Am I wrong but the only way to filter external routes - type 5 - is with a stub area, and area 0 can't be a stub? As far as I know OSPF can't filter on the route tag, so should I be filtering with a route-map?
I have couple C2960G and C3750. Is there any way to filter (on ingress port) type of traffic? I would like to allow IP only, and discard (i.e.) IPX, or other garbage, that any device can produce.I have tried to find something about this, but only thing I have found is feature : protocol filter, which doesn't seems to be working on my hardware.
need to know the OSPF best design. I have a customer currently running their OSPF only in two area. Area 0 is provider reside and area 1 reside 700 hundred over of router including HQ router and remote branch router connecting to metro-E 10Mbps networks. Is this design have any weakness? Area 1 about 800 hundred router reside in, the HQ model is cisco router 7200 and remote end is cisco router 1841.Let's say they want a solution, for 3G remote router connect back to the HQ using Lease line with a fixed IP. Using DMVPN and OSPF communicating back to HQ. What should we aware when designing and implementing for the OSPF best practice. They have 700 hundred over remote branch need to terminate back to their HQ. I read cisco recommend an area should not be more than 50 router and per-area no more than 28 area.
I am able to access the console port via USB to console but i cant type anything in the terminal, i can select echo locally but doesnt rly do anything, i cant submit it. i cant seem to do anything in the actual terminal.
I'm running on LMS 3.2 and RME 4.3.0 and one type of device was not recognized.this is NME-X-23ES-1G (IOS : 12.2(35)SE5) in a 3825 url... this module is supported with the OID 1.3.6.1.4.1.9.1.703,but in the device center I've found something which seems to be the right equipement :
- Cisco Interfaces and modules - Cisco Network Modules - Cisco 2800,3800 series 23-port EtherSwith Service module with OID 1.3.6.1.4.1.9.1.664
We're having a duscussion here and the bet is the same cable - straight-thru ethernet - is used for a serial card be it single, dual or quad port - is that true?
We want to use ASA5520 but both Firewall have different CPU. One has CPU Pentium 4 2400 MHz and another has Pentium 4 Celeron 2000 MHz. Can it be configured for replica / failover?
Need to know if I have 2 type of license on my 2901 router: ipbase and uc, will the 2 type of fuctions of this license work at the same time. Another words will i have route and nat functions work with voip having to type of license on my 2901?
Using ACS 5.2, under Network Resources>Network Devices and AAA Clients>, I can only filter by:
Name NDG:Location NDG:Device Type Description
How can I find a device by its IP Address? or how can I enable this option?
On this link:[URL] I read the following: ''Network Device Filters—Based on the AAA client that processes the request. A network device can be identified by its IP address, by the device name that is defined in the network device repository, or by the NDG'.....
(my connection is a wired cable/DSL modem btw, using a second temp connection to troubleshoot)Last night, my connection was all fine and dandy until I got up this morning. Instead of having access to it and it being set as a home network, it was set to unidentified and public and I now have no internet access on the network. I can't change the network type either, it's stuck as public.[CODE]
I am connecting a uc320w to sbs2011 - and having the server do the dhcp - but the Cisco box can't connect to the wan - but it's been fine before I set changed the topology - do I need a static ip address for the wan
I have a 7609 with a Flexwan module with a PA-POS-1OC3. Is there a command to determine they type of SFP in the module ? sho controllers POS didn't provide the SFP type.
Is there away to configure ACS 4.2 to only allow certain EAP-type of authentication per SSID? For example: SSIDA - only allows EAP-TLS and SSIDB - only allows EAP-PEAP on the same ACS server?
We are switching over to a new ISP and the settings from the old ISP Statstic IP,DNS, is on the Cisco 891 router. Question can I just edit the settings that are already on the Cisco 891 router. I clicked on the CCP exress Went to the Task Internet(Wan) Address type is set for Static IP which I can change and the subnet I can change. In the DHCP it is enable DHCP server on the Lan interface VLan1 and I want to keep the Starting IP address and Ending IP address. For the Section DOmain Name Server (DNS) Primary DNS and Secondary DNS I can change it. Where do I type in the Gateway address. I clicked on the Routing and I only see checked Enable dfault Route and checked INterface Fastethernet8. I don't anywhere that I need to type in the Gateway address anywhere in the CCP Express.
