Cisco Switching/Routing :: ASA-5525 - Connecting Multiple Switches To Single Firewall?
May 28, 2012Could I configure and connect 3 Dell switches to an ASA-5525 Firewall which has got 8 interfaces.
View 7 Replies
ADVERTISEMENT
Cisco Firewall :: Connecting Single ASA-5520 To Two Layer 3 Switches?
Sep 30, 2011Connecting ASA 5520 to two Catalyst 3560G layer 3 switches. What's the best practice to connect the asa-5520 at the edge, to the core of my network? What I'm looking to do is connect two routed gigabit ports (gi0/2 and gi03) to two seperate layer 3 routed ports on catalyst 3560G. I'm wondering how to do it, or if there's any type of failover method? I'm running EIGRP in the network and the link to the first core switch has a /30 point to point connection. Everything works fine, I'm just not sure how to connect the second switch to the firewall. Should I use the a different /30 for the point to point connection to csw02 gi0/48? (See attachment) How would this affect traffic flowing through this interface? Would I have to duplicate rules I have on my inside (gi0/2) interface? Is there a way to make the inside2 interface standby some how? I want to know the best way to set this up, so in the event csw01 goes down I don't loose internet. Will EIGRP work it's magic and only use 1 path to the ASA? Should I even be using routed interfaces on the ASA and just use trunked mode?Running ASA 8.4?
View 1 Replies View RelatedCisco Routing :: 3750x - Installing Single Mode Fiber / Switches Not Connecting?
Oct 22, 2011Prior we only had 62.5u multi mode.I've got 3750x switches and new SM SFP and yellow fiber patch cables. None of my links show connected. No lights and trunk port interfaces show down/down.
Is there a special command you have to do on a port when using SM fiber? Do you think I need cross over fibers?
Also, should I be able to see a laser signal light like MM or is SM a different frequency so it's not as visible as MM?
Cisco Switching/Routing :: Multiple VPC Domains On A Single Nexus 7000?
Nov 13, 2011I have a customer with three rooms where teh access layer aggregation switches are run back to.
Access Switch Stack A -> room 1 + room 2
Access Switch Stack B -> room 2 + room 3
Is it possible to have three Nexus 7000s ie one in each room (1,2 and 3) and have them setup like this:
Nexus 7000#1 vPC domain 1
Nexus 7000#2 vPC domain 1 + vPC domain 2
Nexus 7000#3 vPC domain 2
Thus gving all access switch stacks redundant links to the core withouit spanning tree.
I know its not ideal but its a campus site and thats how the existing fibre runs go.
Cisco Switching/Routing :: Multiple IP On Single Vlan In Cat 45xx Switch
Mar 12, 2012I would like to know if it is possible to assign a 3rd IP address to my end user vlan. Basically the 45xx acts as my end user gateway and has been confirgured as below
interface VlanXX
description Main Vlan
ip address 2.X.X.X 255.255.255.0 secondary
ip address 1.X.X.X 255.255.252.0
[Code].....
Here, due to IP address exhaustion in my end-user network, i want to add one more subnet X.X.X.X/22 to my network and assign one IP more from this range to the above vlan to act as the gateway IP.
Cisco Switching/Routing :: 3750 - Configuring Multiple VLANs For Single Port
Apr 11, 2012I would like to configure a 3750 switch port to be able to use two vlans. I know you can do this with a voice and data vlan, but what about two data vlans ? Say I have two devices, one on a 10 subnet and the other on a 172 subnet, but i only have one wall jack for both devices to plug into. So I use a mini switch to connect both devices and connect the switch to the wall jack; and of course this all leads back to one switch port. When I go to enter the switchport access vlan 172 cmd, how would I also make it so the device on the 10 subnet could route out ?
View 9 Replies View RelatedCisco Switching/Routing :: 3750 - Multiple Subnets In Single DHCP Pool On Device
Mar 25, 20123750 can not support multiple subnets in it's DHCP server pool config.
