Cisco Switching/Routing :: 2921 - Network Segmentation And Internet Bandwidth Splitting
Feb 24, 2012
Now I have a 172.16.0.0/16 network with a def. gw. for internet where is a MS Forefront TMG 2010 with BSplitter for traffic shaping. I purchased an 2921, 2,5 GB RAM, security+data license and an EHWIC-D-8ESG.
I made 4 subnets in a test environment with some access-lists, nothing fancy yet. How can I use FF TMG for bandwidth management, where should I put it? For those 4 subnets the def. gw. is, normally, the 2921 router. TMG is splitting traffic by client IP.
View 1 Replies
ADVERTISEMENT
May 30, 2013
I would like to connect to a 1Gb routed uplink, and then impose bandwidth limits (via shaping/policing/whatever) on a per port basis. The ports could either be configured to route, or as switchports on separate VLANS. I'm trying to identify hardware that will let me do this. The set up I have in mind is shown below.
I am wondering if the IP Services Adv software on that switch will allow that functionality?
View 3 Replies
View Related
Dec 12, 2012
I have 2 links to 2 different departments switch with an up link of 10mb. I want to guarantee that both departments get at least 5mb, but can use part of the other 5mb that not in use. Is this possible?
View 3 Replies
View Related
Nov 29, 2012
how to go about config my bureau connected to HQ and separated by a WAN link of 60mb.
This is my plansplit into halves that is 30 mb for LAN connections, internet and file serving for strictly video streaming, bureaus have routers 2800 conected to HQ HQ has a router 3900
View 1 Replies
View Related
Apr 25, 2012
I've been tasked to come up with a design to segment our internal network to reduce broadcast domain size. In addition, we are running out of DHCP available DHCP addresses. I need to have a solution that will give me more available IP's, but reduce our broadcast domain.
We are Cisco VoIP shop. Our current environment consists of dual 6509 chassis in a VSS config. We have 10 access switches that are model 3750's. Each 3750 has dual 1Gb fiber links to the VSS Core in an etherchannel configuration. We have 2 VLANS (data and voice) that spread throughout every switch. Both VLAN's have their own DHCP scope.
Our current broadcast domain is a 255.255.248.0, so we have over 2000 potential broadcast devices. Cisco recommends not having larger than 512. So my research has brought me to a design as follows:
MY DESIGN:
> Have individual voice and data VLANs for each closet switch.
> We have 10 closet switches so this would require 20 new vlans
> With every separate VLAN we would need a different DHCP scope.
> Configure 20 new DHCP scopes for the 20 new VLANs.
> Each DHCP scope would have a 512 available addresses.
> Enable IP Routing and configure EIGRP on the VSS Core and 3750's.
> I'm tossing around the idea of have each 3750 be an EIGRP Stub. Not sure yet.
QUESTIONS:
1. How to verify what I described in my design?
2. Any alternative solution that might be less complicated than configuring Layer 3 on all my access switches?
3. Any thoughts on configuring EIGRP Stub vs. having the VSS Core do all the work?
4: Any template that I could base my 3750 config from?
View 6 Replies
View Related
Oct 22, 2012
have a 2921 with 3 segments, let's say 172.16.0.1/24, 172.16.2.1/23 and 172.16.5.1/24
How can I browse for computers (in Network... Windows xp/7) from other segment?
View 7 Replies
View Related
Nov 21, 2012
the cisco 2921 Router has a default ip hhtp access class command found in it. Just i changed the default IP to the new ip i will use.The Router is accessable from the LAN only but not from the internet configured the Public ip . I think this is due to the standard access list 23 . how will i access the Router from the Internet using the Public IP.
View 6 Replies
View Related
Nov 5, 2012
We run a workers camp here and we currently have around 2500-3000 people using our 100MB internet pipe. We are upgrading the pipe to 200MB soon but I still would like to limit how much bandwidth everyone is using.
We allow streaming media such as Netflix, youtube, apple TV and of course .So it gets full pretty fast. We have QOS implemented although I wasn't here when it was done so I don't know a lot about it. I would like to limit IPs to a certain amount of bandwidth. [code]
View 1 Replies
View Related
Apr 15, 2012
I am working on Videoconferencing solution between two location. locations are now being connected through IPSEC site to site VPN. Since we are having a common internet link for VPN as well other corporate use we have to prioritize the internet bandwidth for Videconferencing. is there any way i can prioritise videoconferencing traffic by ports? following are the configs done on the cisco 2801 router with Version 12.4(15)T10.
!interface FastEthernet0/1description ILL_12Mbpsbandwidth 20480ip address 94.*.*.180 255.255.255.248duplex autospeed autopriority-group 1!
ip forward-protocol ndip route 0.0.0.0 0.0.0.0 94.*.*.*
!!no ip http serverno ip http secure-serverip pim ssm default
access-list 199 permit ip host 94.*.42.* host 78.*.*.130 ( VPN peer IPs both ends)priority-list 1 protocol ip high list 199
Interface status
===========(code)
View 6 Replies
View Related
Feb 6, 2013
I have 5 linux and 3 Microsoft 2008 Servers, each connected to 2 Cisco 3560 Switches. The 2 Cisco 3560 switches are connected to 2 different Cisco 515e Pix. Is it possible that if i enable Port SPAN in any of the switchport and send a copy of traffic to any of the windows 2008 server, will i be able to monitor the bandwidth of the servers (Here I am only looking for traffic going from servers to PIX and then to internet, also vice versa).
