We have ASA 5540. After setting up one-to-one nat, do I need to do anything else? static (Inside,Outside) public ip address private ip address netmask 255.255.255.255.
View 4 RepliesWhy isn't a GUI upgrade possible instead of CLI initiated upgrade?Is this (GUI) only for patch upgrades or is it a valid upgrade path to use the Cisco Prime's GUI (Administarion; Software Update) in order to upload update file. Check for updates gives no results though successful login to [URL].
View 3 Replies View Relatedwhere I can find a CLI password recovery procedure for the administrator account?
View 1 Replies View Relatedchecked all the recovery doc, however, there is no one specific for 3900 series router
View 2 Replies View Relatedwhere I can find a CLI password recovery procedure for the administrator account?
View 2 Replies View Relatedprocedure to apply the 5-2-0-26-4.tar.gpg patch. I don't know how to get the patch file into the ACS server.The procedure in the "Read me" for the patch does not indicate anything about how to this:
1. open CLI console2. define new repository in which the 5-2-0-26-4.tar.gpg resides3. issue: 'acs patch install 5-2-0-26-4.tar.gpg repository YOUR_REPOSITORY'4. verify installation by getting the following version information via CLI by issuing:#show application version acs I don't know how to put the patch file from my local machine to the repository created in the GUI (if there is where the actual place to creat the repository).
From PEC training - Cisco says to perform a proper ASR 1004 shutdown by executing 'reload' , then wait for bootstrap message to appear, then [before commencement of unpacking of the IOS] turn off the power switch. IS THIS ACCURATE. Anyone have any doc related to the recommended POWER DOWN process on the ASR 1004. We have a UPS cutover coming up and I want to be ready to power down and restart the new ASR 1004s we have - properly.
View 3 Replies View Relatedour company is going to change its´ ISP. The External Isp are going to obviously change too. We have an Active/Standby Firewall and we would like to make the change with at least connectivity downfall as possible. In our configuration we have nearly all features configured as in a normal Productive Firwall such as , NAT, Site-to Site VPN, Remote Access Webvpn, ACLs and also routing. I have looked up some information in this community and still I am not sure about the steps to be made so to reach our goal.
I have read that changing only the "names" from the old IP Range to the new Ip range would not really make the change. The old Ip range will still be configured in the features using the external Ip address. Therefore we have to first delete all the information (in the running config) connected to these Variables and then re insert them. My biggest worry is that this could be a little bit tricky during the implementation, if some config lines or objects could be left out during the deleting and inserting procedure.
How we could make this change with a low percentage of "copy and paste failures"? I was thinking about in changing the "names" to their new Ips and then afterwards reload the ASA. Will this workout? Primary ASA will be changed first with the secondary shutdown. ASA Firmware 8.2.2 (12).
we purchase only Cisco Supervisor Engine VS-S720-10G and use it in our old C6509-E chassis.Now the supervisor engine was dead,(means not working and no LED's are ON). How can i claim the RMA from cisco?
We purchase from one of our partner. We send it to them,they are not able to find the Serial number from the Supervisor Engine module (Because lot of serial numbers are on the board). Also the customer through the catoon.
Now how we can know which is exact serial number of sup? How to get RMA from the Cisco on which serial number?
I bought the dir-615 today and already have issues. I don't know much about networking and have an intermediate understanding of computers in general. When I run the CD Wizard the configuration says it has detected another router and asks if I want to replace it or add the new router with it. I do not and have never had a router previously. So, for whatever reason I can't use the wizard because of this. I followed the instruction perfectly and no dice. Installing it manually is a bit above my knowledge level.
View 1 Replies View RelatedPoint to point wireless connectivity configuration procedure using 1410 bridges either using GUI/CLI .
We have setup this in one of our Client sites.
I would like to discuss another method of a bulk controller upgrade and see what other engineers take on this upgrade path would be.Say I have an instance of 84404s with 50 APs each, In this case I have N+1 redundancy where I can follow the normal procedure.Normal Procedure.Move all APs to controllers 1-4Preload all APs with the new code versionUpgrade and reboot empty controllers 5-8 to new code versionMove all APs to 5-8 with new code versoinUpgrade empty 1-4Move all APs back home.Now take the same scenario only chage it to 80 APs per controller. I've now lost my N+1 and cannot do it quite as smoothly. As opposed to trying to follow the normal proceedure and have an extended window of "brown outs" How about doing it all at once.Black-out accelerated proceedure:Preload new code on all controllersPreload new image on all APs on all controllersReboot all 8 controllers at the same time.Allow time for APs to connect back and load the new image.I assume with this proceedure that I might see around 15-30 minutes of actual downtime to the site but it seems like that could be preferable to two-three hours of brown outs.
