NetLabs – Innovation, Technology & Learning

  DHCP-Snooping Configuration with Aruba Switch Series 2930, 2530. DHCP Snooping  is a Layer 2 security switch feature which blocks unauthorized (rogue) DHCP servers from distributing IP addresses to DHCP clients also call option 82 of this service. This lab configuration with Aruba Switch Series 8320, 2930. We need trusted DHCP server IP address to configure DHCP-snooping on your network.   DHCP Starvation   attack  is a common network attack that targets network  DHCP servers . Its primary objective is to  flood  the organization’s DHCP server with  DHCP REQUEST messages  using  spoofed source MAC addresses . The DHCP server will respond to all requests, not knowing this is a  DHCP Starvation attack , and assign available IP addresses until its  DHCP pool is depleted . At this point the attacker has rendered the organization’s DHCP server useless and can now enable his own  rogue DHCP server  to s...

Aruba Switch 2930F 48G Poe Basic Configuration Aruba Switch 2930 Series NTP (Network Time Protocol) Configuration. Aruba Switch Series 2930 AAA (Authentication Authorization and Accounting) Peer Keep alive Lab Configuration with Aruba CX Switch Series 8320. DHCP-Snooping Configuration with Aruba Switch Series 2930, 2530.

Peer Keep alive Lab Configuration with Aruba CX Switch Series 8320 This lab configuration with Aruba Switch Series 8320, 2930.   Distribution uses UDP-based peer keep alive message to determine if any link goes down at this level or the peer has completely failed. The following opening rules must be followed to use peer keep alive links. 1.       An IP address must be configure for a peer keep alive VLAN interface and the same IP address must be configured as a peer keep alive distribution on the peer distribution switch.   2.       There must be logical layer 3 connectivity between the two IP address configured for the peer keep alive VLAN interface.   3.       STP cannot run on a peer-keep alive links.   4.       A keep alive VLAN can only have one member port.   5.       The default VLAN can’t configure for a peer ke...

Aruba Switch Series 2930 AAA ( Authentication Authorization and Accounting) AAA is authentication management protocol AAA network security services provide the primary framework through which a network administrator can set-up access control on network points of entry or network access servers . Port No- 49 TACACS uses TCP services to delivery data. RADIUS uses Port No- 1812 for authentication and authorization and  Port No- 1813 for accounting. All the AAA packets are encrypted but RADIUS  Only the password are encrypted while the other information such as username, accounting information etc are not encrypted. 1) Authentication   identifies a user. 2) Authorization   determines that what user can do on the network. 3) Accounting  monitors the network usage time for billing purposes. AAA information is typically stored in an external database or remote server such as a RADIUS or TACACS+ server. The i...

Aruba Switch NTP (Network Time Protocol) Configuration NTP (Network Time Protocol) is time management protocol.   NTP (Network Time Protocol) for network time managing we use this in our organization because 100- 1000 devices are running in a network then it’s very difficult to manage time on all devices that’s why we use this mechanism. It uses port no 123 for transport and use UDP services for polling time from server to the devices. NTP uses operate different modes. Supports four different modes. 1-Client 2-Server 3-Peer 4-Broadcast/multicast. NTP (Network Time Protocol) operating modes define the NTP communication between NTP devices. NTP communication between two different devices includes NTP Time requests and NTP control queries. NTP Time request communication is the request from an NTP client for time synchronization from an NTP server. NTP Control queries are the communication messages for configuration information. Following are the importan...

Aruba Switch 2930F 48G Poe Basic Configuration First You need a console cable to configure a switch. Console is an interface. Via this interface we can execute any command.     After connect this cable with switch to laptop. Need to open console (Putty).   You can download from this link  https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html When will get console of fresh switch. you will get with this little default configuration ; JL256A Configuration Editor; Created on release #WC.16.07.0005 ; Ver #14:21.4f.f8.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:22 hostname "Aruba 2930f" module 1 type jl256a vlan 1    name "DEFAULT_VLAN"    no untagged 1-48    untagged 49-50,Trk1    no ip address    ipv6 address dhcp full    exit Now you need to configure fresh switch according to your requirement. ...