Cisco Application :: ACE 4710 Switchover SNMP Trap Notification?
Jun 20, 2012
I am in the process of testing VA5(1.2) version of ACE on ACE4710 appliance.I did redundnacy configuration and it is working fine.I have done the snmp configuration and SNMP trap receiver is able to recieve traps like link up/down, so it proves that SNMP configuration is working fine, but i am not able to generate the SNMP trap notification for "clrRedundancyStateChange".I tried two things:
1) Via CLI, ran the command "ft switchover all" and i could see redundancy state changes.
2) Powered down Active 4710 appliance and standby ACE 4710 appliance taking over as Active.
However, none of the above could generate the trap clrRedundancyStateChange. how this trap can be generated? In snmp-server enable traps commands doesn't have any option for enabling FT related traps.
View 1 Replies
ADVERTISEMENT
Feb 6, 2013
We have two ACE4710 in a failover configuration with Software version A4(2.0). SNMP is setup and the receiver is able to receive SNMP traps.The issue is we are receiving a linkDown trap notification at least once every other day, followed shortly by a linkUp notification a minute later. We have checked all layer 2 devices connected to the ACE and cannot see any evidence that any link actually disconnected. We experienced no traffic lost, but this could be because a couple of the ACE links are bundled. The trap notification does not actually indicate which interface changed status. All links are Gigabits, and there are no packet drops either on the ACE or the layer 2 switch.
View 3 Replies
View Related
May 24, 2012
Had setup my ACE ,to send traps to SNMP server .but dont see any logs on the SNMP server from ACE.
SNMP configuration on ACE
logging enable
logging buffered 6
logging host 10.12.40.12 udp/514
[code].....
View 1 Replies
View Related
Jul 1, 2011
send me step by step guide of how to configure SNP server for SNMp trap
View 2 Replies
View Related
Feb 1, 2012
Upgraded LMS to 4.1. Yep basically reinstalled. However I can't remember how I did a couple of thing on the original system.
I am trying to take the traps from the Cisco equipment to the LMS and generate e-mail. How do I take the incoming traps (Crit and Warning) and send an e-mail alarm. I'll plan to control what to trap on at the Cisco Equipment.
SNMP trap is set from a fan fault, the Cisco send a trap to the LMS. Now I want take that trap and forward via an email.
I have been reading the admin documentation on "Notification and Action Setting". I see how to take the Cisco LMS created trap and email alarm. (In this case I need a specific trap that LMS did not have.) I see how to take Cisco Traps and resend them to other NMS.
View 1 Replies
View Related
Dec 27, 2010
I have not used the ACS5.1 yet so watch out for the easy questions
1) Is it possible to generate report for the users who are inactive for say last 30 days? Customer is looking to audit these users to see if they really need access to any device.
2) Are there any known issues while assigning the priviligaes level to users. In current implementation of this customer users are always logged into priv 1 though they are assigning the priv level of 5. I understand with ACS 4.x we can enable the exec process and assign the priv under user/group policy. What are the configurations that customer might be possiby missing in this case?
3) Is there any SNMP or other notification available in ACS 5.1 where admin can be notified at the time a particulat set of user logs in.
View 2 Replies
View Related
Apr 3, 2008
I am only able to get InfoAlarm messages sent to via email notifications.My switch is sending logs to Cisco Works.Example:
13. 10.10.0.1 10.10.0.1 Apr 04 2008 10:34:41 EC 5 UNBUNDLE Interface GigabitEthernet1/4 left the port-channel Port-channel2 *
14. 10.10.0.1 10.10.0.1 Apr 04 2008 10:34:41 EC 5 BUNDLE Interface GigabitEthernet1/4 joined port-channel Port-channel2
But I only recieve infoalarm messages:
ALERT ID = 00000UE
TIME = Fri 04-Apr-2008 11:04:00 PST
STATUS = Active
SEVERITY = Informational
MANAGED OBJECT = 10.10.0.1
MANAGED OBJECT TYPE = Switches and Hubs
EVENT DESCRIPTION = 10.10.0.1: Cisco Configuration Management Trap:InformAlarm; 10.10.0.1: Authentication Failure:MinorAlarm;
My switch is setup as:
logging source-interface Loopback0
logging 10.10.100.111
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps syslog
I do not recieve critical or warning syslog messages.
View 9 Replies
View Related
Dec 7, 2012
We are implementing fault management tool and for that we need information such as what type of traps are being triggered by router on what events..currently we have BGP, interface,reachability,h/w,syslog,authfail,config, trap types configured..All these are hitting in our fm tool but I need to know when these traps are being triggered by router.more importantly authfail, config, syslog, bgp.
View 4 Replies
View Related
Nov 22, 2011
I want to make my switch send trap when failed SSH login is detected. I found the "login Enhancement" feature and enabled the trap and logging for the failed attempt.
