Cisco Firewall :: Upgrade ASA Service Module On Cat 6504?
Mar 20, 2013
I just got 2 Cat6504 Chassis and 2 ASASM pluged in them. show version from submodule ASA as follow:
SVC-APP-HW-3#show ver
Cisco IOS Software, trifecta Software (trifecta-SP-M), Version 15.1(1)SY, RELEASE SOFTWARE (fc2)
[Code].....
I want to upgrade new OS for ASA to 8.5 (asa851-smp-k8.bin) but after copy this soft to the module, I can not "write" command or when I reload this box, everything was no changed. SVC-APP-HW-3#write startup-config file open failed (No such device)
View 2 Replies
ADVERTISEMENT
Jun 3, 2012
I am in the process of configuring load balancing on ACE module but struggling to configure virtual IP address for ACE module. I'm working on ACE30 module and using software version A5 (1.2). ACE module is in slot of Catalyst 6504 switch.
View 5 Replies
View Related
Jun 6, 2013
I'm migrating from a failover pair of FWSM modules across to a failover pair of ASA Service Modules. In order to avoid a "big bang" switchover I intend to migrate subnets from one to the other over a protracted period.With that in mind, whether there is any restriction on having FWSM and ASASM modules in the same chassis? A trawl of the relevant documentation hasn't revealed anything.In this specific case it is Catalyst 6509E VSS chassis pairs with Sup-2T.
View 1 Replies
View Related
Jul 29, 2012
I am using Cisco ASA5510 Firewall in my network. Upgraded the Memory and Flash to 1GB and 512MB.But the 5 interfaces ports are 10mbps.Can it possible to upgrade the module of Interfaceses from 10mb to 1gb?
View 2 Replies
View Related
Aug 24, 2011
I'm looking at upgrading our FWSM modules in our 6500's. They're the WS-SVC-FWM-1 modules.
We're running on version 3.2(12) at the moment and I'm looking to jump up to 4. Any recommendations around whether I should to go to 4.1(6) or 4.0(16)? There aren't any features in particular that I would need in 4.1 but want a good stable base to sit on for 12 months until I look at this exercise all over again.
View 5 Replies
View Related
Mar 11, 2013
I am having issues (nothing new there) I have a bad IOS on a switch module, and the config is set to boot to that IOS, and as such I get a nasty boot loop, I am trying to figure out how to get into rommon but all the documentation I can find for this just says go into rommon and never tells me how to get there on a switch module that thinks it has a good IOS. (The IOS is for our normal service module but this one is an odd-ball switch)
View 4 Replies
View Related
Jan 1, 2013
can I install and Cisco WAAS and Cisco Prime Network Analysis Module (NAM) together on a single Cisco Service-Ready Engine (SRE) 910 module? Or it can only run 1 of the software?
View 2 Replies
View Related
Dec 5, 2011
I have some confusion about some hardware components. I watched the video datasheet of cisco routers and switches. In cisco 2901 and 2911 models of routers there is service module . What is meant by service module. what does it do ? If we buy a new 6500 switch, what are the components we get bydefault. Is there any special configuraton to be done for 6500 . like Sup engine config etc. What is the difference between ASIC and Sup engine ? In which slots, we need to insert Supervisor Engine ? does it vary with the model . (6503, 6505, 6509, 6513 etc).
View 6 Replies
View Related
Jun 3, 2013
Is there any risk to install an HWIC-2FE card into a production 3845 router while it is in a powered up state? Is it recommended to power it down first, then install it?
View 3 Replies
View Related
Apr 12, 2012
Using the new SUP-2T, need to clarify one query. If we are using the new SUP-2T in VSS mode, will the new ASA service module and NAM-3 are supported? From Cisco site, ASA module FAQ:
Q. Will the ASA Services Module support the Cisco Catalyst Virtual Switching System (VSS) at FCS?
A. Yes, depending on which supervisor you use. The ASA Services Module supports VSS either as a single firewall or as a failover pair of firewalls, when used with the Supervisor 720-10G (VS-S720-10G-3C and VS-S720-10G-3CXL). Transparent and multi- context modes also work with the VSS in this configuration. However, though the SUP 720-3B (WS-SUP720-3B and WS-SUP720-3BXL) is supported by the ASA Services Module, it is not capable of supporting the VSS. No reference to Supervisor-2T.
