Cisco Security :: ACS Usage On NAC 3310 Required
Sep 16, 2007do i still need ACS if i have the NAC appliance say 3310.
View 3 Replies
ADVERTISEMENT
Cisco Security :: High Availability Failure On NAC 3310 CAS?
Dec 20, 2011Yesterday I discovered the primary and secondary CAS were both in active state and reporting their fellow peer as dead (I did this using ./fostate.sh), causing authentication errors on the network. I had to stop the perfigo process on the primary one to restore service.
After closer investigation I have discovered that when I put my laptop on the same subnet as their eth2 interfaces (eth0, eth1 and serial are not used for heartbeat only eth2), I can ping the eth2 ip address for the primary device, but can't ping that of the secondary device. See configs and outputs below. I am also wondering why the secondary CAS shows its eth0 and eth1 interfaces as fake0 and fake1.
[root@CAS-SEC ~]# ifconfig eth2
eth2 Link encap:Ethernet HWaddr 00:1F:29:5D:1C:6C
inet addr:172.29.254.10 Bcast:172.29.254.11 Mask:255.255.255.252
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:11205 errors:0 dropped:0 overruns:0 frame:0
[code].....
Cisco Security :: 3310 - NAC Guest Server Physical Interfaces?
Jul 19, 2010We'll be implementing Cisco NAC guest server for Guest Wireless users, ( Model #3310), the question is do we need to configure separate physical interface for User authentication requests( from Wireless ) and a separate Interface for Guest server to talk to AD for SSO?
View 2 Replies View RelatedCisco Security :: 3310 - NAC Profiler - NetWatch Invalid Configuration File
Jul 18, 2010I'm trying to configure the NAC Profiler with a 3310 CAS Collector. In the "Edit Collector" menú, it shows all the modules as "Running", except for the NetWatch module which shows a state "Invalid configuration file (missingInternalAddress)".
I configured the eth3 interface of the CAS as a monitor interface in the Profiler (see attached image), and I tested that the SPANed traffic actually reaches that interface from the access switch. I'm using software version 3.1.0_24 in both the Profiler and the Collector.
Active Directory - Required Bandwidth Usage?
Feb 18, 2012Currently We have several Active Directory Domain at several Technical High Schools. These are used by us as a it educational unit(s). The Tech School System's IT Department has a fiber wan between the schools that allows communication between these units. We wanted to interconnect the unit's Active Directory's with Trusts or by combining them into one forest. However I am wondering How much bandwidth that alone would require? There make be some file access between units but not on a daily basis since the units are separate from one another. How much bandwidth do you think this would require?
View 5 Replies View RelatedWireless Security Key Required?
May 20, 2012I need my security key
View 1 Replies View RelatedCisco Security :: CSCSSM 20 Module On ASA 5510 Causes 100 Percent Cpu Usage
Aug 13, 2011I installed a CSC-SSM-20 module on ASA 5510. After policy services have been enabled, services works well for a few minutes, after that the cpu usage's module rise to 100% and all http traffic is wholy blocked, till the cpu usage go down.This happens very frequently and traffic stay blocked for such a long time that it makes the csc-ssm module unusable. It's disabled right now. ASA version is 8.2(1)and CSC-Module version is 6.6.1172.0.
View 1 Replies View RelatedCisco Security :: 1841 Router - URL Filtering Causes 100 Percent CPU Usage
Apr 7, 2013whenever I setup URL filtering in 1841 router with policy-map type http and zone-pair command, I experience 100% CPU spike. is there any workaround?
View 1 Replies View RelatedAdd Another Laptop To Wireless System - Security Key Required?
Dec 11, 2011I have Wi-Fi on my smartphone and I want to set up another lap-top and it is asking for a security key, where do I find it ?I already have one lap-top set up !
View 1 Replies View RelatedNetwork Security Key Required For Internet Connection?
Feb 16, 2012Just got a new laptop which is requiring Network Security Key to connect with Internet.
View 1 Replies View RelatedComputer Cannot Get Signal - Network Security Key Required?
Nov 14, 2011I have Clear service but there is one area that I cannot get a signal and need the network security key. I have windows 7, where do I find this security key?
View 2 Replies View RelatedSecurity / Firewalls :: Best Email Service For Privacy / Daily Usage?
