Christians Juniper Blog – Page 3 – Home of JNCIE-SEC#374

JNCIE-ENT Study Group 2021/2022

christianscholz 2021-10-25 18 Comments

Are you a JNCIP-ENT and want to conquer the JNCIE-ENT in 2022?
Maybe you already purchased the Self-Study-Bundle or already booked your exam but have no one to learn / lab with? Or maybe (just like myself) the JNCIE-ENT already kicked you in the face once, and you seek “revenge”? 😉

Search no more – Our time has finally come! 😀

My goal is to become a JNCIE-ENT in 2022 – and the best way to achieve this is to learn with others obviously. It’s WAAAAAY more fun and way more encouraging to learn with folks who share the same goal.
The Group is limited to 15 people, so be quick – this ensures that nobody gets lost on the way.
I’ve never done anything like this before so let’s do this together 🙂

Timezone-wise, most of us are near the GMT and usually lab in the evening hours, so we do not disturb the family life (8 PM to 11 PM)

I’ve already set up a Collaboration-System to exchange files, chat and interact with others, so you don’t need to worry about that. If required, I can also provide Lab-Access to an EVE-NG Server or even some hardware (to Lab VC, for example) if you cannot access any Lab at all.

I’m looking for folks who also actively want to become JNCIE-ENT in 2022 – regardless if you already scheduled the exam or not. What counts is that you don’t just want to idle or just grab some dumps – this is not what I can offer you.

But I can offer you this:
The idea is not only to interact with others via chat or exchange lab files but to make live sessions with others, where we either do sessions ourselves (if one of us knows what he is doing…) or invite other experts to help us on our path to becoming JNCIE-ENT.
But of course, you don’t have to participate in a “live lab” if you don’t want to (especially if you don’t wear any pants since this is a remote session). We can also just exchange Labs, ask questions, and help each other this way because everybody has a strong point and a weak point (mine is CoS – I just HATE it and satan himself created it just to make me suffer…)

Sounds good? Wanna join the Group?
Drop me a Mail or a Twitter DM, and I will send you an invitation link – that’s it 🙂
And don’t worry – we usually don’t bite 😉

This is your (and my) chance! LET’S DO THIS!!!!!

EDIT:
After just 2 days, the group is full!!! WOW – you guys rock 🙂

Slides from EVE-NG talk (19.10.2021)

christianscholz 2021-10-19 4 Comments

As promised, I uploaded the slides for you all 🙂
Thanks again for joining my talk – you guys are awesome!
Special thanks to Uldis for joining the Talk and help make the world a better (eve-ng) place 🙂

Slides: Using_EVE-NG_with_Juniper_Topologies-Share_19.10.2021 Download

As promised, there will be a 3-part-series in January covering the Installation of EVE-NG live.
That’s right – you will have to look at my face through a webcam like I’m some sort of animal 😉
I purchased a new Server for this to show you live how to prepare a new (used) Server (DL360G7), install EVE, and upload images and stuff.
This session will be extremely interactive (almost like a live stream) and I hope you bring all your questions 🙂

Juniper TechFest2021 (virtual)

christianscholz 2021-10-05 1 Comment

This year, the TechFest from Juniper Networks is taking place online (hopefully for the last time because I REALLY miss live Events). There are SO many Courses to explore, and overall the content is excellent. Regardless if you want to polish your EVPN-skills, learn about SRv6 or spend time exploring the countless MIST Sessions – there’s a lot to discover this year, and it’s very interactive 🙂 Make sure to check out the content. In a couple of days, I will also release some Blog-Articles about MIST and why I think it’s awesome 😉

I’m having a great time online 😉 😀

Next EVE-NG talk

christianscholz 2021-09-14 3 Comments

Join me on my next talk about EVE-NG and Juniper (October 19, 9:00 AM CET).

This time I will talk about the Installation of EVE-NG, why you want bare over virtual, where to get the needed images from Juniper (vSRX, vQFX, vMX), and how to start building a lab.

It’s free: https://learningportal.juniper.net/juniper/user_activity_schedule_info.aspx?id=165238&activity=11495

You can also bring your questions because at the end there will be a Q&A Section for exactly that – I want to help you getting your Lab to the next level or starting with a small lab – the possibilities are endless.

Looking forward to a great event 🙂 Sign up today and reserve your seat as there will be no recording 🙂

EVE-NG 4.0.1-56 is out

christianscholz 2021-07-30 No Comments

Folks – EVE-NG 4.0.1-56 is out.
This release brings a ton of improvements (the Team did an outstanding job again) and also introduces 2 new Juniper Templates: 128T and Apstra AOS 🙂 You can now play with Junipers SD-WAN Solution (128T) or Deploy your very own EVPN-VXLAN Fabric in EVE (Apstra AOS). Make sure to update your Servers asap 🙂

Another day – another “Certification”

christianscholz 2021-05-27 No Comments

I just got my newest “Certification” – and nope – it’s indeed a non-Juniper one 😀

Berechtigung nach § 21 Absatz 5 Satz 1
Krankenhausstrukturfonds-Verordnung (KHSFV)

That one is needed if you want to work with the hospitality and medical sector when working with funds that can be accessed to help digitalize the hospitals / medical systems.

Much needed here in Germany as most of the systems are still, let’s say, “stoneage” or software-islands without any interoperability or defined standards – Germany is a bit slower when it comes to digitalization (after all, the Internet is new to us – germans get this joke).

