNS domain names (e.g. www.google.com) to their IP address equivalents (e.g. 216.58.204.68 or 2a00:1450:4009:827::2004) to connect and consume services ensures consistent and performant network flows. Due to the essential nature of DNS, DNSSEC is an addition […]

More...

AWS Route53 – Creating and Using a Hosted Zone

AWS Route53 provides DNS Resolution (and DNS Registrar) services. You can use Route53 to register a domain, host the zone file and provide DNS resolution, alternatively, you can have the domain registered elsewhere, but then use Route53 to host the zone file and provide DNS resolution. There are some different options here, Route53 ties nicely […]

More...

SLPP Guard – Simple Loop Prevention Protocol Configuration for Edge Ports (XOS/SwitchEngine)

On VOSS/FabricEngine SLPP should be configured on every VLAN at the point where it leaves the fabric and meets a non-fabric loop prevention strategy.  This will prevent any loops from impacting the fabric by closing down ports where a loop is detected. The below assumes you already have SLPP configured on your upstream switches. If […]

More...

Deploying VMware OVA “Certificate is not trusted” or “Invalid Certificate”

When attempting to deploy a VMWare OVA via vCenter you may see an error such as the following: One possible solution (which might work for you) if you can’t get a suitable replacement OVA is to use the OVFTool (which you can download from VMware) to strip the certificate from the OVA, effectively creating a […]

More...

Create a Network Association to an External IP Address or IP Range (i.e. an IP address that is not “yours”

If you need to create an A record that points at a IP in a range that does not belong to you, for example and AWS IP; you need to first create a Network Association so that non-yours IP Address or IP Range can be referred to by a DNS domain we hold the forwards […]

More...