Skip to content

Afroz Ahmad

My Official Blog

  We are working on the above topology. To better understand the content i have configured and tested CA server in LAN environment. There are two ways for authenticating VPN , people generally use Pre-shared key as discussed in my previous post with S2S VPN tunnel, the other way around is using Certificates given by […]

What is Bluecoat Packet Shaper and why we need it ?? :-   Does your network know the difference between important web traffic like online meetings, and lower-priority traffic like games or streaming media? In a world that is increasingly more interactive, mobile, and content-driven, Blue Coat PacketShaper helps enterprises control bandwidth cost, deliver a superior […]

WHY CCDE ?? This question was popped  in front of me , when i finally decided to pursue my next certification in the Design field. Some people say that CCIE is somehow act as a prerequisite before doing CCDE. However, in my point of view it really depends on which background you are coming and […]

Recently i faced some challenges in creating “automatic backup script” for F5 LTM, the main reason for this was because i am not a regular scripting guy, and F5 TAC doesn’t support these kind of things. I was initially shocked when i heard from F5 TAC that they cannot do such scripting, and the only […]

Lets start with difference between URL and URI. URL – https://afrozahmad.com/some/page.html URI – /some/page.html URL is the full way to identify any resource anywhere and can use different protocols like FTP, HTTP, SCP, etc. URI is a resource on the current domain, so it needs less information to be found.   There are several methods of implementing URI […]

DMVPN

Mar 13

  Goal :-  To run complete DMVPN setup between  Global Data Center and  remote locations . Remote location can use  3G dongel and/or ADSL connection.   Hardware Used :- Cisco 1941 router (Product ID – CISCO1941/K9) Cisco 881W router (Product ID – C881W-E-K9)   IOS Used :- CIsco 881W :- c800-universalk9-mz.SPA.152-4.M4.bin CIsco 1941 :- c1900-universalk9-mz.SPA.152-4.M5.bin   Licenses Used :- Advanced Security […]

Lets do some  SSL offload on F5 LTM. SSL offloading relieves a Web server of the processing burden of encrypting and/or decrypting traffic sent via SSL, the security protocol that is implemented in every Web browser. The processing is offloaded to a separate device designed specifically to perform SSL acceleration or SSL termination. BIG-IP Local […]

Getting Started I am doing F5 related tasks from a longtime however never put on my blog, now i have decided to place all my learnings of F5 inside separate category, that is F5. F5’s BIG-IP product family comprises purpose-built hardware, modularized software, and virtualized solutions that run the F5 TMOS® operating system. Depending on […]

Overview:- SSL Certificates on the WLC :- •Internal https server on the WLC is enabled by default for Web Administration & Web Policy (Web Authentication/Passthrough) •Provides SSL encryption between Wireless clients and WLC to protect Web Authentication credentials. Problem:- •End user receives a security warning when triggering the web policy page on the WLC. •WLC […]

Cisco Prime NCS 1.3:-  This is login page after upgrade. I would personally recommend to upgrade Cisco Prime NCS 1.2 to version 1.3. There are lots of bugs in release 1.2 , you will instantly feel that after the upgrade to 1.3. Regarding the benefit of the upgrade you can check the release note for […]