Cisco Infrastructure :: 1921 / Implement Dynamic QoS Between Two Sites Across Low Speed WAN Link (512k)?
Jan 15, 2013
I have a trouble to implement dynamic QoS between two sites (Site A, and site B) across low speed WAN link (512k). On each site I have Cisco 1921 router. Most important app is Oracle. Because of slow speed WAN links, I want to avoid exact bandwith reservation for Oracle. I only reserve 5% bandwith for network control(icmp, ssh, telnet...) and want configure next Qos scenario:
1. If Oracle traffic exist on a network, it must have 70% of link speed guaranteed, all other apps (e.g mail, file share, ftp) use rest of the bandwith.
2. If there isn't Oracle traffic on a network, all other apps can use all available bandwith.
Issue descrtption:I used all Cisco guides, but when I implemented this on production it simply didn't work. There is no any significant improvement after implementing this (when I start network file sharing accross wan link, Oracle becomes etremly slow.).Here is configuration wich I trying to implement:
ACL-s and class-maps used to mark traffic:
access-list 119 remark ###QoS-MGMT###
access-list 119 permit tcp any any eq 22
access-list 119 permit tcp any any eq telnet
access-list 119 permit icmp any any
access-list 120 remark ###QoS-DB_ORA###
[code].....
View 5 Replies
ADVERTISEMENT
Sep 13, 2011
I need to implement the backup between two sites I have router 2800 which is having a point to point connectivity with the far end.At the far end there is no router ,only one firewall is there on that firewall one access-list is there to allow the traffic .To implement the back up link i have created a site to site vpn .But the problem is as soon as the tunnel is establised .For the time being i have removed by site to site config from both firewall.
View 7 Replies
View Related
May 24, 2006
I am trying to implement IP SLA. Can I implement it on layer2 switches?
View 5 Replies
View Related
Jan 11, 2012
I am wondering if having a Nexus 7K is mandatory to implement SGACLs within a TrustSec Infrastructure deployment or having a Nexus 5500 could be enough?
View 1 Replies
View Related
Feb 29, 2012
How can I implement this with Zone-based Firewall on my 1921?
I'm looking for something as simple as the port triggering function on a Linksys or Netgear router.
View 4 Replies
View Related
Jan 31, 2012
We are having problems configuring NAT on our Cisco 1921 Router. Below is the running config. The problem we're having is for example our FTP server 192.168.1.16, cannot be accessed from its outside IP address, which is NATed on the router. The server is verified to be up and running and when we do a show debug ip nat, we see the router is translating outside users attempting to access the ftp server to it's correct internal IP address.
View 3 Replies
View Related
Feb 6, 2013
I've been trying to set up my new Cisco 1921 Router to provide internet access to my local network but with no success. I've been reading guides and looking at videos and I have to be missing something becaouse I can't access internet (ping/tracert) from my local network.
The DHCP server works fine and the clients on my local network gets ip-adresses from the router but can't ping or tracert outside the local network.
[code]....
View 2 Replies
View Related
Aug 9, 2011
How many AP in h-reap mode recommend with WAN link 512k ?,i have read in document it show h-reap mode must requirement minimum link is 128k for connect to wlc but i don't know this requirement for 1 ap or all ap to connect across WAN to register and send traffic across WAN. Because now i have 2 site HQ -> Branch (link 512k) it can use for this solution.
View 4 Replies
View Related
Apr 17, 2011
I am using a USB modem to go online when i'm not in a wifi zone.. The internet speed is very slow (512 kbps) so I configured my browsers to connect via proxy to boost the speed which is now (2 Mbps)..Everythings working fine except that I cannot connect to SSL sites, e.g Gmail, Facebook, Ebay.
View 8 Replies
View Related
May 15, 2011
I try to change modem speed from 1200 to 19200 on aux 0 interface.But I can't save the settings using "write memory" In show running-config, I can see modem speed successfully changed.
