Cisco Security :: Does Catalyst 3750 Supports NAC Fail Open Feature?
Feb 29, 2012
Does Catalyst Cisco 3750 supports NAC Fail Open Feature? Symantec Network Access control has been deployed in our network to protect the end user systems and access control.we initiate to enhance failover/fail open solutions on the switches to minimize the minimum downtime for disaster recovery in case of major disasters in the Data centres.Kindly request to let us know if NAC fail Open works on Cisco Catalyst 3750 Switches or not?
i tried to create a customized web-authentication page that will re-direct any user to the web-page once they are connected to the network.
The problem is, i just cant attach/upload the image of the logo into the customized web-page (welcome/login page).Been researching about it, found and tried some clue bout it on cisco documentation, but still can't solve the problem.
I have a problem with another computer in the household. To get to this forum, I tried to use my son's computer (he is at college and has not used it in a while) and it shows the wireless is connected, if I click on his weatherbug, it comes up with the current temps, time, etc, but if I try to open any browser (ie, ff, or chrome) it will not connect.
im moving over to VDSL.But now i cant open any ports on the E4200 no mather what i do.It worked with the previous modem, but now i cant open anything. all the ports seems to be closes, 80, 21 etc, and the ports i manually forrward.The previous modem was a ZyXEL P-2602HWT-F3, and the new one is a ZyXEL P-2812HNU-F3.If i connect directly into the ZyXEL P-2812HNU-F3, every ports seems to be open, port 80 is open, port 21 is open, but not on the E4200, and yes, i have tried open the FTP ports.I have tried the 30/30/30 reset on the E4200.
I´m looking at this document: [URL] and I´m not clear if Windows Server 2008 R2 Standard with SP1 is supported. The documentation refers to Windows 2008 Server SP2 and Windows 2008 Server R2, but I see no specific mention to Windows Server 2008 R2 Standard with SP1.
we are using 3750 and 2950 switches both of them do not support vlan up to 4000 .we need vlan about 3000 .Whic cisco series switch do support vlan up to 4000.
2950 S-SW1.3(config-vlan)#exi
Proposed configuration has too many VLANs for this platform. Reduce the number of VLANs proposed.
S-SW1.3(config)#end 3750 SW1(config-vlan)#exi
proposed configuration exceeds the limit of 1005 VLANs that can be supported on this platform. Reduce the number of VLANs proposed to be within this limit.
I can access to Cisco 3750 with SSH, but fail to login to web http with the same login.I am able to get the login prompt, the login error I get is "The server at level_15_access requires a username and password."Below is my switch config:username admin privilege 15 secret 5 $1$xsdfajiwuoeirlkajsd.
What is supported in terms of running a mixed feature set in a Cisco 3750 switch stack.We are looking at setting up a stack consisting of 5 x 3750V2 and 2 x 3750G. Due to a requirement for full EIGRP we need the IP Services feature set. Is it a supported configuration to run with 2 or 3 switches running the IP Services feature set as stack masters and the others running IP Base? I understand that if stack master priorities were set these switches with the higher feature set could manage the stack and offer IP Services accross the stack. If we were to lose all of the switches running IP Services the stack would drop back to IP Base.I am looking for guidance as to if this is a supported configuration and not in breach of licensing? Is this likely to cause any problem other than above now and for future IOS releases?
i have 2921 router with base license . i want to upgrade to it to security k9 feature or want to enable it. i have license file with product activation key. how should i do it. if any body have screen shot file
I have a pair of 5520s running 8.2(3) in failover active/standby, routed mode. I have an issue with SSH as it's stopped worked after a short time, less than 8hrs during the network being installed, telnet is working fine as is https/asdm. I have re-created the crypto key and the ssh access is allowed. When I try to connect I just get a flashing cursor, telnet to the ip and port 22 also works.
i have a Linksys modem BEFSR81 v.3 and am trying to reset my wifi password for secure connection. When i log into the the admin page, to my surprise, I could not find the security feature to create WPA or WEP password. i'm stumped. This has never occurred to me before on this modem.
My IE 8 willnot open pages secured with ssl128 encryption. i can not open my account at[URL].. A box appears with "OK" message at the centre and "!" sign at the left side. it carries the following web address-[URL]
I am looking to uplink an HP Blade Chassis to a Cisco 3750-X with SFP+ for 10Gig on each end.I would like to use Direct Attached SFP+ cables if possible.I already know that the HP Virtual Connect module will not accept a Cisco Direct Attached cable at the current firmware.Cisco Nexus 5000 has a feature allowing connectivity with the HP Direct Attached cable using "unsupported" mode.
