Cisco VPN :: 6509 - Config For Remote Access
Oct 6, 2011Any sample config for a remote access VPN on a Cisco Catalyst 6509 (with VPN mod).? Been searching just cant find one!
View 1 Replies
ADVERTISEMENT
Cisco WAN :: Running Config Different From Start-up On 6509 Msfc2 Reset
Jan 25, 2011I had to reset a 6509 MSFC2, using reset command on the switch. However when the msfc2 reloaded it had a different configuration than the starup-config. I have a daily backup of start-up config and it was very different from that. I had to make many changes to bring it back to normal. What now I dont get is from where did the msfc2 got this config file? and how can I avoid this from happening again... I want it to load start-up config when it loads. [code]
View 2 Replies View RelatedCisco Switching/Routing :: 6509 - Multiple Line Cards Down After Config
May 28, 2013I recently changed the entire configuration on two 6509 switches, and the fibre modules on slot 7 and 8 have gone down on BOTH switches. It would be easy to say that its a hardware fault but I cannot understand how module 7 and 8 can go down on both switches. Initially I thought it maybe due to IOS bug 22-33.SXI2a.bin" so I upgraded it to s72033-advipservicesk9_wan-mz.122-18.SXF12a.bin but it still down.These are the actions I have carrried out to try resolve the issue:
- Reverted back to orginal configs but no luck
- Tried to use "power enable" command but the status light on both modules seems to turn red and then go off again.
- I have also tried to put one of the fibre modules into a different slot but no joy
- Upgraded the IOS from 22-33.SXI2a. to 122-18.SXF12a
I am sure that hardware fault cannot occur on BOTH modules 7 & 8 on BOTH switches after config change.The error in the log shows that modules "failed to bring online because of registration timer event". I understand this means that it is unable to download the image within the allocated time. [code]
Cisco VPN :: 6509 / 7609 - L2L VPN Negotiations Fail From Remote End
May 31, 2011We have a problem with an existing L2L VPN connection. The connection has to this day served only connections originating in one direction. Meaning only one end initiates the connections. This has worked normally so far. Now the third party behind the L2L VPN also wants to access some resources trough the L2L VPN and because of that also initiates the connections. This is where we face our problem.
For some reason the remote end cant bring up the L2L VPN where as we can (and the second party in our end of course). The connection was originally on a Cisco 6509 WS-SVC-IPSEC-1 module. For the tests in new equipment we moved the connection to a Cisco 7609 with SPA-IPSEC-2G module. The remote end uses Checkpoint FW1 R70 (or something like that. I'm not familiar with Checkpoints) With both equipment the problem remains. We did the tests today and i took some debug messages on our end with "debug crypto isakmp" and "debug crypto isakmp error" enabled. I also enable the "debug crypto condition peer ipv4 x.x.x.x" for the debugs as there are several other connections on the same device. This is what the debug shows (Remote end IP replaced with x.x.x.x):
Jun 1 2011 07:20:58.062 UTC: ISAKMP: local port 500, remote port 500Jun 1 2011 07:20:58.062 UTC: insert sa successfully sa = 207E7B00Jun 1 2011 07:20:58.062 UTC: ISAKMP:(0):Input = IKE_MESG_FROM_PEER, IKE_MM_EXCHJun 1 2011 07:20:58.062 UTC: ISAKMP:(0):Old State = IKE_READY New State = IKE_R_MM1
[code].....
To my eye it seems that the attributes/parameters for Phase 1 are OK on both ends (have to be since the connection forms normally when the traffic is initiated from our side) but somewhere along the way the negotiations stop because our end gets a malformed packet during the negotiations? Does this mean the remote end is somehow faulty? Is there some compatibility problem with the VPN devices in question? or its the sign of some known problem with VPN connections? So far I have not found any explanation to what is causing this.
Cisco Switching/Routing :: ASA 5505 Upload Config File Into Start-up Config
Apr 17, 2012If i connected the latop to brand new out of the box ASA 5505 through consloe cable and i have a config file on this laptop from other ASA5505, is there anyway i can upload that config file into startup-config of this new ASA5505 through console cable, without using TFTP or FTP?
View 5 Replies View RelatedCisco WAN :: 2811 - Startup Config Is Not Copying To Running Config
Nov 15, 2009I have a Cisco 2811 router and when I turn of the router the running config is lost. I have to the following to get the router running of the start-up config settings.
router#copy start-up running-config
Cannot Access Modem's Config Page
May 4, 2011I've tried all IP's that could be... 192.168.1.1 ,etc. , etc.Of course I am behind a router but even though I tried the same with connecting directly, it showed my gateway to be 78.56.191.254 which didn't work at all ( but was ping-able ).I restarted router and computer several times as well as switched form router to direct connection which brought no luck as well.
