Cisco :: LMS 4.2 Not Releasing SSH Connections Of Devices?
Apr 19, 2012
We have LMS opens SSH sessions to Nexus 5000 devices as part of some jobs.These SSH connections are not being released by LMS as soon as jobs are completed, which leads the N5K devices to hang without any way of managing them remotely.We see these connections as idle on the nexus devices (which also should kill these sessions, but this is not the issue).
We have found a known bug:
CSCty90928
LMS Pari jobs are not releasing SSH,telnet connections of the devices
Symptom:
Telnet/SSH connections are not released by LMS
Conditions:
Pari collections jobs are not releasing the connections after the Job completed
Workaround:
None
This bug is categorized as "2 – severe" and is in "Open (Postponed)" status.I have a few questions:
1.) What is the ETA to fix this bug?
2.) Are there any other known bugs matching what we see (documented public bugs, with bug ID's, internal bugs or even undocumented bugs).
3.) Is there any released or unreleased (even yet to be tested by TAC) patch we can use that should fix the issue?
4.) Is there any way to adjust LMS idle timeout of SSH/Telnet sessions (I couldn't find it in the GUI, but maybe there is a way to change this parameter using a perl script or modifying one of LMS properties files)?
View 1 Replies
ADVERTISEMENT
Oct 10, 2011
We have a Cisco 4400 controller and a mix of 1010 and 1131 access points.
We have been running out of IP's on our DHCP server because the apple devices are not releasing there IP's.
View 1 Replies
View Related
Feb 19, 2012
so heres the problem
An error occurred while releasing interface Loopback Pseudo-Interface 1 : The system cannot find the file specified.
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Autoconfiguration IPv4 Address. . : 169.254.196.232
Subnet Mask . . . . . . . . . . . : 255.255.0.0[code]....
this is a fresh install of win 7
no conection to router or modem, wireless has no problem and the xp box aslo haas no problems
View 2 Replies
View Related
Feb 5, 2012
My Dlink router has been working fine until recently. The only changes I made was to try to put time limits on my kids' devices, through Tools->Schedules and Advanced-> access control. Things worked Ok, but I soon realized I had to reserve each kids' device DHCP number, or so I thought(?) Anyhow, now I seem to have to log into my dlink router weekly as their wireless connection stops each week. Not sure if it affects the non-reserved wireless devices. Not sure what's happening or what I did wrong. Running the following: DIR615 hardware Version B2 Firmware 2.25 Under DHCP Server settings: Enable DHCP server - checked Addrss range 192.168.0.100 to 192.169.0.199 Note - reserved ips in that range Lease time 1440 minutes Always broadcast - checked rest blank NetBIOS type Mixed mode.
View 1 Replies
View Related
May 1, 2013
Have a WLC 5508 running 7.0.230 with internal DHCP server. Timeout is 3600 seconds. The IP addresses never seem to be released. The controller will show 70 clients but 254 addresses will be assigned.
View 2 Replies
View Related
Aug 17, 2012
Router is setup as DHCP and only allows 7 IP address leases that expire daily. Lease time is set to 0. I have the latest firmware. Until recently when our family started using Apple iPhones (2 of them), I didn't have this issue.
Now I'm having a problem where my clients table will show leased IP's with no devices attached to them. I have to clear those no-name addresses so that the iPhones and other non-Apple wireless devices in the house can re-establish a connection.
How can I get those IP's to be removed without having to constantly log into the router and clear them?
View 9 Replies
View Related
Feb 24, 2011
OS: Windows Vista Home Premium?Trying unsuccessfully so far to reconnect a client machine to a wireless network that it has been on for a year or so.ISP was down for about 2 hours the other day and when it came back up, the client machine started getting the IP address conflict. Went in to release and renew and got the following error messages:
on release: An error occurred while releasing interface Wireless Network Connection: An address has not yet been associated with the network endpoint.
on renew: The DHCP client has obtained an IP address that is use on the network. The local interface will be disabled until the DHCP client can obtain a new address.
