Cisco Switching/Routing :: 851 - VPN Server Did Not Respond
Aug 2, 2012
Cisco 851 router Apple Ipad 3 using IPSEC setp get this message The VPN server did not respond. I have tried Anyconnect that gives me Cannot verify server identity anyconnect can't verify the identity of ios-self-signed-certificate-1164042433 would you like to continue anyway? hit continue and it just goes off. I was asking if If get an ASA 5505 to replace my 851 it would work in my environment.
I have 15 computers accessing the web thru the 851. I host a web site on one of my servers. I have a static ip address. I also host exchange server and have remote web access to my exchange as well as remote outlook users. I can VPN thru the 851 using the cisco client on Windows 7 and vista and even xp. Would like to use the native windows client and get my iphones and ipads working. Can the ASA5505 support the above? Was also looking at the cisco 1841 how about that one?
View 8 Replies
ADVERTISEMENT
Jan 29, 2012
How can I measure a respond time from a switchport to another? What I intend to do is to measure packets transmission from a server. I have a Cisco 3750G in stack, and the server is connecting to it with a 1GE NIC. How do I measure from Cisco prospective? Any tools available from Cisco to measure such respond time? I have a PRTG on bandwidth management on this particular server switchport and it is around 45-70Mbps, which is less than 10% of 1GE interface.
View 3 Replies
View Related
Feb 12, 2013
Setting up NTP. Currently the source for NTP within our network is our core 6500.Currently the NTP source for the 6500 are internet based NTP Servers. I would like to configure the 6500 to respond to NTP messages as the NTP Master. However will the 6500's source remain as the internet based NTP Servers?? In other words if the 6500is configured to be NTP Master, where would it get it's time from?
View 5 Replies
View Related
Nov 22, 2011
I am confused on how acl's respond on normal cisco switch (eg.6500) when applied on respective vlans. this is my scenario:on a 6506, i have 2 main vlans in question: Vlan 100 ( vendor1 - 172.16.100.0/24 ) & Vlan 200 ( vendor2 - 172.16.200.0/24 ). the requirement is,
- vendor1 should be able to access/ping vendor2 end points
- vendor2 should not be able to access/ping vendor1 end points
Now, if i ping from a host 172.16.100.11 in vlan 100 to another host 172.16.200.21 in vlan 200, will i be able to get a successful response ?
View 4 Replies
View Related
May 22, 2013
We are experiencing a lot of these RADIUS failed to respond messages on our WLC's leading to a lot of RADIUS server hopping within the WLC.We are using Cisco 5508's, 1142 AP's and a Microsoft NPS RADIUS backend. SSID is WPA2+802.1xThe first workaround to this problem was to disable aggressive failover on the WLC. But this is only a temporary fix, because in the end, there will be more than 3 consequetive clients, failing to authenticate to the WLAN network. As a result, the WLC will swap to the 2nd RADIUS server configured.When we dived into this a little bit more we saw the following messages being logged on the RADIUS backend at the time we saw the RADIUS messages on the WL:Event ID: 6274: Network Policy Server discarded the request for a user.
View 16 Replies
View Related
Apr 8, 2012
I've just purchased a new X3000 and have spent the last 2 days trying to set it up. I can connect to the router and see the settings via the default 192.168.1.1. However when I try to get an internet connection, I keep getting this message :"Timed out waiting for authentication server to respond. Please verify that you have a network connection or contact your network administrator for assistance (412)"I'm using my company-supplied VPN software to connect to my company network, and this is mandatory for me. Not sure if the issue is with this connection software.I bought the X3000 to replace my WAG160N, which was a breeze to set up compared to the X3000.