3750# sh run | in login
aaa authentication login default local
login delay 1
[Code].....
View 7 Replies
View Related
Apr 16, 2012
Below is my config for IP SLA. I would like a SNMP trap to be sent when my primary fails over to my secondary and so on.
sla monitor 20
type echo protocol ipIcmpEcho 100.X.X.1 interface INET-FIOS150
num-packets 2
[Code].....
View 4 Replies
View Related
Apr 9, 2011
How to prepare my network for snmp,currently i don't have SNMP configured with community,so what is the requirement for that?what server i need to configure in order to receive SNMP traps coz last time i had issue ,one of my tunnels (terminated on asa 5510) goes down for 2 hours and i didn't realized that
View 7 Replies
View Related
Mar 30, 2013
how to enable snmp traps for syslog message in Cisco Nexus platform ?
Mean what would be equivalent CLI for the below
"snmp-server enable traps syslog"
View 2 Replies
View Related
Feb 21, 2012
I want to be able to send snmp traps to my NMS alerting our NOC to when we reach our configured max-associations on an ap. We currently use both 1130 AG and 1140-2N in autonomous mode, no controller. I have found a debug command "debug dot11 station connection failure" and the output of a test AP shows us the fact that the maximum number was reached. I need to find if it is possible to trap on such information.
View 1 Replies
View Related
Aug 22, 2011
Now I'm trying to write software that get information from Syslog message, but I'm facing with the problem about getting statistic of client de-authenticated in a WLC (Software Version: 7.0.98.0), because I cannot find any log about this information on WLC except only this SNMP trap:
Tue Aug 23 09:52:28 2011Client Deauthenticated: MACAddress:00:xx:77:2c:06:db Base Radio MAC:00:xx:5d:0c:fc:30 Slot: 0 User Name: unknown Ip Address: 10.2xx.47.15 Reason:Unspecified ReasonCode: 1
So, is there any way that I can configure WLC to convert this SNMP trap to send to Syslog server as a normal Syslog message?
View 2 Replies
View Related
Jan 25, 2011
I use SNMP and I dont have access to a router to test.Can the SNMP Trap to: Field in the SMNP section be configured for multiple IP addresses.?
View 1 Replies
View Related
Sep 10, 2012
I have Cisco 2960's, 3750's and 3750x's all running IOS on the access layer. I have Cisco 6504's running IOS on the Distribution and Core layers. I am looking to monitor redundant links through Spectrum by having specific ports send traps but I have run into trouble finding how to configure it. I would like to have:
1. Logging enabled for all links (Fiber and Copper) so that I see all links up/down messages in the syslog
2. SNMP traps sent for linkup/link down messages only for redundant links (ex. Dual Up links from Access Layer or Redundant Ether channel Links on Dist Layer)
3. SNMP traps should be ignored/not sent for all copper ports.
View 3 Replies
View Related
Dec 17, 2012
I have a snmp trap sent every 30 seconds from one of my cisco switches (a stack of 3750 to be precise): ccStatusMemberStatusChange. Do you know what it is and why it is sent continuously?
View 1 Replies
View Related
Mar 27, 2013
Report run via Individual Web server URL’sThe report takes less than 20 minutes (average 15 minutes) to fetch and return the data. This is observed 9 out of 10 times.Report run via ACE Load Balanced URLThe report keeps on running for more than 20 minutes and never completes. The front end keeps showing report is running.The data in general when tested directly by running queries against the database (bypassing the platform) completes in 15-18 minutesThe network connectivity for each and every ports involved (Loadbalancer/Servers) have been throulgly checked.
View 6 Replies
View Related
Feb 2, 2013
i'm looking for a recommendation for a setup guide including ft i've had a quick look a wiki and i can get basics but i'm not sure about if i need to setup additional contexts etc when i'm the only one using the appliance?
View 2 Replies
View Related
Aug 26, 2012
I have an issue with a customer that wants to update a server behind the ACE. The problem is that when the application wants to update the server it does it with the name.Doing some research I found that you can rewrite the record DNS based on the static NAT you set up on the ACE. The feature is called DNS inspection. Is the same feature as the ASA (DNS doctoring).I apply it to the outside interface and it did not work.
View 1 Replies
View Related
May 7, 2013
What are these ports used for? What can I do with them?
View 2 Replies
View Related
Feb 12, 2013
I am trying to configure sticky on an ACE 4710 and don't understand what the netmask part of the sticky ip-netmask netmask address {source | destination | both } name command.
Some examples use 255.255.255.255 and others use 255.255.255.0 but I don't know what the significance is or what it does?
I am going to configure for both source IP and destination IP (both).
