We recently got a Cisco DPC3825 DOCSIS 3.0 Gateway from Rogers since we're under their Rogers Extreme package and because the last gateway they gave people under that plan was garbage.
Now, when we got the gateway, I went ahead and forwarded all the ports I would need for my Xbox Live, I also went ahead and manually set up our primary and secondary DNS servers as google's (8.8.8.8 and 8.8.4.4) I did this on our last gateway as well (though only with a primary DNS) because Roger's DNS is very unreliable and google's proved to be much better.
I'm stating this becuase that's all the alterations made to the gateway.The internet, though very fast, is occasionally choppy. Occasionally, it will not slow down, but cut off all together. So let's say I'm buffering a video, all of a sudden the video will simply stop buffering and will only start doing so again if I reload the page or try to move specifically load a part of the video.This also translates to terribly unreliable connections when I'm playing online. The connection will fly from excellent to terribly erratically.
So now I'm wondering how can I deal with this. Do I have to disable the SPI firewall and blocking unknown internet requests? Is it the google DNSs I've set up that somehow don't work with this gateway?
i m looking for asa 5550 product.Part # ASA5550-BUN-K9 - Cisco ASA 5550 Appliance with SW, HA, 8GE+1FE, 3DES/AES
1) does 5550 contains built in CSC / IPS modules.? why i m asking because the "quick refrence guide " indicates that expansion slots are not available.
2) can asa 5550 natively protects natively against networks attacks against virus / worms etc with out CSC OR IPS MODULE.?
I think there is a bug in the DPC3825.I use UPnP media servers and renderers in my home network.For some reason both the client and server have to be on the same side of the wireless / wired bridge.If the client is on the wireless side then the server also has to be on the wireless side.If the client is on the wired side then the server has to be on the wired side.Having a bit of knowledeg of the UPnP protocol I suspect that UDP broadcasts are not traversing the wired / wireless bridge.thus breaking the SSDP protocol that is used by UPnP and DNLA systems.I have no control over the product that my ISP uses and they seem to have no control over what Cisco does with its 'issues'.
I got a new modem today (a Cisco DPC3825) and it seems to be presenting a problem. I used to be able to simply and quickly change my IP address, by changing the MAC address though my Netgear router. Now when I do that, I can see the IP address has changed in the router settings, but when I double check it using ipburger.com, the IP address does NOT actually change, but remains the same.
i m trying to connect two routers a Cisco DPC3825 (r1) and DIR-655 (r2) and at the end getting the error. i have disabled the SPI firewall on r1 and connected an ethernet cable lan to lan between the two. i don't want to confuse with whatever the mess i have done previously,Tell step by step what i should do to connect these two routers.PS: in addition, the gateway ip of r1 is 192.168.0.1 with subnet mask of 255.255.254.0 and the gateway ip of r2 is 192.168.0.2 with subnet mask of 255.255.255.0. r1 has a ip range of 192.168.0.10 to 192.168.0.128 while r2 has range of 192.168.0.100 to 192.168.0.199.
I recently upgraded, through my ISP, my high-speed modem to the DPC3825 model modem/router. But when I try to connect to the DLink switch, the modem freezes, and doesn't recognize it. My previous setup was modem, to my DLink router (DIR 615), to my switch. With my new setup, I just bypassed the DLink router, because my new modem includes router capability.Is there some compatibility issue between the new modem and the DLink switch?
I have a DPC3825 from Shaw Cable in Canada. I'd like to use my Airport Extreme as a repeater using WDS. I've clicked the checkbox for "Allow wireless signal to be repeated by a repeater" and entered my Airport's MAC Address, but my Airport Base station doesn't see it as a WDS Peer.
Just got a Cisco DPC3825 from my ISP. I need to connect my other desktops to the wireless router all over the house and have two questions.
1. What is the best wireless adapter to use so my other desktops will be able to access the router?
2. What is the distance of signal before I need a signal booster and if I do need to boos the signal, what is the best device to do that? (we stream video, music, light gaming and general internet applications).
I am trying to figure out whyt my DPC3825 does not maintain a FTP session I did not really want to post this message rather I am trying to figure out how to search this board.