I have 2 Catalyst 3750-E and I have to make a uplink beetwen them with optic fiber but the uplink will be at 1GB not with 10GB but the default port speed is 10GB on the optional module.I have a CVR-X2-SFP but I don´t know the cli command to convert the Te3/0/1 and Te3/0/2 on Gigabit Interfaces for SFP, what is the command?
Im just starting to learn cisco, currently I already have a cisco catalyst 3750 configured for 3 vlans, and now im planning to have another 3750 for redundancy.
have 3 Catalyst 3750 in same stack, the IOS version is 12.2(53)SE2. Today we can not telnet/ssh to this switch, but ping is ok, and switch function is ok. I try to access the console port, it show "low on memory, try again later". After I reboot the master switch in the stack, the master switch change to another switch, then I can telnet/ssh to this switch. I check the Ciscoworks server syslog report, there are many MAC address flapping error message, and I beleive the MAC address flapping occured before several weeks. ( the G2/0/15 & G3/0/15 is connect to a VMware ESX server and the EtherChannel config mismatch with this Catalyst 3750 switch ) How to mention the root cause of the "low on memory" problem and what is the abnormal memory usage ( free memory percentage below ?% )?
my Catalyst 3750 switch. Following a power cut the switch no longer boots up. The SYST light flashed green but no POST checks are made. I cannot see any boot messages from the console port either. The switch was on a UPS but some thing may have damaged the switch.
There is a requirement to configure tacacs and radius on catalyst 3750X (version 15.0) where two vrf exist.Is therer a solution to configure "tacacs-server,host x.x.x.x vrf yyy" ?? I know it is possible to configure under the "aaa group server radius xxx" the command "ip vrf forwarding yyy".Is there anything else for the tacacs-server and radius-server command?
Working on my CCNA w/ live equip, I accidentley deleted the hardware IOS- yes, beginners mistake. Upon bootup, I do not get a command prompt. I tried the recovery procedure(hold mode button before power up) recommended by Cisco to no avail. My issue is I use SecureCRT & the charaters/font is ineligible. Here is an example of what I see when typing; "þæb Bûÿÿûýÿ¿¿ÿÿ". Currently, the SYST indicator is blinking & I have no access.
I just want to know how many ospf routes a catalyst 3740 support ?The cisco doc or datasheets doesn't answer this clearly. Because there is only a statement "unicast routes"!? Does this means all unicast routes (eigrp, ospf....static)If so, there is a statement for about 10k routes ?
I have a Catalyst 3750 I want to add to an existing stack (same models) through the stackwise port We use some complex QoS and other features on our network, and I'm not sure how much configuration I need to do on the new switch before adding it to the stack. Since this is going into an existing setup?
Any know how to close these open ports on my Cisco 7606 router? Any know what these TCP ports are used for? : 49 - Not sure what this one is other than what IANA reports about TCP port 49 4510 4509 2222 : I'm sure I could add an ACL to block communications to my router based on this ports but would rather figure out how to close 'em so this already overloaded router doesn't have additional processing.
I have an old Win XP (SP3) desktop that just recently has a problems with attachments to emails. It simply won't allow me to open or save them.
I have tried both hotmail and btinternet.com (yahoo) emails. When I click on an attachment and choose either 'open' or 'save' the small grey box appears that usually shows the file action and download time info. However no info appears in the grey box and it just sits there (for hours). I have tried the same email attachment on another PC and it works fine so the problem is specific to this PC.
The file size is not a factor, as it fails to open attachments of only 100kb, nor is the file type (pdf). I can download large pdf files from a website with no trouble. the problem is just email attachments.
I tried switching off the Windows firewall, but this made no difference. The a/v is AVG9.0.
We have two Cisco 2960 TT-L switches. I'd like to reduce single points of failure and have dual servers for most tasks. For example, two firewall servers and two web servers. Should one server fail the other will act as a failover.I'd like to extend the redundancy to the switches, and am thinking of connecting one web server to one switch, and one to the other. In the event a switch failed a set of servers would still run, and be able to talk to each other.I'd like to run two VLANs, one for the LAN, and one of the WAN, and connect the two VLANs on each of the switches with the associated VLAN on the other switch.
I was browsing the Software Adviser on Cisco's website to look for a suitable IOS image, for a 3750. The system displayed a couple of suggested IOSes. there was no mention of IOS 15.0SE version.Could the Software Advisor be not up to date with the current Catalyst IOS releases?
I have CISCO catalyst with VLANs (VLAN ID 33, 36, 40-53) configured. I need to configure port mirroring in Switch 3750 for NAC (Network Access Control). I need to Monitor all the VLANs. Here is the SPAN configuration of switch: [code] Monitor session 1 source vlan 33 , 36 , 40 – 53.Monitor Session 1 destination interface fa 1/0/8 (here I am not able to set encapsulation dot1q ) because the error occurred saying %one or more dest port do not support the encapsulation%.