View 2 Replies
View Related
Mar 10, 2013
we are planning to implement a VSS solution with a 6500 series switches with sup 2T. We also need to include an ASA service module on the design, however the budget is not enough to buy two asa service modules. So i want to know if is possible run a VSS cluster, whit only one ASA service Module. and also i would like know what happens if the single ASA service module fails? can the switch cluster continue operating just as if there is not a firewall installed?
View 1 Replies
View Related
Mar 27, 2012
I am currently installing a NM-AIR -WLC 6 wireless module in a 2811 and its giving me the follwing errors below and status.I have checked the trouble shooting pdf and says might be possible hardware error. [code]
View 4 Replies
View Related
Dec 27, 2011
I have an ACE10-6500-K9 (Application Control Engine service module for Catalyst 6500) but I can't access it because I lost the admin password.I would like to know how to perform a Password Recovery Procedure on this device.Is it similar to the password recovery procedure on an ACE 4700 appliance?
View 2 Replies
View Related
Sep 1, 2010
Does ACE service module support SHA2(256) certificates? I see that private key generation defaults to SHA1 and does not provide any option, also the cipher suites in SSL parameters map do not show SHA2 options. Can it handle SHA2 in any software release? I am currently running A2(2.3) build 3.00
View 6 Replies
View Related
Dec 2, 2012
My ACE module ACE30-MOD-K9 crashed today, and at the show ver output i see "last boot reason: Service "cfgmgr" ".the curent version we running is Version A5(1.2) [build 3.0(0)A5(1.2).
After doing some research i found known bug that supposed to be fixed in this version: CSCtu36146
CSCtu36146—The ACE becomes unresponsive due to a configuration manager (Cfgmgr) process failure with the last boot reason: Service "cfgmgr."
View 2 Replies
View Related
Jul 25, 2012
we have approx. 70 Cisco 1941W routers deployed in our company. I used to be able to console into the internet wireless AP by issuing the below command:
service-module wlan-ap0 session
However lately this hasn't been working and AP just simply refuses connection. Here is what I have for Status. I have tried reseting the Service Module to no avail.
Router#service-module wlan-ap0 status
Service Module is Cisco wlan-ap0
Service Module supports session via TTY line 67
Service Module is failed
Service Module reset on error is disabled
Service Module heartbeat-reset is enabled
Service Module is in fail open
Service Module status is not available
View 3 Replies
View Related
May 16, 2011
When I create a service object or group and add the object to a new rule it never works.I mean the traffic match not the rule. I see not hits.I placed the rule on top of my access list to check if I do somethink wrong but it is not working. When I place only a service for example tcp/23 it is working.
my ip service object
object-group service g-as400 description access client 2 as400 machine service-object tcp-udp destination eq 397 service-object tcp destination eq 137 service-object tcp destination eq 2001 service-object tcp destination eq 3000 service-object tcp destination eq 445 service-object tcp destination range 446 447 service-object tcp destination eq 449 service-object tcp destination eq 5010 service-object tcp destination eq 5544 service-object tcp destination eq 5555 service-object tcp destination range 8470 8476 service-object tcp destination eq 8480 service-object tcp destination eq
[code]...
View 8 Replies
View Related
Jun 17, 2012
Any example of how to configure an sm-es2-16-p service module to route over an Cisco 2911?
View 2 Replies
View Related
Jun 8, 2011
I m planning to implement VSS in core but want some inputs on IOS as i have FWSM as a service module Core :- Ii am running 12.2(33)SXH2a on my Core 6509 and i checkd cisco sites and Fwsm release notes but it states only I-Train of IOS while mine is H-Train so can I directly upgrade to I-Train or I was thinking of SXH8b IOS.
