Post 9pQ1BAENS2AWVtEu48 by kariomuschel@mastodon.nrw
(DIR) More posts by kariomuschel@mastodon.nrw
(DIR) Post #9pPxohEUHlRqLMszIW by quad@weeaboo.space
2019-11-28T10:27:38.942516Z
0 likes, 0 repeats
One thing I find extremely confusing about Cisco equipment is that when you show the running config, defaults aren't included.So until now the switch has had an IP on my client network (VLAN 1) because DHCP on VLAN 1 is default.But if you run the command "show running-configuration" it only shows the DIFFERENCES from default. No there's no mention of DHCP being enabled on VLAN 1 anywhere.Instead when you have disabled it, this appears in the config: interface vlan 1 no ip address dhcp!
(DIR) Post #9pPxylxPZg9XtOhfxA by quad@weeaboo.space
2019-11-28T10:29:29.028182Z
0 likes, 0 repeats
So there's no visual indicator of it having an IP when looking at the config.I only realized because it could ping the outside, but the management VLAN should not be able to.I just ran "show ip dhcp client interface vlan 1" and wow, there's an IP and default gateway.You just have to know that DHCP on VLAN 1 is the default, or find out the hard way. When getting a config overview with "sh ru", there's no real indicator of it.
(DIR) Post #9pPy0ZXkhSAzyFYlVY by valerauko@pawoo.net
2019-11-28T10:29:50Z
0 likes, 0 repeats
@quadthat is incredibly dumb
(DIR) Post #9pPy4xggsGwa0jpkCe by quad@weeaboo.space
2019-11-28T10:30:36.173327Z
0 likes, 0 repeats
@valerauko Yes, the config isn't actually the config. Rather it's overlaid ontop of the default config. Which as far as I can tell is invisible
(DIR) Post #9pQ165tGA6hfbSwbYW by bitofhope@mastodon.sdf.org
2019-11-28T10:54:22Z
0 likes, 0 repeats
@quad Prretty sure the C in Cisco stands for "confusing" and there's a good reason there are two of them
(DIR) Post #9pQ166N2NOWT5osNyC by quad@weeaboo.space
2019-11-28T11:04:24.137144Z
0 likes, 0 repeats
@bitofhope Meh, Cisco hasn't been the worst, after fiddling with the switches for a day I can now figure out most commands without googling.This is just a flat out stupid design decision, not mild confusion.
(DIR) Post #9pQ1BAENS2AWVtEu48 by kariomuschel@mastodon.nrw
2019-11-28T10:50:28Z
0 likes, 0 repeats
@quad once I used pfsense based on freebsd its very hard for me to go back to these old command line interfaces xD I saw the light and dont want to go back in the dark xD
(DIR) Post #9pQ1BAVOQlmPMfCUaW by quad@weeaboo.space
2019-11-28T11:05:18.663112Z
0 likes, 0 repeats
@kariomuschel This is a switch, not a router though. Also it does have a Web UI, though I disabled it.For routers I switched from pfSense/OPNsense to Ubiquiti's edgeOS (Because VyOS' maintenance is kinda bad)
(DIR) Post #9pQ1ChvZeYAZJNBF5M by Wolf480pl@niu.moe
2019-11-28T11:05:36Z
0 likes, 0 repeats
@quad IIRC Dell does that too
(DIR) Post #9pQ1NGIuhHQyp987GK by quad@weeaboo.space
2019-11-28T11:07:31.260079Z
0 likes, 0 repeats
@Wolf480pl I haven't used Dell switches before sadly. Mostly HPE at workplace, Ubiquiti/Cisco at home.Stupid design decision though. Having the "running-config" be an overlay ontop of the default rather than the actual config
(DIR) Post #9pQ9cj9oVFHCHtl7AW by quad@weeaboo.space
2019-11-28T12:39:56.556792Z
0 likes, 0 repeats
@bitofhope Never used a Cisco router, so I can't speak on behalf of those. Their switches are decent enough though.On the router side I'm mostly in love with Vyatta-like stuff. (Which I believe is a clone of certain Cisco/JunOS command lines or something) such as VyOS and Ubuiquiti's edgeOS
(DIR) Post #9pQAeku94reEEwxevA by quad@weeaboo.space
2019-11-28T12:51:31.301548Z
0 likes, 0 repeats
@bitofhope It's dope as all hell. Too bad VyOS is kinda badly maintained. They're barely managing to keep up with Debian oldoldstable and then you know it's pretty bad.It took them until January 2019 to get the base up to Debian Jessie from April 2015.So while I like it, I just don't really feel like I can trust the security of the system anymore due to how outdated it is. So I use Ubiquiti equipment, since their edgeOS is also a fork of Vyatta.Outside of nightlies, VyOS seems to only be updated 2-3 times per year from what I can see. edgeOS isn't updated often either, but at least it's more than that.
(DIR) Post #9pQBp0qqk4wuY3sHlQ by quad@weeaboo.space
2019-11-28T13:04:35.174310Z
0 likes, 0 repeats
@bitofhope Sadly Vyatta is a router-only thing from what I can see.Some Ubiquiti routers do have built-in switch chips, but their configuration is limited. For example they don't even support LACP.But Ubiquiti's EdgeSwitches use different firmware from their EdgeRouters. And I don't really like their switch firmware. Feels like Cisco, but super buggy. Not to mention that EdgeSwitch products with an "X" in the name don't even officially support cli configuration as far as I can tell. If you ever touch the cli it breaks a bunch of things.So Ubiquiti EdgeRouters are 10/10 if you ask meBut their EdgeSwitches are 2/10
(DIR) Post #9pQEPGOicQFD6787NY by valerauko@pawoo.net
2019-11-28T13:33:34Z
0 likes, 0 repeats
@quad i'm a big proponent of sensible defaults for everything but not being able to see those defaults is just... a whole new idea
(DIR) Post #9pQIFMhEkGNZYNKLiq by quad@weeaboo.space
2019-11-28T14:16:32.686547Z
0 likes, 0 repeats
@valerauko There's probably a way, but it sure as well isn't well documented