Cisco Security :: Mini Data Center Design For 6500
Sep 7, 2011
I have some doubts about the best solution for the design of a mini data center.In the data center there is a 6500 with FWSM module installed, there are some vlans created, all of them in the fwsm module. For example, a back end server to communicate with a server in the front end must always pass through the firewall. My question is, all these flows passing in the firewall does not degrade the speed of communication?What is the best practice, just pass the communications with the WAN in the firewall, and the vlan communication between front end and back end is only set up in 6500?
View 13 Replies
ADVERTISEMENT
Mar 2, 2012
I have some doubts about the best solution for the design of a mini data center.In the data center there is a 6500 with FWSM module installed, there are some vlans created, all of them in the fwsm module. For example, a back end server to communicate with a server in the front end must always pass through the firewall. My question is, all these flows passing in the firewall does not degrade the speed of communication?What is the best practice, just pass the communications with the WAN in the firewall, and the vlan communication between front end and back end is only set up in 6500?
View 6 Replies
View Related
Feb 26, 2012
What are the list require for setting up Data Center for either University or Government?
View 4 Replies
View Related
Jul 2, 2011
We are in middle of deploying WiSM2s on our network, from a design point of view i am confused on where to position the WiSM2s. We have 2 DCs and from best practice architecture view WLC should not be placed on the Data Center segment, but it seems that is the only option i have.
DCs host 6509s, i am planning to host 1 WiSM in each DC, all clients will be on seperate subnet. Do you foresee any issues with this deployment or any security issues? authentications are followed as per cisco recommendation, clients authenticated against AD through ACS so it is fairly secure.
View 3 Replies
View Related
Feb 22, 2012
How to trace firewall and load balancers placed in data center.
View 6 Replies
View Related
Oct 21, 2011
We have had this issue for a long time in our enterprise. I don't work all the time in networking. I did a CCNA a while ago. We used to have a network manager who set everything up but he left the company. Basically we have this issue that if you connect to Cisco L2TP Remote Access VPN you can't access any resources at our Data Center. Also if you connect directly to the LAN.
View 10 Replies
View Related
Apr 4, 2011
We are planning to purchase an ASA 5505 for a VPN solution for one of our offices. The office has 50-60 user at peak load who would be connecting over the S2S VPN to the datacenter.
From a hardware standpoint, can the ASA 5505 handle this load. The licence is for unlimitedf inside hosts but what is the actual limit on this platform?
View 1 Replies
View Related
Jan 11, 2012
Any recommendations for top of rack switch for within our data centre.Dual power is a requirement, but bandwidth and through put will not be huge as such I have been looking atthe WS-C3560X-48T-L and the Nexus 3048.
View 1 Replies
View Related
Nov 4, 2012
We will be moving to a new data center in the very near future and with them our WAN IP addresses will be changing. Any best course of action for changing the IP addresses throughout the firewall configuration? Would it be possible/suggested to export the running-config, make the neccessary changes, then import the config? I am familiar with the ASA 5510 only so far as changes are required. It is not something I work with on a regular basis.
View 5 Replies
View Related
Oct 11, 2012
We have backup data center where I am now planning to provide backup internet service ( in the case where there is internet down or power outage at main server room) . I have a pair of Cisco ASA's 5540, one of which I need to move to backup data center ( BDC), Presently I have ADSL router at disaster serve room with static public IP from ISP.
Currently, I am publishing all my internal resources through ASA. Now my questions, if I move Standby ASA to Disaster Server Room. How I can publish the same internal resources through standby ASA and make it standby as active during the down time of main server room
View 6 Replies
View Related
Apr 17, 2012
is it possible to run hsrp on two routers (not l3 switch) connected to a l2 switch ? if so does the two routers need a back to back connection ?
i know if use two l3 switches (instead of routers) and connect to a LAN switch then we need a back to back connection between the L3 switches
also can we use hsrp on vss on 6500?
design
1800 router 1800 ROuter
| |
| |
|---------- L2 switch-------------------------------|
if the above design is acceptable how does the routers know which one is active and which one is standby ? if we need a direct connection between two routers they have to be on a seperate subnet and routers dont allow broadcasts - so how will hsrp work on routers ?