Jun 30, 2011What is the best email service that puts a high priority on privacy yet is still easy to use on a daily basis?
View 2 Replies View RelatedHome Network :: Connecting Remote Sites - Security Required?
Apr 8, 2011for example, there are 3 sites, A, B and C. A and B are 1.5 km apart and both are separate LAN(mixture of wireless and wired). C is 35 km apart from A and B. I have to connect A, B and C so that they can communicate with each other. Security is required.
View 8 Replies View RelatedNetwork Security Key Required For Connecting Laptop To Wireless Internet?
Feb 9, 2011I am connecting my laptop to a wireless connection I am at connect to network. and enter network security key. do not know the security key
View 2 Replies View RelatedWhen Check Internet Usage Log On Wireless Company The Usage Is Totally Off?
Apr 3, 2013however recently when i check my internet usage log on my wireless company (Rogers) the usage is totally off from what my bandwidth tracker shows me. So i decide to turn off my wifi and see what happens, there has always been this weird wifi connection appearing whenever my wifi appears, then afterwards when i turn off my wifi the suspicious wifi connections disappear. is this possible that someone is using our wifi? i might just be overreacting but it has brought me to concern that if the usage continues my family will have to end up paying over $30 for extra internet use. it is very frustrating me because when i check my DHCP client table it only shows 3 connection, ethernet - my desktop which is not turned on, 2 wireless connection - my laptop and my sister's laptop.
View 6 Replies View RelatedCisco Wireless :: How To Recovery MSE 3310
Apr 26, 2012MSE can not boot.MSE show error log. [code] How to recovery MSE 3310,I find in documents not show method recovery. Any solution recovery MSE 3310
View 2 Replies View RelatedCisco :: 3310 MSE Was No Longer Visible On Network
Feb 22, 2012I performed a software reboot on the MSE3310. After the reboot the MSE was no longer visible on the network. I went and consoled into the device and it was operational. I ran the msed stop and msed start commands. I got this message when it tried to load eth0.Bringing up interface eth0: e1000 device eth0 does not seem to be present, delaying initialization.Earlier in the day I had updgraded the firmware from 6.0 to 7.0.230.0.
View 6 Replies View RelatedCisco Wireless :: Installing Rails On MSE 3310?
Feb 24, 2013I've got an MSE 3310 that came with four-post rails for rack mounting. These came without instructions and we are having a hard time figuring out exactly how they work. They say General Devices C-300-S-124-RC-MOD
View 4 Replies View RelatedCisco Wireless :: 3310 - MSE Web Service Port Configuration
Jun 8, 2012I recently configured CISCO 3310 box with MSE version 7.2. Services are up and running in the box, I could add the MSE to WCS and also able to track the location using WCS. However, I could not connect the third party software to MSE web services to get the location information there. When I hit the server url "https://<my mse>" I get list of possible services like:
Error 404 - Not Found.No service matched or handled this request.
Known services are:
http://my server:8880/hs/
http://my server:8880/mdp/
http://my server:8880/admin/
[code]....
I browsed through the documentation (CAS_71.pdf) and found a text saying:
Note Port 80 will be enabled on the MSE if the enable HTTP command was entered on MSE. Ports 8880 and 8843 will be closed on the MSE when the CA-issued certificates are installed on the MSE. I am running the test system so I do not really want to install CA signed certificate, so I used self signed certificate and restarted the server, but it did not work.
Cisco Wireless :: Context Aware Licenses Difference For MSE 3310?
Mar 11, 2012I am getting a hard time in order to understand the real difference between the two types of context aware licenses for the MSE:
1 . AIR-CAS-1KC-K9 - Context Aware License For 1K Clients and Tags (RSSI based)
2. AIR-CAS-1KT-K9 - Context Aware License For 1K Tags(RSSI, Chokeponts and TDOA)
For a regular network without any devices with tags such as RFID, I understand I do not need to get the .2, only .1, even though the .1 also is shared with clients at 1K of each. Also, the .2 does not say clients, only tags and advanced features as TDOA. Going through the Q&A it does not clearly says the difference, when to use one or the other.
