Showing posts with label cisco. Show all posts
Showing posts with label cisco. Show all posts

Wednesday, May 23, 2018

Install dan Konfigurasi Tacacs+ pada Ubuntu 16.04 LTS

Install tacacs+
##apt-get install tacacs+

jika sudah selesai install kemudian cek apakah sudah jalan servicenya tacacs+
##ps -ef  | grep tac_plus
root@tacacs1:/home/snev# ps -ef | grep tac_plus
root      1075     1  0 22:53 ?        00:00:00 /usr/sbin/tac_plus -C /etc/tacacs+/tac_plus.conf
root      1243  1211  0 23:08 pts/0    00:00:00 grep --color=auto tac_plus

sebelum kita otak atik config tacacs+ baiknya di backup dahulu config default
##cp /etc/tacacs+/tac_plus.conf /etc/tacacs+/tac_plus.conf.BACKUP

kemudian kita buat tac log nya dahulu
##touch /var/log/tac_plus.acct


at No comments:
Labels: , , ,

Friday, December 8, 2017

Command on IOS XR

mengetahui konfigurasi terkait vrf tertentu :

RP/0/RSP0/CPU0:JKT-ASR9010-NPE-01#show running-config formal | i vrf USER
at No comments:
Labels: , ,

Check service policy / QoS pada perangkat Cisco ASR920




Config :

interface GigabitEthernet0/0/17
description Trunk to CPE-01
 mtu 9000
 no ip address
 load-interval 30
 negotiation auto
 cdp enable
 service instance 1 ethernet
  encapsulation untagged
  l2protocol peer cdp
  shutdown
  bridge-domain 1
 !
 service instance 2 ethernet
  description USER
  encapsulation dot1q 2
  rewrite ingress tag pop 1 symmetric
  service-policy input IN-2Mbps
  service-policy output OUT-2Mbps
  bridge-domain 2

 #########################################
policy-map IN-2Mbps
 class class-default

  police cir 2048000 bc 384000 conform-action transmit  exceed-action drop

 policy-map OUT-2Mbps
 class class-default
  shape average 2048000   

  police cir 2048000 bc 384000 conform-action transmit  exceed-action drop

 ########################################

Check policy :

ASR920-UPE-01#sh policy-map interface gi0/0/17 service instance 2
 GigabitEthernet0/0/17: EFP 2

  Service-policy input: IN-2Mbps

     Class-map: class-default (match-any)
      1154201988 packets, 271550345661 bytes
      30 second offered rate 8506000 bps, drop rate 6445000 bps
      Match: any
      police:
          cir 2048000 bps, bc 384000 bytes
        conformed 890432056 packets, 241842811947 bytes; actions:
          transmit
        exceeded 263765340 packets, 29707136512 bytes; actions:
          drop
        conformed 2047000 bps, exceeded 6445000 bps

   Service-policy output: OUT-2Mbps

     Class-map: class-default (match-any)
      669268278 packets, 320231050096 bytes
      30 second offered rate 390000 bps, drop rate 0000 bps
      Match: any
      Queueing
      queue limit 192000 us/ 49152 bytes
      (queue depth/total drops/no-buffer drops) 0/11102904/0
      (pkts output/bytes output) 658165374/313744370381
      shape (average) cir 2048000, bc 60000, be 60000
      target shape rate 2048000
      police:
          cir 2048000 bps, bc 384000 bytes
        conformed 1585423 packets, 108453269 bytes; actions:
          transmit
        exceeded 0 packets, 0 bytes; actions:
          drop
        conformed 391000 bps, exceeded 0000 bps
at No comments:
Labels: , , ,
Subscribe to: Posts (Atom)