Cisco Switching/Routing :: UDP Port 10000 And IPv6 Ports Listening
Aug 30, 2012
I've several production Catalyst switches that are listening on the same IPv4 and IPv6 ports. The problem is I don't want the switches listening on the IPv6 ports.[code] How to shut down these listening ports?I also have a few production switches listening on UDP/10000 and I cannot determine why this port is listening. [code] I've seen where UDP/10000 is Network Data Management Protocol and is related to Storage networks ###, but I've also seen where UDP/10000 is the default port for IPSEC data.I don't believe UDP/10000 is related to either NDMP or IPSEC data, though I could be very wrong.
View 4 Replies
ADVERTISEMENT
Jul 29, 2012
So I am trying to get traffic from 192.168.1.33 on UDP ports 10000-20000 and port 5222 (udp) to have DSCP set to EF and Forwarded accordingly.
Building configuration...
Current configuration : 32481 bytes!! Last configuration change at 22:52:11 UTC Mon Jul 30 2012!version 12.2no mls acl tcam share-globalmls netflow interfacemls qosmls cef error action freezevty-async!!spanning-tree mode pvstdiagnostic bootup level completeaccess-list 99 permit 192.168.1.51access-list 99 permit 192.168.1.9access-list 99 permit 192.168.1.8access-list 99 permit 192.168.1.12access-list 111 permit udp any any range 10000 20000access-list 111 permit udp any any range 1 9999access-list 111 permit tcp any anyaccess-list 111 permit udp any any range 20001 49151access-list 111 permit udp any any range 50000 65535access-list 150 permit udp any any eq 5060!redundancymain-cpu auto-sync running-configmode sso!ip access-list extended Modesto_Officeremark Wireless Linkpermit tcp any any establishedpermit icmp any anypermit udp host 65.214.162.12 host 99.24.26.84 eq tftppermit ip host 65.214.162.24 host
[code]....
View 1 Replies
View Related
Dec 20, 2012
In my LAN environment, I'm using two cisco SG300-10 switches. Both switches are connected by GE10 on both switches, where both ports are set to trunk.Now on all ports 1-9 on both switches, I'm having client computers attached. So I set ports 1-9 to "access" mode.All interfaces on any switch is left in default vlan.
Is it normal that I see all traffic from all connected devices on any port where I connect a listening device?What I'd like to achieve is, that only traffic that is meant for a specific workstation is actually forwarded to this workstation. By now it seems that I get all the traffic from everybody.
View 6 Replies
View Related
Aug 7, 2011
When I do an NMAP scan against my ASA 5505 on it's internal interface's IP address, it appears to be listening on all TCP ports. If I do it from across a VPN tunnel, the ports show as open according to NMAP, if I do the scan from the local subnet they show up as unknown. I'm running 8.0.4 code on this ASA.
View 1 Replies
View Related
Mar 11, 2007
How come many switches show that they are listening on port 2228/udp and 1975/udp? You can see this by running 'show ip sockets'.
View 10 Replies
View Related
Sep 12, 2012
Have 2 N2K with dual-connections to both 2 N5K, will all 4-ports of N5K will be the same port-channel. N2K as well ?
View 1 Replies
View Related
Aug 16, 2011
I recently had a security scan done on a DIR 655 and the report came back saying PORT 111 (Unix RPC Service) should not be listening for external connections. I've looked through every setting but can't find where this service is enabled (or can be altered) -- aany guidance on this port/service?
View 14 Replies
View Related
Feb 24, 2013
The 2960s-48lpd-l comes with 2 SFP+ ports and is capable of supporting either SFP or SFP+ modules.
My question is:- if I have a SFP+ module in port 1, can I have a SFP in port 2? or do they both have to be either SFP+ or SFP?
View 1 Replies
View Related
May 15, 2013
I've created some port forwards from my public IP (Dialer0) to our private LAN but only the 25565 port forward works. I've even added an any statement to the Nat source list Homenet_NAT. Full config attached. My Cisco router is an 877W. [Code]
View 6 Replies
View Related
Jun 12, 2012
I know that the ASR 1002 has 4 integrated ports but the problem that I am having is that I need two of those ports to emulate a L2 switched port. Is that doable?
If not than I need to purchase the following module below. Is that price really true?
View 1 Replies
View Related
Aug 4, 2011
I am just setting up a LAN using DIR-655 and I noticed this line in the logs: notice Aug 4 03:25:55 HTTP listening on port 65535
Is the router listening to that port?
View 1 Replies
View Related
Jan 29, 2013
I need to tear down an existing port-channel on a 3750X running c3750e-universalk9-mz.150-1.SE3.bin. This port channel is currently down down. It has three ports in it that will be added one each to three existing port-channels, I am assuming as long as the "channel-group" command is exactly the same as it is on the three existing port-channels I should be ok just adding the new port. One point to note is that the three existing port-channels all have three ports so this will be adding the fourth port to each port-channel. I know after reading that it is a best practice for load balancing to use either 2, 4, or 8 ports for a port-channel. Also what is the command to see all ports that are in a port channel?
