A small remote site is going to need a dedicated 10mb connection to our Main Campus. Probably an 10mb ELAN connection(not decided as of yet). The site will be small - no bigger than 2500 sq feet with small walls possibly. Only one VLAN will be needed and we won't need any voice applications or back-up WAN ports. The site will provide connectivity for approximately 15 people. I've been looking at the 800 series routers for a solution. Do you think the 860 with the built-in 802.11 AP will suffice? I have a couple of concerns:
Does the 860 have CLI management?Will I be able to create a secure, encrypted tunnel between the 860 and a 2811 router on our Main Campus side? The 2811 has a 10mb ELAN secure tunnel on one interface already. I will purchase another interface card for this new, remote site VPN connection.Will the built-in AP give me coverage for the sq footage? I understand that there are extenuating circumstances to be concidered but, generally speaking?
From the video spec I viewed, the presenter said it had "basic security". What does that actually mean? This concerns me, as I want to built a secure WAN connection.Finally, does the 800 series fit this application or are there other Cisco products I should consider?
Experiencing a strange issue with v3 hardware. After a short period of time, I cannot log into the web administration - either locally through standard port or remote through non-standard port get login prompt, enter correct username & password, page refreshes with blank background and first page (status?) never shows.power cycling the router restores access to the web administration page, for an uncertain period of time before it barfs again.
I was running older firmware, updated to newest 4.2.1.02 (?) and same problem. Only thing that is better is the internet didn't completely lock up when I tried to access the administration page, like it did on the older firmware.
setting up Rate Control in Bandwidth Management. It doesn't seem to work at all. I knew from some other Posts that I need to have IPS on and I do.. Is there something else I need to do.
My users are connected wirelessly to the router through three different SSIDs and I have 3 VLANS. I need to set some limitations on two of the LANS.
I just bought a new Cisco SRP527w and I'm just new on this kind of equipment. I can't locate the user management tab as I'm trying to change the default password.Also, I can't access the internet. My dsl modem rj45 is connected to the WAN/LAN port with IP Static settings.
I'm attempting to configure remote management (and, sometime soon, SNMP) for a newly-deployed WRVS4400N v.2.At the Basic Settings page, I enabled Remote Management, and left the port # at the default. Remotely I entered the public (static) IP for the router in the address bar of IE8 similar to this: 67.203.???.??:8080. IE8's response is, "The webpage cannot be displayed." I'm using a public wi-fi access point, and don't know how the local router is configured, so it's possible that the local router has a blocking rule in the firewall.I'll try again using another remote router that I manage.
I'm have serveral issues with my router.First, using port 8090, I'm unagle to get remote management of the router.Port 8090 is forwarded to the router 192.168.1.10 I have other issues too, I think the router is blocking my FTP conenction to my NDAS drives.I wish the router would show the UPnP port that are autoamtically added t othe system.Port 80 works well going to my NDAS drives.Firewall, DoS Blocking WAN are all turned off.
I have a RVS4000 hardware v2 with firmware 2.0.2.7. I have a DSL modem in bridge mode and have the router set to PPPoE. Everything works fine except I want to use QOS which doesn't work fine. I have some vonage boxes set up on a switch set to port 1 trust mode is set to port and level 4 for highest priority. Port 2 I have on another switch set to priority 3. I tried turning bandwidth mangement on which doesn't seem to work at all so I don't even know if they QOS is even working. I set the max down stream and upstream provided after running a number of speed tests and setting it a little lower than my worst speed results. Once I did that I set up a rule for all traffic for rate control and set them just below the min and max I put in for isp bandwidth. I set the ip range from 192.168.1.100-190 this will cover anything that dhcp hands out and I also have a few statics set up on 192.168.1.180 and 181. However after enabling it I ran some speed tests and I still get full speed and the rules seem to be getting ignored.
Just brought another set of SRP521W, after changed the WAN setting to PPPOE, we unable to access the web management. The power/sys light will keep blink when trying to access the web management. We able to ping it. We tried the reset button but it did not work as well. Is that a way to upgrade the firmware without using the web management?
I have a brand new RV042 v3 that I just updated to the latest firmware (v4.2.1.02) and have stumbled across an anomaly... I can only access the router from the WAN port using port 80. I happen to have it set to port 8080, but that doesn't work; I have to use standard port 80.
I have two other RV042 units running older firmware and they work as expected and follow the port that is filled in. This one has me puzzled and wondering if this is a bug in the firmware.
i cannot access the web managemnet interface of this router from a different subnet.THe WAN interface is a 4G LTE connection,I have disabled both the SPI firewall and NAT and enabled remote management from any ip address but i cannot access the admin web page from a remote subnet.Doing a port scan of the routers WAN or LAN address i cannot see any ports open at all...its as if firewall or NAT is still enabled somehow.