L3 switch --------------------------l3 switch
| |
| |
|---------------L2 switch---------------|
View 8 Replies
View Related
Apr 8, 2013
I have Cisco 6500 with FWSM and ACE module which are in one central DC. Also we have four different Datacenter (Hub & spoke) and in our FWSM we have configured four contexts in central DC FWSM for each DC. Each DC servers are different VLAN and IP subnet. Now we have to configure ACE module for load balancing among those different subnet servers. What will be the design and configuration for this solution? Like routed or one-arm mode design.
Scenario Example:
1. App Server01
IP:192.168.11.5/24
GW: 192.168.11.1 in FWSM
FWSM Context: DC1
Physical Location:DC1
VLAN:11
[code].....
Now customer requirement is we have to load balance using ACE between these App Servers which are in different context s in FWSM and one Server is not FWSM. how to configure or design or placement of ACE and FWSM for above scenario.
View 4 Replies
View Related
Oct 8, 2012
Lucien is a customer support engineer at the Cisco Technical Assistance Center. He currently works in the data center switching team supporting customers on the Cisco Nexus 5000 and 2000. He was previously a technical leader within the network management team. Lucien holds a bachelor's degree in general engineering and a master's degree in computer science from Ecole des Mines d'Ales. He also holds the following certifications: CCIE #19945 in Routing and Switching, CCDP, DCNIS, and VCP #66183
View 1 Replies
View Related
Feb 21, 2013
I have a problem to solve in our data center, see attached drawing. HW: Our core switches consists of two stacked C3750 with ip routing. What I want to do is probably simple but I haven't been able to figure out the best method.
VLAN10 and VLAN20 should not be able to communicate with each other. (ACLs?)VLAN10 will have it's own default route/firewall. Both VLAN10 and VLAN20 should be able to send server backups to server in VLAN30. All 3 V LANs come in on a trunk from a pair of stacked C2960-S. I need it to be able to scale if we have 50 VLANs for instance, hopefully without long complicated ACLs. I've been considering VRF's, PBR but can't decide what's the simplest solution to this problem. I have never done this before so I would prefer to start off on the right foot.
View 1 Replies
View Related
May 15, 2013
I have a Dell Studio PC with a Dell Wireless 1397 WLAN Mini-Card. OS is Windows 7 with SP1. Intel Core 2 Duo T5800 2.00 GHz
In general I have no problems with my WIFI with simple browsing and most of my routine activities online. But any time I stream video (like youtube), music or download a large file, my WIFI spontaneously turns off. I need to either restart the computer or put the computer to sleep/wake it up for the WIFI to work again.
I have the latest drivers for the Wireless card. I scanned the forums and didn't see this problem reported elsewhere. I realize this is an old computer so I may have to install an external wireless adaptor, but I wanted to ask around before doing so.
View 8 Replies
View Related
Dec 2, 2011
I am planning to get the following Hardware;AIR-CT5508-50-K9 5508 Series Controller for up to 50 APs AIR-LAP1262N-E-K9 802.11a/g/n Ctrlr-based AP; Ext Ant; E Reg Domain..During my design, i am considering to get the following security features.I don't have WCS and Mobility Services Engine (MSE). Managing Access Points at remote/WAN office.wIPS configuration (without WCS and MSE)How Rouge APs will be detected and Prevented. Can Automated prevention be implemented.Is wIPS (with WLC 5508) support to detect and prevent Rouge AP.Is Proxy Redirection supported on WLC so that the traffic from Wireless clients will automatically be redirected to Proxy (without adding the proxy in explorers of Wireless Clients).
View 7 Replies
View Related
Apr 17, 2011
We have two multilayer switches and only one ASA 5520. I'd like to connect ASA in the way described on the picture: each redundant interface includes two physical ones, which are connected to different switches
My question is what kind of link it is necessary to have between switches to make this idea work? I'd have subinterfaces like Re1.100, Re2.200 and so on for my traffic.
I understand that correct design approach is to have two redundant firewalls with failover but we cannot purchase the second one yet.
View 1 Replies
View Related
Sep 18, 2011
My company has chosen to allow our employees to bring in and use their own personal electronic devices such as i Pads, i Phones, tablet PC's, etc... We intend to allow them to access our network with these devices. My question is if an employee decides to enable a WiFi hotspot on an iPhone, i Pad or other device and then share out that network connection we have provided to them to allow other devices to tether to it, how do we prevent or mitigate this issue with our W LAN environment?
Our current environment consists of 4400 series WLC's and 1131, 1231 and 1242 series AP's using version 7.098.218 code. We plan on migrating to 5500 series WLC's and 3500 series AP's but this will not happen overnight.