View 1 Replies
View Related
Apr 4, 2012
Ages ago I was shadowing someone making a change on the network. I cannot remember which spanning tree version was running and cannot remember the config of any port either. What I do remember is that every switch port on the 2960 switch went orange and an outage occured, where the ports went into listening / learning mode. I assume that the STP was just the default ieee 802.1D.
View 3 Replies
View Related
Aug 13, 2011
recently got a RV220W and liking all the configuration options.
Although I cannot find where to change the listening port for management? I want it to listen on port 81 instead of 80.
View 5 Replies
View Related
Feb 14, 2013
Can i configure access ports into port channel on Nexus 7K switch.If possible then provide the complete configuration.....
View 2 Replies
View Related
Jul 1, 2012
Can you configure a Cisco 1941 to use an 8 port EHWic module and the 2 onboard GE ports in a single LAN?
I've discovered you can't have the on GE ports associated with a VLan, and I'm when I've previously researched for a solution, bridging was mentioned but I cannot seem to get it to work (or completely understand it)The reason I would like to use all 10 ports on for the LAN is becuase I have 10 devices I need to connect to the 1941?
View 2 Replies
View Related
May 20, 2013
I have a very basic setup here but strange the router is learning RIP routes advertised by the switch but the switch is learning anyRIP routes. Debug shows the switch is sending updates but not receiving any. There is also these error: %MRIB_API-3-ASYNC_ERR: Asynchronous error: failed to register to the MRIB. errno 0xE
I can ping across the gig 0/2 (switch) and GIg 0/2/0 (router)
sw01 - ME 3600
rtr1 - ASR 1001
sw01 config
[Code]......
View 4 Replies
View Related
Nov 11, 2012
I'm looking to try and implement ipv6 HSRP on a series of IOS-XR Routers running 4.2.1 following on from successfully setting up IPv6 HSRP on a few cat6509s on VLAN Interfaces in other parts of the network. I have entered the "router hsrp" configuration menu and gone into the interface in question that I'm looking to setup with IPv6 HSRP. Unfortunately, there version 2 or address-family ipv6 commands are not available.
View 2 Replies
View Related
Mar 18, 2012
I use IOS Software, ME360x Software (ME360x-UNIVERSALK9-M), Version 12.2(52)EY2. I not found the command "ipv6" on global and interface configuration.
View 2 Replies
View Related
Nov 28, 2012
I need to know the 172cisco 1 router support to IPv6 & it support to IPv6 then which IOS is required for it.Also I need to know the cisco 2960 switch is support to IPv6?
View 3 Replies
View Related
Aug 8, 2012
Just I have upgraded some 2960S to IOS 15.0(2)SE from a IOS 15.0(1)SE3 and the catalyst don't switch any IPv6 traffic. Don't work any RA and also don't work any unicast IPv6 traffic from any interface. I can see some references to IPv6 changes in the FHS (First Hop Security) in the Release Notes, but no any reference to changes in the configuration.
The switches don't have any IPv6 specific configuration and the sdm is the default templata. Returning to 15.0(1)SE3 everything work ok.
On Catalyst 2960, and 3560E this IOS version seem to work fine with IPv6.
View 1 Replies
View Related
Dec 13, 2011
I've a 3750-48ps-s running ios version: c3750-advipservicesk9-mz.122-46.SE.bin
I've tried to configure ipv6 on an interface but it does not give me the option.
How do I know if my ios is IPv6 capable?
View 1 Replies
View Related
Mar 2, 2013
I have cisco 2960 and Catlyst 4510 switches now we are planning to implement IPV6.
i have the fallowing IOS on my switches.
C2960-lanbasek9-mz.122-50.se5
Cat4500e-entservicesk9-mz.122-54.sg1.bin
The above ios will support for IPV6 or I have to purchase new IOS, which version will support.
View 1 Replies
View Related
May 29, 2012
Region : Ireland
Model : TL-MR3420
Hardware Version : V2
Firmware Version :
ISP :
I have my router updated with the latest firmware and I'm pretty sure all the settings are correct but I'm only getting a max transfer rate of 144Mbps. I know this because I use InSSIDer 3 to analyse my wifi network etc. I stream movies over my network and while DVD quality movies play fine, HD movies tend to freeze and buffer a lot. I have the router's channel width set to 40Mhz, so I know that's not the problem. Strangely, I also use a Netgear wifi extender with the MR3420 and it's max rate is 300Mbps.
