Cisco Switching/Routing :: LMS 4.0 Able To Forward SNMP Traps Received From Device Registered
Nov 16, 2011
Cisco LMS 4.0: Is able to forward SNMP traps (ver. 2c) received from device registered with it to a configurable IP address? • Traps contain the original Device Agent IP to identify the source (Not the IP of LMS)?• Is possible to configure one logical IP address or Domain Name for redundant LMS:Cisco Security Manager 4.1:Is able to forward SNMP traps (ver. 2c) received from device registered with it to a configurable IP address?• Traps contain the original Device Agent IP to identify the source (Not the IP of Security Manager)? • Is possible to configure one logical IP address or Domain Name for redundant Security Manager?
Any OID to determine the number of registered AP's on a WLC (specifically the AIR-CT2504).
I've got both of the Airespace MIBs and have browsed through them but I can't seem to find the correct location. I can find a list of all of the AP's registered but our monitoring software doesn't have the ability to 'count' that index. As such, I'm looking for a count/summation of the total number of registered AP's via SNMP.
I am getting these unwanted entries on my syslog server.03/10/2012 12:57:48 172.21.113.20 Error 23898: Interface FastEthernet0/1, changed state to downI tried to stop them with no snmp trap link-status but it hasn;t worked.[CODE]
I have a 3750 cluster and I want to know what are the recommended snmp traps to be sent. We definitely want to know when one of the switches in the cluster fails.
I've read about snmp-server enable traps stackwise and snmp-server enable traps cluster. What do these traps actually do?
I have been experiencing wireless connectivity issues with one of our Cisco 1231G AP. Every now and then users would not be able to connect to the AP. To dive deeper into this issue, I would like to configure SNMP traps on this AP. We are using PRTG and there is an option to configure SNMP trap. However, I would need to now the OID of the AP. Also i need to check for interface up/down status for both fastethernet and the radio. PRTG should be able to notify me when there is any interface resets.
I want to configure snmp-traps regarding stpx (root-inconsistency, loop-inconsistency) on a Cisco Nexus 1000V. The command "show snmp traps" lists stpx as a trap that could be configured and which is not at the moment.
Is there a way to send an SNMP trap form the ASA when port 80 is trying to be accessed??
We use the ASA5510 and also use ScanSafe Web Security. Web Security is great but we find ourselves worrying if user has edited their Browser connection settings to remove the proxy settings that we push down using Group Policy. We also cut off the users ability to make changes to those settings but it interferes when I need to troubleshoot a special program that cant use a proxy server. It just makes it harder for me. The other thing is that Group Policy only works for IE. Google Chrome will inherit the system settings in IE. So we have Safari and Firefox as well as a lot of others to worry about not getting the configuration. There is also debate about limitting the use of anything but IE and FireFox.
Without laying down the law and getting all sorts of hate mail and death threats I would like to run ScanSafe in such a way as to make sure each user receives the Group Policy settings and that is all.
I would now like to just set up an SNMP trap on the ASA for ANY traffic that is trying to get to port 80. Either get in in my syslog server or have the asa email me directly. Scansafe sends the Internet traffic out on 8080 to the Proxy towers.
I could block port 80 outbound but again, I limit my ability to troubleshoot on the fly. I would have to break this every time I need to troubleshoot.
I am seeing SNMP coldstart traps that either are delayed by many hours or are false (e.g. right after receiving the coldstart trap a query to sysUptime shows the nodes been up for days).I seen this twice this week in a new network environment for me for two different C2900s running C2900-UNIVERSALK9-M Version 15.0(1)M3 Assuming the coldstart traps are coming from the actual source nodes, I am curious what could be going on here.
1) One guess I have is possibly the system clock changed could cause the SNMP agent to send a false cold start trap. Then my guess is in the device log I should see a system time change syslog message.
2) I recall hearing once that syslog and possible traps messages are held in configurable buffer who default value is 1 and if not sent are held and then suffer a delayed sent. Is it true for both traps and syslog ? In the past I assumed this was simply the logging history buffer and applicable to syslog traps only. My assumption in the past was that last trap or last syslog message is sometimes held on reload and sent immediately after restart regardless of device connectivity to the management target.
