Network Engineers need Linux

Although I am my no means an expert in Linux (yet), I have done the swap.  I have dropped Windows for a Mint 17.3 Linux.  Since I work in the network consulting realm, it does make things (some things) a little simpler.  I am a fan of Windows 10, but the good about Linux far out weighs the good about Windows.

Benefits:

• Become more familiar with commands that are regularly used to install and troubleshoot Cisco and other vendor appliances
• terminal services are much more fluid and many variants are available
• VIRL and GNS3, in my opinion, run much more efficiently on Linux.
• Over all performance increase 
• Less bloat in my OS
• The new Linux distros' GUIs are as good as, if not better than Windows
• IT'S FREE!

Drawbacks:

• Visio and a few other office like products
• I like Outlook much better than Thunderbird or Evolution

*** I still have Windows 10 installed on my hard drive for now if I need to use certain applications

More info on current Linux distributions: Click Here

More info on Mint: Click Here

Cisco ISE Fail Open Ports

One thing that you have to to consider when installing ISE in an organization is complete ISE failure.  In this scenario ISE has failed because of complete power outage or network access to ISE has been removed and no access can be granted to end devices.  This could in effect shut down your entire company.  This is a very big problem when dealing with a multi-site business with a singular data center.

On your switch ports, add the following command to your standard 802.1x config:
authentication event server dead action authorize vlan X

This command will grant access and dump all traffic on the specified VLAN in the event of total ISE failure/unreachability.