Is this an issue that can be fixed with a different iOS or is there a different Cisco switch that I can replace the 3750 with that will handle multiple subnets within an individual pool?
Cisco Switching/Routing :: Does Nexus 7K Support Multiple VDCs Sharing Ports On Single Line Card
Mar 19, 2013Does Nexus 7K support Multiple VDCs sharing ports on a single line card. One of our cisco parnter engineers stated that cisco doenst recommend using same line card for multiple VDCs.The second VDC (Non-Default VDC) will be used four our Outside, and DMZ Segment, and to phyiscally segregate our Firewall from our Internal/Inside Core Switch without using a physical DMZ Switch.I know Cisco used the Nexus in this way in their PCI DSS 2.0 Compliance Document. Module is N7K-M148GT-11L
Mod Ports Module-Type Model Status
--- ----- -------------------------------- ------------------ ------------
1 48 10/100/1000 Mbps Ethernet XL Mod N7K-M148GT-11L
Mod Ports Module-Type Model Status
--- ----- -------------------------------- ------------------ ------------
1 48 10/100/1000 Mbps Ethernet XL Mod N7K-M148GT-11L
Routers / Switches :: Multiple Gateways On A Single Router?
Feb 28, 2011We are in the process of installing time clocks at some of our sites around the USA. Our security department has asked that the time clocks be completely isolated from the rest of the network. The time clocks will be administered by ADP via a centralized firewall utilizing NAT. We have multiple subnets available at each site. Let me give an example to calrify what I would like to do. Example: Site A has 10.168.19.0 /24 user subnet and is configured for VLAN1 using 10.168.19.1 on the router as the default gateway. I would like to use subnet 10.168.20.0 /24 for the time clocks, configure it for VLAN2 and use 10.168.20.1 as the router gateway address for VLAN2. This should allow me to NAT one of our additional public IP addresses to the 10.168.20.1 gateway address thus completely isolating the time clocks from the remainder of the network. Problem is I have not done this before so I'm a little confused about how to configure it in the Cisco 3750 switches.
View 6 Replies View RelatedCisco Switching/Routing :: 3945 - Connecting To 100M Single Mode Fiber Link SC To LC Conversion
Aug 4, 2012connecting a Cisco 3945 Router to an Ethernet WAN Link. The service provider has provided a 100M Ethernet Single Mode Fiber handoff to the customer premises with SC Connector. The CPE configuration proposed for this setup is like this. [code]
Since the SFP has LC Connector, i suppose i need to have an SC-LC Cable for connecting the Ethernet link. Do i need anything else, apart from above?
Cisco Firewall :: ASA 5510 / Multiple VLANs Behind Single Firewall Segment?
Feb 5, 2012I need to create a firewalled segment that not only separates hosts from general population, but also from each other. The solitary confinement of firewalled segments.I know that I could create a bunch of sub-interfaces, one for each host or group that needs to be isolated, but I'd really rather not have to do that if possible. 1) It could become a management nightmare between ACLs and sub-interfaces and 2) it's a waste of IP addresses.s there any way that I can create a bunch of separate VLANs behind the firewall and have them all terminate at the firewall, using a single firewall IP address for the gateway?
VLAN 1 - hosts 1.1.1.5 and 1.1.1.6VLAN 2 - hosts 1.1.1.7
Firewall DMZ Interface - 1.1.1.1VLAN 3 - hosts 1.1.1.8 and 1.1.1.9
This way, the hosts are isolated and can't talk to each other unless they're on the same VLAN.I'm working with an ASA 5510 running 8.2.4(4).
Cisco Switching/Routing :: Single Mode Fiber Support For WS-3750 Switches?
Mar 5, 2012I'm looking for switches that support single mode fiber connections and would like to know if "WS-C3750-FS-S Catalyst 3750 24 100BaseFX + 2 SFP" and "WS-C3750G-12S-S Catalyst 3750 12 SFP" can serve the purpose?