I always assumed coldstart traps are never delayed for any reason and that they were pretty accurate substitutes for system reload syslog messages. Does anyknow know any reason for false or delayed coldstart traps on a C2900 with IOS 15.0(1) ?
I am working in Private IT company. The facility is having 4000 users and it is a high resliency site having two core switches and nearly 40 access switches. All core and access switches are 4506E switches and odd vlan is taking core-1 and even vlan is core-2. We are having cisco ip phones 6921 connected as daisy chain.( Phone is connected to access switch and the desktop is connected to ip phones). The Ip phone are getting registered cisco call maneger server. The call manager one leg is connected to one core switch and another one is core 2 same like my DHCP server.
For all vlans the the default gateway is my firwall. The voice needs to hit the call manager, hence we have implemented a source routing to call manager for the voice vlans. the problem is once we down the Core-1 some of the IP phones are not getting registered no matterit is on odd or even vlan. The same issue for Core-2. We suspect that there might be some issue in the DHCP server for voice vlan routing. But server team is saying that there is no issue with the DHCP server.Now network is vulnerable that if any core switch is down my voice ip phones will be down.
I got a brand new wireless router and made it the first in line with my cable modem. This is necessary because I want to take advantage of all the features in the new router. I put the RTP300 behind the first router and switched off DHCP and connected the internet port into one of the 4 regular ports on the back (typical configuration for a pass through router).So everything works perfectly for any computer attached to the router (they can access the internet etc). The only problem I have is the VOIP doesn't work. If I pick up my phone it says this device is not registered to a phone number.
My group has recently started configuring traps on our switches to alert us of issues as they arise vs. waiting for the Helpdesk to receive user complaints and then responding.We have successfully configured the 2950 and 2960 switches to alert us when a port-security violation happens. However, the 3750 switches refuse to fire the port-security violation traps. The 3750's will fire an errdisable trap when the port goes down though.
And here is the output of the port-security debug:
2522070: Oct 21 16:37:04: %LINK-3-UPDOWN: Interface FastEthernet1/0/45, changed state to down 2522089: Oct 21 16:37:05: %PM-4-ERR_DISABLE: psecure-violation error detected on Fa1/0/45, putting Fa1/0/45 in err-disable state 2522100: Oct 21 16:37:05: %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address 0012.3f07.95d3 on port FastEthernet1/0/45.
All of the 3750's are running C3750-IPBASEK9-M, Version 12.2(53) SE2. Wireshark also shows the errdisable traps, but no other traps so I've ruled out the traps being missed. All of the switches have been reloaded and power cycled.
I obtain this message on Nexus 7000:2011 Dec 22 03:37:53 NNN %STP-2-RECV_BAD_TLV: Received SSTP BPDU with bad TLV on port-channel1 VLAN0020 and following with err-disabled port ?[URL]
We have Cisco IP phones behind a 2600 series router:Most of the time when the PBX receives a packet from the phone, the source IP of the packet is set to the public IP of the router (1.2.3.4) as expected. However, once in a while, we get packets (at the PBX) with the source IP set to the private IP of the phone (10.0.0.12).The router is configured by our provider, and they can't give us any explanation for this behaviour. Is it safe to assume that PAT is not configured properly at the router?
I have a Catalyst switch that is redistributing some static routes into OSPF. These are received on a Nexus 7K and appear in the database however the 7K does not add them to its routing table, one of the routes is ignored and not added. I haven't got a clue why this is happening.
The routes on the Catalyst are as follows with ID of 172.30.255.22:
ip route 172.24.59.0 255.255.255.0 10.56.7.46 ip route 192.168.168.0 255.255.255.0 10.56.7.62
sh ip ro 172.24.59.0/24IP Route Table for VRF "default"'*' denotes best ucast next-hop'**' denotes best mcast next-hop'[x/y]' denotes [preference/metric] 172.24.59.0/24, ubest/mbest: 1/0 *via 172.30.253.10, Po7, [110/20], 20w4d, ospf-NCC, type-2
sh ip ro 192.168.168.0/24IP Route Table for VRF "default"'*' denotes best ucast next-hop'**' denotes best mcast next-hop'[x/y]' denotes [preference/metric] Route not found
Most of the 4500 Switches in our network are giving the similar error for so many ports
%C4K_L2MAN-6-INVALIDSOURCEADDRESSPACKET: (Suppressed 1 times)Packet received with invalid source MAC address (00:00:00:00:00:00) on p t Gi2/6 in vlan 100
Its impossible to do a wireshark packet tracing for all the ports.