My main goal i want to filter certain sites including facebook not to be accessible within the network and block all torrets including maliciuos site. I was advised to get Cisco ASA 5505 which i already got a quote. But now i want to know if is the ASA 5505 good enough for this purpose, is there anything additional required to succesfully overcome my main goal?
Most of our VPN connections are done with our Cisco 3030 and the internet goes out the ASA. We are able to filter all web traffic by doing a a span port for web traffic.
When we move VPN connections to the ASA we will loose the ability to span web traffic becuase its coming in and going out the same interface on the ASA. We will loose the ability to filter web traffic when this happens.
How we can filter web traffic on VPN connections on the ASA. We are using websense. I know there is some integration that can be done with the ASA and websense but it doesn't have all the capabilities as doing a span port for websense to monitor.
is there any way to apply hostname or object network in the syntax? The command gives the option to use hostname or A.B.C.D but doesn't accept the hostname PIX1(config)# filter url except 0.0.0.0 0.0.0.0 ?configure mode commands/options: Hostname or A.B.C.D The address of foreign/external host which is destination for connections requiring filtering Can an FQDN be used as a foreign/external host?
I've got a PIX running 7.2(4) with its outside interface on the Internet. The only thing this PIX is doing is acting as the endpoint for an IPSEC LAN-to-LAN tunnel with an Internet-connected ASA on another network.
I'd like to filter inbound Internet traffic to this PIX so that only the designated ASA can attempt to establish an IPSEC connection -- in other words, I want to prevent any other device on the Internet from even being able to attempt to establish an IPSEC connection to the PIX. As far as I know (and have seen), this can't be done with an access-list on the outside interface, since that access-list doesn't apply to traffic to the PIX itself.
I have all the PS3 and Activision ports. What numbers go where in the router's port forwarding screen. My ISP says that the PortStart and Base Host Port should be the same numbers and the PortEnd should be the number at the end of the range (10070-10080 for ps3). I'm going with that for the PS3 TCP numbers, but don't know which numbers to put in for the PS3 UDP or the Activision TCP and UDP.
I use a broadband net connection. DSL Ehernet connection. I need to type a pssword and username to get connected. Anyways, that's not the problem. The problem is after powering on the modemt, the link in my modem starts to blink every 2min. which causes the broken connection. Sometimes I cant even connect to the net because the link doesn't stop to blink.. I'm unable to do anything as the connection keeps going off. There might be a question of down servers, But the others who is using the same plan as mine, not having such trouble.
Is there an association between fiber type, wavelength and distance? I mean are there single-mode fiber cables, which are more suited for 1550nm wavelength and have poor performance when wavelength is for example 1310nm? Are there fiber cables which support only some narrow wavelength range? In addition, how is such behavior called in physics?
After finishing all of my projects here at work, I decided to finally take a look at a sf300-08 that was left by my predecessor. I almost got into it once via browser but the UI crashed. So I downloaded the manual and proceeded to connect to the switch via rs-232. When I get to the log in screen I cant type anything in and when I try hypterterminal crashes.
I am getting the following flooding the logs on my RV220W (IP Address replaced with X.X.X.X)
2011-09-12 00:58:54: [rv220w][IKE] ERROR: Invalid exchange type 243 from X.X.X.X[500]. 2011-09-12 00:58:54: [rv220w][IKE] ERROR: Could not find configuration for
[Code].....
These are all coming from the same IP Address which is running Windows 7 Enterprise X64 using a WIRED connection.
Though ASA5585-X S-20 and UCS C200 are not in LMS 4.0 supported device table, I'm wondering if there is any way to monitor these devices using LMS? Our data centre has a quite number of UCS C200 servers and two ASA5585-X S-20.
I am looking at upgrading our 4503 to the 4507R+E. Just going through the configurations and a couple of commands seemed to have dropped off this release.
1. I can no longer specify encapsulation type on a trunk. Does the 4507 auto sence encapsulation and apply it dynamically? 2. I had dscp trust configuration as below on the 4503, whats the equivilent on the 4507?