View 6 Replies View RelatedCisco Switching/Routing :: 3750 - Two Switches Connected With Single Mode Cable
Jun 4, 2012I am troubleshooting a fiber connectivity issue.Now I have two switches, one is 3750, and another is small biz 300 series switch. Both switch has a single mode smf gbic. Now I have two swtiches face to face and connect with a single mode cable. Do you think if I would get a link light on? Both ports are no shutdown.
View 3 Replies View RelatedCisco Switching/Routing :: WS-C3750X-12S-S Options To Achieve Putting All 4 Switches Into Single Stack
Feb 12, 2012I have a couple of WS-C3750X-48T-L and a couple of WS-C3750X-12S-S, I want to stack all four of them together into a single stack. WS- C3750X-12S-S are running c3750e-universalk9-mz.122-58.SE2 whereas WS-C3750X-48T-L are running c3750e-universalk9-mz.122-55.SE3.I have got a couple of queries as under:What are the options to achieve putting all these 4 switches into a single stack? Can the LAN Base switches upgraded to IP Base?
View 3 Replies View RelatedCisco Firewall :: 5550 Migrate From Multiple Context To Single
Aug 12, 2012I have a Failover pair of ASA5550's running ASDM 6.2(5) and ASA 8.2(2). Originally they were setup with 2 context's and an admin context but one of the contexts has now been removed. I would like to now migrate to single mode before I go about patching them to the latest software.
View 4 Replies View RelatedCisco Firewall :: 2121 / How To Nat Multiple FTP Local Servers From One Single IP
Apr 24, 2013I have a FTP server at my local network and i have natted the private IP with my Public IP using default FTP Port ( 21) , now i have created Diffrent FTP Account in my server using port 2121 and i am able to login using the private IP with port 2121 , now i want to nat with my public IP with port 2121 and i failed,
1) 125.x.x.x --------- 10.10.1.x : 21 ( Able to access from external network)
2) 125.x.x.x ---------- 10.10.1.x : 2121 ( not able to login from external network and able to login internally )
Cisco Firewall :: NAT - Multiple Ports Translated To Single Port - ASA 8.4
May 21, 2013We are migrating from a nother brand to an ASA Cluster running 8.4.5
We have a web-server on an inside interface listening on a non standard port - 20111. We have created a static NAT translating the public ip to the private, so If I do http://public-ip:20111 it works. (we are using a seperate public IP for this service only).
Now I need to create a NAT rule that will forward requests on BOTH port 80 and 443 to the same private ip and the same port number (20111)
The Private address is 10.99.250.20 and the "public" (I've replaced it in this example) is 172.16.16.16 I have managed to create a NAT that will translate 443 to 20111:
object network 10.99.250.20 nat (Private-DMZ,Outside) static 172.16.16.16 service tcp 20111 https
But if I try to add another rule like: nat (Private-DMZ,Outside) static 172.16.16.16 service tcp 20111 http It will simply replace the first one.
Is it possible to redirect both 80 and 443 from outside to the same port number and same IP on the inside?
Cisco Firewall :: ASA 5550 - Migrate From Multiple Context To Single
Jun 13, 2012I have a Fail over pair of ASA5550's running ASDM 6.2(5) and ASA 8.2(2). Originally they were setup with 2 context's and an admin context but one of the contexts has now been removed. I would like to now migrate to single mode before I go about patching them to the latest software.
View 2 Replies View RelatedCisco Switching/Routing :: SF 100D16 - Multiple Switches
Apr 12, 2013I have two Cisco Small Business SF 100D-16 switches, one was a spare. I have run out of ports on the first one and would like to run the other one in series to new devices across the office. I'd prefer not to buy a bigger switch at the moment, but can I run one switch into the other without any adverse effect on the network.
I'm running an optical broadband connection and so far the system is fast and stable, running 8 VOIP phones, 8 laptops and 4 printers.