Issue I am having with a Cisco 4507? Below is the error i am receiving.
Feb 14 10:06:09 EST: %C4K_L2MAN-6-INVALIDSOURCEADDRESSPACKET: (Suppressed 508 times)Packet received with invalid source MAC address (00:00:00:00:00:00) on port Po10 in vlan 112 Feb 14 18:44:06 EST: %C4K_L2MAN-6-INVALIDSOURCEADDRESSPACKET: (Suppressed 119 times)Packet received with invalid source MAC address (00:00:00:00:00:00) on port Po10 in vlan 112 Feb 15 00:51:06 EST: %C4K_L2MAN-6-INVALIDSOURCEADDRESSPACKET: (Suppressed 366 times)Packet received with invalid source MAC address (00:00:00:00:00:00) on port Po10 in vlan 112
I have a server that I lease that is hosted at a datacenter. Our company is going to lease a half rack and put our own equipment in it as well as a disaster recovery site. The problem is that the one server I mentioned has SQL on it and we have applications that were devloped in house ages ago that hit that SQL instance. Those applications are hard coded to the IP address of that server. We could just change it in the code, but the source code for one of the applications have disappeared over time. Now that you know my situation, my question is this. Can I make a NAT rule or something that says when traffic is destined for xxx.xxx.xxx.123, to re-routes it to xxx.xxx.xxx.321? Currently our endpoint device here is a Cisco UC520. The other end we have no control over.
I have a server that I lease that is hosted at a datacenter. Our company is going to lease a half rack and put our own equipment in it as well as a disaster recovery site. The problem is that the one server I mentioned has SQL on it and we have applications that were devloped in house ages ago that hit that SQL instance. Those applications are hard coded to the IP address of that server. We could just change it in the code, but the source code for one of the applications have disappeared over time. Now that you know my situation, my question is this. Can I make a NAT rule or something that says when traffic is destined for xxx.xxx.xxx.123, to re-routes it to xxx.xxx.xxx.321? Currently our endpoint device here is a Cisco UC520. The other end we have no control over.
where 192.168.1.150 is my server (that hosts SQL server and that I want to be able to connect to remotely using VNC) and GigabitEthernet0 is my configured WAN interface.
When I try to connect from an external client I get the error: "Failed to connect to server..." Is this a firewall issue? How do I get round it? The 819 is the only router/firewall in my network.
I need to forward port 2875 from any public address to an internal address 192.168.20.103. I am not getting something right because it will not work. Below is my config.
Current configuration : 11012 bytes ! ! Last configuration change at 23:30:24 UTC Fri Apr 12 2002 by cisco !
I have problems with setting the snmp retry / timeout parameters for our devices. I managed to import our devices with bulk import , but after it I realized that for some devices the snmp retry / timeout values were different ( created the bulk file with 3 retries and 30 sec timeout , but in the system the appear with 2 retries and 1 sec timeout). I tried to change it manually , but after a while it goes back to the wrong values.
after upgrading the firmware on the wireless lan controller 5.2.178.0 on my cisco 4402 wlc's and rebooted the devices, I am getting matches on the audit status between whats on the contoller and the wcs software. so i am trying to apply whats in the wcs templates created for the controller and i am getting this error.
SNMP operation to Device failed: Attempt to set conflicting attribute value
I am thinking that i need to rebooted the wlc's again because from the error it sounds like the values that i am trying to write to the controllers are already present
we have a 2800 series router functioning as our internet router and it will only forward packets to addresses with host entries in the routing table even if the network is directly connected.
I need getting access to my http server. I have a host name that I configured to point to my IPS IP address. Port 80 is enabled on my server, but I can't seem to get access it from my web address [code]
Does Cisco SG200-50 50 port gigabit smart switch have support for SNMP ? I have updated the firmware and still can not find any option for snmp.Sent from Cisco Technical Support iPad App.