View 9 Replies View RelatedCisco :: Access Point Air-Lap1242 / It Won't Save Config
Jan 6, 2013I have 2 Air-Lap1242 that wont save their config after reboot. They are managed by a WLC (4404) and it all seems pretty fine and dandy, but when i reboot them, they dont want to save anything.
I am setting them up as bridges (mesh), and it works until i reboot them, then I have to do it all over again.Using CLI to type in "write mem" or "copy running-config startup-config" only results in: "Building configuration... [OK] -> NVRAM Verification Failed".
Access Linksys WRT54G Config Page?
Dec 24, 2012I just got a new Sharp Aquos Television and I wanted to try to find the SSID so that I could pick up a connection with my TV. When I went to command prompt and typed ipconfig to get the default gateway, the gateway ip took me to what appears to be my modem's config page and not the Linksys. how I can get to my WRT54G config page.
View 2 Replies View RelatedCisco Switching/Routing :: 1941 Don't Have Access To Config At Moment
Oct 28, 2012I don't have access to my config at the moment and I haven't had a chance to get to the console of this router as of yet.A little background info:This is a Cisco 1941 router in which I have multiple NAT inside interfaces for internal VLANs. Before my current problem I was using one NAT outside interface for Internet access with another NAT outside connecting to our corporate network that was in a shutdown state.The router is performing router on a stick and had layer 3 subinterfaces for each VLAN. I have ACLs filtering on each subinterfaces allowing only the traffic I need through.I also currently only have one static NAT port for an FTP server.The time finally came when I had to connect our corporate network to this router via an access port on a 2950 which trunks to the router.The problem comes when I send any traffic to the subinterfaces on the corporate network which is the second NAT outside interface on the router. The main point for this connection is to do a static NAT from this interface to a web server on another VLAN. Any traffic to this interface including just pinging from the outside causes connection to the router to fail for about 3-4 min.Like I said I haven't ha the chance to get to the console yet Sony cant tell everything that happens. Nothing shows up in the logs after I can get connection back and the router didn't reboot as a "show version" says the router has been up for a long time.The CPU is also usually very low as not that much traffic flows through this router at a time.I built a very similar network in packet tracer and it works just fine.
View 1 Replies View RelatedLinksys Wireless Router :: Cannot Access E4200 Config In LAN-to-LAN
Jan 31, 2012I posted before about my problem in forwarding certain ports in a LAN-to-WAN cascaded router setup, and I finally gave up looking for a solution, and went for a LAN-to-LAN. On the internet there is many articles to be found on how to accomplish the setup, but none of them is complete, and as such, I think I really screwed up someplace. My setup: ISP modem/router (192.168.1.1 / 255.255.255.0) DHCP enabled, and DHCP address range 3-100 NAT configured Static IP address for a Synology NAS connected to the E4200 SSID id_1
Then the E4200 Internet connection type: I set to Static IP IP 192.168.1.2 Subnet mask 255.255.255.0 Default gateway: 0.0.0.0 (to disable the WAN)
Then, the network setup: Router IP: 192.168.1.2 gave me the error that WAN and LAN IPs were identical. I played around quite some time but always got an “illegal value” error. Then finally I put the IP to 192.168.0.1 (IP I had in LAN-to-WAN) and this was accepted. And subnet mask: 255.255.255.0 The SSID I left unchanged from what it was, id_2 (also gives me the advantage that I know to which router I am connected)
I rebooted the E4200, and I was connected. But … I am unable to connect to the E4200 configuration page, and even Cisco Connect cannot establish the connection.
Cisco :: 5508 Losing Access Point Config After Power Loss To AP
Sep 19, 2012I know there were a few post about users losing their access point config after a power loss to the ap. I wanted to share that I can confirm and reproduce this same issue with a number of access points that I have. I opened a tac case and will update this tread as the case progresses.
Wlc 5508
Ap 1242
7.0.220.0
Cisco Firewall :: 3391 / 3389 - PIX Config For RDP Access To Internal Server?
Aug 21, 2011It's been a while since I've done a lot with a PIX config so what is the best way to allow access for 2 IP addresses that need to RDP into a server here inside our network. They also wanted to have ports redirected, 3391 to 3389 and 3397 to 3389.