Cisco Firewall :: 6513 - FWSM Multiple Security Zones On Single Context
Nov 7, 2012My corporate internal network is currently fire walled by an FWSM module on a 6513 switch. We have each security zone (we have eight) assigned to a FWSM context and have ACLs set up between the contexts and the enterprise LAN/WAN. Is it possible to support fire walling between these zones within a single security context? The reason I am asking is that we would like to purchase a second FWSM for use as a standby, but do not want to cough up the ~ $12K for the context license. We will ultimately be transitioning to ASAs for internal security, so do not want to spend more than we need to.
View 3 Replies View RelatedCisco Switching/Routing :: 3560 Multiple Vlan Access To Port Connecting Phone System
Oct 25, 2012I'm new to networking and was looking for some assistance. First off im using packet tracer to diagram my senario as I will be receiving my equipment next week to deploy.
Hardware to be used:
1. 2 catalyst 3560 switches
2. all connect to a sonic wall router
I have two companies that work in the same office space. I need to keep these companies seperate on their own vlan. They will however need to share the phone system.(Packet tracer file uploaded to give those who have the time to see what I put together.) [code]
Cisco Switching/Routing :: 3560 Multiple Switches One Trunk Port
Sep 21, 2012We have 7 3560's in 7 different locations connected to our providor for wan access. Our provider has given us a copper cable at each point and we have connected it directly to our 3560 switch at each location. Each port is configured the same way at each location. Each switch is running eigrp.All of the switch ports on each switch are configured as a trunk and vlan 299 had the ip address for the eigrp connection: [code] This setup is working as each switch see's all of the other switches as an eigrp neighbor. We have also made sure that the switch at our head office has spanning tree priority for vlan 299.
So the problem is, if there is a change in the topology at one of the locations it usually causes one or more of the other connections to go down for some reason. We just cannot pinpoint what is causing this change. There are no log's or anything other than an eigrp hold time expired message.?
Cisco Switching/Routing :: 3550 / 3560 - Can Multiple Connection Between 2 Switches
Jul 9, 2012For some special arrangement, I would like to connect 2 access ports from a 3550 switch to 3560 switch.1 port for vlan 200, another port for vlan 201.Will this introduce bad thing to the switches?
View 4 Replies View RelatedCisco Switching/Routing :: 2960 - Private Vlans Across Multiple Switches
Nov 11, 2012I am aware that private-vlans are not supported on edge switches like 2960 series - so my question is would it be possibel to ceate private vlans on say just the core switch which would be a 3570 or 4506 that supports private vlans and then just trunk these to the edge like normal vlans?
what I need to achive is to have edge port not able to communicate to each other even across switches - which cannot be done using 'protected' port so need the private vlan feature
Cisco Switching/Routing :: 2960 - DHCP Snooping Multiple Switches AP Autonomous
May 7, 2013I have a problem with DHCP. I have two 2960 connected with a port channel on ports 47 and 48 as trunk with native vlan 10. I only have this one vlan. In port 1 of sw 1, I have a C800 as DHCP server.
I have an AP autonomous with single ssid on vlan 10. When I connect the AP to sw1, I receive dhcp with no problems.When I connect the AP to sw 2, I’m not getting IP by DHCP.I have DHCP snooping working on vlan 10 on both devices.
The ports where I connect the AP are access ports on vlan 10 config as trusted.The trunk ports are also configured as trusted.The port 1 of ws 1 that goes to the C800 is also configured as trusted.
figure out why I’m not getting IP by DHCP when I connect the AP to the SW 2.The only I notice is that when I connect the AP to sw 2, I get on SW 1 the message of packet drop by option 82, but even after configuring ip dhcp snooping information option allow-untrusted on both switches, the problem persists.
Cisco Firewall :: 5520 Single Firewall With 2 Core Switches
Jan 4, 2012Two different WAN links get connected to the firewall via two routers.(Different ip subnets).I need to get this two wan streams seperatly to the core switches.Core switches sits.Active/Stanby senario. If the Active core goes down Stndby Core will have take over the traffic. My design is correct ,if not what do i need to change. ASA is 5520.
