(no subject)

[theducks]

Simon's last day today.. so we mainly did some handover stuff for while he's away. Fun fun. Had a bit more of a talk about the SNAP thing wth UCS.. we're going to run a VLAN trunk into our Cisco from theirs with two VLANs on it.. one being the SNAP link, the other being the non-externally routable subnet we have for our link back to UCS from our firewall.. then, we'll make the port on our router which the external link plugs into VTP prune to only allow those two VLANS.. then assign one port to be a native access port for the external link VLAN.. and plug the external interface of the firewall into the cisco and the internal one into another port which is set as access for our internal network.. so no need to recongfigure our firewall.. it will still route everything the same. The cisco meanwhile has routing interfaces for all of our subnets, and then the next hop for anything else set to be the firewall, which in turn says everything else is to go to the other end of the link, which means it's all good!

So currently..

ucs/uwa -> our firewall -> our router -> access subnets

But we want to do..

ucs -> our router -> our firewall -> our router again -> our users

But it means about 30 minutes of downtime to setup and co-ordinating with UCS for when.. might do it next week or something.

Ok I'm a geek :P Bah. Christmas will be a nice break from computers probably.. but then I'll need to find something to do.. hence spending most of the time in brisbane versus at dad's place. Hmm!