I have Cisco Catalyst 6500 with IOS Version 12.2(17r)SX5I need real-time monitornig of failed interface, to shut it administratively down and after 5 minutes "no shutdown" it.I think is good idea to use Cisco EEM for this task.My algorithm is below:
1. EEM script is looking for event about failed interface.
2. EEM script is shutting interface down.
3. EEM script is waiting 5 minutes.
4. EEM script is enabling interface.
I know how to configure EEM for steps 1, 2 and 4, but step 3 I do not.
my Cisco anyconnect VPN clients are able to access all of my internal networks accept to another site which has a IPSEC VPN site-to-site. The Cisco ASA forwards the packets destined to this remote site to a Cisco router which NATS the source addresses (pool 10.17.252.0/24) to a 192.168.46.0 range. The remote network is 155.x.x.x which I have included in my internal subnets object-group and added a route on the ASA to route it inside.
I have configured NAT so that it does not NAT anything from the anyconnect client range to the internal subnets. I am using version 8.3(2) and the NAT rule is:
I was wondering if there is a workaround to have a mac access-list bond to a port security violation action our need is the following: we have a range of 10 mac addresses that can use any port on the 3750, we only want to allow those ones yet we also need to tak action if a denied mac appears on any port of the switch.the only work around I found is to basically go into a port-rage mode and list all the allowed mac addresses under all the ports of the switch. I would also add to that a port violation action. did not test it but should work. problem is, it would be a huge config.I did read that we can create a mac access list and then bind that mac to physical ports wich will actually simplify our solution yet I did not find a way to bind the mac list with a port violation action.
If we use an ACE4710 to load balance two real servers, obviously it will use health checks to determine if a server is down.When it detects a server is down, it will not send it any more traffic.But can we also have it take any other action? For example maybe email an admin, or send an SNMP trap? Or better yet, can we use a custom TCL script to do other things, like launch some custom activities?
Cisco 4500-X do not support egress queing on VLAN interfaces (SVI) which means cannot do a traffic-shapping, is there a work around via policing? I can police the traffic and then on the trunk interfaces do "per-port-per-VLAN" QoS but again only the policing not shapping so I was wondering what is the effect of "exceed-action transmit" command
policy-map SHAPE class class-default shape-average 8000000 Versus... policy-map POLICE class class-default police 8000000 4000 conform-action transmit exceed-action transmit
I have RV042 V01 and V03 and RV082 V03.I'm wondering if there's a difference between the default actions taken by the "Logs" interfaces?
In the case of the V01 systems, it appears that I get a Security Notification every hour.In the case of the V03 system, it appears that I rarely get a Security Notification.
while ago, I got a virus that tried to mimic windows activity center. Since then, I have use malwarebytes anti malware, ccleaner and microsoft security essentials to scan and remove the virus.Usually what happens is that I will be using firefox, and all of a sudden most of my programs would exit, and one of those fake virus scanners come up (Microsoft security essentials also turns off if that is important). I open the task manager, and identify the program. I open explorer (as i can't open mbam, or mse) and delete the file. While it is in the recycle bin, I can open mbam (for some reason, it asks what program to open mbam with, I just pick mbam from the list) and I scan, and remove the threats. Then I empty the recycle bin, and use ccleaner to fix the registries. Lastly, I use mse to scan the computer.Everything works for a while until it comes back again....and again....and again. I've tried the same steps in safe mode and again in regular mode. It's still happening.
My company has an 881-w ISR that provides wireless and wired network functions for our small office (about 20 users). I was attempting to create a new V LAN (another story), and was able to create the V LAN (4) and assign it a new IP. However, when i came in today, and when i attempted to connect to the ISR, the serial console started spewing this over and over:
Now, I did leave the console session up overnight, as that's the only thing that I can think of. As expected, our service contract had expired. I did reboot the ISR, and I am looking to see if this can be fixed, or symptomatic of a larger issue, and time to replace? At this point i can't even get it to stop, and thus cannot log in.