NIB DPC3825 cable modem. Called my provider and got it provisioned and its working (I'm on an ethernet connection posting this). But when I http to 192.168.0.1, I get a screen that doesn't quite look like the one in the manual. I enter the "admin" and "W2402" and click login, and the screen refreshes but nothing happens (no configuration options, only able to check status of downstream and upstream channels). Pushing the factory reset button for ten seconds to load defaults makes the lights blink and then reboots; same result as above. Pushing the wireless config button has no effect at all.
I got a problem with my router CISCO (DPC3825) where the eithernet is working properly and the wireless is not, and I had to plug the usb to make the setups, and suddenly the wireless was working but when I tried to reset the password something worng happened change the set of the wireles
I will be implementing a new firewall (cisco asa 5515x) on my existing 3750x (server switches) and my 2960s (user switches). What should I need to apply on my firewall and swtiches to make the implementation successfull. I will put my 3750x as my DMZ and my 2960s as my inside. The 3750x have multiple subnet and also the 2960s.which features and technologies i need to know on those 3 products. my 3750x and 2960s don't have any ACL defined and most common features are vlan, switchport, trunking, spanning-tree, stacking, vtp.how my asa knows that my 3750x/2960s have multiple vlans. my current connection right now on 3750x and 2960s is just through 6 ports i assigned as one trunk, below is my config [code]
my 2960s vlans are almost the same with my 3750x except vlan 160, 170, 192. but of course when i put this in asa, i have to segragate vlan for 3750x (192, 100, 110,160, 170) and 2960s (130, 150). for my 2960s connection to the asa and since this will have big bandwidth, i will use 3 ports on my asa (and trunk it) connecting to my 2960s and i will use 2 ports on my asa (and trunk it) connecting to my 3750x. the one internet ports and my one management ports on my asa will stay like that.
I am able to ping from Switch to firewall inside ip and user desktop ip but unable to ping from user desktop to FW Inside ip.. config is below for both switch and FW Cisco ASA5510....
TechCore-SW#ping 172.22.15.10 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.22.15.10, timeout is 2 seconds:
We had a problem with SMTP inspection dropping some regular emails (Cisco 2901 IOS 15.0).Incoming mails are going thru Spam and Virus Blocker so that bypassing SMTP inspection is not security issue in this case.
I have a question with regard to setting up the ID firewall on the ASA 5585 in a single forest, multiple domain windows network.Currently I have a semi-operational IDF at the top level but can't find users on the lower other domains, here is the setup:I have 3 domains.
[URL]
Both domains have a two way parent-child trust and I can look for users in AD Users/Computer on both domains. I initially setup the ASA to look at domain1.test.com using an LDAP aaa-server per the IDF instructions, and then proceeded to configure the ad-agent. I installed the adagent on the domain1.test.com domain controller configured the settings on that system and had no problem adding users to the firewall and getting functionality within domain1. I looked to see if I could see domain 2 and domain 3 users and found none. I went ahead and added the domain2 system to the adagent on the DC and the system says that it is up, but when I search for users is not pulling them from domain2. Instead, it shows domain1 users as domain2user1. I also configured another adserver in the ASA to search ldap on domain 2 to no avail.The cisco documentation states the following:•Before you configure even a single domain controller machine using the adacfg dc create command, ensure that the AD Agent machine is first joined to a domain (for example, domain J) that has a trust relationship with each and every domain (for example, domain D[i]) that it will monitor for user authentications (through the domain controller machines that you will be configuring on the AD Agent machine). Single Forest, Multiple Domains—All the domains in a single forest already have an inherent two-way trust relationship with each other. Thus, the AD Agent must first be joined to one of the domains, J, in this forest, with this domain J not necessarily being identical to any of the domains D[i] corresponding to the domain controller machines. Because of the inherent trust relationship between domain J and each of the domains D[i], there is no need to explicitly configure any trust relationships.Reading that it sounds like it should just work. I had everything properly configured before I installed the adagent, but I'm guessing that there is a chance that you can't have the adagent on the top level DC and get to communicate with the lower level domains.