I have a RV082.I need to disable the firewall, since firewalling is done better elsewhere.However disabling firewall Remote management on wan ip is forcefully enabled.I don't need Remote management, keeping it enabled is a security risk for my setup.I don't understand the rationale behind the choice to forcefully enable remote management if firewall is disabled.Is there a way to disable both firewall and remote management?Or at least a workaround?
I'm on firmware 2.0.0.19-tm on a probably v2 hardware. (Cannot find this info in the web configuration).This is not the newest even for v2 hw but I cannot afford to break it trying to upgrade the firmware.Moreover no release notes for firmware releases refers to a correction of firewall/remote management behavior.Is this behavior also in newer firmware releases?
i was connected to my rv042 via remote management / browser, and tried to add vpn clients. i generated a new certificate and then i clicked on export for clients. by doing this, the remote management disconnected and i cannot access the router anymore.
how can i get the new .pem file from remote? do i have to make somebody turn off and on the unit to get back remote access??
p.s.: after turning off an on i tried the same steps again: everytime i click on "export for admin" or "export for client", this kills the remote management and the unit must be hardreset. now: how do i get the newly created client certificate off that unit ?? otherwise i will have to drive 350 km just to grep that file ?!?!
I have a 6 month old RV042 with the newest firmware (v4.2.1.02). Over the weekend I configured the DMZ which after a lot of trial and error, was able to get working. Prior to configuring DMZ, I was able to log in with remote management. However now remote management no longer works. I've tried:
- Rebooting the router - Turning the firewall off/on - Turning remote management off/on - Changing the remote management port
The only step I haven't taken is resetting the router back to factory defaults and trying to reconfigure it all again. This router is so finicky I have no faith I'd be able to get my current functionality back again.
I just purchased 5 RV220W to act as internet/wireless router at a remote site. There is no VPN, just LAN and Wireless routing to the internet.I have setup remote management and it works fine when I am directly connected to the internet. However, everytime I try to connect through our HTTP/HTTPs proxy farm, it usually fails. Specificially, I get the log-in page and can log in. It starts to render the landing page but redirects to a page stating "Your session has been terminated." On rare instances the first page will appear, however within a few clicks I end up with the same terminated page.
As a test, I bypassed the farm and forced my browser to use one proxy exclusively. At that point I could access the HTTPS interface with no issue. I have not had any issues with other SSL sites with the proxy configuration in use.Is there some sort of MITM prevention I could be running into? If so, can it be turned off.I am new to the RV-series of routers. Is there any logging I could turn on that would provide insight on why the session may be getting terminated?
I have 25 of these routers installed behind various providers and transport (DSL, Cable, UVerse). At sites where I have static IP, I can't reach any service inside, and in fact can't even reach the router for Remote Management. At all times the users indoes can do whtever they like, the have Internet access.
At sites where we draw a dynamic IP or use PPPoE, I can reach services and manage the router until a known issue stops the inbound traffic.
My first try at configuring my RV042 has had unexpected results. I set a WAN and LAN address, but did not enable remote managment and did not configure any port forwarding. I expected to be able to connect to the router on the LAN and I could. The surprise came when I put in my web address. I got a router login page. How do I suppress than on the WAN side. I have a static address with my ISP.
Firmware version 1.3.3.5 STAR 9202 Chipset 64 MB DRAM 8MB Flash DOS, Block WAN Rq, Remote mgmt all OFF IPSec Tunnel none used
[code].....
Every day or so the Router becomes unresponsive to the HTTP mgmt interface, as well as it no longer offers DHCP services.then this happens the only remedy is to power reboot.
Everything comes back online just fine, however, the LOGS are initilaized so no data to figure out what`s going on.My next step is to setuo a syslog server and have the logs copied out.( No, I have no Torrents running at all, but I do have several devices like AppleTV, PS3s etc that run streaming Video plus I have the SPA3102 )
I have a Netgear GSM7248R switch with 5 different Vlans including th management Vlan. Each of the vlans are connected to my layer 3 switch for routing. I want to access the management vlan form any of my Vlans so my layer two switch can be detected by my snmp manager.
I have multiple remote sites connected back into my infrastructure via satellite. I'm building a GRE tunnel accross this satellite infrustructure to my user's routers. I'm using EIGRP through these tunnels and everything is working great as far as connectivity to my users is concerned. However, with each of these packages, I would like to be able to remotely manage the satellite modem. My problem is that these modems all have the same web management IP address (192.168.1.1:80) and I can't change them. I thought to myself, "too easy, this sounds like an excellant case for NAT!" Either I'm tackling this thing all wrong or something because I can't seem to get it to work. Here is what I've so far (IPs modified and extra info cut[CODE]
I have installed successfully installed and configured LMS 4.0 and every thing was okay until the customer decided to change the server IP address without notifying any one.
so i have returned the server to its original ip address since nothing worked after they changed the IP, but even after restoring the old IP address the device descovery is okay, but when i navigate to the devices management nothing appears in the all devices drop down menu and the remaining menues also.
i have tried to restart and to start a new device discovery also i have tried to run a data collection but nothing changed.
still stck on the devices are not appearing in the device management tab.
I have two dinasour APs that I need to fix. They are configured in bridge mode to bridge a few VLANs between two sites. Right now the management IP on BVI 3 interface doesn't work. Does it have to be on BVI1 for it to work? When I say "work" I mean I am able to ping it and use SNMP to monitor it.
I'm using LMS 4.0.1 (current patches and device packages)
There is a problem with the configuration fetch.There are some 2503 routers with IOS 11.3(6) and the message on LMS is: Couldnot enter ENABLE Mode from USER Mode on Device
The devices arn't configured with username, only telnet pw and enable pw; no access-lists or other limitations configured
The credential check is ok ... multiple checks done ... devices deleted, new discovery ... devices deleted and manually added .... with the link //serverip:1741/rme/rmedevices.do I've changed the timeouts multiple times (up to 60 seconds for TFTP, SNMP) .... all these have had no effect of the config fetch
Any possibility remotely manage cisco 876? Remotelly I mean by connecting to WAN IP (DSL interface) from outside. It could be via CCP, telnet or ssh doesn't matter.
I'm trying to separate my management traffic from regular traffic by splitting the management and "outside" interface to separate vlans but I'm hitting a routing issue. Say I have have a management network of 192.168.1.0 255.255.255.0 running across vlan 1 and I want to use 192.168.2.0 255.255.255.0 running across vlan 2 for the outside interface to send all the other traffic excluding the management traffic across. Tag both vlans on the external interface, say Eth0/0 Default route of route outside 0.0.0.0 0.0.0.0 192.168.2.1, With this, you can not hit the management interface because there is no route defined for the 192.168.1.0 network. However of course if you try to set one, you'll get the "connected route exists" error. How can I set the default route or gateway of the 192.168.1.0 network on the ASA. Switches just don't complain like the ASA does.
I'm trying to get a catalyst going for remote management using cisco network assistant.I've basically, enabled telnet;
enable conf t line vty 0 15 password {password} login exit gave it an IP; int vlan1 ip address {IP} {Subnet} no shutdown exit
[code]...
and write mem to save it all. I can ping, telnet and access cisco network assistant from inside the network perfectly. But the problem I'm having is accessing it from outside, can't even ping the device. I can ssh to other servers behind the network just fine. There is no firewall in place at the moment, the provider's drop is plugged in gige port 1?
The management VLAN(the one I use to connect to the devices) and the native VLAN dont have to be the same VLAN ,right?They are independent and can be different. For instance I can use VLAN 5 for management and 10 as the native VLAN
I have a WLC 4404 installed and we would like to manage the bandwidth per SSID. Today we have configured many SSID because our campus has a lot of wireless users and any SSID has only one class C subnet (/24).
We would like to configure each SSID with more subnets. is this possible ?
Additionally we need to restrict the bandwidth per SSID. is this possible ? We have some SSID for less important users and we would like to assign the bandwidth per SSID.
I have created a management vlan on my network of 2950 and 3750 switches. One 3750 has a trunk to each of the 2950 switches which includes the management VLAN. On that 3750 the vlan and line protocol are both up even though there is no specific port assigned to the vlan; I believe the trunk connections allow the vlan line protocol to come up. On another 3750 stack I have my VLAN defined with no ports designated or trunks; the VLAN is up however the line protocol is down.
I recently upgraded an AP802GN-E-K9 to version 15.2(2)JB (ap802-k9w7-mx.152-2.JB), which broke the web interface. The http server is still running, however the web interface is not available. The following is displayed instead Navigating to /ap_home.shtml etc shows the correct pages. Extracting the "tar" file from the Cisco site and looking in the /html/level/15/ directory in both the tar and flash shows files missing that I'd expect to exist ( frameHome.html , navHome.html etc ).
Alas, I have no SmartNet on this device (embeded into my 887VA-W) as it's for home