View 8 Replies View RelatedCisco Switching/Routing :: 4506 Connecting Switches Together With IP Routing
Aug 31, 2012CiscoSwitch1(4506) has 3 VLANs(12,13,14) and Switch2(4948) has 3 different VLANs(22,23,24) and IP routing has been enabled in both switches with SVI interfaces for each vlan. intervlan routing is works fine.Now there is a requirement to connect these switches together. Vlan 12 on the Cisco switch 4506 has to be made available from vlan 22 from Switch2(4948). basically Vlan 12 is having a multicast source (225.0.0.0 & 226.0.0.0) which should be accessabile from vlan 22 of cisco switch 4948.I got 2 ideas
1) Create a trunk between these switches and configure L2 vlan(12) in cisco 4948...i know theoritically it should work but what my concern is Ip routing enabled in both switches will it create any issues? is it a gud solution to this requirement?
2) Create a separate IP network on the ports connecting to both switches and set up routes to the networks.ex- console(config)#ip route 192.168.10.10 255.255.255.0 192.168.20.1.
Cisco Switching/Routing :: 3750G - Multiple Trunks From Core To Access Switches Without Loop
Feb 5, 2013We have a Cisco 3750G Core switch which has physical connections, each configured as trunks to two HP Access switches. The client who uses these access switches would like to put a link between the two, but this would create a loop.
------- Core Switch -------
| |
| |
[Code]....
Cisco Switching/Routing :: MGMT0 Connecting Across Switches
Jun 18, 2012I have two C2960 switches which have the management VLAN for other switches. These two switches are connected with each other via portchannel. Now the mgmt0 of few switches is connected to switch 1 and few other connect to switch 2.I have also connected the mgmt0 of switch 1 to an access port of switch 2 and vice versa.However in this set-up I am unable to reach switch1 via the mgmt0 IP address. However I can reach the mgmt0 Ip address of switch 2.I can also reach switch 1 and 2 via their int vlan IP.Has some one else experienced this and is their any specific reason why mgmt 0 IP address of switch 1 is not reachable.I have tried doing similar set-up on C3750, but have acheived same result i.e. I am unable to reach mgmt0 of switch 1.
View 4 Replies View RelatedCisco Switching/Routing :: Connecting 3750 And 3650 Switches Together
Sep 16, 2012I have a small network using a 24 port 3750 switch. I need to add five computers in another room and only have one Cat 6 cable running there and no room left on the 3750. I got a 3650 to put in the new room with the new computers. The problem is, whenever I plug the new switch into the 3750, it shuts down the port and gives me an err-disable. I can do a shut/no shut and re-enable the port. I searched the web and read about trunking and clusters. I'm not sure which, if either, is appropriate. I see various documentation that shows you can put one switch behind the other. But nothing tells me the configuration which will allow it.
View 9 Replies View RelatedCisco Switching/Routing :: 3750 Connecting Server With 2 NIC To Different Switches
Nov 14, 2011Server with Two NIC teamed using HP teaming tool. NIC#1 connects to SW1 and NIC#2 connects to SW2
SW1--------------------NIC_1 (SERVER) NIC_2--------------------SW2
Will the config be access-port on Sw1 & Sw2 connecting to Server.Sw1 & Sw2 are connecting to 3750 as trunk ports
Cisco Switching/Routing :: Connecting 3750 Stackable Switches
Nov 13, 2011If I have two switches in a stack can both stack able switches be connected to a core switch through gbics or just only one switch can be connected to the core and the other switch connects to the other stack able switch through an Ethernet port which uses as a gateway to the core switch?
View 3 Replies View RelatedCisco Switching/Routing :: Connecting 3750G With DLink Switches Through Fiber (SFP)
Jul 18, 2011I have issue with connectivity 3750G with Dlink Switch, it cannot connect to non-cisco switch with fiber , But CISCO to CISCO switch it shows connectivity. My question is that is there any configuration on Cisco 3750G switch to connect with non-cisco switch through fiber (SFP) ?
View 2 Replies View Related
