Network Policies: Difference between revisions
Jump to navigation
Jump to search
mNo edit summary |
|||
Line 6: | Line 6: | ||
# It is excellent to fix things, but only if you can't find the original owner first. | # It is excellent to fix things, but only if you can't find the original owner first. | ||
# Before making a change, make sure it worked in the first place and back up the config. After making a change, make sure it still works. Keep that backup around, you might need it someday. You might also want to implement the test as a shell script, since that's the first step towards adding the test to the regression testing system. | # Before making a change, make sure it worked in the first place and back up the config. After making a change, make sure it still works. Keep that backup around, you might need it someday. You might also want to implement the test as a shell script, since that's the first step towards adding the test to the regression testing system. | ||
= Baseline Management Checklist = | |||
== Address Assignment == | |||
For static addresses: | |||
# Update /etc/hosts on soekris.noise. | |||
# Set the address and netmask. | |||
# Set the domain name on the device to noise. | |||
# Set the DNS server to 172.30.0.1 | |||
== General Management Stuff == | |||
* SNMP v2c, community name "noise" for readonly. v1 works too. | |||
* SNMP traps go to pony using the same community name. | |||
* NTP to <tt>clock.isc.org</tt> or a similarly close server. | |||
* Syslog to pony. | |||
* Set the timezone and turn on automatic summer time adjustment. | |||
* Save a copy of the manual somewhere. It might be handy to have if you want to look something up while the network is down. | |||
* Save a copy of the initial configuration somewhere. | |||
== Cisco Version == | |||
ip domain-name noise | |||
snmp-server community noise | |||
snmp-server host pony trap version 2c noise | |||
ntp server clock.isc.org | |||
logging 172.30.0.30 | |||
aaa new-model | |||
aaa authentication login default local | |||
aaa authentication enable default none | |||
clock timezone PST -8 | |||
clock summer-time PDT recurring | |||
ip name-server 172.30.0.1 |
Revision as of 19:22, 3 June 2009
The (desired, wished, dreamed, hoped for) Rules
- We have a wiki with which you can keep a record of changes. You should consider using it to keep a record of your changes.
- Unlabeled cables are fair game to be unplugged. There is a label maker available to prevent this. Remember that you may want to label both sides in some cases.
- Users monitor noisebridge-discuss and #noisebridge on IRC. Please notify both places if you anticipate an outage, and monitor both places to answer questions if you are aware of an outage.
- It is excellent to fix things, but only if you can't find the original owner first.
- Before making a change, make sure it worked in the first place and back up the config. After making a change, make sure it still works. Keep that backup around, you might need it someday. You might also want to implement the test as a shell script, since that's the first step towards adding the test to the regression testing system.
Baseline Management Checklist
Address Assignment
For static addresses:
- Update /etc/hosts on soekris.noise.
- Set the address and netmask.
- Set the domain name on the device to noise.
- Set the DNS server to 172.30.0.1
General Management Stuff
- SNMP v2c, community name "noise" for readonly. v1 works too.
- SNMP traps go to pony using the same community name.
- NTP to clock.isc.org or a similarly close server.
- Syslog to pony.
- Set the timezone and turn on automatic summer time adjustment.
- Save a copy of the manual somewhere. It might be handy to have if you want to look something up while the network is down.
- Save a copy of the initial configuration somewhere.
Cisco Version
ip domain-name noise snmp-server community noise snmp-server host pony trap version 2c noise ntp server clock.isc.org logging 172.30.0.30 aaa new-model aaa authentication login default local aaa authentication enable default none clock timezone PST -8 clock summer-time PDT recurring ip name-server 172.30.0.1