The next thing I tried was to go in an give a manual IP address to the Wireless Adapter. But the TCP/IP properties are greyed out and I receive the following error message:Some of the controls on this property sheet are already open. To use these controls, close all these property sheets and then reopen this one.
View 1 Replies
View Related
Jun 1, 2012
Currently my home network is being switched via TrendNet TEGs80G unmanaged gig switches. I have been using them for about a year now with no issues. As my home network becomes more advanced, I recently just added a Cisco ASA5505, I am thinking about swapping those unmanaged devices, 4 of them, to managed. I was looking at the Cisco SG300-10 for upstairs, and a 16 port variant for my main core. These devices do not support full Cisco IOS cli, but they are manageable with a rich feature set nonetheless. My question is, should I swap the unmanaged devices with the more expensive Cisco devices, or just keep what works and save the money until I really need to spend it. As previously stated, my home LAN works just fine as it is, however my WiFi, NTV550s, server and workstations are all on the same network. Probably not the most secure but it is what it is without VLAN support.
View 11 Replies
View Related
Aug 15, 2011
I have installed my new E4200 and it works beautifully. I have several wirelss adapters and a few wired connections through powerline adapters. I also have a second VPN router attached to the 4200.I can see the wireless connected devices with the associated IP addresses. If I plug a laptop directly into the Cisco, I can of course see it.However, I can see none of the devices attatched to the powerline devices? I have a securty cam connected via the powerline and want to know the IP address. I checked with cisco technical support via chat and they said it is impossible. I have used 2 previous routers with the same configuration and can see all devices.
View 1 Replies
View Related
Oct 11, 2012
All of a sudden my laptop, android phone and blu ray player (all wireless devices) can't communicate with my wired devices (marantz receiver and samsung tv). Everything still connects to the internet independently but i can't for instance play music from my wireless laptop to my wired marantz receiver. I had no trouble with this last week and didn't change anything (that I'm aware of) I did get Verizon to switch out my router but it didn't solve anything. My wife's computer also cannot connect to wired devices. Lastly, if I connect my laptop with via ethernet cable it sees wired devices fine. I tried shutting off windows firewall but didn't work. I have no other firewall/virus software installed. I can ping to all devices (wired and wireless) from my laptop.
View 1 Replies
View Related
Sep 18, 2011
1 isp connection which splits into two. One plugs into 5510 with ouside ip and the other plugs into the other 5510 with outside ip address.
see diagram below:
Router routes are set as:
ip route 0.0.0.0 0.0.0.0 10.x.x.1
##
ip route 10.x.x.0 255.255.255.0 10.x.x.2
We will be introducing another isp into our network. We want to remove our current isp and switch. But we dont want to do the cut overnight. We will migrate into our new isp. so for a while we will have both isp connections.
What i am thinking of doing is taking one of the ports on 10.x.x.1 and configuring it for our replacement isp network and the same for 10.x.x.2. Will that work?
Can i have ASA 5510 configured for 2 seperate ISP connections? What kind of route will i set on my router?
View 1 Replies
View Related
Aug 7, 2011
best way to monitor delay, latency and jitter between sites connected by VPN? I have CiscoWorks LMS 4.0 but that doesn not seem to be able to do the job (or I just don't know how to to it in LMS) Even a 3rd party application will do. I would prefer not to have to place hardware at each location though.
View 2 Replies
View Related
Jul 14, 2011
I have installed LMS. Then I have configured Default Credentional Set. Then start discovery with cdp and arp modules. LMS found my devices, 2 of them are reachable but other unreacheble. All snmp settings on the devices are the same. I test from LMS connectivity, it works great. Then checked snmp from pc (C:Program Files (x86)CSCOpxobjectsjt�in) all tools snmpset and snmp walk works corretly and can get data. How make LMS to get data from devices ?