Cisco3825's OS information is here. c3825-spservicesk9-mz.124-25b.bin
View 3 Replies
View Related
Jan 2, 2012
I need to implement the shaping VLAN only on the trunk link between the 6500 and 3560. [code]
View 8 Replies
View Related
Dec 14, 2011
Can we use all four E1 (i.e. 8Mbps) connections for IMA on IMA-4E1 card in a CS2811 router. What is the maximum speed supported for IMA service provided?
View 3 Replies
View Related
Jul 19, 2012
I have a 100mbps internet connection from my ISP but once the connection hits the ASA the download speed gets reduced to 15mbps. My network is setup as follows: ISP Modem ---- Edge Switch ----- ASA --- Internal Cisco Switches
If I plug my computer into an extra port on the Edge Switch I get speeds around 92mbps with normal traffic still going to the ASA. But when I plug into the ASA and internal switches I have speeds of 15mbps.
I have made sure that duplex/speed match on the links. I have done packet captures and within two minutes I do have several dup acks and retransmissions. The retransmissions don't seem to match the dup acks. (The retransmission is not for the dup ack requested so the dup ack keeps being resent)
The only interface error is on the inside interface which includes 700 overruns in a weeks worth of time.I am not using an IPS/IDS. I do have several vpns on it but was not going through a vpn tunnel. I am also using NAT.I am using an ASA 5510 8.2(1)
View 4 Replies
View Related
Mar 17, 2011
I live in the tampa bay area, I have bright house (BHN) as my service provider, which provides a Road Runner Lightning (40/5) package. I previously used BHN's top tier (20/2) back in July (and prior) with no problems.
After converting to Lightning in August of this year (2010). Of course, BHN (and every other provider) wants to force a modem/router down your throat, so I had them bridge it (in short, turn it into a dummy modem with no routing). I had an SMC branded modem gateway at the time. I work from home 2 days a week (so I can spend more time with my kids during morning, lunch, right after work) and this requires me to use QoS to ensure my VOIP work calls don't get dropped, if the family is watching youtube videos or watching netflex.
My network was as follows SMC Modem >WAN IP>>WAN Port>>D-link DIR-655>>Switch Ports>PC1, PC2, PC3
Everything seemed fine (from a usability stand point) till about 2 weeks ago when my upload speed seemed to grind to halt. Normally I was able to upload about 200-300K per second, and I noticed this dropped to about 45K per second during a drop box upload. First thing I did was power cycle both my modem and router (in the proper/usual order). After they both come up, I start using speed test to find out what my upload speeds were. I was getting about 39Mbps down, but only .56Mbps up still. I factory reset my router.... test, similar speeds. Power cycle all computers (just in case), and then modem/router. Tested, similar speeds. Updated the firmware to the latest. Same issue
Called BHN customer service, they factor reset it, but it wasn't in bridge mode. If I by passed the 655, in factory mode (non bridge mode) upload speeds returned to better than expected states. If I bridged the cable modem, upload speeds seemed to crash.
Had BHN replace the modem, seemed fixed for a day, then issue came back. Had them come back out and replace it again, this time with a Motorolla Surfboard modem... same issue. Fine during factory reset, however after they bridge the modem, upload speeds were fine. Told BHN I would take it from there.. Connected up the DIR-655, and upload speeds crashed again. (.6Mbps). Called D-Link Support, and the Chinese English speaking rep seemed to not be listening to me and tried to have me adjust my MTU as well as Wireless settings. Long story short... the rep was a level 0 id10t and I hope D-link will consider hiring better employees/contractors. So I was all about to give up and replace it with a DD-WRT capable router (which it takes me a lot to want to swap hardware), when I discovered the wan shaping was on. Which I thought to myself... nah... QoS has never messed up before... why would it be the cause. Turned off wan shapping... and voila. Issue seemed to be insta-resolved.
Unsatisfied with that... I decided to dig a lil deeper. I turned on Wan shaping again, but decided to set the settings manually instead of auto detect.