View 2 Replies
View Related
Oct 26, 2011
We bought Cisco sup engine WS-SUP32-GE-3B for 6500 switches 2 nos for redundancy. I have connected 6 systems on each sup engine ports. How to clarify whether both sup engine will forward the data while one is Master and other is standby?
View 4 Replies
View Related
May 7, 2011
having recently downloaded a bandwidth monitor widget, i notice that something is sending 1.625kb of data, OVER AND OVER. i am experiencing zero issues with my pc functionality, but am concerned about what is sending data out from my pc.in desperation, i tried a 3rd party firewall, zonealarm. even after installing it, the data continues to be sent. i have looked through my running processes, ending several auto-updaters, closed my browser and anything else i can think of that might use my internet.
View 3 Replies
View Related
Jan 10, 2006
Any data sheet or a brochure with the ASA5510 MTBF?
View 3 Replies
View Related
Oct 25, 2012
I'm having a similar problem: I'm able to mount my encrypted container-file, but when I enter the corresponding partition it looks empty. I found a work-around: if I use search and query "*" it suddenly returns all encrypted files. So they're definitely on there, they just don't show when browsing...
View 1 Replies
View Related
Feb 18, 2012
TRUECRYPT not showing the data and folders I have windows 7 64 bit, I installed truecrypt, and the after that I create a folder put some data and encrypt it with truecrypt.But after few days stranger things happend,When ever I tried to decrypt the folder it don,t show that data.Also I cann't the file which I have to decrypt.Also another partation name L which have other folders can be seen but there is no data inside my folders.I haven,t encrypt the L partation.I left the partation for a month to fine a solution after a month one day the data appears itself and also the hiden folder to decrypt also appear and finally decrypt with the password.I copy few data and closed the pc.When restart the pc again same old problem occur.I cann,t see the folder to crypt it. How to recover my important data back .the partations are all NTFS , but not the and only folders were encrypted.
View 5 Replies
View Related
Aug 2, 2012
I'm using Pix 501 with firmware: Version 6.3(3)I have problem with Pix 501:
+ transfer rate data between interface outside and inside very slow, even between 2 interface inside.
+ I have test file transfer between 2 PC connect via interface inside.
+ Results transfer 1 file 1MB with total time 60s
I don't upgrade software current from 6.3(3) to 6.3(5) via TFTP. It's error Please see attach file.
View 2 Replies
View Related
Jul 17, 2011
I have been net searching this question and I find answers relative to other Cisco products but not for the 6500 series. We are running entservicesk9_wan-mz.122-18.SXF17a.bin and would like to know how to change the default SSH listening port..
View 1 Replies
View Related
Mar 9, 2007
how to configure FWSM module in cisco core switch 6500
View 2 Replies
View Related
Dec 8, 2011
I have 2x v10000 Websense Security Gateways that are connected to 2x 6500 SUP720. When I turn on cluster management function between Websense appliance, they speak to each other only if they are connected in the same 6500. When they are connected one in every 6500 cluster management does not work. They are connected on the same physical vlan. Do I need multicast to be configured in the 6500 switches?
View 5 Replies
View Related
Dec 21, 2011
how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies
View Related
Jan 26, 2013
My system is asking for solution center
View 1 Replies
View Related
Dec 6, 2011
I was trying to use my Xbox as a media Center. But its really slow. It shows I have a low Bandwidth. My Pc is a MW 7. My current ( old) router is wired to the xbox. PC wireless. Do I need a new router?
View 1 Replies
View Related
Apr 22, 2012
We've been upgrading our WLCs to 7.0.230.0 but I've notifced after they have been upgraded they no longer appear in the controller section in License Center on the WCS. They still exist in the WCS and the audit the configuration jobs are working. I've also tried manually triggering the Controller License Status background tasks and this runs without reporting any errors.I thought it may be because the WCS was at a lower version but I've now upgraded this to 7.0.230.0 also but the WLCs are still missing.
View 1 Replies
View Related
Dec 16, 2010
I downloaded the ISO for SSE 2010, and the damned thing is too big to burn to a DVD5. I doubt seriously MS expects people to have Dual-Layer discs handy.Is this intended not to be burned, but installed from the desktop instead? I can open the ISO just fine with WinZip.
View 5 Replies
View Related
Jun 24, 2012
Can any provide me with the SKU's and pricing of the Broadband Access Center 4.2 Is this the correct version to use with the SRP527?
View 1 Replies
View Related