View 4 Replies
View Related
Jul 25, 2011
What I Mean By "Two Connections On One PC".I Am A Youtuber So I Like To Play Games, Upload Stuff Etc.But The Problem Is That When I'm Uploading I Cant Play Games Because Of The Lag.So Is There A Way To Setup Two Connections (One For Uploading And One For Gaming Etc.)
View 1 Replies
View Related
Jul 3, 2012
I was simply surfing the net and installed a program. I then deleted the program and simultaneously i was unable to connect to the internet using wifi. Connecting to the internet is not a problem with the Ethernet cable plugged in. I have checked everything i can with the router and the wifi is still active. When i try to connect to the wifi, using the symbol on the taskbar, it tells me that there are no connections available.I also tried using my iphone personal hotspot and that was also undetectable.When i go into the device manager, the only icon that is flagged is the, network controller. I have un-installed it and rebooted, I have restarted it. Quite annoying i might add
View 1 Replies
View Related
Jan 23, 2013
At any moment I have almost a thousand connections from / to my network attached storage (NAS), it's from D-Link (DNS-320) from unknown outside IPs.
I have a home network, everything sitting behind a Linksys router with a DD-WRT installed on it (here I see these connections). You can see the output here: url...
There probably would be many more connections, but the modem only allows so many. Unfortunately, they all use a different port (otherwise I'd just block that one). Because of all of this, my internet is very slow (connections are saturated)
View 3 Replies
View Related
Feb 11, 2013
implement backup WAN links to complement the metro Ethernet links we currently use so we have some redundancy. These will most likely be a VPN over an Internet service but might be another Ethernet type service, the medium shouldn't really matter I wouldn't think. What I am looking for input on is what is the best way to implement this? Would I just set costs so that the backup is only used when the primary goes down, or should I create new OSPF area for the backup links?
Currently the core switches that are also our routers are 3750G stacks running ip services. We are getting ready to install new firewalls at each location that will become the gateways for the vlans currently on the core switches to give us much more control over segmentation, and because of this I am thinking that it may make sense to then move the OSPF instance from the core to the firewalls. In the drawing I did not show the access layer switches off of the core, and the MOE circuits actually terminate into a 3550-12T switch before the core. I think I will actually eliminate those 3550-12T switches and go straight into the core. This is a current state drawing, so does not include the backup links I am planning.
View 4 Replies
View Related
Dec 9, 2012
The past two days have been frustrating with my wifi. When I first got on it, I checked the internet access because I couldn't get onto the internet. The connections had "limited access". I restarted my router and modem, and it did nothing. I unplugged everything and plugged it back it and the wifi would show, but I couldn't get on it. I restarted the router and modem, and it worked. I got on Cisco Connect and the signal wouldn't show. I got off the computer and later, I couldn't get on the internet again. Later on, I could get on the internet again. I got on Cisco Connect, and it still says that there is no connection. I haven't a clue what's going on. My modem is CenturyLink, and obviously, my router is Cisco.
View 19 Replies
View Related
Aug 31, 2011
I have 881 router and it has 1 WAN port and 4 Fa ports. I want to know if it's possible to have 2 internet connections on that router? I found an interesting article about the load-balancing for two isp connections: [URL].
View 9 Replies
View Related
Nov 29, 2011
Context:1- My company has one ASA 5510 configured with Site-to-site VPN, Ip sec Cisco VPN and Any Connect VPN.2- We use ASA to connect to the single ISP (ISP 1) for internet access. ASA does all the Na Ting for internal users to go out.3- A second link is coming in and we will be using ISP 2 to load balance traffic to internet (i.e. business traffic will go via ISP1 and “other” traffic will go via ISP2).4- A router will be deployed in front of the ASA to terminate internet links.5- No BGP should be used to implement policy (traffic X goes via ISP1, traffic Y goes via ISP2). Questions:How do I get this done, particularly, how do I tell the router, for traffic X use ISP1 and for traffic Y use ISP2? PBR is my friend?Since I will be having 2 public Ip Addresses from the 2 ISPs, how do I NAT internal users to the 2 public Ip addresses ?. Finally, which device should be doing the Na Ting? The ASA just like now or move Na Ting to the Router?