View 2 Replies
View Related
Nov 13, 2012
I have a single DL 380 G5 server with 2 NIC , i have 2 applications which run on 2 separate WAN static ip addresses my query is that can i install both the applications on a single server ? secondly can i assign 2 different WAN static ips on the 2 NIC of the same server ? if yes then how it will be done i.e whether gateway will be given to both the NIC or only a single one
View 11 Replies
View Related
Dec 19, 2012
I have a Cisco 4404 WLC that is up, has green status light, the interfaces are showing activity. I see it connected to my Cisco 6500, (Sh port status) it shows connected and trunking,; I also see a lot of activity on the interfaces. Also it will not let me console in, I can console in on my other Cisco 4404 WLC's with out and issues, so I know my cables and configure are correct. The only change a I made today was the time zone. I noticed the time was off by a hour and noticed that the time zone wasn't set so I set it correctly. Shortly after that I saw the WLC go belly o up in my WCS. I tried rebooting the WLC several times without luck. Since I can not gain access via the console I can not really trouble shoot.
View 10 Replies
View Related
Dec 6, 2012
i have server with two uplink to pair of 6500 non-VSS, this server member of vlan 100 sw-1 is active HSRP while sw2 is a standby HSRP , how can i make this server forward traffic on both Link . the server admin told me only one link is active (green) on the server while the other link is orange
View 5 Replies
View Related
Nov 12, 2012
I have 2 routers, one is an Apple AirPort Extreme with a static outside IP address, I also have a Cisco 871 with a static outside IP address. The Airport Extreme connects to a switch on the private network and has an IP address ending in .1. The Cisco 871 connects to the same Private network and it ends in .2. The 871 is setup as a VPN Server. now when clients connect to the VPN they can ping the VLan IP Address on the 871, but they can t ping any other hosts on the smae network. The hosts on the private network can ping the vlan on the 871.
View 7 Replies
View Related
Jan 7, 2012
I have Cisco 871 acting as a VPN server behind another router in the same LAN. The problem is that I can't connect to the VPN from outside network using the public IP but I CAN connect to the VPN from inside the LAN using the internal IP. I've assigned a virtual server on the main router to forward the traffic (port 1723 and 47) to the VPN router but still doesn't work.
View 2 Replies
View Related
Oct 3, 2011
I was so fed up of using the out of a box routers from PC World or the provided router from the host that I decided to splash out and buy a decent router.The Cisco 887 came highly recommended and seems to be a great purchase so far. Our down time and internet hangs vanished overnight.Having had this installed for several weeks now I thought it was time to look at my problems with it,I have 2 broadcom network cards, 1 for the LAN and 1 for the WAN, All machines connected to the LAN get full internet access but my server will not.
The router plugs directly into the Server (2008) with an IP address of 10.10.10.1 - this is listed under the LAN settings in Cisco CP Express.I have a fixed IP address which appears to be set up correctly and all my terminals / client pc's that are plugged through the switch. These all show IP's that look like 192.168.1.x / I am not an IT wizz kid but I know my way around a computer pretty well. I am guessing I need to move the router IP to within range. At present the Server sorts out the DHCP and we also have a VOIP phone system.
View 15 Replies
View Related
Sep 26, 2012
On our ISA server we have some publishing rules with the option "Requests appear to come from the ISA Server computer". This allows us to forward incoming external traffic to a network that is not directly connected to the ISA Server internal interface. We need this because our internal server does not know the route to the internet client but does know the route to our ISA Server, so the internal server sends his response to the ISA server and he sends it to the internet client.
View 1 Replies
View Related
Aug 23, 2009
I have a contained environment where I just want my servers all to have the same time. I want them to pull that time from my 3750. What do I have to enable on the 3750 to be the NTP clock source.
Keep in mind that the 3750 will not be getting the source from anywhere else, just my "set clock" command.
View 6 Replies
View Related
Jun 2, 2008
about three months ago I set our 1751 router as the NTP server of our domain for both our AVVID phone system and our Microsoft Active Directory domain. Been working excellent up until last night. Our company's building had a power cycle and the router got rebooted. Not a huge issue, since it's actually been rebooted a couple of times since becoming the ntp server.
After it's reboot, the time somehow jumped ahead an hour according to all the devices that sync with it. Phone calls stopped working and Active Directory pretty much became useless.
I finally had to break all the devices off of syncing with the router and set them back to the way they were (phone servers sync with each other, active directory doesn't sync with anything externally). It took a few hours to get everything stable again, and I'm still working on parts this morning.