View 12 Replies View RelatedCisco Firewall :: Cannot Access ASA5510 For First Time Config ASDM Or PING
May 30, 2013I have a fresh out the box asa5510 with 8.4 on it.I have built these before but for some reason cannot get this one to work. I am consoled on, have applied the following config but can still not ping to or from, can not asdm, cannot http/s. Arp table shows device it tries to ping, but device trying to pping it has incomplete arp entry. [code]
View 7 Replies View RelatedLinksys Wireless Router :: WRT120N / Can't Access Config Webpage
Apr 18, 2013WRT120N router: After several hours on the phone with Technical support I got nowhere. Guy had me putting in "admin" in the user name then the PW. I kept getting the 401 authorization required message. After all that I reset my router and used the disk to setup again. After that I went again to the 192.168.1.1 and got the request for authorization, entered admin in the PW and it does nothing, just reloads the request and browser keeps connecting. I have WIN 7 HP, use Firefox 5.0 mostly, but tried on IE8 as well and it does the same thing. I am attempting to open a port.
View 4 Replies View RelatedD-Link DIR-825 :: Getting 404 File Not Found When Attempting To Access Router Web Config 2.05
Aug 1, 2011I keep getting this error every few days and I have to restart my router in order to gain access back to the web utility. I reflashed the fw a second time with no success. I have read about this trip 30 reset but have had no luck finding a post which describes how to go about that method.
View 5 Replies View RelatedLinksys Wireless Router :: WRT120N - Can't Access Config Webpage
Jul 15, 2011WRT120N router: After several hours on the phone with Technical support I got nowhere. Guy had me putting in "admin" in the user name then the PW. I kept getting the 401 authorization required message. I reset my router and used the disk to setup again. After that I went again to the 192.168.1.1 and got the request for authorization, entered admin in the PW and it does nothing, just reloads the request and browser keeps connecting. I have WIN 7 HP, use Firefox 5.0 mostly, but tried on IE8 as well and it does the same thing. I am attempting to open a port. Also the support site has been down for over 13 hours for routine maintenance service.
View 2 Replies View RelatedLinksys Wireless Router :: WRT160Nv2 How To Access Config Screen
Jan 7, 2011how i can change WRT160Nv2 settings if i cannot find it with default 192.168.1.1;i'm using it as secondary router connected to FIOS actiontec primary, which has the 192.168.1.1; factory default reset linksys to that same IP, can't get it.cannot get internet without actiontec as its coax connected, and linksys doesn't have coax port.can'ty open configure page without internet connection, i believe.tried to use a neighbor's wireless but that's using 192.168.1.1 as well, can't log in to that.this started with firmware upgrade of linksys which left it invisible; didn't complete the upgrade, i don't think. but i've reset it and still nothing.
View 9 Replies View RelatedCisco Wireless :: AP541 Access Point Best Config For Multiple VAPS Advice?
Oct 26, 2011I have several AP541 (on different site locations) which I have currently configured for WPA enterprise using windows 2008 as the Radius server. This works fine for staff members who use the wireless when roaming around the offices.
I would also like to setup another VAP for guests to allow them to access our internet but nothing else on the network. I was wondering what approach would be the best one to adopt to achieve this. Would I be best to setup a WPA Personal VAP and allow guests to access the wireless this way. Or is there a better approach? If we did adopt this approach I presume this would mean that we have to log onto each AP in turn and then change the WPA key on each one everytime we decide to change the key? Or is there some clever software I could use to change them all in one go.
WL-326v1001 - How To Access Sitecom Router Config Interface From Command Line
Apr 20, 2011I have a sitecom 3G ready wireless router but does not support the local telephone company. i would like to know how to access its modem config from a command line inorder to configure the modem commands with local company settings. Its model no is WL-326v1001
View 1 Replies View RelatedTP-Link 300Mbps Wireless :: Access TL-WR1043ND Cable Router Config Without Pin?
Jan 14, 2013Region : UnitedKingdom
Model : TL-WR1043ND
Hardware Version : Not Clear
Firmware Version :
ISP : Virgin Media
Bought recently and I'm very pleased with Setup and Performance.
However, even though I have tried repeatedly with different user details and passwords I cant access the router Config without resetting to defaults using the pin in the back and admin admin.
I am using W7 and get to a log in screen via Control Panel / ... Network Sharing Centre / Network Map and see Router. Click on this and up comes a User Name and Pasword form but it never works with what I entered for the router.
Cisco Switching/Routing :: 5548 Add Access List To Both Switches Not In Config Sync Mode
Mar 21, 2012I have two 5548's in sync mode: I have an existing ACL and I want to add a new line to it, but after I do and try to commit it states the verify failed. [code]
I have to add access list to both switches not in config sync mode.
Cisco VPN :: ASA 5505 / Remote Access VPN - Unable To Access Internal Network
May 7, 2012I have created remote access vpn in my ASA 5505. The tunnel is established but i am not able to access the internal network.
View 3 Replies View RelatedCisco :: Remote Access Vpn Virtual Access Lines Getting Clogged Up?