View 2 Replies
View Related
Dec 12, 2011
I have a 2911 ISR and want to install a SM-ES2-24 Enhanced EtherSwitch Service Module.
Do I need to power down the router?
View 4 Replies
View Related
Jun 9, 2012
On 2921, how do you quite service-module session and get back to the router?
View 3 Replies
View Related
Oct 18, 2012
[code]....
I can access the ACNS with this config. The issue is that it will not cache anything when I enable WCCP on both ends. I am unable to set the gateway to the IP (even when static) to the WAN interface IP with the error Network Unreachable by content engine. If I address it within the 192.168.2.X network and gateway to 2.1, it locks up when cache is enabled. 192.168.0.5 (the external wan int) is unreachable as a gateway.
I've tried the unnumbered ip on the internal interface but then the service module won't accept an IP stating that the router side must have an IP set.
I had WCCP attempting to cache but timing out on everything without caching a thing. I want/need to understand the IP routing before I get ahead of myself.
View 1 Replies
View Related
Aug 19, 2011
I have a question about upgrade NAC Module, I follow standalone procedure to do the upgrade but I wonder about the upgrade file should I use because on the Cisco site I didn't find the upgrade file from 4.8.0 to 4.8.2.
what I found is nme-nac-upgrade-4.8_2-from-4.6.x.tar.gz ??!!!
So my question If I use the NAC upgrade file I was used for upgrade the CAM & CAS applaiances
View 2 Replies
View Related
Jun 28, 2011
I have a ACE20 module with a performance of 4 Gbps. I want to upgrade the performance from 4 Gbps to 8 Gbps. Is correct the following SKU for the upgrade?
ACE30-UPG-08-K9=ACE10 or ACE20 to ACE30 Upgrade for 8 Gbps Throughput
And if i want to upgrade the performance to 16Gbps is correct the sku?
ACE30-UPG-16-K9=ACE10 or ACE20 to ACE30 Upgrade for 16 Gbps Throughput
I noticed that the price list of both codes is the same....
Is it right for the SKUs listed I get the new module with the performance ACE30 requested?
View 2 Replies
View Related
Jan 4, 2012
I have a client whom has a 4900M switch as their SAN switch. They are getting ready to upgrade their SAN to use 10G.I had quoted them a price for an X2 module, but I am unclear based on pictures I have seen of the part number
X2-10GB-SR
whether or not the X2 module plugs into the X2 slot on the switch, AND then also has to have a transceiver put in it to receive the SC ends of the Fiber jumper, or whether the SC ends of the fiber jumper plug into the X2 module directly.
View 5 Replies
View Related
Oct 4, 2011
I'm trying to upgrade an asr1001 (r1) from asr1001-universal.03.02.00.S.151-1.S.bin to asr1001-universalk9.03.02.00.S.151-1.S.bin. i've put in the boot system flash asr1001-universalk9.03.02.00.S.151-1.S.bin command and reloaded but the box keeps loading first image the configuration register is 0x2102. i've tried the license module command to enable adv enterprise but it made no difference so i removed it again. my license is now;
License Package Information for Module:'asr1001'
Module name Image level Priority Configured Valid license
asr1001 adv enterprise 1 NO adv enterprise adv ip services 2 NO adv ip services ip base 3 NO ip base
View 2 Replies
View Related
Feb 15, 2013
while upgrade NME-NAM module IOS on 2821, as a result of sudden disorder in power system nam helper image crashed and it seems
i have to fix this !