Here are the settings I used... (Advanced Tab>QoS)
Enable Traffic Shaping - Checked
Automatic Uplink Speed - Unchecked
Manual Uplink Speed - 5000
Connection Type: Cable or Other Broadand Network
Enable QoS Engine - Checked Automatic Classification - unchecked (this checked seemed to affect my upload speed by about 5-10% during testing) Dynamic Fragmentation - unchecked (this checked seemed to be the worse enemy for upload speed)
While I know I'm not any network guru (still have to use a subnet calculator for subnetting), I think I did a pretty good job drilling down the issue (once I got passed my service provider replacing modems).
Anyways, I've had overall good luck with D-Link products, even have a 5 port 10/100 switch (all metal) from 1998 that works great. Hopefully, D-Link will just either put more documentation on the web, or hire better employees.
View 3 Replies
View Related
Oct 5, 2012
We want to puchase new Cisco ISR 1921/K9 . i want to know does it support the following sample IP-SLA commands
ip sla 2icmp-echo 172.16.1.2timeout 500frequency 1ip sla schedule 2 life forever start-time now
track 10 rtr 1 reachability
delay down 1 up 1
!
track 20 rtr 2 reachability
delay down 1 up 1
ip route 0.0.0.0 0.0.0.0 192.168.1.2 track 10ip route 0.0.0.0 0.0.0.0 172.16.1.2 track 20
Im asking above question because we will need to enable ip-sla on the mentioned router. as i read on the cisco webside, it says Cisco-ISR-1921/K9-IP Base support only IP-SLA RESPONDER feature nothing else. If Cisco-921/K9 does not support the above commands , should i go for ordering Cisco-1921-SEC/K9 ?
View 4 Replies
View Related
Mar 13, 2012
I followed the instructions in the manual for checking and changing the MTU on the router. It didn't have any effect. When I take the router out of the system and go directly to the modem, I can get the sites.
View 7 Replies
View Related
Nov 18, 2011
I have two sites linked by fibre a few miles apart, site A is on a 10.0.0.0 range, site B is on a 192.0.0.0 range, at site b there is a firewall with 2 cards, Site A also has a firewall, it external is poiting to the internet at site B, so basically site A get it internet from site Bs internet. Now they have decided that site A needs to be able to have access to one sql server at site B, how can this be achieved without allowing all traffic across the link, as, for example, both sites have their own DHCP for and cannot have site A giving out IPs to site B, so its a bitmore complicated than just linking the two can it be as simple as a masquerading rule at site B, with a second card in the sql server or 3 VLANs at site B (one for site b one for site a and one for the external internet, with site As traffic tagged), idk i cant get my head around it.
View 7 Replies
View Related
Aug 8, 2011
I have just started using D-Link 655 router and ATT DSL connection at home. There is an internet signal. Skype is working. But I can't open any sites. Ie tried typing hotmail, Google, anything - sites do not open. Ive tried to plug in the Ethernet cable directly into my laptop and I get the same result sites don open.
View 7 Replies
View Related
Dec 3, 2012
I have dir655 Hardware Ver B1 Firmware Version: 2.10NA.Comcast Motorola cable modem surfboard SB5101. The problem started happening a couple of days ago. When my computer is hooked up to the cable model directly, i am able to connect to outlook.com just fine but when i go through my router, it can't connect to the site. I played with MTU (lower it by 10) all the way to 1300 but it didn't work.The problem started happening all the sudden without any changes in the cable modem, router or my computer.
I also tried cloning MAC address from my pc but didn't work.I also tried turn off both modem and router, wait 2 minutes, start modem, wait for all lights to come up and start the router.Sites i can't connect are: outlook.com, starcraft2, Comcast, eBay, Facebook.One thing that i noticed weird is that i am able to connect to cnn.com using IE9 just fine but ping shows: [code]
View 8 Replies
View Related
Jul 8, 2012
MY ISP installed one router in my lab.for internet connectivity they mail me steps :connect your Laptop directly to gi0/3 port to check internet connectivity with public ip 1.1.1.x and Gateway 1.1.1.1 with subnet mask 255.255.255.240 after connection I surprised because I am able to access only google sites like gmail,google search etc. but I am able to ping/traceroute all sites.from browser I am able to access only google sites only.In Router no firewall no such access list.
