Cisco Switching/Routing :: 3550 - Redirecting Port 80 Traffic?

Dec 12, 2011

How do I redirect my port 80 traffic to my Trend Micro IWSVA in my 3550 switch? How do I use PBR? Can I use WCCP in my 3550?

View 3 Replies


ADVERTISEMENT

Cisco Switching/Routing :: 3550 / Routing Protocol Neighbor Between SVI And Routed Port?

Apr 18, 2012

I have a collapsed core design with routed ports between all components. Access layer switches, data center switches, core/aggregation. All routed (no spanning-tree at all).Now...I have to add an IBM BladeCenter with a BNT layer 3 switch to my topology. However, those nasties don't seem to support routed ports.How can I have a routed port on my cisco switch and a standard access port on the BNT and still establish an adjacency with an SVI? I am running OSPF, but I am labbing this in my home lab with 2 x 3550s and EIGRP.
 
On SW2:
*Mar  1 00:57:00.711: EIGRP: Received HELLO on Vlan100 nbr 10.1.1.1
*Mar  1 00:57:00.711:   AS 999, Flags 0x0, Seq 0/0 interfaceQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1
*Mar  1 00:57:02.303: EIGRP: Sending UPDATE on Vlan100 nbr 10.1.1.1, retry 9, RTO 5000 tid 0
*Mar  1 00:57:02.303:   AS 999, Flags 0x1, Seq 17/0 interfaceQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1

[code].....

View 10 Replies View Related

Cisco Switching/Routing :: 3550 - Port Security Verification

Apr 1, 2013

I'm trying to test port-security in my c3550 but when I show port-security int f0/23 shows it only "Disabled" as below:
 
run
interface FastEthernet0/23switchport access vlan 200switchport mode dynamic desirableswitchport port-security mac-address stickyspanning-tree portfast 

View 2 Replies View Related

Cisco Switching/Routing :: Port Unreachable Messages On 3550 Switch?

Jan 24, 2012

While working at a client site today, I was troubleshooting some ICMP connectivity for a network we have created.I turned on 'debug ip icmp" on the 3550 switch int he middle, and was inundated with the following debug output:
 
Jan 25 11:01:14.641: ICMP: dst (172.16.1.7) port unreachable rcv from 172.16.1.5
Jan 25 11:01:14.641: ICMP: dst (172.16.1.7) port unreachable rcv from 172.16.1.5
Jan 25 11:01:14.641: ICMP: dst (172.16.1.7) port unreachable rcv from 172.16.1.5
Jan 25 11:01:14.641: ICMP: dst (172.16.1.7) port unreachable rcv from 172.16.1.5

[code]....
 
This output fires several times a second, and based on how often it is firing, I am curious if it may be a culprit with respect to the fact that the client has indicated that they have some slow internet.Should the next step be to look at the workstation at 172.16.1.5? 

View 10 Replies View Related

Cisco Switching/Routing :: 3550 / Access List - Block One Ip Or Port

Jan 9, 2012

I have a layer 3 switch, 3550.I have several vlans on there just for playing around with. One of the vlans, has a vonage linksys box attached to it with a UK number attached. From time to time telemarketers call at 03:00 in the morning, this as I'm sure you can imagine is not much fun. The linksys box gets 192.168.3.3 as it's ip.The switch is connected to a non cisco router at 192.168.0.1
 
interface FastEthernet0/24
no switchport
ip address 192.168.0.2 255.255.255.0
 
I was thinking a time based access list would work best I have tried several variations but the phone still rings. I have tried access-list 1 deny host 192.168.3.3 permit ..... and more extensive lists but the phone still rings. I have not applied the time-range yet, so that's not the problem.I have applied the list to the vlan interface and to fa0/24 but it's not working.