(as you may know without helper image you cant load IOS image of NAM so it doesn't work !!) on the other hand in Cisco documents it's mentioned besides upgrading NAM IOS we can upgrade helper image too. but i couldn't found in Cisco downloads the appropriate link to download either older version or latest version of , Nam helper image. (even with CCO Account)
in addition i have a brand new NAM Module that contains NAM Helper Image but I couldnt find a way to tranfer this image via ftp to ftp server
View 1 Replies
View Related
Dec 24, 2011
i wanted to know if there is any way to use poe from 6504 switch which is capable of burn a NIC?if there is a Way ' can you tell me how i can do it ??
View 10 Replies
View Related
Jan 18, 2013
I have just been setting up a WISM2 in a test lab and for some reason the Supervisor is not creating a port channel on my 6500 as suggested in the WISM2 Deployment Guide. WISM2 is installed in an appropriate slot (according to same doco) and have attempted reset to factory defaults, removing and power cycling several times.
View 1 Replies
View Related
Dec 14, 2012
We have implemented VSS on Cisco 6504-E switches using the 10GE links on the Sup-720-10GE. Two Cisco WLC 5508 controllers are planned to be connected in a LAG configuration, (consisting of eight links per LAG bundle) to each of the 6504-E chassis( Total of four WLC, two for the primary location and two for secondary location). WLC HA feature may be implemented on the primary and secondary WLC controllers using the 7.3 latest code release.
In this scenario, i would like to seek clarification on some of the design /configuration requirements on the 6504E switches:
1. VLAN 100 - 200 is configured for the Active Primary 6504-E switch and VLAN 200-300 for the Standby 6504-E switch. The IP scopes for the VLAN are defined in the 172.16.x.x range on the Primary and 172.17.x.x on the secondary. As there no cross links(Multichassis LAG) from the WLC controllers to the 6504-E switches, is it better off implementing a single common VLAN range on a single subnet block for the VSS, which in the event of say Primary switch failure, the Wireless APs do not have to re-associate with a different IP range on the secondary? What is the best design practise in this case?
2. What is the best practise for implementing a single management loopback address for the VSS domain- is this implemented using a port channel (Layer 3 MEC) as below? and is the loopback IP address on a totally different IP range reference to point 1 above?
Can the VLAN IP ranges on the 6504-E VSS be assigned in two different subnets say 172.16/12(100-200) and 17.17/12(300-400) and the common loopback (lo0) in 172.18.x.x/32 or is it better to have one common 172.16/12 subnet spanning the entire VLAN range (100-400). Cisco documentation describes creating port channels from the line card card physical ports as opposed to just creating lo0 and advertising this into the IGP.
int g1/x/1
desc VSS Management
channel-group mode 101 active
int gi2/x/1
channel-group mode 101 active
int po101
desc VSS Management
ip ad 172.18.x.x/32
View 2 Replies
View Related
Dec 14, 2012
We have implemented VSS on Cisco 6504-E switches using the 10GE links on the Sup-720-10GE. Two Cisco WLC 5508 controllers are planned to be connected in a LAG configuration, (consisting of eight links per LAG bundle) to each of the 6504-E chassis( Total of four WLC, two for primary and two for secondary). WLC HA feature may be implemented on the primary and secondary WLC controllers using the 7.3 latest code release.
View 9 Replies
View Related
Apr 14, 2007
We recently wanted to swap our existing WS-SUP720-base with a WS-SUP720-3B in a 6513 chassis.Had the existing configuration config saved in a txt file and replaced the supervisor. Booting went fine and we pasted in the original config. There was one failure message about unnsupported command but didnt take further notice."boot system flash sup-bootflash:" was probaly the line that the 720-3B didnt support.After wr mem and reload it went in continious loop and rebooting due to inncorrect boot device. Had to put back the old supervisor and have now the 720-3B in a 6504 chassis. Tried some commands in rommon, but are not getting any further.
View 8 Replies
View Related
Nov 1, 2011
On our 6504 - 12.2(33)SXH, we currently have a single connection to our ISP (GI1/1) and want to add another connection (GI1/2) Is there a way to bond the two connections to form a single connection (a single pipe) to double the throughput?
View 3 Replies
View Related
