Screen Recording 2024 07 18 204849

Venture
18 Jul 202415:54

Summary

TLDRThe video script discusses the concept of 'lift and shift' in data centers, focusing on the process of migrating servers while maintaining connectivity. It explains policy-based routing (PBR) and how it directs packets to specific destinations. The speaker also details the technical steps involved in changing routing configurations, including updating access lists and route maps, to ensure seamless network transitions.

Takeaways

  • πŸ˜€ The term 'lift and shift' is frequently mentioned, referring to the process of moving servers into a data center environment.
  • πŸ”Œ Servers typically need to connect to the data center network (DCN), and in the context of 'lift and shift', they continue to use their old firewalls or paths.
  • πŸš€ The change being made involves policy-based routing (PBR), which allows for the redirection of packets from servers to different paths based on predefined policies.
  • πŸ› οΈ The speaker is making changes to a routing map and an access list, which are crucial components in managing how servers communicate within the network.
  • 🌐 The use of wildcard notation in network addresses is explained, helping to understand how subnet masks are represented and interpreted.
  • 🚦 The concept of changing the 'next hop' for servers is likened to changing train tracks at a station, emphasizing the redirection of data flow.
  • πŸ“ˆ The speaker discusses the complexity of access lists, noting that some can be very long and contain numerous entries, which can be challenging to manage.
  • πŸ” The script mentions the use of 'show IP access list' commands to view current network configurations and monitor network traffic.
  • πŸ‘₯ The speaker references past experiences and colleagues, providing a historical context and personal anecdotes related to network management.
  • πŸš€ The script concludes with a discussion about preparing for a migration, highlighting the importance of careful planning and coordination in network changes.

Q & A

  • What is the term 'lift and shift' mentioned in the script?

    -The term 'lift and shift' refers to the process of moving servers or applications from one environment to another without significant changes to the application code. In this context, it is used to describe the movement of servers into the data center network (DCN).

  • What is the purpose of connecting servers to the DCN?

    -Servers generally need to connect to the DCN to ensure proper network integration and communication. This connection is crucial for maintaining the necessary network paths and security measures within the data center.

  • What is PBR and how does it relate to the script?

    -PBR stands for Policy Based Routing. It is a method used to control the path that network packets take based on certain policies. In the script, PBR is being used to change the routing path of packets from servers to a different gateway due to an upgrade in the DCN.

  • What changes are being made to the routing in the script?

    -The changes involve modifying a route map and an access list to direct packets from servers to a new gateway. This is necessary because the DCN is upgrading some layer three devices, which requires changing one router with another.

  • What is the significance of the wildcard notation in the script?

    -The wildcard notation is used to represent subnet masks in a more concise form. In the script, '255.255.255.3' is equivalent to '255.255.252.0', which is further simplified to a /22 CIDR notation, indicating a subnet mask of 255.255.22.0.

  • What does the script mean by 'show IP route'?

    -'Show IP route' is a command used in networking to display the routing table of a device. It shows where the device will send packets based on their destination IP addresses.

  • What is the purpose of changing the access list in the script?

    -The access list is being changed to standardize and update the network security policies. This ensures that the servers are correctly directed to their new destinations and that the network remains secure.

  • What is the relationship between the access list and the route map in the script?

    -The access list is used in conjunction with the route map to determine the path that packets will take. The route map matches the IP addresses in the access list and then applies the routing policies accordingly.

  • What is the significance of the subnets mentioned in the script (10761, 10762, 10108, 5222)?

    -These subnets represent different network segments within the data center. The script discusses routing changes for servers located in these subnets, directing them to a new gateway (10108.5222) instead of their current default path.

  • What is the role of Chris and Bik in the script?

    -Chris and Bik are team members involved in the network migration process. They are responsible for preparing and executing the changes to the network configuration, ensuring a smooth transition during the migration.