when the supplicant is missing vlan500 is open for port and everything is ok, but when supplicant has wrong configuration something happend and port is always authenticating(every 30s, vlan500 is not assign to this port with bad configuration supplicant) and logs show something like that
Jul 10 10:20:12.362: %AUTHMGR-5-START: Starting 'dot1x' for client (001e.3718.7297) on Interface Ga0/1 AuditSessionID 0A0EFF5B000004A3545161E4 Jul 10 10:20:44.365: %AUTHMGR-5-START: Starting 'mab' for client (001e.3718.7297) on Interface Ga0/1 AuditSessionID 0A0EFF5B000004A45451DF11 Jul 10 10:20:44.399: %MAB-5-FAIL: Authentication failed for client (001e.3718.7297) on Interface Ga0/1AuditSessionID 0A0EFF5B000004A45451DF11 Jul 10 10:20:44.399: %AUTHMGR-7-RESULT: Authentication result 'no-response' from 'mab' for client (001e.3718.7297) on Interface Ga0/1 AuditSessionID 0A0EFF5B000004A45451DF11 Jul 10 10:20:44.399: %AUTHMGR-7-FAILOVER: Failing over from 'mab' for client (001e.3718.7297) on Interface Ga0/1 AuditSessionID 0A0EFF5B000004A45451DF11 Jul 10 10:20:44.399: %AUTHMGR-5-START: Starting 'dot1x' for client (001e.3718.7297) on Interface Ga0/1 AuditSessionID 0A0EFF5B000004A45451DF11
version - Cisco IOS Software, C3560E Software (C3560E-UNIVERSALK9-M), Version 15.0(1)SE2
I am encountering delays when making any calls using VOIP. I understand that there is always a delay using VOIP but not as much. I've done a bandwidth test on my network and everything seems to be Ok, we have 4 T1s with 55 Reps using it. There is nothing choking up the network.
I've got a strange problem with my internet connection. I have recently moved and brought my desktop with me. While I am able to connect to the internet in my new place, a weird problem arises: whenever I try to access a new webpage, there is a consistent 5-10 seconds delay before the page actually loads. After the initial delay however, the webpage will load quickly. This problem will repeat itself whenever I try to access a site that is not cached. I have tried switching ethernet cables/wireless adaptars and this problem persists. I have also tried scanning and cleaning my computer yet nothing works. Speedtest.net show that my ping, d/l and upload speed are all fine.
PS: Just to add some information, my new place comes with its own existing router (the building includes internet into its rent), and I am simply plugging an ethernet cable from my computer to it. In addition, my roomates and my laptop seem to be able to access the itnernet fine with this problem. Since this sounds a lot like a DNS problem, I have also tried using OpenDNS and that doesn't work either. In addition, the delay persists regardless whether I am trying to access a website via its domain name or numerical IP address.
Any good way to force a serial link to delay packets to simulate a hi latency WAN link? Found this command so far:
Router(config-if)# transmitter-delay hdlc-flags
I can dial the speed up/down via clock rate all good but I need to also simulate latency. This is for simulating a WAN bonding scenario so I was going to aggregate a 10M ethernet port with a 2M serial and a 512k serial. But I need to also ensure varying latency.
I have an issue with a Cisco ASA 5520. It seems to block some emails incoming from some recipients. The sender's mail server clearly reports my ASA as cause of the problem (see attached image). Unfortunately I have not the logs about that event and the time frame to close this issue is very narrow.
Core Internal Network -> Cisco ASA 5510 -> DMZ Switch.If i send a ping reguest from internal network to servers in DMZ Switch over the ASA 5510, i can see a delay in response, some times this delay can be more than 80ms, this is a problem for the web applications in http traffic.How i can find what's happening on my ASA? I disable the inspect traffic over the IPS, disable the policy maps below, reload the two boxes, but doesn't works, the problem still persists. [code]
Actually i have problem with my connection and i would like to find that problem. i have 3 sites(1,2,3) connected together through fiber multi mode cable. The site 1 having the control room, the maximum distance between site (1 and 3) is 1.8 Km, the other distance(1 and 2) is 1.2 km and i already used 3750X switch and GIBIC GLC-FE 100Fx with support MM cable up to 2 KM.
i have in site (2 and 3) 10 cctv 3 mega pixel cameras and i check for the bandwidth is less than 100Mbps when i connected the 2 switches(2 and 3)to the switch in the site 1 there is a delay i thought maybe because of the bandwidth so i tried to connect only 1 camera but the same problem(delay). i did not make any configuration for the switches.
i'm having some problems to configure.i have two sites, a primary site and the secundary site, in both sites every switches are layer two. I configured and activated the RSTP (802.1W) in every switch, but about every 30 minutes the topology change and happening a delay in network and loss some ping (ICMP).