View 7 Replies
View Related
Jan 3, 2012
Trying to control capacity utilization for guest users connecting to a 2960 switch. No problem for IPv4 users, but IPv6 is giving me fits. What I've found out by trial and error so far implies that there is just enough IPv6 smarts in a WS-C2960-24TT-L running c2960-lanbasek9-mz.150-1.SE to make it impossible to control IPv6 traffic. Blocking IPv6 would be sufficient short term, but MAC filtering on type 0x86DD does not appear to work either. Here are the results I've gotten so far:
What "works":
* Protocol ipv6 or an IPv6 ACL in a class map.
* Using a class map referencing ipv6 protocol or an ipv6 ACL in a policy map.
* IPv4 inbound filters and policing.
* Blocking of IPv4 traffic by a MAC ACL blocking type 0x0800 (IPv4) - note that the docs explicitly state that MAC filters do NOT filter IP traffic, except for on this box on this release they do.
What does not work:
* Applying a policy map referencing a class map referencing protocol ipv6 or an IPv6 ACL to an interface. The service policy is accepted by the parser, but is not inserted into the running configuration.
* "class-default" in a policy map only matches IPv4 traffic, not all other traffic.
* Blocking of IPv6 traffic by a MAC ACL blocking type 0X86DD. No problem applying the access-group to the interface, it just doesn't do anything.
I am aware that this box is not supposed to support IPv6 other than for multicast, but as implemented, this is a hole an abuser could drive a MAC truck through.
My questions:
Is this situation unique to this particular 2960 switch or SW release (I also tried 12.2(58)SE2) or does it afflict all 2960's running LANbase?
Assuming the answers to the first two question are negative, what is the minimum requirement to get working IPv6 policing in an edge switch?
View 0 Replies
View Related
May 23, 2012
I have seen other discussions regarding Static MAC address entries on IPv4, but what of IPv6?We have MS NLB solutions and they are working fine. We have Cisco 6509/6504, Version 12.2(33)SXI5
But then we have a new one for a new ActiveDirectory solution, and on those networks we have implemented IPv6.
How is Static MAC address entries and MS NLB solved in IPv6 (i.e arp ip.ip.ip.ip mac.mac.mac ARPA gi1/1). I can't seem to find much examples or documentation on this? Is it replaced with another function?The reason I ask is twofold.
1. I really want to know
2. The NLB cluster seem to drop IPv6 traffic at even intervals, witch seems to correspond with NLB transition.
View 1 Replies
View Related
Feb 18, 2013
There are two kinds of time for assinging IPv6 address from DHCP server.Actaully Catalyst 3750X can do this role. however I am not sure about the difference between Valid lifetime and preferred lifetime.In my understanding the valide lifetime is total lifetime for using the assigned IPv6 address but the prefered lifetime when the assinged IPv6 address is expired at the prefered lifetime then the device may generate extended request or something right?
View 1 Replies
View Related
Feb 16, 2011
i am trying to get my router to change ports for certain tasks for eg FTP Port 21 i dont want to use 21 and telnet Port 23 i dont want to use 23 ,is there a way of routing ports so that i can get port 21 say to route to port 786 instead so i can ftp from port 786 and so and and so forth
View 3 Replies
View Related
Feb 18, 2013
I am having WS-C3560G-48TS switch with ios(c3560-ipbasek9-mz.122-58.E2.bin) and I am trying to use IPv6 feature in this switch model. More over I've upgraded this switch with many ios but none of them not supporting IPv6 feature. ios which supports IPv6 feature?
View 3 Replies
View Related
Nov 3, 2012
Need to confirm if WS-C3750-48TS-S supports Private vlans and IPV6?
Also need to know which stack cable like part number i can use for stacking them .
View 3 Replies
View Related
Jun 25, 2012
I have the cisco 3640 with IOS Version 12.2(46) , and it with DRAM:32M , Flash:8M.What IOS version can support IPv6 RIP in the hardware limit?
View 3 Replies
View Related
Jul 17, 2012
Where did I need to go on the Concentrator to disable tcp 1723 and 10000? We don't require these to be open and our pen test shows these as being open.
View 1 Replies
View Related
Jul 31, 2012
LMS 4.2.1 W2K8 R2
I seem to be unable to generate a syslog report that contains > 10,000 records. And I don't mean with run type immediate either. I am scheduling them to run at the next 5 minute interval (incidentally, why not have an option that just says "run in background now"?)
I am facing an issue where a bunch of errors are being generated by a voice gateway and I want to determine when the problem started. My syslog contains 7 days of records. If I schedule a report to give me all syslog records for the last 1 week (or 7 days I have tried it both ways) for all devices at that location I get 10,000 records, and they are all for the current date. If I schedule a report and select a date range in the past, I get records within that date range, but only 10,000.
View 2 Replies
View Related