View 6 Replies View RelatedAm setting up Cisco 3750 for the first time via CLI
1. what is the procedure for configuring passwords on the device.
2. how can i stack 3 switches in a site .
Have a Linksys E-3000 router and a WAP-4410N which I wish to configure as a repeater to extend network coverage. E-3000 IP has been changed to 10.10.1.1. How do I do it ? What do I connect to what in order to configure the WAP-4410N to new settings? It will of course be located remotely from the router. At this time network consists of a main PC and 2 wireless laptops. I have read the manual and it doesn't answer the above described situation.
View 7 Replies View RelatedI am upgrading a Cisco 6506E VSS from 12.2(33)SXI5 to 12.2(33)SXJ5 during a maintenance window. So I have plenty of time to reboot the VSS. Confirm below is the correct procedure. I have manually copied the new IOS to both active and standby Sup720s.
no boot system
boot system flash sup-bootdisk:NEW_IOS.bin
boot system flash sup-bootdisk:OLD_IOS.bin
!
copy run start
reload
I was going through the below cisco document and there are a few more steps as below: Is it necessary?
[URL]
Router(config)# no boot system
My bussines have an old PIX 515e and im about to install it in a "testing" eviorment but no one can remeber the password for this old equipment. Is there a way to reset the password?
But when it reboots and I write "enable" in the console it asks for a password, and the password isn't "cisco" as factory default. I really need this firewall up and runing ASAP.
How to reset the "enable"-password?
I'll be upgrading an HA pair of ASA 5520s next week, and wanted to clarify the procedure. I read "Upgrading an Active/Standby Failover Configuration" at [URL] which suggests placing the image on both units, updating boot statements, then issuing failover reload-standby. But I was wondering if there's a way to a way to be a bit safer. I'd like to modify the standby unit, without affecting the config on the active. So I'd like to modify the boot statement on the standby without modifying the active config. That way incase there's a problem and the active reboots, it won't upgrade.
Can I modify the config on the standby without affecting the active? Then I'd like to test the newly upgraded unit with our production traffic. Would that simply be no failover active, and then once the standby becomes active -- test traffic? Once everything is okay, I would upgrade the second unit, and fail traffic back.
I have to migrate two appliances ACS SE 1112 under 4.0.1 to new two appliances ACS SE 1121 under 5.2 version.I would like to clarify the procedure to do it by minimizing down time impact.I saw there are Migration Utility and Import Tool but do I need an Intermediate Windows Server to do this migration ?
View 1 Replies View Relatedi just wanna know if it's possible to perform a router password recovery using the reload command and then issue the break sequence instead of doing an off/on on the power switch. i often find in the docs to use the latter.also, is there a way to retain the startup-config on a router when we re-enable the password recovery functionality (no service password-recovery). i've just tried this on one of our 877 and when i hit the break sequence, it went back to factory default setting.
View 7 Replies View RelatedIs there any shut down proceedure for cisco devices in data center cisco router,switches,firewalls ASA-5580-20,ace-4710 and IPS-4260 devices.
View 4 Replies View RelatedI am looking few information on IOS up-gradation for the switch WS-C3750G-48TS-S . I loaded new Image on the flash and current flash and sh boot as below
Switch#sh flash
Directory of flash:/
2 -rwx 8859636 Mar 1 1993 00:08:14 +00:00 c3750-ipservicesk9-mz.122-37.SE.bin
3 -rwx 556 Mar 1 1993 00:02:38 +00:00 vlan.dat
4 drwx 64 Jan 9 2012 03:17:56 +00:00 crashinfo_ext
5 -rwx 5768 Apr 24 2013 04:25:28 +00:00 private-config.text
[code]...
1) I would like to set boot sytem parameter for the new IOS and secondary old IOS as well is below command works??? if IOS not coming up with new one 12.2.58 is it boots with old 12.2-35 ?
boot system flash:c3750-ipservicesk9-mz.122-58.SE2.bin;flash:c3750-ipbase-mz.122-35.SE5
2) If I set only boot system flash:c3750-ipservicesk9-mz.122-58 , if new image corrput swicth will check valid image and boot up with old image ?
3) If switch went to room1 switch mode and still I have valild running IOS c3750-ipservicesk9-mz.122-37.SE.bin at flash memory, how to restore with old image
what is the set up procedure for adding a printer with wifi capabilities?