I have one problem with our windows 2008 server when any user want to log in the domain from his computer, it takes long time. it takes around 5 minutes. I have installed DNS on the same AD Domain. Is that OK ?Secondly i have around 70 users and 4 ISPs.. Each ISP is used for specific data transfer. Each of the ISP is connected via ADSL Router to our switch?
I have a wierd "2 second delay" issue with audio generation on a SRP527w.When in a call, with myself on both ends of the setup DECTphone - FXSport on SRP527w - VOIPprovider <> PSTN/GSM - Mobile I can hear my voice on the mobile immediately, as expected. However, the same words i speak (having both the DECT and the Mobile at my ears), are heared on the DECT with 2 seconds delay. Trust me when I say that this is the base for a poor rated telephone call and misunderstandings therein.
This issue is the same when calling to other mobiles and even land-lines, both in being called and being the calling party... Every time the voice from the other side is heard "delayed" on the DECT. Testing the DECT on a normal non-voip connection results in a normal conversation, as far as this is possible with me talking to myself I do have a separate CBR pvc for the voice on the SRP and to investigate the issue I've put the SIP user on a soft client, using a UBR pvc on the same SRP, both pvc's do use the same provider but diverend gateways. And with the UBR + softphone i do not have this "2sec delay" issue.
So, ruffly said this seems to locate the issue in the SIP>FXS DSP, with specific only the digital>analog decoding/generation (not with the analog>digital encoding, as i hear myself normally on the mobile, with no/normal msecs delay).
Is there a device, which is able to produce a time delay on fiber optical link? I mean for example if one would like to reduce the power level of an optical signal, he could use simple air-gap optical attenuator on optical link. However, has somebody seen a device, which is able to introduce a time delay on optical link?
I noted that my router (Linksys3200) has delays or lag on the average of 5 to 10 seconds apart, but random, while playing on line games. While continuously monitoring delays (ping) with a program called Ping Plotter, it ranges from 25ms to 65ms. When not gaming, just surfing the net, the ping is zero and once in a great while a 5ms or 6ms spike may occur.
Am I looking at a malfunction in the router or the computer? or Is this normal?
I have a fairly new HP Proliant server that serves as a fileserver, among other things. I've tried serveral operative systems in order to find the one that suits my server-needs best and ended up with Windows 2003 Server.When browsing shares on my server over local network, there is a slight delay on approximately half a second every time I navigate. It's not a huge problem but it's enough to be annoying.However, there was no problem when I tried Debian 6 with Samba. So logic would suggest the problem is somewhere in a setting or something like that. But which setting? [code]
I have a program that is supposed to talk to a server. I basically need to see how it behaves in the worst of circumstances. I need something to mimic this kind of behavior by adding "artificial" high latency to the program. Is there an easy to use program that connects to a the adapter that can do this kind of testing?
i am facing time daely issues on cisco 2960 s series switch while booting .It is taking time for electing masrer and sleeve for stacking.can i disable the election process for stcking while booting.
I'm facing a problem with the Cisco 1522 AP at the remote site every day that it takes about 2 hours to join the WLC, is there any way to minimize the time that the mesh 1522 AP takes to join the WLC?
A couple of users on my network complain about timeouts. They access the same server which runs a SQL server. People from outside world can access it without a problem but internally it keeps timing out. I have also noticed that VoIP phones have a delay internally. So if i pickup my phone and dial an extension the other person can't hear me sometimes but i can hear him.
I have experienced the VoIP problem but have never had any time outs on my machine. I tried packet capture on a couple of computers but i cant see anything out of the ordinary. Alot of ARP, some STP which i think shouldn't reach the machines, dropbox traffic etc.