View 2 Replies
View Related
Oct 2, 2010
I have the dir-601 as my main router. Its IP settings are dynamic, not static. My second router, the router I'd like to use as the access point is a Belkin Wireless G Mimo. My goal is to setup the Belkin as an access point downstairs away from the main router. I'd like to do this wirelessly. I'd like to phsycialy plug devices into the Belkin, while the Belkin receives access to the internet wirelessly from my main router, the dir-601.
Here's my issue. There's an easy option to use the Belkin as an access point. So I do this and set the Belkin router to an IP outside the DCHP range ( currently 192.168.0.100 - 192.168.0.199 ) to 192.168.0.250. My dir-601 will only recognize the Belkin access point while plugged in physically. I know this because when I did a ping test it only see's the Belkin when plugged into the dir-601 via ethernet cables. My ultimate goal is to simply set the dlink dir-601 to recognize the Belkin as an access point.
View 7 Replies
View Related
Apr 2, 2011
I'm using D-link 2520u Dsl modem,...my router does not ping some sites,?
View 10 Replies
View Related
Jan 13, 2012
So I can't seem to access ANY site related to my university (www.concordia.ca) anymore from my home network. I've tried to visit URL or any of its' sister sites from my desktop, my laptop, my iTouch, even my ps3, I've also tried cross-browsing to no avail. I've checked the router page, apparently my Hardware Version is B1 and my Firmware Version is 2.00NA. Access Control is unchecked and there are no sites at all listed under Website Filter. I've also tried resetting using the reset-hole and also by pulling off the power chord. Also did a factory-reset from the router page, the problem persists despite all of that.Every other site works just fine, it's just my university site that refuses to load up. I've browsed the last 7-8 pages of this forum, this doesn't seem to be a common problem based on that little sample. So what gives exactly? I used to be able to visit those sites just fine prior to few days ago.
View 8 Replies
View Related
Oct 23, 2012
I have fiber optic net, going into a TP Link 1043 ND router out in my garage.All of the 4 lan ports go into one of the rooms in the house. I also have two more routers of the same kind, one downstairs and one upstairs.They are configured in a way, that DHCP server is only turned on, on the one in the garage, the other two act as switches.My problem is that 50 % of the time I can't acces facebook, and some other random sites.The interesting bit is that when I chat with someone on FB, I can see what they write, but my message doesn't go through.The way it goes, is that I can browse on facebook for like 5 minutes, after that its unavailable for another 5 minutes.I can still access the site from my smartphone, but only if its not connected to the wifi network, meaning the problem is somewhere within my setup.I've already tried turning the router firewall off, but that doesn't make any difference.
View 1 Replies
View Related
Mar 26, 2012
I need to restrict access or rather, block altogether if i can, access of one of the computers on my local wireless network, to online multi-player gaming sites, in particular Age of Empires and Voobly.com, which also uses a messenger type program for them to chat.I've searched and searched online, but alas, have come up with nothing that i understand. I've tried doing the block ports thing, but am unsure if what i've been doing is right. I have blocked Voobly.com under domain and URL settings via the router admin page, but for some reason, it only seems to be denied on my computer. I even went so far as to register and download relevant programs to my computer, for Voobly, so i could see if the blocking worked. Seems it's only my computer that's blocked, i didn't specify ip or mac addresses.I am unable to get on the other computer as it's not mine, and it's also password locked. I don't know the password
View 1 Replies
View Related
Jan 10, 2013
Region : Portugal
Model : TL-MR3220
Hardware Version : V2
Firmware Version : TL-MR3220_V2_121126_UK
ISP : OPTIMUS (26803)
I buy a Router TL-MR3220 and Forwarding e Dynamic DNS not work. I installed the latest firmware version (TL-MR3220_V2_121126_UK) and does not work well.