Outlines

00:00

πŸ”„ Lift and Shift in Data Center Networking

This paragraph discusses the concept of 'lift and shift' in the context of data center networking. It explains that servers often need to connect to the data center network (DCN) and that the term 'lift and shift' is frequently used in this scenario. The speaker introduces a device that facilitates this process. The conversation also delves into the technical aspects of connecting servers to the internet through old firewalls or paths, and the need to update these connections as part of the lift and shift process. Policy-based routing (PBR) is introduced as a method to direct packets from servers to specific destinations, rather than following a default route. The speaker outlines the changes involved in updating the routing map and access list to accommodate these new paths, particularly in the context of a data center upgrade.

05:01

πŸ› οΈ Configuring Access Lists and Route Maps

In this paragraph, the focus shifts to the technical details of configuring access lists and route maps in a network. The speaker discusses the process of updating an existing access list by erasing it and replacing it with a new one, which is necessary for standardization. The conversation highlights the complexity of managing access lists, especially when they are extensive, as seen in the case of the 'opwdd' agency. The speaker also explains the relationship between route maps and access lists, emphasizing the importance of matching IP addresses in the route map. The paragraph concludes with a discussion about the visibility of network flows and the potential for monitoring and managing these flows through access list configurations.

10:02

πŸš€ Preparing for Network Migration

This paragraph details the preparations for a network migration. The speaker and their team are ready to proceed with the migration, and the speaker provides a brief overview of the steps involved. They discuss the process of copying and pasting configurations into the network devices, emphasizing the importance of careful coordination to avoid downtime. The speaker also mentions the size of the configuration changes, which are relatively small in this case. The paragraph concludes with the speaker and their team preparing to execute the migration, with a focus on ensuring that the process is smooth and does not disrupt network operations.

Mindmap

Keywords

πŸ’‘Data Center

A data center is a facility that houses a large number of servers, storage systems, and other computing resources used to manage, process, and store data. In the script, the data center is mentioned as the destination for servers that are being 'lift and shifted,' indicating a migration or transfer of computing resources from one location to another within the data center infrastructure.

πŸ’‘Lift and Shift

Lift and shift is a term often used in IT to describe the process of moving applications or services from one environment to another without significant changes to the application code. In the context of the script, 'lift and shift' refers to the migration of servers to a new data center network, maintaining their connection to the internet through their existing firewalls or paths.

πŸ’‘DCN (Data Center Network)

DCN stands for Data Center Network, which is the network infrastructure within a data center that connects servers, storage devices, and other components. The script mentions connecting servers to the DCN, specifically to the new IP 10108, indicating a reconfiguration of network connections during the lift and shift process.

πŸ’‘Policy Based Routing (PBR)

Policy Based Routing is a method of routing network traffic based on specific rules or policies. In the script, PBR is used to determine how packets from servers are routed to their destinations. The change in PBR involves directing traffic from one gateway to another, which is part of the network upgrade being discussed.

πŸ’‘Layer Three Device

A layer three device, in networking, operates at the network layer of the OSI model and is responsible for routing data packets. In the script, the mention of layer three devices refers to the upgrade being performed by the DCN, where one router is being replaced with another to improve network functionality.

πŸ’‘Route Map

A route map in networking is a set of rules that determine how routing decisions are made. In the script, changing a route map is part of the process to alter the routing of network traffic, specifically directing traffic from one gateway to another during the network upgrade.

πŸ’‘Access List

An access list is a set of rules that control access to a network resource, typically used for security purposes. In the script, modifying an access list is part of the configuration changes needed to implement the new routing policies, ensuring that traffic is correctly directed according to the updated policies.

πŸ’‘Wildcard Notation

Wildcard notation is a method used in networking to specify a range of IP addresses. In the script, wildcard notation is explained as a way to represent subnet masks, where zeros are replaced by 255s to indicate the range of addresses covered by the mask. This notation is used to define the routing changes in the network upgrade.

πŸ’‘CIDR Notation

CIDR (Classless Inter-Domain Routing) notation is a method for specifying IP address ranges in a more compact form. In the script, CIDR notation is used to describe the subnet mask of 255.255.22.0, indicating the range of IP addresses that will be affected by the routing changes.