View 2 Replies
View Related
Mar 19, 2012
With the current (A5) ACE 4710 lic setup, does the "X gigabit per second appliance throughput" that is licensed affect: -
A) Only "appliance" i.e. load balancing traffic, any other normal routed traffic is not included in the limit
or
B) Is it an overall throughput limit on the interfaces i.e. includes all traffic not only load balancing traffic but also normal routed traffic crossing the appliance
Looking at a scenario where the lic size I need for HTTP load balanacing would be one size if A) but would need to be much larger is B) to accomodate out of hours routed backup traffic crossing the ACE 4710
View 1 Replies
View Related
Aug 27, 2012
I've just run the ACE 4710 and it seems that is booting up well but it stops when 'Setting up dynamic memory size' message appears.
INIT: version 2.85 booting
b4 lspci
1 Cavium device(s) found.
[Code]....
View 2 Replies
View Related
Aug 11, 2012
I've got a web app that the owners want to run over port 80, but also using SSL to secure private data in transit. The architecture is an ACE 4710 in SSL termination mode->Apache (port 2000)->Back-End app server.
I've got two VIPs set up already - one on port 443 and one on 2000 - both of which do the SSL termination quite nicely, but using the 3rd VIP set up on port 80, the connection steadfastly refuses to be HTTPS (i.e. doesn't show the padlock).
I've done all the set-up through the web interface so far, can this be done? If so, how?
View 1 Replies
View Related
Jul 19, 2011
I am currently running A3(2.6) and evaluate the possibility of upgrading to A4(2.1). The Instal & Upgrade Guide A4(2.0) mentions that A4(2.0) does not include all features of A4(1.1). Does this apply to A4(2.1)? The Release Notes mentions a list of features merged from A4(1.1) to A4(2.1) but does not clarify if there any features not merged.
[URL]
View 1 Replies
View Related
Nov 13, 2012
we configued An ACE 4710 with SSL termination on Oracle Aplication Server 10g (10.1.2.0.2) ,so that SSL termination is done on the ACE and HTTP reaches the Oracle Aplication Server 10g (10.1.2.0.2) then we configure the ACE to enabled client authentication with Pkcs#11 smart card token certificate and this don succfully my problem need do this client certificate authentication for only the [URL] not for all SSL proxy service how can do that.
View 3 Replies
View Related
Dec 5, 2011
I'm receiving a lot of these messages in a ACE4710 cluster. 192.168.100.1:80 is the VIP, 193.126.127.28:56380 is the client. Already tried to set the mss with this:
parameter-map type connection my map set tcp mss min 0 max 1380
policy-map multi-match L4_policymap
class vip_PRDWEB_http
loadbalance vip inservice
[code].....
But it doesn't work.
View 4 Replies
View Related
Jul 31, 2011
We have recently transitioned one of our Ecommerce products to a new data center, at which we now use a one-armed load balancing approach rather then the routed load balancing approach we used previously. This is casuing us some issues as we generally log the source IP address a user comes in on when he fills out an application. Now the logs only show the natted ip address recieved by the load balancer, which does us no good. Any way to log the source IP address when a new connection is created to a particular vip?
View 3 Replies
View Related
Jun 2, 2011
If we use an ACE4710 to load balance two real servers, obviously it will use health checks to determine if a server is down.When it detects a server is down, it will not send it any more traffic.But can we also have it take any other action? For example maybe email an admin, or send an SNMP trap? Or better yet, can we use a custom TCL script to do other things, like launch some custom activities?
View 2 Replies
View Related
Jan 24, 2012
I am new to the 4710 appliance.Apart from the 4 GE 'data' ports, there are 2 Ethernet 'management' ("console") ports. I find the description in the "quick start guide"somewhat confusing. URL, Is a first-time serial connection (at least to run the initial config. script) mandatory? Or can you obtain the same result via one of the 2 Ethernet management ports and using a default ip address (192.168.1.10 ? When running the initial config. script (only possible from the serially connected console i suppose), you have to select your management port. Why does the system in step 5 proposes you 4 ports, and not just 2? I suppose the intended port for management is one of the 2 management ports, not one of the 4 data ports?
View 1 Replies
View Related
Jun 29, 2012
I have a pair of ACE 4710s with 12 contexts sharing the load, running A4(2.1). esterday I upgraded one of them to A4(2.3) now I cannot telnet to the Admin context.Pings ok. I can telnet to other contexts on the box and everything seems to be working ok when i do a " sh telnet" comes back with
No Session Information is available
sh telnet maxsessions
telnet maxsessions 16
View 1 Replies
View Related
Dec 14, 2011
ACE# sh script code NORDICID_PROBE.Error: Called API is invalid or non-existant.Hardware is ACE-4710-K9 and software A3(2.7)The probe itself is functioning ok according to show probe detail.However show script script_name probe_name -counters all remain at zero for some reason. This wasn't the case on the previously use ACE software.To my recollection the command show script code has worked successfully before on the same ACE software. Not 100% sure though, but it definitely worked on the previous software we ran on the ACE.
View 2 Replies
View Related
