
Routing Friends - Network Automation
We are back with another exciting episode of Routing Friends! This time, we are going to talk about network automation and work in a practical laboratory with specific tools/frameworks to carry out operations with automation! Link to YouTube (content in PT-BR): Desvendando a Automação de Redes: Lab Hands-On com Guilherme Lyra, CCIE #66666 | Episódio 167 Laboratory Use Guide 1. Preparing your automation host The first step is to organize your own automation host, which is nothing more than the computer where you will execute the scripts. The only point that should be noted is that this computer requires access to your laboratory’s network equipment. ...

Automating AWS site-to-site VPNs with Terraform
Introduction In this post, I’ll walk you through how to use Terraform to set up a VPN site-to-site connection on AWS, leveraging Infrastructure as Code (IaC) to make the process quicker, easier, and fully repeatable. For the examples below, we’ll build a cloud infrastructure using a Virtual Private Gateway (VGW). In a future post, we’ll explore using a Transit Gateway (TGW) for more complex setups. I’m running everything on a MacBook, but you can easily replicate these steps on a Linux jump host or any similar environment. ...

Resolving SSH Key Exchange Errors
In this post, I’ll walk you through a few simple steps to resolve SSH Key Exchange and ensure smooth SSH connections. While working on a network automation task, I encountered an error while trying to establish connections to some legacy devices: Unable to negotiate with x.x.x.x port 22: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha1, diffie-hellman-group14-sha1. The error message indicates that the only available key exchange methods are diffie-hellman-group-exchange-sha1 and diffie-hellman-group14-sha1. To address this, simply update your /etc/ssh/ssh_config file by adding the following lines at the end: ...

Cisco Insider Champion 2024
I’m now a member of the Cisco Insider Champion group! Really glad to become part of this team of amazing IT professionals! My badge URL: https://www.credly.com/badges/f66fb7c6-b852-47c3-b9d2-42e8554e58c7/public_url

My Journey to CCIE
My journey I officially started my career in IT in 2006, but my first steps with networks occurred a few years before that, between 2002 and 2003. In 2006, I began as an intern in user support at a government agency. I started by formatting computers and quickly progressed to a point where I dealt with the entire network infrastructure including switches, firewalls, proxy, file servers, AD, etc. After completing this internship, I went to another company, again as an intern, where I spent another 2 years before being officially hired. In total, I worked there for almost 10 years and had the opportunity to learn from exceptional professionals. While working there, I obtained the CCNA certification in 2008, then the CCDA certification in 2013 and completed the CCNP Routing & Switching certification track in 2017. ...

My notes about OSPF
Introduction This post is a summary of OSPF that I compiled during my CCIE journey, gathering information from RFCs, books, Cisco documentation, blogs, and other sources. IMPORTANT: I’m still in the process of converting this page from my original notes, so some information may be missing, and the formatting may not yet be fully refined. OSPFv2 OSPFv2 is documented under RFC 2328, which states the following: OSPF routes IP packets based solely on the destination IP address found in the IP packet header. IP packets are routed “as is” – they are not encapsulated in any further protocol headers as they transit the Autonomous System. OSPF is a dynamic routing protocol. It quickly detects topological changes in the AS (such as router interface failures) and calculates new loop-free routes after a period of convergence. ...

Cisco IOS XE Model-Driven Telemetry
In this post we’re going to explore some Cisco IOS XE capabilities such as Streaming Telemetry and Guestshell. There is a ton of content available on Cisco DevNet explaining Model-Driven Telemetry theory in great detail, so I highly suggest you take some time to browse through the links I’ve listed under the Reference of this post. Summary My lab router is a Cisco ISR C1111-4G running IOS XE 17.6.3a. The same environment can be set up on a CSR1000v or Catalyst 8000v running on Cisco CML for example. ...

Cisco Community Live Event - Cisco SD-WAN
In November 2020 I had the honor of being invited by Cisco Community to present a live event about Cisco SD-WAN (Viptela). The event had more than 300 participants, from 9 different countries. For those who want to know more about this excellent Cisco solution, the recording is available on the link below (presentation language is Brazilian Portuguese). Watch the video on YouTube: https://www.youtube.com/watch?v=xtTHjDv1r-M