Also will wireshark be able to differentiate specify the bandwidth of each servers seperately ?
View 3 Replies
View Related
Jul 4, 2012
We are in the process of switching our infrastructure of our routing/firewalls/vpns over to cisco. We are switching our first location and one of the issues I'm struggling with is windows authentication pass-through for internally hosted web pages. Meaning, user inside our network has the 2921 as their default gateway, they try to access a web page that is hosted on the internal network but is secured with windows authentication. In the past, because they are logged into the domain internally, the website authenticates and loads. After switching to the Cisco, it asks for a password even though they are logged in.
Because its the web server that actually authenticates I'm not sure why the router isn't allowing that to happen, but I can't think of anything else that could be causing this behavior.
View 4 Replies
View Related
Jun 4, 2011
I have Mediacom cable and internet and I was trying to hook both up in the same room.When I connect it directly from the internet cord to my modem it works fine.But when I connect it using a splitter to hook it up to my modem and tv, only the tv works.So, how would I get this to work??
View 1 Replies
View Related
Feb 16, 2012
It seems that Cisco mentioned, in their data sheet of 2921 ISR, that it can support up to 50Mbps. However, from Google search, it says 2921 can handle 100Mbps with no problem.I am planning on getting 2921 ISR in small office where only ~10 people are connected to it. And we do have two different line of 100Mbps ISP internet line and wish to share them in the office.I am confused why ~$2k router can not support 100Mbps where ~$100 consumer routhers like Linksys has no problem with handling that speed. The reason why I am planning on 2921 is the rich feature like Voip solution (CME) it offeres. I have several remote offices that needs to be connected with Voip phones. and I could go with UC500 series but it seems to me UC500 does not support IP Phone 9900 series.
View 5 Replies
View Related
Jan 12, 2013
i have a router 2921 with the aproprieted voice card for E1 and licenses. I would like to know how to configure it for incoming and outgoing calls. I already configured the ephone and SIP phones for internal calls. now i just need to configure it for send and receive external calls.
Router:
IOS: c2900-universalk9-mz.SPA.153-1.T
CME: 9.1
ISP from Brazil:
type: E1
signal: R2 Digital
Channels: 32
Phone Number Iniital: XXXX-9250 (main)
ephones-dn numbers: 9250 to 9280
View 5 Replies
View Related
Nov 20, 2012
I have bought DRAM MEM-2900-2Gb for 2921, and received the following error...
Validation failed for DIMM0
*****System halted*****
%SPD info: DIMM0: Invalid DIMM type (only UDIMMs are supported)
View 5 Replies
View Related
Jun 22, 2012
We have remote office where we have 2921 router with 6 layer 2 switches. We have few servers which need to be in specific vlan.
2921 router does not have switching engine we are using this to support VOIP.
So on 2921 router i created 6 sub interfaces for each vlan and assign them to their specfic vlans. Then I have trunk connection to switch 1. Now switch 1 connects to all other switches in the network. As our company design all layer 2 switches should be transparent mode. i tested them i can ping from one switch to all other switches.
Router vtp mode i set to transparent mode and from all switches i can ping the router sub interfaces.
View 4 Replies
View Related
Oct 2, 2012
I have a CISCO2921. I am not able to bring up its gi0/1 interface. It stays down down.
[URL]
I know that interface is not coming up because of "no media" below. Router#sh int gi0/1 | i media Auto Duplex, Auto Speed, media type is no media
I have tried media rj-45 and media sfp which have also not worked. The other end of this link is ethernet handoff. What is it that I have to do for the link to come up? If I change the connection to gi0/2, I think that will work because I see this for gi0/2:
Router#sh int gi0/2 | i media Auto Duplex, Auto Speed, media type is RJ45
View 10 Replies
View Related
Jun 10, 2012
configuring up a 2921 router for remote site which is fitted with 24 port Etherswitch module.As part of this setup I have defined 3 vlans on the router, but when I go onto etherswitch and for example set switchport access to access vlan 3 it is not aware of this vlan.Do I have to set up trunk inbetween Router and its etherswitch?Wish I had ordered seperate switch as it would have been easier or am I missing something.sho vlan-switch shows my vlans but on swicth sho vlan brief does not.
View 10 Replies
View Related
Oct 16, 2012
An interface on 2921 router is not coming up. When I shut/no shut the interface, I see this:
Router#sh log | i 0/2
Oct 17 08:55:06: %IP_VFR-7-FEATURE_DISABLE_IN: VFR(in) is manually disabled through CLI; VFR support for features that have internally enabled, will be made available only when VFR is enabled manually on interface GigabitEthernet0/2
Oct 17 09:00:35: %LINK-3-UPDOWN: Interface GigabitEthernet0/2, changed state to down
[Code]...