I've been trying to configured Websense urlfiltering using ZFW feature on my Cisco 881G router. The router is running on IOS 15.0(1)M with Advanced IP Services. And I have confirmed it supports urlfilter feature.
This is what I tried to accomplish but IOS version 15.0x seems to have different command set. ----------------------- class-map type inspect httptraffic match protocol http parameter-map type urlfilter param server vendor websense 10.20.30.40 [Code]...
I would like to know what ip addresses I should see in this table. Shouldn't my default gateway IP have the same mac address as my computer or router? There are 2 different ip address/mac addresses from different a ISP than mine. I have a cisco DPC3825..I suspect a someone is spoofing my DNS.
I was asked to enable netflow in an ASA Firewall for Orion/Solarwinds server monitoration. Firewall is a 5550, with 4G RAM, and no extra modules but SSM-4GE. This firewall has 5 DMZ segments and ans specific segment for internet traffic.There are segments as unique subinterfaces in physical interfaces. Other segments as individual subinterfaces in the same physical interface (but individual VLANs)Usually firewall CPU flows between 30% to 40%. Rarely to 50%.
1 - How dangerous or risky could be implement netflow in this firewall?...This firewall is very critical for the customer. My concern is regrading CPU, traffic generated, memory, etc
2 - In a month, firewall will be migrated from 8.2 software version to 8.4 software version. Is there any incompatibility in some commands?...Would be recommended to perform netflow configuration after software upgrade?
3 - How could it be implemented for Orion monitoring, regarding each individual sub-interface (and so, each VLAN assigned)?I there any recommendation regarding configuration, best practices?
I have some problem with the ASA 5510 ver 7.0(6). My manager wants to keep this as backup. tried lots of things but still users not able to access internet nor can i ping anywhere.For example when i ping 4.2.2.2 i dont get any reply.The runing config is below for ur ref :
I need to create a firewalled segment that not only separates hosts from general population, but also from each other. The solitary confinement of firewalled segments.I know that I could create a bunch of sub-interfaces, one for each host or group that needs to be isolated, but I'd really rather not have to do that if possible. 1) It could become a management nightmare between ACLs and sub-interfaces and 2) it's a waste of IP addresses.s there any way that I can create a bunch of separate VLANs behind the firewall and have them all terminate at the firewall, using a single firewall IP address for the gateway?
Can any ASA 5500 in particular the ASA5510 firewall support jumbo frames (i.e. greater than the default standard 1500 Bytes frames)?. I plan to use the ASAs to setup a point-to-point IPSec tunnel and need an Application frame of 4Kbytes intact and not segment it.I have done little checking on the Cisco Website and see it mention of Jumbo frames on the 5580 on 10Gig interface but didn't see mention 5510. 5580s are way over-kill and expensive for what I need is to run a mission critical one IPSec point-to-point with maximum of no more than 100Kbps so 5510 is perfect for me but not sure if it can carry the jumbo frame?
On the routers and switches it's the MTU settings and they are configurable per interface and I am OK and the circuit is T1 which the Telcos said it's OK since it's physical layer so the only unkown is the firewall.
All three of these options associate the same set of vlans to the FWSM but using different groupings. As far as I can tell, these groupings have no functional significance either on the switch side or the FWSM side. These are simply three different ways of specifying exactly the same thing? Am I correct?
I have a ASA 5510 firewall with CSC module and Security Plus license for CSC module.Will you tell me how to configure my firewall to send emails to particular mail ID when someone login into the firewall or any virus attacks from outside.
I have a normal setup of ASA5505 (without security license) connected behind an internet router. From the ASA5505 console I can ping the Internet. However, users behind the Firewall on the internal LAN, cannot ping the Internet even though NATing is configured. The users can ping the Inside interface of the Firewall so there is no internal reachability problem. In addition, I noticed that the NAT inside access list is not having any hit counts at all when users are trying to reach the internet.
When i replace the ASA5505 with a router with NAT overload configuration on it, the setup works normally and users are able to browse the internet.
The ASA5505 configuration is shown below.
hostname Firewall
interface Ethernet0/0 description Connected To Internet Router switchport access vlan 10