View 1 Replies View Relatedi just received a RMA for failed ASA 5520 that was acting as secondary unit in multicontext configuration. What would be correct procedure to install it back in production? Do i need to restore backed up config of the fallen unit or is it just enough to enable multimode and connect to existing (primary) unit? Any good link for documentation that deal with this issues.
View 5 Replies View RelatedI have Sony DR-BT100X Bluetooth headset. How to connect the BT Headset with Windows XP Laptop. My Headset is paired with my Laptop but not able to hear the sound through Headset.
View 1 Replies View RelatedWhat is the remedy/procedure to make a deformed CAT-5 cable into normal condition.
View 1 Replies View RelatedI would like to ask, given that i got 2 units of ISE-3315 appliance, one need to be primary node for admin-policy service-monitoring, another unit then become Inline posture node.For the preparation on line posture node, what shoud i do on it?
01. For the unit ready to become inline posture node, so I just boot it, install the OS from sractch (using version 1.1.1), then start the initialize setup etc, like Normal setup?
02. Before i regieter, what is the deployment nodes i should select for inline posture node unit? provided the admin-policy service-monitoring will become primary node, and registration for inline posture node will be next action.
We need to change the Channel-group settings in 3750 switch from Mode ON to Mode Active. We have tried once by removing the physical interfaces from the port-channel group but we lost the connectivity to the secondary switch. Any step by step procedure without losing the connectivity between switches.
View 2 Replies View RelatedI am trying to reimage a Cisco MARS 25 appliance for the pnadmin password recovery procedure. I am trying to boot the system with Recovery DVD (Version 5.3.2) shipped with the appliance. I connected a VGA monitor and USB keyboard to the appliance and when I do a reboot, I can see the Installation options. Please Choose A MARS Model To Install...
1. Distributed Mars - Local Controller But I am not able to select the Option 1 for the reimaging of Local Controller since my keyboard is not responding for the selections. During the LILO boot process, I can see some error message that 'Keyboard Not Present'. I tried to connect the keyboard to different USB ports and the PS/2 port using a USB to PS/2 adapter. Still keyboard is not functioning.I am able to select the BIOS options while connecting the USB keyboard to appliance. But it is not functioning when booting from Recovery DVD. Also the keyboard is functioning if I boot the appliance directly with previous image. Unfortunately I dont have any PS/2 keyboard available for connecting and admin password for Login.Is there any workaround/solution for supporting the USB keyboard during the Recovery Procedure ?I tried the serial connection with hyperterminal but some junk charaters appear even after setting the recomended Baud rate, parity, flow control etc.The Ethernet console seems not working with the default IP address 192.168.0.101 for eth1.
2. Distributed Mars - Global Controller
3. Mars Operating System Recovery
4. Quit
I need to upgrade the IOS and therefore change the flashcard on a router 2811.
What is the procedure to change the flash (64MB to 256MB) on a 2811 router?
I can remove the flashcard when the router has already started, change the flashcard and load the new IOS?
Need to know the step by step procedure for monitoring site-to-site VPN tunnel (up/down) using SNMP on Cisco ASA 5505.
View 1 Replies View RelatedCan I bind SSL license key from 1 ASA to another , we recently got 5540 and i want to use my SSL 5510 license on the new firewall
View 1 Replies View RelatedI have a Cisco ASA 5540 running 8.2(5). When I dial a phone on the other of the the VPN the first time I get a blank after it rings(i.e when the voice mail get activated if someone picks the phone up), however works the second and consequent times i dial.
A little background. Two sites A and B connected via IPsec Tunnel. No problems in communication except for the VoIP issue. A Phone in on site A(172.17.168.x) and other on site B(192.168.103.x). Site A and Site B is connected via an IPsec tunnel on the Cisco ASA. First call fails. Second call works. Result of a packet trace is also the same. The UDP packet get drops when tried for the first time but subsequent ones pass.
First time
ASA5520# packet-tracer input inside udp 172.17.168.95 10000 192.168.3.103 10000
Phase: 1
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 0.0.0.0 0.0.0.0 outside
[code].......
I have a site to site vpn to set up between an asa 5540 and an 800 router
i only want the vpn to be initiated from the asa with the remote 800 listening for inbound connections
i know i can set the connection type on the asa as originate-only but i can find a command equivalent to answer-only for the remote 800
Is it sufficient to simply configure the asa as originate-only for this crypto map