View 3 Replies
View Related
Mar 21, 2012
This is for a short temporary time until I get cisco 3560s in place. I have a 2921 configured and it is connecting to an HP non managed non VLAN switch and I cant get any traffic to pass from my computer to the router (pings or anything). Here is brief configuration that should be enough. [code]
Here are my vlans 1-default, 2-management, 192-data, 92-voice, i believe its running rapid spanning tree protocol. Do i have to take off encapsulation on my data vlan to get it to work or make the data vlan default vlan for everything. I am lost as to why this is not working.
View 5 Replies
View Related
Sep 15, 2012
I have a 2921, and I have 4 network segments. In segment 172.16.0.0./27 I wand to "pair" somehow connections. I mean IP 172.16.0.x has to have MAC aaaa.bbbb.cccc and so on, and not accept connections otherwise.How can I do that?
View 7 Replies
View Related
May 28, 2012
Is it possible to configure a Cisco2951 and a Cisco2921 in HSRP?
View 1 Replies
View Related
Jun 30, 2012
I have a 2921 with 4 segments: [code] My DHCP server is 172.16.5.2 and I need to serve clients from 172.16.2.0/23 by MAC address and only to that segment.
View 2 Replies
View Related
Nov 15, 2012
What I’m looking to do is setup a net-flow monitor for traffic going across a PIX firewall. I know unfortunately I can’t do this directly from the PIX because it does not support net-flow.
I do have a 2921 router on the same network that I have net-flow enabled to monitor traffic across the MPLS Connection.
Since the traffic for the MPLS is going out a direct interface I have applied the IP Flow egress/ingress commands to that interface to obtain the net-flow data I need. The PIX firewall however is not a direct interface so this can’t be done. I have done a little reading and believe I could use a policy map to create a “filter” so that any traffic that meets the ACL associated with the Policy-Map would get sent to net-flow monitor.
My question is how do I set that up so that so I can have the two net-flow data “streams/sources” go to separate net-flow ports so that I can monitor them independently of each other or is that not possible?
Both devices are connected to a 3750X switch; however neither is connected to a 10GB port. To my understanding that means I can’t run net-flow on the switch itself.
View 3 Replies
View Related
Jul 16, 2012
got a RPS2300 with 4 cat3750g48ts on it (yeh I know - Cisco documentation allows only 2 of them ). What will happen if I connect an additional Cisco 2921 router?
View 0 Replies
View Related
Mar 8, 2012
I have a 2921 where I am shaping some traffic based on sub net on my lan. I have applied the shaping policy to the lan interface in the outgoing direction.
Topology is as follows:
ISP - ASA - ROUTER - LAN
Policy map:
Policy Map shape-lan
[code]....
I am seeing a lot of no-buffer drops on the policy and I am wondering what the best solution is to solve this:
Class-map: tc-class (match-any)
8730680 packets, 10803689863 bytes
5 minute offered rate 4453000 bps, drop rate 0 bps
[code]....
Should I just be increasing the queue-limit or should I be changing something else?
View 12 Replies
View Related
Jan 1, 2012
I have a 2921 router and want to use mpls feature. Right Now we are using c2900-universalk9-mz.SPA.151-4.M1 image but mpls static cross connect” is not working with this image. And will this image(c2900-universalk9-mz.SSA) be worked?
View 2 Replies
View Related
Oct 25, 2012
I can not find any information about management port of Cisco ISR 2911, 2921 and so on. There is management port in specification of 2911 and 2921 and I do not know if this port can be as a simple Ethernet port – forward traffic in/out on L3.
View 2 Replies
View Related
Jun 9, 2012
On 2921, how do you quite service-module session and get back to the router?
View 3 Replies
View Related
Mar 10, 2013
I have 2921 router and I have 3 very basic switches that I need to connect to the router. The switches have very basic default configurations and there is no way to edit them, so I only have one VLAN and one default gateway. I can't assign the same IP address to each LAN port. I'm not sure how to make this setup work.
View 12 Replies
View Related
Nov 9, 2012
I have a Cisco 2921 and a 3750 stack. I want to use both interfaces on the 2921 to connect to the 3750 stack switch 1 and 2. Is this possible using same ip subnet?
View 2 Replies
View Related
Feb 12, 2013
I am configuring DHCP pool for voice vlan on cisco 2921 router.
Here is the setup.
2921 router -> 3750 -> 2960 PoE -> 7942 IP Phone
Router Config
ip dhcp excluded-address 10.146.54.1 10.146.89.50
!
ip dhcp pool VoiceVlan
network 10.146.54.0 255.255.255.0
subnet prefix-length 24
dns-server 10.144.68.32 10.144.68.33
option 150 ip 10.146.68.36
default-router 10.146.54.1
netbios-name-server 10.144.68.32 10.144.68.33
netbios-node-type h-node
[code]....
View 1 Replies
View Related
Nov 6, 2011
i have an 2921 connected to an Catalyst 3560. My router interface shows quite a lot of input queue drops. Load is not too much max 5/255.
View 1 Replies
View Related