View 3 Replies View Related

Cisco Switching/Routing :: 3825 ISR - Traffic Route From Switch Port To Router Port

Jun 5, 2013

I'm fairly new to Cisco products am in the process of developing my network knowledge on a deeper level.  I have a 3825 with a HWIC-4ESW and I'm struggling to fully understand how the two "see" each other.  I've setup a V LAN with a layer 3 address on the HWIC and added the switch ports to it.  This seemed to allow devices connected to the switch ports to talk to the built-in router ports.  I thought this was all making sense until i applied an access-list to the router port.  It's a simple ACL i'm just using for testing and the only thing it does is blocks telnet from anywhere.  I know the ACL is setup properly because if I connect a device directly to the router port i cannot telnet to the port.  However, if i connect a device to one of the switch ports, i am able to telnet to the router port successfully. 

It seems that I'm missing something with how traffic flows from the switch port to the router ports and how the two "see" each other. 

View 2 Replies View Related

Cisco Firewall :: Redirecting Traffic To Proxy From ASA 5505

May 20, 2011

I have ASA 5505 with base license. I like to install proxy server in my network.I configured below commands to forward my traffic to proxy server from my ASA.

If there is any configuration that i need to configure.And if possible send me the configuration guide to setup SQUID server. ( Actually it was set up by the 3rd party vendor)

View 1 Replies View Related

Cisco Firewall :: Redirecting Traffic To Squid Server From ASA 5505?

May 12, 2011

I have ASA 5505 firewall with base license.I am using 10.91.40.0/24 IP series.Below are the requirements that i need to configure

1. First 30 IP's need to have direct internet access.

2. All remaining IP traffic i need to send proxy server( Squid server).
 
Note that my ASA 5505 is in base license and also tell whether my ASA is support for this feature.

View 2 Replies View Related

Cisco Firewall :: ASA 5505 - Redirecting Http And Https Traffic To Proxy Server

Aug 5, 2008

I have an ASA 5505 that I am using to connect my contractors to via an inside interface, the outside interface is my private LAN. I have setup on our corporate Proxy server to allow traffic from my outside interface of my  ASA to go to the internet without credentials BUT log internet activity. The question is I want to know if the ASA can send that http & https traffic to my proxy server and all other traffic to my default route? I want to be able to send all internet traffic to my proxy server. This will avoid me asking the contractors to place proxy credentials in their browsers.

View 6 Replies View Related

Cisco WAN :: Outbound Port Forwarding And Redirecting 800 Series

Sep 18, 2011

I've tried a few different ways unsuccessfully so thought I'd ask here.I'm trying to forward an outgoing port on a Cisco 800 series router. ie. When a user inside the network connects to the router on port 1234, it opens up the same port on a server on the Internet.

View 2 Replies View Related

Cisco Switching/Routing :: VTP Traffic Not Seen On SPAN Port On 3750

Dec 12, 2011

Been dealing with a strange problem for several days now.  It started out with a problem that I thought was VTP related but ended up being something else.  I setup a span port on a 3750 that I am connected to that was mirroring the trunk connection coming into the switch.
 
Never saw an VTP traffic come across the connection but doing a sh vtp status indicated the traffic was arriving and getting processed.  When I found some debug commands (debug sw-lan vtp), I was also able to see the packets go between switches.  Seeing this issue concerns me that there is other traffic that isnt showing up during a span session.
 
I know that doing a span on a switch, especially using a trunk port as a source, isnt a good idea.  Since I didnt have a TAP at time, this was my only choice.  I have since borrowed a NetOptics TP-CU3 tap from a good friend and was able to confirm the VTP traffic was going across the trunk connection between switches.
 
All of my 3750's are running 12.2.55.SE.

View 8 Replies View Related

Cisco Switching/Routing :: ASA 5505 Dropping Port 443 Traffic?

May 10, 2012

Networking is not my gig, but it has to be at this very moment.  We have an ASA 5505. Let me explain what's going on.
  
On Tuesday I wanted to be able to use the ASDM since there is less room for error.  But we only had a console set up.  So I ran the following commands...
 
in ($config)   
http      of course didn't do anything incomplete command
http 192.168.1.2 255.255.255.255        didn't anything incomplete command
http 192.168.200.254 255.255.255.255 inside 

[Code]....

Everything started working after that.  Everything worked fine all of wednesday and thursday.  Then this morning it stopped processing again.  When I traceroute it gets to the machine that is hooked up to the console and stops.  So I'm guessing its actually getting to the ASA router and being swallowed up again...