The test validates your understanding of all parts of the funding and also basically verifies that you know, what you are doing from accessing funds, it-security, how the systems and parts need to be interoperable, and so on 😉

EVE-NG 4.0.1-15-Cluster released – All the Lab Graphs in the world

christianscholz 2021-03-04 No Comments

ICYMI – EVE-NG just released the latest version of the EVE-Cluster (4.0.1-15). This version brings some more nice gadgets to play with: Traffic-Graphs 🙂

4.0.1-15 brings graphs to your Lab environment

This is a convenient and interesting feature when dealing with all kinds of generated Traffic in and out of your Lab, between nodes, or between “helper-nodes” and your Lab. If you don’t want to fire up Wireshark to see if Traffic is really flowing, you can now easily use the graphs. This is currently a “Pro-Only” feature and another good reason to switch to EVE-NG Pro 🙂 As you can see, the Team is constantly evolving the software more and more – and every time you think that this is the perfect release – the Team surprises us again 🙂 As always – great Job / Tippin my Fedora 😉

EVE-NG Pro 4.0: Brace yourselves – CLUSTER is coming…

christianscholz 2021-02-03 No Comments

Did it really happen? Hell yeah – it finally happened 🙂
One of the most requested features of all time is coming to life – and boy is it fun 🙂

I had the honor of trying it a few days before the release, and I’m impressed with how good it works considering this is an FRS – which makes it even more amazing. With the Cluster update, new possibilities arise. You can now scale your Labs even more, and the best part is: you don’t even need to worry about images on the satellites. But wait – what’s a satellite? Let me show you.

EVE-NG is (considering it’s a Standalone-Server) a “master” Server. This means that you login to this server and use it to manage your Topology. If you want to add more Resources (additional Servers), they are considered “satellites” – they provide the needed horsepower for your master to run additional nodes. In most systems, you need to do the “imaging” yourself – meaning that for every node that you want to start, the image needs to be present on the satellite (since it obviously needs the harddisk file). With EVE this is different – you simply select the satellite that your node should run on, and EVE takes care of the image distribution – how awesome is that???

What about updates, you ask? Well – the EVE team has got you covered 😉 You just update your master, and the master will push the agent update to your satellite and update it – while you sip a coffee or do other tasks. While the GNS3 folks update all the servers, you can enjoy time with the family 😛

NoHate I’m sure the GNS folks will forgive me for this 😉

And do you know the best part? You don’t need to pay for a Cluster-License. That’s right – all the sweet awesomeness of EVE-Clustering at the cost of the Pro-Edition. When I heard about this, I was EXTREMELY grateful – now your only limit is your budget for new Servers, but since that is infinite, you can scale your labs to new heights 🙂

What? You want to know how the communication between the master and the satellite works? Alright:

EVE communicates over vxlan between the satellites and the master. And if this wasn’t cool enough for you: What if I told you that EVE uses wireguard (yes, you read correctly) to secure the connections. Every console session, every ssh-connection, every network you create between the master and the sat – no one will be able to sniff the good stuff you have created. Awesome, right? I have never seen anything like this before – most Vendors give a shit about security and the EVE-Team just showed us all how it’s done!

Congrats to the Team for this really awesome release!

I will cover the Clusterfeatures in my next talk at the Juniper Open-Learning Series
(Tuesday, March 2, 2021 7:00 AM PST):
https://learningportal.juniper.net/juniper/user_activity_schedule_info.aspx?id=161880&activity=11495
Make sure to register your seat early 🙂 There might even be a prize to win this time 😉

EVE-NG Pro 3.0.1-17 update is out

christianscholz 2021-01-04 No Comments

The EVE-NG Team just released the latest Update for the Pro Edition.

New templates for Catalyst 8000, FreeNAS, Android, and many more
Template updates
Node icons library

The update also fixed a “security flaw” in guacamole, where the guacadmin password was still set to “guacadmin.” Apparently, not many users were aware of that, and some even put the EVE straight into the www instead of having a decent firewall between the EVE and the www.

Seriously, guys – it’s 2021 – this should not even be a concern.
Exposing a Solution to the www without changing every tiny setting and password is like crying out loud, “hack me fast plz” – this happens automated nowadays, by the way!

My advice is always to have a decent Firewall between you (somewhere in the www) and your Lab.
Use a VPN to connect to it, and you are safe!

And to all the Users out there calling it a “backdoor” or “hack of the century”:

I suggest you first learn what a backdoor is and then start flaming 😉
May I recommend https://en.wikipedia.org/wiki/Backdoor_(computing)?
If you are lazy, here’s a summary: Backdoor means bypassing normal authentication or encryption – this was never the case here. It was just a default user that allowed this – nothing fancy… This user’s password is “scrambled” now, so you don’t need to cry anymore…
Shoutouts to the copycats from pnetlab who tried so hard to throw some dirt 😉

If you use IPv6 only (like me), make sure to change the ovfstartup script (opt/ovf/ovfstartup.sh) after the update so that your Server is reachable via v6 again:

#Disable ipv6 on EVE Host
grep -q 'ipv6.*0' /opt/unetlab/html/includes/config.yml 2>/dev/null && sysctl -w net.ipv6.conf.all.disable_ipv6=1
grep -q 'ipv6 ' /opt/unetlab/html/includes/config.yml 2>/dev/null || sysctl -w net.ipv6.conf.all.disable_ipv6=1
<strong>grep -q 'ipv6.*1' /opt/unetlab/html/includes/config.yml 2>/dev/null && sysctl -w net.ipv6.conf.all.disable_ipv6=0</strong>

The last line is important – save the changes and reboot your server.
Your IPv6 should be reachable again 🙂
That’s all I have for you today – stay safe, folks!

vQFX and vMX custom Icons for EVE-NG

christianscholz 2020-10-27 No Comments

Nothing beats a stunning Topology in EVE-NG so I attached you the images that I use for the vQFX and vMX RE. I’m still creating a nice PFE image and of course the vSRX image – that follows here later 🙂

Enjoy

vQFX-RE-EVE-Custom Download

vMX-RE-EVE-Custom Download