Here's what I've had setup now for three months, we're in Central Standard Time:
ntp clock-period 17179971
ntp master
ntp server 69.26.112.120
and I set the "clock timezone CDT -6" It's been like that for three months and everything was fine till last night when it went out of wack.
View 15 Replies
View Related
May 16, 2013
We have a bit of a problem when deploying VTP v3 in our network. When command vtp primary vlan is issued, switch typically send query to appropriate multicast address in order to find out whether there is already some other one. The problem we are experiencing is that old primary server is not discovered, because it fails to reply on those multicasts.
This debug messages (from the old primary server )may be more describing.
*Mar 2 22:26:56.057: VTP LOG RUNTIME: Flooding Mechanism FLD-REQ: RX seq 1 ttl 1877620
*Mar 2 22:26:56.057: VTP LOG RUNTIME: Flooding mechanism DB-ADD: seq 1 time 167216060
*Mar 2 22:26:56.057: VTP LOG RUNTIME: Flooding mechanism FLD-REQ: TX seq 1. New TTL 1877621
*Mar 2 22:26:56.057:
*Mar 2 22:26:56.057: relay [Fa1/0/13]: 03 05 00 04 74 65 73 74 00 00 00 00 00 00 00 00 ....test........
*Mar 2 22:26:56.057: relay [Fa1/0/13]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
[code]....
So far, I haven't been able to find out the reason of this behaviour. In spite of that, no other strange behavior of vtp has been observed.
View 7 Replies
View Related
Feb 3, 2013
How do i go about setting up a TFTP server from laptop to Cisco ws-C3750 48P Switch, I need to pull the image off the switch and place it on an other switch that has a corrupt image, The switch which is corrupted is the same as above Cisco ws-C3750 48P.
View 1 Replies
View Related
Nov 8, 2012
I have an ASA 5510 and two IPS connections. I need ISP2 to take over when ISP1 does not respond. I have followed the following link ASA/PIX 7.x: Redundant or Backup ISP Links Configuration Example and as far as i can see this part is working. I disable interface for ISP1 and the routing table changes its static route to ISP2. When i enable ISP1 again the static route changes to ISP1. However no traffic flows to the outside. I have set up a nat rule that is the same as for wan1.
View 10 Replies
View Related
Mar 3, 2012
It is good at times but usually it gets slow and web pages come up with "The web page is taking too long to respond". When I run Diagnose, sometimes I get the computer is correctly configured, but something is wrong with the DNS server (I dont know what that is). I have a NetGear CGD24G Wireless Router that was supplied by Charter when I got internet from them again. I also run Windows 7.
View 12 Replies
View Related
Jul 30, 2012
I have a 6506-E with 720 Sup. I am trying to connect a server with HP 550SFP Nic to my 6506.If I plug the SFP from my server into my 6506 it will not link. When I plug that very same SFP into a 3750 it links fine. Makes me think that there is something I am doing worng on the 6506 Config.But, If I plug another server using a IBM LAN Card into the same port on my 6506 it connects and works fine so now I am starting to wonder.
View 4 Replies
View Related
Jun 12, 2013
I've a Cisco 1941W router which is DHCP server for data-VLANs and uses ip-helper for voice-VLANs. [code] I don't know why I can't have IP from wireless voice VLAN whereas it is OK and wired voice VLAN and conf is the same!
View 4 Replies
View Related
Jul 9, 2012
Is it possible to configure an 881 router to act as a DHCP server to 4 VLAN's each with a different scopes all through a single ethernet interface?
View 2 Replies
View Related
Apr 8, 2013
I'm due to replace a stack of 2 x 3750 switches very soon with 2 x 3750Gs. These 2 current switches are the VTP server for a small domain. I have put the config on the new switches switches and I made it a server and used the same VTP domain and password etc and got the VLAN info ported over.Now I did this a while back and noticed the switches are in transparent mode with a revision number of 0, I need to set this back to server and swap the switches out but the revision will be lower than the client switches (around rev 200), what do I need to do?