View 6 Replies
View Related
Jul 30, 2012
We are having two sites seperated by half a mile and we are using dedicated 100 Meg link at the moment for intranet traffic, and now we got new 1 gig link and I am working to set it up, Service Provider came on site installed two circuits on both sites and fiber connectivity is tested succesfully betweeen sites, now I need to connect the circuits to our network and make the 1 gig link active to make traffic flow between sites and as well bring 100 meg as standby.
So to brief the issue:
Connectivity at the moment SiteA: Switch1(3560)------100Meg--------.SiteB: Switch 2(3560)
I Want to configure SiteA: Switch 3(4507)------1gig (Active)--------.SiteB: Switch 4(3560) SiteA: Switch1(3560)------100Meg(Standby)--------.SiteB: Switch 2(3560)
simple as connecting a fiber or ethernet link from external circuit on both sites to respective switches on their interfaces and configuring hsrp to enable redundancy. A
View 7 Replies
View Related
Nov 26, 2012
Region : Sweden
Model : TL-WR1043ND
Hardware Version : v1
Firmware Version : TL-WR1043ND_V1_120405_
ISP : Tele2 (fiber)
I recently bought your router and I am trying to install it.The problem that I get is that when the router tries to get the dynamic IP from my provider, it gets nothing.I have typed in the DNS servers but no go. Without the router, my uplink works fine. The provider does not lock onto a specific MAC adress.
View 8 Replies
View Related
Jul 27, 2012
I recently noticed my 'Number of Dynamic DHCP Clients' on Network Settings is always empty. Before, it always registered a list since there are several devices that are connected to our wireless network (laptops, mobile phones, desktops).
View 3 Replies
View Related
Mar 31, 2012
'Use Unicasting' is selected by default in the Dynamic IP (DHCP) connection type.I turned it off based upon the router's support text since the router gets an IP address from my cable modem.I don't understand this option at all. I've searched for data on the topic and I can't make sense of it.I think I made the correct selection by un-selecting 'Use Unicasting.'
View 14 Replies
View Related
Apr 30, 2011
i have a adsl modem tp link td 8840, and i had this up and running well for about 3 days. then we decided to get a router cause my little sis got a ipad2.the router is dlink dir 61.so basically i followed all the instructions and the internet was working fine.then for some reason ign site stopped working, i thought that it was down for some reason and didn't think much of it and today when i tryed to go into hotmail or facebook it doesn't work either. so i can get into the log in pages of both, but when i put in the id and password, the screen goes blank and just says waiting for .... on the bottom (using google chrome).and it never loads.i tryed with other internet browsers and it din't work so i took out the router and re wired the adsl modem only and voila. all the sites started working again.i want to use my router but i don't know why i can't acess some sites when i have it connected.
View 1 Replies
View Related
Mar 29, 2013
Region : UnitedKingdom
Model : TD-W8960N
Hardware Version : V4
Firmware Version : 1.4.0 Build 111130 Rel.55990n
ISP : DEMON
I'm using parental controls to block all devices in the house from using tumblr. I cannot do this at a device by device level as it is being used on iphones/androids, laptops and desktops.Unfortunately, the way that tumblr works is that it use many URLs for the different pages people set up so it is not just a case of blocking url... - so I'm struggling to work out if I can do this via URL blocking on the router settings. How to do this at router level.
View 3 Replies
View Related
May 4, 2011
I'm trying to set up a website filter on my DIR-601. I created a policy for 2 MAC addresses, with a schedule from 10AM-6PM, selected "Block some websites", and disabled logging. Under website filter, I added some entries, and selected "DENY computers access to ONLY these sites". When the policy is enabled, and I try to access one of the blocked websites, it gets blocked correctly ("The URL access was denied by administrator.") However, for all other websites, I get "server unexpectedly dropped the connection" errors, eg "Safari can�t open the page [URL] because the server unexpectedly dropped the connection. This sometimes occurs when the server is busy. Wait for a few minutes, and then try again." or in Chrome "No data received. Unable to load the webpage because the server sent no data." This happens with ALL non-blocked websites. I'm using hardware version A1, firmware version 1.01NA.
View 2 Replies
View Related