View 23 Replies View Related

Cisco Switching/Routing :: 4510 - Command To See If Port Was Ever Up And Passed Traffic

Apr 24, 2012

I am looking to find a command or counter to tell me if a cisco switch port on a 4510 was ever up and passed traffic.  I want to shutdown all unused switchports on our access switches.  But before I do that I need to make sure device is just not off or the person is away on vacation.  If I do sh int interface, is there a counter I can reference.

View 4 Replies View Related

Cisco Switching/Routing :: 3750 - How To Isolate Fiber Port Traffic

Jun 18, 2012

We would like to setup a link to our DR site that is separate from our main network traffic.  This link will be used by an EMC VNX SAN for replication traffic.  The SAN will be plugged into a fiber port on a 3750 switch and going out from the same switch (going in as multimode, going out as single mode) into a patch panel that runs over to the DR site (about a mile away).  At the DR site it will go from the fiber panel into another 3750 switch which ends up going back out of that switch into our DR SAN.
 
I'm wondering what the best way would be to configure the fiber ports to accomplish this.  I'm affraid that the replication traffic will find it's way over through another route and congest our main network unless configured appropriately.

View 4 Replies View Related

Cisco Switching/Routing :: SRP547w - Allow Traffic On Port 25 From External IP Filter?

Nov 16, 2011

Can the SRP547W be configured to allow traffic on port 25 from an external ip range to an internal address?

View 0 Replies View Related

Cisco Switching/Routing :: C2960S / Prevent Traffic Per Port Or Inside VLan

Nov 27, 2012

I want to know what is the best way to black traffic inside the same VLAN, this VLAN is a user VLAN, it means that I am talking about access layer.I wanted to use private vlan, but C2960S doesn't support this feature. Any other way to prevent any to any traffic in the user vlan, this vlan only have to speak at the Layer 3.

View 2 Replies View Related

Cisco Switching/Routing :: How To Limit Broadcast Traffic On 3560 Switch Port

Dec 17, 2012

How do I limit broadcast/mulitcast traffic on a switchport to e.g. 5000 pps ? I don't want the port to shut down, just block or drop broadcast traffic that exceeds 5000 pps.

View 19 Replies View Related

Cisco Switching/Routing :: Unexpected Traffic On Nexus 5000 Trunk Port?

Feb 6, 2013

So I took a laptop with wireshark and plugged it into a nexus 5000 port that is configured as a trunk with 3 vlans allowed on it. The laptop was seeing all kinds of traffic on the wire, most of it was not involving my laptop.
 
For example: Server A VLAN 10= 10.10.10.1  Server B VLAN 20= 10.20.20.1 and wireshark laptop is plugged into a trunk port which is allowing those vlan's. The vlan's are routable.
 
10.10.10.3 is seeing the entire conversation when 10.10.10.1 backs up 10.20.20.1 even though it has no reason to see it. It is as if the trunk is spanning traffic to the laptop port. No span is setup however. It's really weird. This is not just broadcast traffic, but actual tcp taffic between Server A and B. Why would a trunk port see traffic between 2 other servers talking to each other on the vlan.
 
Trunk port configuration below:
 
Interface Ethernet 141/1/3 
switchport mode trunk
switchport trunk allowed vlan 10, 20

View 5 Replies View Related

Cisco Switching/Routing :: 3524XL Cannot Access Any Traffic From Gigabit Port Over Fiber

Nov 20, 2011

We have Cisco 3524XL switch, Motorola AXS1800 chassis. I am configuring this cisco switch so I can connect AXS1800 traffic thru cisco 3524XL, on switch port gigabit 0/1, I am using cisco Part no. WS-G5486 (1000Base-LX) connector to connect to AXS1800, both port are member of vlan 200 allowed, and configured dhcp-server 192.168.0.1, but still I can't ping any host or host can't get DHCP server.

View 2 Replies View Related

Cisco Switching/Routing :: 3750E - Sequestering Traffic On A Router-enabled Port

Nov 20, 2011

Is there a way to use the "no switchport command to enable routing on a port and yet sequester it from traffic on other vlans within the switch?
 