View 9 Replies
View Related
Sep 3, 2011
Hardware: Cisco 1841 with 2 adsl wic's
Software: Advipservices-k9 12.4 25b
Skill: Just started
I got 2 RFC1483 bridged connections wich i want to combine in the 1841. What i want is 1 subnet (if possible) route normal internet traffic out on ATM0/0/0 Route 1 server and Voip box out on ATM0/1/0 What is the best way to configure this if it is possible with the hardware.Tried different things allready but no luckPretty much in all configs when i connect 1 line it works fine but when i connect the second one all goes wrong.
View 3 Replies
View Related
Mar 1, 2012
We have a user who needs to access a vpn from his MAC through an ASA 5505. The user is getting an IP via DHCP and the outside interface of the ASA gets it's address via DHCP as well. The user states that when he is home or anywhere else but behind the ASA it connects fine, but once the ASA is added it times out. He is able to get to the internet from the machine without any issues. Looking over the config on the firewall it isn't set to deny any traffic and there is a global set on the interface and it is nat the inside interface. There is no global policy in place so I was considering implementing the following:
policy-map global_policyclass inspection_default inspect pptp
View 2 Replies
View Related
Jul 5, 2011
We have a PIX 535 with unlimited lisence, it has 1,048,953 in use connections because the timeouts have been changed to 24 hour. I am addressing this issue but was wondering why its so high when the max concurrent sessions is supposed to be 500,000 as listed in the product spec. Also when it reaches it max and cannot allocate a connection what PIX syslog error message number would it send?
View 1 Replies
View Related
Jun 3, 2012
192.168.1.10 --> ASA 1-----> ASA 2-------> ASA 3----> server (172.21.16.15)
We have opened 3389 , 80 & 445 ports on all firewalls ( ASA 1, ASA 2, ASA ) for server (172.21.16.15) from (192.168.1.10).We are able to see connection in ASA 1 under show connection for 3389, 445 ,80.
We are not able to see connections in ASA 2 & ASA 3 under show connection for 3389. But we are able to see hits in ACl.
View 3 Replies
View Related
Jan 28, 2011
One of our client has cisco 861 router and they have two internet connections from two different ISPs can we use them together as load balancing and as redundancy, As cisco 861 router has only one WAN port?how we can do that ?
View 4 Replies
View Related
Sep 12, 2012
On the ASA5520 we would like to create a report that gives us trending over 6 monthes for the amount of people logged in via the SSL VPN and for how long. Is there a way to do this on the ASA5520? Does it have this ability? Could I do this in SolarWinds? My boss mentioned a software package that Cisco has that will show a history - is this correct?
View 1 Replies
View Related
Jul 27, 2011
I have just deployed a 881 router at a clients site & configured it to allow remote IPSec VPN connections using the Cisco VPN Client software.
The router works fine except for the remote VPN connections.
Client VPN connections are not being allowed and I am sure the problem is the zone based firewall. I have had very little experience with this, most of my experience is with ACL based security.
View 2 Replies
View Related
Jul 31, 2011
The application here is a wind power project, built in two phases, without any effort to coordinate or integrate the two sites during the design phase. All operations activities for both phases are performed by one staff out of a common location. This is a rural area and Internet connectivity is mission critical due to contractual obligation with Electrical Utilities.
The client has a need to reconfigure a network which has grown over time in a layer by layer approach, whereas at every point in time that an additional T-1 or other changes occurred to address a specific need, no thought was ever put into integrating the entire site as a whole. It is at best a dysfunctional solution which somewhat accomplishes thier needs, and at worst, a kludgy, grossly security compromised, and difficult to use infrastructure. There is every kind of equipment one can imagine, each installed by some entity providing needed services on the site, but forced to make uninformed decisions because the client really has no IT department to coordinate with. Over time, every vendor just provided their own switch, router, or maybe figured out how to reconfigure another existing device to also provide the routing or access needed, To say the least, it's a mess.
