Shulou(Shulou.com)06/01 Report--

I took over the network management and maintenance work of the company this year, and completed the network standardization transformation in June this year according to the requirements of the Group, including upgrading to MPLS ×× dedicated router of the Group, adding link load equipment, Internet firewall, access equipment, IPS, replacing the downstream area firewall, etc. All equipment is deployed in dual mode, hot standby or cold standby.

HillStone E2860 firewall is used in the downstream area to replace the previous GreenAlliance NF-NX3 next-generation firewall.

Port eth0/2 is used as a mobile aggregation dedicated line, i.e. MPLS ×× dedicated line from each branch, bank and UnionPay to our company building is converted into VLAN, aggregation is performed in Mobile Company, and then aggregation is performed from Mobile Company into a multi-VLAN aggregation dedicated line to our company. Then through eth0/7, eth0/8 respectively connected to the two core switches, and then to the collective headquarters.

In September, the company plans to open new office locations in Jimei, Xiang 'an and Tong' an, requiring new mobile MPLS ×× lines.

I am responsible for planning and configuring VLANs and related IP addresses. After checking the relevant configuration of E2860, I found that some previously configured VLANs were not labeled with relevant information, so I divided the IP segment of Xiang 'an office into a VLAN (hereinafter referred to as VLAN_A) that was previously configured but not labeled with relevant information, and then added two VLANs for use in Jimei and Tong' an offices.

After the configuration is completed, the relevant configuration information is sent to the mobile dedicated line configuration personnel.

After sending the configuration information, it was time to go to the company cafeteria for lunch.

everything is normal

。。。

At 3:00 p.m., the phone rang. An office in the island called, saying that it could not connect with the group-related business. There were many customers and they were anxious. Consulting his office location, using the computer IP and other related information, check the E2860 related configuration, unexpectedly did not find the VLAN used by its IP, so query the relevant implementation records provided by the network standard transformation implementer, found that the IP belongs to VLAN_A, but the implementer did not provide VLAN_A related information, so quickly restore the VLAN_A configuration information back to ensure its service smoothness.

Then call the mobile dedicated line configurator and ask to revoke the configuration information sent in the morning. Fortunately, the relevant configuration information has not been written to the mobile aggregation segment equipment.

Finally update the relevant configuration documents and records.

Although this incident was resolved quickly, in the following work alone, if you want to add a mobile MPLS ×× dedicated line, you need to create a new VLAN and configure it. Don't think it's convenient to use a VLAN that has been configured without clear information about the standard, so as to avoid network disconnection accidents caused by configuration errors.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.