View 7 Replies
View Related
Dec 27, 2012
I would like to setup RDP on my cisco router so I can access my server from outside my network. I also have a router from my ISP that has DHCP for my external IP address and DHCP for my internal as well.
View 3 Replies
View Related
Jul 24, 2012
I am trying to connect my Access Server to my main network via the AUI port and I am not able to ping any device..
Current Config:
Access_Server#show run
Building configuration...
Current configuration : 1113 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
[code].....
View 14 Replies
View Related
Apr 7, 2013
This isn't a big deal as the rest of the ACL works fine, but this is an annoynace since the web auth redirects to our company website (internal for now) after successful login.We have a Cisco WLC that provides access to our production and guest wireless environments. The guest environment of course is in a separate vlan (10.10.50.0/24). So I created this ACL:
access-list 107 permit udp any host 10.10.2.13 eq bootpc <----internal DHCP server
access-list 107 permit udp any host 10.10.2.13 eq bootps
access-list 107 deny ip any 10.10.0.0 0.0.255.255 <---all internal networks
access-list 107 deny ip any 172.28.16.0 0.0.0.255 <----DR Network
access-list 107 permit ip any any
int vlan 50
Desc "Guest wireless network"
ip access-group 107 in
This ACL basically gives the wireless guests access to an internal DHCP server and full access to the internet. For the 10.10.50.0/24 scope, the DHCP server assigns Internet DNS servers and my rationale is that wireless clients would access it via the external IP address but I suppose it doesn't work quite like that with the website being behind the same router as the client machines.
View 1 Replies
View Related
May 28, 2013
I have customer who has as Core Switch one Cisco Catalyst 3750 with the IOS c3750-ipbase-mz.122-35.SE5.I know that this image support DHCP Server configuration, but I like to implementate new vlans (approx 15) and I want to know if this switch support 15 DHCP Servers.
View 3 Replies
View Related
May 14, 2012
In the following scenario, how will the 2950/2960/2960S series behave:
- VTP server/domain configured on a 6509
- A access switch (2960) currently configured in transparent mode with all VLAN it requires
Will the switch drop any traffick if we change it from transparent to client mode if the VTP server has the exact same vlans defined as the access switch had when it was in transparent mode?
View 9 Replies
View Related
May 28, 2013
The setup I currently have is a server attached via an etherchannel to a 3560x switch, which is connected to a pair of 5548UP's that are connected via vpc. The 5548's both have a single connection to 6500 series switch that does the layer 3 routing, the ports that connect the 5548 to the 6504 are trunk ports. The problem that I am having is that one of the 5548's can ping the server that is connected down stream while the other 5548 can't. While the local switch can ping the server, and other servers on the same switch in the same vlan can ping it as well. The vlan interface I am pinging from on each switch is on the same subnet as the server I am trying to ping. One other thing, Nexus #1 which can ping the sever has the mac address in its mac address table, while Nexus #2 doesn't. However I added the static mac entry to Nexus #2 and that did not allow me ping either.
View 2 Replies
View Related
Oct 22, 2012
We're attempting to SSH from a Cisco 2960S to an SRX240, and are having some issues. The error we're seeing on the switch is: ops-switch1#ssh -l root 10.10.10.1. Any way to work around this on either the server or client side?
View 1 Replies
View Related
Jul 14, 2008
what is the best configuration betwen vmware ESX server with 10 Physical NIC card and cisco 6500 , This ESX Server host 12 vm with VLAN 100,150.200
View 10 Replies
View Related
Jul 10, 2012
On a csico 3750 switch I have ntp server < IP of stratum 1 Time Server> I want the swit to sync to the to time server and provide time to peers on my network. Do I have to be configured for ntp peer < IP of stratum 1 Time Server> for that to work?
View 7 Replies
View Related
Aug 14, 2012
I am facing a problem in implementing HSRP. My scenario is like this, I have two 3750 switches and I have a server with two NICs. I want to run HSRP in these two switches. By the way the server is connected directly with the switches. I mean each NIC to each switch.we have teamed the two NIC (Active / Standby).what configuration need to done in switches to work HSRP.
View 4 Replies
View Related