πŸ’‘VRF (Virtual Routing and Forwarding)

VRF is a technology that allows multiple virtual routing tables to coexist within the same router. In the script, VRF is mentioned in the context of OMH (presumably an organization or department), where traffic from a server is being routed through a specific VRF, indicating the use of VRF for routing decisions.

πŸ’‘ACL (Access Control List)

An ACL is a list of rules that determine which traffic is allowed or denied based on source and destination IP addresses. In the script, modifying an ACL is part of the configuration changes to implement new routing policies, ensuring that traffic is correctly filtered and directed according to the updated rules.

Highlights

The concept of 'lift and shift' is introduced, referring to moving servers into the data center.

Servers connect to the data center network (DCN) using a new IP address, 10108.

The term 'PBR' (Policy Based Routing) is explained, which involves directing packets from servers to specific destinations.

A change in routing is discussed, involving a switch from one gateway to another due to DCN upgrades.

The explanation of Wild Card notation and its conversion to subnet mask codes.

Servers located in subnet 10761 and 10762 are directed to a new hub instead of the default path.

The analogy of changing train lines to explain the redirection of network traffic.

The process of modifying access lists and route maps in Cisco devices is described.

The importance of standardizing access list names for consistency and clarity.

The complexity of access lists in different agencies, such as OMH and OPWDD, is highlighted.

The discussion of applying access lists to interconnects versus individual subnets.

The mention of the impact of changes on network flows and the ability to monitor them.

The preparation for a migration and the steps involved in testing the new configurations.

The emphasis on the importance of coordination and communication during the migration process.

The caution against downtime and the need to avoid creating issues during configuration changes.

The technical details of the configuration changes, including the specific lines to be entered.

The finalization of the configuration changes and the testing phase to ensure everything is working as expected.

Transcripts

play00:00

into the data center so that's where the

play00:02

lift and shift comes from you're going

play00:04

to hear that term a lot and hence the

play00:07

this device that you see on the screen

play00:08

here has it has the name lift and shift

play00:12

let me know if if you can

play00:16

see okay so a lots of these devices

play00:20

servers generally they need to connect

play00:23

into the dcn data center proper that's

play00:27

how we call it that's the 10108 the new

play00:29

IP

play00:31

um when we put them into the lift and

play00:34

shift they were still connecting to the

play00:38

internet using their old firewalls or

play00:40

the old path that they had in the in

play00:43

this case OMH the one that the change

play00:45

are making Trad is

play00:47

forh and the other um guys on the call

play00:51

Chris and U bavik are for opwdd a

play00:55

different agency so you and I we're

play00:58

going to take care of for AG tonight and

play01:01

they're going to take care of

play01:03

opwdd um what's happening is PBR means

play01:07

policy based routing it in simple terms

play01:12

packets coming from a

play01:14

server we decide we tell them where to

play01:17

go and take a different path if we don't

play01:20

they going to take a default route or

play01:21

they going to take a specific route out

play01:23

to whatever destination they need to go

play01:26

with the PBR we can decide which

play01:29

destination they can go and in this case

play01:32

we're going to

play01:33

change one Gateway from one gateway to

play01:36

another because dcn is upgrading some

play01:38

devices on their side some layer three

play01:40

device and is basically changing one

play01:42

router with

play01:45

another my changes involves only this

play01:48

we're going to change a um a rout map

play01:51

and then an an access

play01:53

list

play01:55

um and this is exactly how I said that's

play01:58

a a source where the the servers are

play02:01

coming from and this is where they want

play02:03

to go 10108

play02:05

5222 this is in Wild Card notation so

play02:09

whatever you see a zero you actually

play02:11

replace it in your brain with a 255

play02:14

255 255 - 3 is 252 and then 255 - 255 is

play02:20

zero that will give you subnet Mas code

play02:22

255 255

play02:24

22.0 which is a sl22 cidr notation right

play02:28

okay that makes a lot more sense so

play02:31

so when servers are located that are

play02:34

located in this subnet which is a

play02:37

sl24

play02:39

right 10761 and

play02:43

10762 so 250 servers here and 250

play02:46

servers here they want to go to 10 52

play02:50

any of any IP in this subnet they going

play02:53

to take this that this next hub instead

play02:56

of going by

play02:57

default where they are going today

play03:00

because if you go and say show IP route

play03:05

and because it's OMH it's in OMH vrf 10

play03:09

10852

play03:10

Z this device says I'm going to send you

play03:13

to 10761

play03:16

15250

play03:18

but if the server wants to go to 10

play03:21

10852 and it's coming from

play03:24

10761 we going to send it to a different

play03:27

next hub 1018 4.22

play03:30

make

play03:35

sense okay it's like a like a train

play03:38

right it reaches a train station and we

play03:41

we shift we change the whatever that

play03:44

thing is called when they change the

play03:45

trains to change the lines to go to a

play03:47

different destination that's all it

play03:53

is MHM

play03:58

yeah yeah did I explain it correctly

play04:01

Chris bran bik it was wonderful Kat very

play04:09

good you're the best caline ah no I'm

play04:12

not you are the best B Patel

play04:18

DNA no no no uh to give you a little bit

play04:22

of History Chris Brenan and I used to

play04:25

work with with ofd back in the days like

play04:28

15 years ago

play04:30

and bik used to work for OMH he used to

play04:33

do this stuff I don't know if you now

play04:35

you didn't do PBR back then OMH did not

play04:39

have

play04:42

PBR but

play04:50

Bank

play04:53

no no PBX and PBR they're not the same

play04:56

thing completely different things yes

play05:01

PBR also is a beer you

play05:04

know

play05:06

y not one of the

play05:14

best couple months

play05:25

ago so you know you can before you do it

play05:29

change you can do show IP access list

play05:34

and

play05:37

then this name we're going to change

play05:40

also the names because we need to get

play05:43

standard

play05:47

so this is the existing access list

play05:50

right now so what I'm going to do I'm

play05:51

going to erase it and then put a new one

play05:56

in and then put the r map and and

play06:02

actually uh that statement should be

play06:06

above

play06:09

here so I'm going to just copy paste

play06:12

them in this order so the very first

play06:13

thing is going to go into the route map

play06:16

I'm going to erase

play06:18

the access list that is

play06:23

matching I'm going to tell you hey match

play06:25

a new access list IP address

play06:29

uh you'll

play06:30

see sometimes Cisco is confusing like

play06:34

this because we say we have a route map

play06:39

which we call it this way we have a

play06:40

priority on the route map and then we

play06:44