Aug 16, 2012Im currently connected to a remote acess vpn setup using the vpn client and am unable to get anywhere around my network, this normalyl works fine The only difference i can see is that the are multiple virtualaccess interfaces pointing to my public ip address, which im presuming is causing routing issues How can i clear these unsed virtual access lines and how can i make it forget them automatically after disconnects?
View 5 Replies View RelatedCisco VPN :: ASA5510 Unable To Access Some Segments From Remote Access VPN
May 17, 2011We have an ASA5510 and a few days ago we were unable to access some segments from remote access VPN, the problem was not the config. A few hours later the problem was resolved on its own and I suspect we have an IOS bug. This has happened a few times in the past and its becoming an issue. How can this be confirmed and which IOS should we upgrade to? Prefer not 8.3 given the syntax difference
View 1 Replies View RelatedCisco :: Users From Remote Access VPN Can't Access Other Subnet
Nov 1, 2011Based on my diagram, my computer A (192.168.100.11) can ping and access my computer B (192.168.10.14). But, when i'm home and i use remote access vpn (192.168.200.x) in cisco asa 5520 to connect to my computer A is okay. But, when i try to ping my computer B is not okay. I already do the exemption for 192.168.100.x and 192.168.10.x in nat rules for inside interface (192.168.100.2) ...
Should i put routing from outside 1.1.1.2 to 192.168.10.x by using 192.168.100.1 as a gateway?
Cisco WAN :: 6509 / Classify IS-IS Traffic With Access List?
May 16, 2012I'm configuring Control Plane Police in a Catalyst 6509. This equipment is using IS-IS like its IGP routing protocol, and iBGP. In order to make CoPP work Im classifying the traffic entering the control plane like CRITICAL, IMPORTANT, NORMAL, UNDESIRABLE and DEFAULT. Obviously routing protocol traffic must be classified like CRITICAL. Doing so is easy to BGP because it runs over TCP/IP and I can configure the following access list to classify BGP:
ip access-list extended CP-CRITICAL-IN
remark #### CONTROL PLANE CRITICAL TRAFFIC INBOUND ####
remark #### ROUTING TRAFFIC - BGP ####
permit tcp host [BGP neighbor addr] eq bgp host [local BGP addr]
permit tcp host [BGP neighbor addr] host [local BGP addr] eq bgp
deny ip any any
But IS-IS is also a CRITICAL traffic, but IS-IS doesn't run over TCP/IP, rather it exchange its own PDUs. So, how do I classify IS-IS traffic with an access list?
Cisco :: 6509 - Can't Access WS-SVC-NAM-2 Module Through HTTP Or Telnet
Jun 16, 2011I try to access to WS-SVC-NAM-2 module in the Switch 6509. But is not work although the HTTP port is enabled (I tested with the command telnet @ip 80).
I try telnet access to the module to check the config , but I always the message that the lo gin / password is wrong even though they are valid.
Cisco Application :: 6509 Provide Access For Clients Over HTTPS
Jun 15, 2011I have a ace board(Acsm) in my switch 6509.I need provide access for clients over https, my scenario looks like this post [URL] .But, i have only one interface, and need to configure nat for inbound clients, to access the server with ip address of the interface vlan of my ace(if i set ace gateway in a rserver, the ssl termination works). The Topology is: Client(https) -> Ace(Https) -> Ace(http) -> rserver (http). Need to configuring this nat? I need that external clients arrive at the server with the ip of the same network as him, he did not right back the packet to the default gateway, but the origin of the same network as him, so that the communication function successfully, end order.
View 1 Replies View RelatedCisco Firewall :: 6509 - Management Access To FWSM Using CA Ssl Certificate
Mar 6, 2011I need to enable Management access to FWSM using CA ssl certificate.
FWSM Version 3.2(5) in Cisco 6509 switch.
Got to know how to generate, import and export certificate but my query is how to get it applied to the management ip do i need to apply in the management interface.
Cisco Switching/Routing :: 6509 To 6509-E Chassis Upgrade?
Nov 21, 2011I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
Cisco Switching/Routing :: Upgrade Of 6509 To 6509-E Chassis
Nov 21, 2011I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
Cisco Switching/Routing :: 6509 / Restrict Access To Sensitive VLANs?
Jun 4, 2012We have a network of 30 VLANS and currently all the vlans have access to everything. We are using Cisco 6509 switch for Layer3 routing.I would like to prevent some VLANs accessing the server VLANs. How can i resrict access to the server VLANs? Do i need to implement access-lists on the 6500 switch? or do i need to create VLANS on the firewall so that all traffic i filtered?
View 3 Replies View Related