The client requests a solution which provides a means to accomodate 6 internet connections (4 T-1 lines, and 2 satellite) in a manner which aggregates available bandwith and provides redundancy. The T-1 lines will be the main internet access, with the satellite connections only used if available bandwidth falls below some threshold, say 3Mb. There are many internal networks which need to be routed to and between, in total, about 20 subnets. There are 2 SCADA (Control) networks which have a mandatory requirement of 1Mb each, a VoIP system which does not use any internet connetivity as there are 6 POTS lines dedicated to it, an internal office LAN and a turbine manufacturers site LAN.
The T-1 lines, at 1.5Mb x 4 = 6Mb.
The 2 SCADA networks require a guaranteed 1Mb each, the remaining 4Mb is to be allocated between the office LAN and the turbine manufacturer site LAN. The satellite connection are only to be active in the event bandwidth falls below 3Mb.
There are 2 Cisco 2801 routers on site which could be reutilized if appropriate. Each T-1 has it's own Adtran CSU with Ethernet out. All T-1 lines are /29 IP Blocks. 2 of the T-1 lines are adjacent IP Blocks, for what its worth.
Everything here is open to reconfiguration. The client wants this finally integrated correctly with the ability to address emerging Electrical Utility cybersecurity requirements in the immediate future.
An ideal solution would be fully redundant to eliminate the single point of failure at the edge router. As to whether there needs to be separate edge and interior routers, I just don't know that. I would guess everything could be done with just a pair of redundant routers at the edge, but perhaps it is better to do the interior routing between subnets on a different router(s).
Again, the goal is a well integrated, redundant, and secure solution. My part is mostly complete, with the OSP part of the network finally at 100% after 5 years of stupid and careless misconfigurations and bad fiber splicing (by others).
I'm absolutely covered up in business at Layer 1 & 2 on these sites, as the physical plant and associated network elements are typically very poorly designed, specified, and implemented. The complexity of this job leads me to seek outside advice and ultimately a more qualified Cisco professional than me. I'm experienced enough with Cisco to know when I'm in over my head. I know a diagram would be nice, but at this point I've only got a very detailed diagram which reveals too much site identity information to make public. I'll wait to see a few comments and in the meantime work on removing site identity info so I can post a good diagram for everyone to see.
View 1 Replies
View Related
May 20, 2012
Is there a way to limit number of concurrent SSH connections that Prime LMS 4.2 makes to devices? Periodically it occupies all of VTY lines. I know I can restrict access to particular VTY lines by 'access-class' command, but I'd rather want to limit number of simultaneous connections on Prime LMS. Is it possible?
View 2 Replies
View Related
Mar 22, 2011
I am using Cisco VPN client for windows 4.0.5 (C)I use the VPN client to connect to my office from home and to connect to a customer via their VPN connection.Is there any way that I can have these two VPN clients active at the same time instead of needing to diconnect one to connect the other ?
View 1 Replies
View Related
Sep 15, 2011
I've added several switches and one WLC to my new NCS Prime box. I don't see them in the display. If I try to readd one, it says it already exists. What am I missing?
View 0 Replies
View Related
Jun 25, 2012
I got a VPN request form from one of our partners. On my side I have one ASA 5520 running 8.0(3) On their form, It says that their endpoints are two boxes, sitting on different cities, It also says that there is only one encryption domain, (actually just one IP) that I need to speficy on the VPN setting. It looks like they mean that you could access the same encryption domain from any of the two Boxes in different cities. This is strange to me, since every time I have set up VPN before, each endpoint has their own encryption domains.I never seen two enpoints with the same encryption domain behind, so Im confused wether it might be a mistake on their part, or this is expected.
View 1 Replies
View Related
Oct 23, 2011
LMS 3.2,the devices are not shown in the CS.
In CS Device management no devices are shown(0 devices).But devices are shown in DFM,RME and IPM.
View 7 Replies
View Related