tell it okay what do we want what what

play06:46

do we want this broad map to do we want

play06:49

it to match an IP but instead of access

play06:52

list Cisco decided to say address

play06:55

because actually you can actually put an

play06:57

address in here you can put you can put

play06:59

a subed here but we said okay we're

play07:02

going to create an access list cuz we

play07:04

want to add more there are some access

play07:06

list that are really really long if we

play07:09

look at uh

play07:13

opwdd what they did to

play07:16

me thousands of lines look at this so

play07:22

this is just one of one of their access

play07:26

lists oh my God is it finishing there

play07:28

you go so it's from

play07:32

here hundreds of lines they added

play07:37

here you does opw actually has that many

play07:43

subnets in lift and

play07:46

shift

play07:47

CH it's a

play07:54

lot but don't these

play07:58

repeat themselves at some

play08:02

point oh I see what you did in the same

play08:06

access list you had different

play08:07

destination as

play08:09

well that's why that's so big yeah for

play08:13

the for the da ones they did basically a

play08:16

single ACL with all of the different

play08:18

destinations in oh my God not not like

play08:23

the much better OMH crafted ones no no

play08:26

of course of course but at least I try

play08:29

to keep them consistent and they all

play08:31

each V has their own access list so yeah

play08:35

it's it's because the on the da side

play08:38

it's actually applied to an interconnect

play08:40

not the individual subnets I believe or

play08:44

at least that's how it was in the

play08:45

past yeah so I have you know 3135 it's

play08:50

only 3135 in here and then we have 3149

play08:55

and it's only 3149 and

play08:58

3283 you're not going to see a different

play09:00

IP in this it's always it's the same

play09:03

sources but the same

play09:06

destination so yeah

play09:14

3296 and tonight we're changing

play09:17

3054 okay

play09:32

um another way to to look at it uh you

play09:37

when you do a show IP

play09:41

access and the name of the access list

play09:44

it tells you that actually someone is

play09:46

talking right now see there are two

play09:50

matches for from this subnet going to

play09:53

this

play09:54

destination and from this subnet going

play09:56

to this

play09:58

destination and there is a way to

play10:00

actually see the

play10:02

flows um but

play10:05

we we Chang the code I think or

play10:08

something happened and I cannot do that

play10:10

show

play10:12

platform

play10:17

Hardware he K not not to intentionally

play10:21

cut you short here but

play10:24

uh yeah my pre- testers are good I'm

play10:27

ready to go ahead with the migration so

play10:30

okay

play10:31

uh yeah you and bobic get prepped for it

play10:34

give me about 30 seconds uh just to get

play10:38

my side set up and then uh same deal as

play10:42

last time I'll do a three two one go and

play10:46

Uno on my great the thets and you guys

play10:49

can paste your configs in yeah yeah yeah

play10:51

so how big is your config

play10:55

p uh mine is uh not too much much uh

play11:00

they are like literally 40 lines 40

play11:03

lines 40 50 lines okay you put in first

play11:07

yours and then I I'll put mine okay I'll

play11:10

share my screen for the time being so

play11:12

that you know exactly when

play11:15

yeah it's fine if we if we if it's

play11:18

downtime a little bit is nobody is is

play11:20

going to

play11:21

die I don't want to create issues with

play11:25

the 6500 us copy pasting config in the

play11:28

same time

play11:31

yeah don't forget to say

play11:35

it you got return the favor oh my God

play11:39

you shared both

play11:44

screens cannot see anything I'm my bad

play11:47

hang on a second that's okay don't worry

play11:49

about it yeah just no here how about now

play11:53

it's good

play11:55

yeah and increase increase the font a

play11:58

little bit hold control and

play12:01

roll there you go there you

play12:05

go all right we ready

play12:07

it

play12:09

yeah all right so I'll do

play12:13

a let me when you're

play12:16

ready okay I'm ready all right three two

play12:22

one go

play12:31

all right I'm done you're done okay let

play12:34

me put mine in don't save don't save

play12:37

yeah I'm not I'm not saving don't

play12:39

worry just exiting

play12:44

it

play12:56

okay okay mine it's in

play13:10

and the permit 5 has a 10 on WE

play13:15

4.22 next

play13:17

stop it's already matching packets

play13:58

okay

play14:00

tell them to

play14:01

test all right than thank

play14:28

you

play14:58

e

play15:27

e e

Browse More Related Video

IP Routing

Mastering OCI Networking - Scenario 1 (Hub and Spoke with OCI Firewall)- Part B

Dynamic Routing - CompTIA Network+ N10-009 - 2.1

Static Routing - CompTIA Network+ N10-009 - 2.1

Packet switching | Packet switched network | Switching technology | TechTerms

USF IT Video Part 3

Rate This
β˜…
β˜…
β˜…
β˜…
β˜…

5.0 / 5 (0 votes)

Summary
Outlines
Mindmap
Keywords
Highlights
Transcripts
Related Tags
Network RoutingData CenterPolicy Based RoutingLift and ShiftIP AddressingCisco ConfigurationInternet ConnectivityMigration StrategyTechnical DiscussionInfrastructure Upgrade