DNSSEC Explained (with AWS Route53 Hosted Zone Example)

DNS name resolution is essential to modern connectivity. The ability for hosts to be able to quickly and reliably resolve DNS domain names (e.g. www.google.com) to their IP address equivalents (e.g. 216.58.204.68 or 2a00:1450:4009:827::2004) to connect and consume services ensures consistent and performant network flows. Due to the essential nature of DNS, DNSSEC is an addition […]

More...

AWS Route53 – Creating and Using a Hosted Zone

AWS Route53 provides DNS Resolution (and DNS Registrar) services. You can use Route53 to register a domain, host the zone file and provide DNS resolution, alternatively, you can have the domain registered elsewhere, but then use Route53 to host the zone file and provide DNS resolution. There are some different options here, Route53 ties nicely […]

More...

SLPP Guard – Simple Loop Prevention Protocol Configuration for Edge Ports (XOS/SwitchEngine)

On VOSS/FabricEngine SLPP should be configured on every VLAN at the point where it leaves the fabric and meets a non-fabric loop prevention strategy.  This will prevent any loops from impacting the fabric by closing down ports where a loop is detected. The below assumes you already have SLPP configured on your upstream switches. If […]

More...

Deploying VMware OVA “Certificate is not trusted” or “Invalid Certificate”

When attempting to deploy a VMWare OVA via vCenter you may see an error such as the following: One possible solution (which might work for you) if you can’t get a suitable replacement OVA is to use the OVFTool (which you can download from VMware) to strip the certificate from the OVA, effectively creating a […]

More...