The switch in question is a 3750E

View 2 Replies View Related

Cisco Switching/Routing :: 3524XL Can't Access Any Traffic From Gigabit 0/1 Port Over Fiber

Dec 26, 2011

We have Cisco 3524XL switch, Motorola AXS1800 chassis. I am configuring this Cisco switch so I can connect AXS1800 traffic thru Cisco 3524XL, on switch port gigabit 0/1, I am using Cisco Part no. WS-G5486 (1000Base-LX) connector to connect to AXS1800, both port are member of v lan 200 allowed, and configured  dhcp-server 192.168.0.1, but still I can't ping any host or host can't get DHCP server. I have attached my config file for your review.

View 25 Replies View Related

Cisco Switching/Routing :: 6509 - Block All FTP Traffic On Port 21 From Servers In Network

Oct 3, 2012

I am attempting to block all FTP traffic on port 21 from the servers in my network, and only allow FTP from one server to go out.
 
I have created the following ACL
  
access-list 101 Permit ip any any
access-list 101 Permit 21 1.1.1.1 0.0.0.0 any
access-list 101 Deny 21 any any
 
and have applied it to my truck VPN that goes up to my firewall
 
int Vlanxxx
ip access-group 101 out
 
But when i test ftp is still allowed by all servers.

View 6 Replies View Related

Cisco Switching/Routing :: Limiting Outgoing Traffic On Single L2 Port On Nexus 7000 1GB

Aug 4, 2012

I am trying to limit the incoming and outgoing traffic on a l2 port to 8mbps for a ip subnet within the nexus 7000. The port is connected to my ISP router which has a bandwidth of 20mbps.Policing won't work on a l2 Port and shaping cannot be applied on a port level. url...I have been reading thru the qos guide for nexus release v6 and have problems understanding the different queues.

View 3 Replies View Related

Cisco Switching/Routing :: How To Setup Traffic Shaping On 4500X Outbound Port To WAN Routers

Mar 26, 2013

We have some ASR WAN routers which have a dedicated 400M interface to a remote site.
 
Servers on our Local network source the data through some firewalls via 10G interfaces, which connects to 4500X WAN switches then to the Routers on 1G links.
 
The sources are rate limiting the traffic but the routers are periodically dropping packets which I think is mostly due to burstiness in the traffic between as it traverses through from 10G links to 1G then to 400M. 
 
How to setup traffic shaping on the 4500X outbound port to our WAN routers.I'd like to see if we could buffer and smoothe out the traffic as it exits the 4500X WAN switch 1G port to the WAN Routers.

View 1 Replies View Related

Cisco Switching/Routing :: C2960G / C3750 - Any Way To Filter (on Ingress Port) Type Of Traffic

Jun 22, 2012

I have couple C2960G and C3750. Is there any way to filter (on ingress port) type of traffic? I would like to allow IP only, and discard (i.e.) IPX, or other garbage, that any device can produce.I have tried to find something about this, but only thing I have found is feature : protocol filter, which doesn't seems to be working on my hardware.

View 6 Replies View Related

Cisco Switching/Routing :: 1433 - Span Port Configuration To Listen To Specific Traffic Only?

Nov 2, 2011

Is it possible to configure the span(switch port analyzer) port and restrict it to only listen to ingress and egress of TCP/1433 from the source port?

View 2 Replies View Related

Cisco Switching/Routing :: SG300-10 See All Traffic From All Connected Devices On Any Port / Where To Connect Listening Device

Dec 20, 2012

In my LAN environment, I'm using two cisco SG300-10 switches. Both switches are connected by GE10 on both switches, where both ports are set to trunk.Now on all ports 1-9 on both switches, I'm having client computers attached. So I set ports 1-9 to "access" mode.All interfaces on any switch is left in default vlan.
 
Is it normal that I see all traffic from all connected devices on any port where I connect a listening device?What I'd like to achieve is, that only traffic that is meant for a specific workstation is actually forwarded to this workstation. By now it seems that I get all the traffic from everybody.