Cisco :: 3310 Rouge Access Point Info Not Showing Up In NCS
Aug 27, 2012The rouge access points being detected by the 5508 WLC are not showing up on the Context Aware tab of NCS? I have a MSE 3310 installed and configured and it shows to be syncronizing with the WLC. I'm sure I am missing some part of the configuration just not sure where.
View 3 Replies View RelatedCisco Wireless :: MSE 3310 Upgrade 7.0.201.204 Failing Mobility Services Engine Software
May 11, 2011I am trying to upgrade an MSE from version 6 to 7.0.201.204. I am able to copy across all the files and have tried using WCS and FTP for the CISCO-MSE-L-K9-7-0-201-0-64bit.bin file but the installation procedure always fails.
I will download all the images again tonight. Is there a way to delete the images from the /opt/installers/ directory?
Also the upgrade procedure in the 7.0.201.204 is pretty bad, there is no detail in any of the steps.
Here is output from the upgrade -
[root@SDC-MSE-01 installers]# dirCISCO-MSE-L-K9-7-0-201-0-64bit.bin database_installer_part3_4.zipdatabase_installer_part1_4.zip database_installer_part4_4.zipdatabase_installer_part2_4.zip
[Code].....
Cisco WAN :: PBR Usage With 7600
May 16, 2012Today i want to ask is cisco 7600 support ip next-hop recusrive x.x.x.x (PBR feature).
View 1 Replies View RelatedCisco :: ANIServer CPU Usage LMS 4.1?
Oct 26, 2011I recently made a fresh install of LMS 4.1 and added all of our devices (about 400 devices). After configuring all jobs and services everything ran fine.After a few days a guy from the server team called me and told me that the CPU-usage increased over the days. I made some investigations and found out which process is using CPU ressources. Whenever ANIServer is running and collecting data CPU is running at approx. 100%. First it takes only a few minutes to complete but after some cycles ist takes more and more time to complete, after a week it takes more than 4 hours. After restarting ANIServer process it takes again a few minutes and then the duration increases.
Server specs:
Windows Server 2008 R2 64-bit
VMWare ESX
4 CPUs @ 2.93 GHz
6 GB RAM
How To Know The Internet Usage In GB
Mar 3, 2011how to access the internet usage, so that not to exceed the limit i.e, 1gb
View 5 Replies View RelatedCisco :: High Throughput Usage On SVI
Jan 25, 2013When a physical switchport/routed port has high usage, you can move the link to a higher capacity port, upgrade the port, bond links, etc. What exactly do you do when an SVI has high usage? I guess you could remove some servers from the VLAN, but that doesn't seem like a reasonable solution. What dictates the capacity of an SVI? The backplane of the switch?
View 14 Replies View RelatedCisco WAN :: Minimize IP Usage On 2911 And Keep NAT
Aug 1, 2012I have a problem I am running into... I replaced a 2621 with a 2911. The 2911 has three interfaces and I need to use all of them... Description:
gige0/0 dhcp static IP from ISP, public IP, they assign me 4 more usable public IPs gige0/1 broken into four VLANS, 108, 109, 120, 127, ip nat on 109 for them to get to the internet, and a static translation on 127 for the phone system to get to the internet gige0/2 assigned another public IP. A tenent has a linksys router on this interface, they want a public IP.
The problem is that this setup worked, but when we moved to the 2911, some nat translations are failing, and we would like to figure out how to minimize the number of public IPs we use (right now it is three + the static assigned dhcp). The nat that is not working is the nats to the 2001-3001 range. I am not sure why it is failing, but the router seems to indicate it thinks some of these overlap. This router is also doing a vpn to an asa... that seems to be working fine.
Current config:
Current configuration : 6072 bytes
!
! Last configuration change at 14:31:44 UTC Thu Aug 2 2012
! NVRAM config last updated at 14:31:50 UTC Thu Aug 2 2012
[Code]....
Cisco VPN :: 1760 Usage As VPN Server And NAT
Feb 28, 2011I am trying to setup a VPN server on my router at home so I that I can access my network remotely. The router has f0/0 as a dhcp interface connected to a cable modem. I have a switch card in it and vlan interfaces for my inside/private subnets. I NAT/PAT the inside vlan interfaces/subnets to the f0/0 dhcp address from the cable modem. I have found a ton of configs for this but nothing that shows it with a NAT setup. I have used a few examples I found that are close to my setup. I am able to connect and the cisco lock closes. But I am not able to do anything. When checking the cisco client stats the sent numbers keep counting up but the received number stays at zero. Any good config that I can use or have a good link? I am also running CME on this router.
View 1 Replies View RelatedCisco WAN :: 1841 High CPU Usage?
May 29, 2012I have a 1841 router plugged into a 100M Comcast ethernet connection. My router cpu is really high and users download speed isn't as high as before. Can a 1841 handle 100M circuit with 100 users on it? What would cause the router's cpu to be high? I don't think there are any viruses or malware on the lan.
#sh proc cpu his
r2.leaguecity-toy-startoy 06:06:26 PM Wednesday May 30 2012 PST
111 1 1 1 111 24 1 1 1 1
400369232222544222330359645223283294332688334452308404382236
[Code].....
Cisco VPN :: 6500 After Some Hours Cpu Usage Goes To 100%
Jun 19, 20116504 Sup720 ----Dot1q Trunk ----6504 Sup270VPN SPA VLAN 20,30 VPN SPA VLAN 20,30Normal VLAN 10,40 Normal VLAN 10,40,Every 18-24 hours the 6500's- the 6500 go to 100 % CPU - the work around is to reboot one of the switches. Then they will run 18-24 hours.The fix was to only trunk VLAN 10,40 (Networks that needed to see each other) between the switches. If the vlans that the VPN SPA was trunked you would Every 18-24 hours the 6500's- the 6500 go to 100 % CPU.Simple design GRE IPSEC tunnels that work fine and the latest SXI code. It appears that if you trunk the VPN SPA trunks and they are the same VLAN that it going into some kind bridging loop. No errors. Just unresponsive.
View 2 Replies View RelatedCisco WAN :: 4510 Cpu Usage Showing 99.9%
May 18, 2011My CAT 4510 switch is showing 99.9% CPU usage almost through out the day. After some analysis i saw that the “Cat4k Mgmt LoPri” process is having 86% CPU utilization. This process is a package that is including multiple process.
2. Within this package, two processes have been identified which are causing this shock which are “K5L3Unicast Adj Tabl” and “K5 L2 Hardware Addre” .
3. This indicates that some heavy activity is going on CEF adjacency table and RP MAC Address Table. My current IOS version is 12.2(53)SG and i want to upgarde this to 12.2(53)SG1.
C Can any one tell me if this will solve the issue and how clean is the 12.2(53)SG1 of bugs.
This switch is currently the gateway of my network configured for GLBP with another CAT 4507 switch. This switch is normal and showing only 37% CPU usage.
Cisco VPN :: RV042 Usage With Windows 7 Pro
May 3, 2011I will attempt to make is simpler this time. I have a gateway to gateway VPN tunnel setup using two RV042 routers. I have been using this gateway for years without any issues. The computers on each side of the tunnel were Windows XP. I also use RealVNC Enterprise Edition on each computer for easy access to their desktops and applications. I have added two new Windows 7 Pro computers on each end of the tunnel.
The problem is with the two new Windows 7 computers. I am able to connect from a new Windows 7 computer to a Windows XP computer located on the opposite side of the tunnel fine with RealVNC. If I connect using the same Windows 7 computer to a new Windows 7 computer on the opposite end of the tunnel the connection will disconnect after a few seconds. I have disabled Symantec Endpoint Protection 11 and even upgraded it to version 11.0.6300. I also installed the most up to date driver for the Intel 82579V network adapter on the ASUS P8P67 Deluxe motherboard.
I attempted to install Cisco's Quick VPN for the RV042 with no luck on that. The certificates that the router uses do not work in the Trusted Root Certification AuthoritiesCertificates folder. So I gave up on that approach. All efforts to possibly by-pass the problem have failed. There is something with the two Windows 7 computers communicating through the tunnel that does to happen with the Windows XP computers.
Cisco :: ASA 5550 - VPN Usage For Particular Session?
Nov 26, 2012Is it possible to know the VPN usage for a particular session using Cisco ASDM 6.4? Device type is ASA 5550. ASA version 8.4
View 4 Replies View Related