View 6 Replies View Related

Cisco Switching/Routing :: 5520 Configure Traffic Flow Between Computers Inside VLANs And Routed Port

Jul 7, 2012

How to configure traffic flow between  computers inside VLANs and a routed port? Here is the setup details:
 
1. Switch 3750-X
2. VLAN 100 - ( SVI IP address 192.168.100.1 /24)
3. VLAN 200 - ( SVI IP address 192.168.200.1 /24)
4. routed port gi1/0/48 (IP address 192.168.150.1 /24). Note: this port is directly connected to a firewall ASA 5520 port IP 192.168.150.100 /24
 
Ip routing is enabled on the switch and inter vlan traffic is flowing ok. I can ping the routed port gi1/0/48 from  any computer connected in the VLAN 100 or 200. For example computer with IP 192.168.100.25 can ping the routed port 192.168.150.1. Switch can ping firewall port 192.168.150.100 and the 'sh ip route' command shows the network 192.168.150.0 /24 as directly connected network.
 
any computer in the two VLANs CANNOT ping firewall ASA port 192.168.150.100   Is it because inter VLAN routing does not work with a routed port on L3 switch? I looked up fallback bridging, but it is meant for non IP traffic.The goal is I am trying to set the ASA port as an internet gateway for VLANs. 

View 4 Replies View Related

Cisco Switching/Routing :: Does Catalyst 3550 Support Inter Vlan Routing

Jul 24, 2007

Does Catalyst 3550 switch support inter vlan routing ?

View 12 Replies View Related

Cisco Switching/Routing :: 3550 - IP Routing In L3 Capable Switches?

Apr 11, 2012

Is L3 ip routing on by default in 3550s?  If so is the "ip routing" command visible in the config file?  If no - I assume that one would enable L3 routing with that config command.In general terms are there any IOS devices where ip routing is enabled and one would not see the "ip routing" command in config.  I.E. if that command is not visible in the config could you assume there is no L3 capablity in that device?

View 1 Replies View Related

Cisco Switching/Routing :: Configure Routing Between 2800 And 3550

Sep 18, 2012

The layer 2 switches are connected to layer 3 Switch via trunks, and routing between layer 2 switch ports with configured SVI's on 3550. All working fine. Now I'm trying to configure routing between 2800 and 3550, I tried connecting both Straight Throught and Crossover cables to the 2800 Fa0/0 and Fa0/1 ports as well as the switchports on 3550
 
No switchport commands are configured however, the lights do not go on for both straight through or crossover cables. I tried connecting 1750 routers but same result. My goal is to have all the VLANS routed to the internet with configuring NAT translation the router.

View 2 Replies View Related

Cisco Switching/Routing :: 3550 / Layer 3 Switch Not Routing?

Apr 26, 2012

I have a 3550 l3 switch configured as follows:

vlan 10 ports 1-10
vlan 21 ports 11-20
vlan 30 port 21-30
vlan 40 ports 31-40
default vlan should be vlan 21

I have the servers, switch and router connected to vlan 21.  Vlan 21 works great I can browse the internet, but I cannot ping any other vlans. router is connected to fa0/19
 
[code]
Building configuration... 
Current configuration : 4833 bytes
 !
 version 12.2
 no service pad

[code]....

View 11 Replies View Related

Cisco Switching/Routing :: VLan Routing Same Switch 3550-12T?

Mar 10, 2013

I'm having some problems setting up vlans to talk to each other on a 3550-12T switch. Its quite a simple setup I have, but I need to split my network up.
 
Currently I have a network of 192.168.25.0 255.255.255.0 I want to create a new vlan network of 192.168.30.0 255.255.255.0 So I have configured my vlan1 (default vlan) to have an ip of 192.168.25.250 for getting to the management page
 
I have created a vlan2 of 192.168.30.1 255.255.255.0 ?I have a port 10 linked to one of my 3560G's?In port 9 which is on vlan2 I have my pc plugged in with a static ip of 192.168.30.50 from the router I can ping any device on 192.168.25.x.
 
I can not ping 192.168.30.1 (which is my vlan2) nor can i ping the PC.
 
I have enabled ip routing  But I dont have a default route, this is becase we don't have a router on the network.

View 18 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved