Cisco VPN :: ASR 1002 - Disconnect / Connect WAN Interface / Router Not Reachable Via Telnet?
Aug 13, 2012
We have 400 branches is ended on ASR 1002 router. ASR 1002 is the Hub router. When we disconnect/connect WAN interface or Shut/no shut tunnel interface, at the moment, router is not reacheable via telnet.
But if i disable the EIGRP on tunnel interface, tunnel are ok, then when i enable eigrp on tunnel interface, all eigrp neighbourhoods are OK.Is there any way to limit NHRP or EIGRP packets ?
View 1 Replies
ADVERTISEMENT
Feb 2, 2013
From the router I can ping the 2nd router, all its host and all of the 1941w interfaces.
From the 1941w AP i cannot reach the 2nd router or any of its host, but I can reach the interface that is connected to the 2nd router but only one side of it.
Attached are both my router and ap configs. At the moment I am just trying to reach the 2nd router and its host so I can update the AP IOS image but cannot reach the tftp server.
View 5 Replies
View Related
Jan 14, 2013
we have a couple of AP1262N-E-K9 APs with firmware version 12.4(25d)JA1 operating in autonmous mode. One AP is setup as repeater while all others are in root mode.
The repeater has setup one parent MAC address so it associates every time to the same parent root AP. Given this setting, I am logging into the repeater via SSH and start the antenna-alignment scan: "dot11 dot11Radio 0 antenna-alignment timeout 4"
During this scan, the repeater disconnects from its parent to perform the scan so no output is visible at the SSH console. After the scan is finished, the repeater re-associates to its parent and some output appears on the SSH console.
8 of 10 times this procedure works fine: the scan is finished and I can continue entering commands on the SSH console. However, in some cases the repeater is not reachable any more for about 7 minutes. I.e. pings to the repeater's IP address are unsuccessful and the SSH connection hangs until it is automatically disconnected after a timeout. Also, the web configuration interface is not reachable. After about 7 minutes everything works fine.
View 7 Replies
View Related
May 12, 2013
I have a cisco ASR 1002 I have plugged a host into an addressed port and the port comes up however the host cannot ping the router and the router cannot ping the host. Neither can router ping its self. I do the same on a cisco 2800 router and it works fine. What's goin on. Is it the fact that this is a ASR router ?
View 5 Replies
View Related
Mar 6, 2011
We have a deployment of 400 store. Each of those have 2 GRE tunnels running over MPLS & 2 GRE Tunnels running over Internet leading to our 2 data-centers. At each Data-Center, we have 1 ASR-1002 connecting both MPLS & Internet MPLS tunnels (800 total per router).
I saw in the documentation that OER & PfR cannot support more than 20 external interface (in our case GRE tunnels) per MC. Does it means that we need to have 20 routers acting as MC to be able to use PfR for our Internet GRE tunnels ?
Is there any more scalable solution for this ? How big company address this issue when they have a lot of interface to run PfR ?
View 3 Replies
View Related
Dec 18, 2011
I have Cisco router 851 at my region site. It has five Fa ports. One of them is connected to ISP and has ip address 10.1.1.2 (for example). It also has vlan 1 interface, that has ip address 192.168.0.1 (also for example). I also have Tun0 interface that goes through ISP network and connects to my hub network. The rest of Fa interfaces are swithcable and they are in vlan 1.The problem is that from hub LAN I can telnet to 10.1.1.2 ip address, but I can't telnet to 192.168.0.1. Whereas I can Ping 192.168.0.1 from my hub LAN.
Topology:
Hub LAN -------ISP---------Spoke Router 851
View 8 Replies
View Related
Apr 8, 2012
i have a Dlink DSL-2730U (an expensive, el cheapo router devoid of any functionalities, which also offers a way to connect to net as a side feature).basically i need to disconnect / reconnct pppoe without rebooting the router. but theres no button on the wan page for doing so.i noticed clicking on most of the buttons redirect to some non-html urls, like .cmd, .cgi etc, and some of them are common for many routers. e.g. on my router, "reboot" takes me to
[url]...
View 18 Replies
View Related
Sep 9, 2011
I setup a site-to-site VPN tunnel at the remote ASA5505. I am able to asdm to the outside interface but not ssh. I switch to telnet and still not allow me to access. I added an ACL to allow telnet any to the outside interface but still not working. In ASDM I see the log Here is the second issue. When I want to change the telnet back to ssh using ASDM I got the following error.
View 2 Replies
View Related
Jun 14, 2011
I am using a Cisco 2801 Router and currently have Telnet enabled on all interfaces. How do I change that so it is enabled from all inside networks, but not on the outside interface?
View 12 Replies
View Related
Mar 29, 2011
how do I telnet to remote devices from nexus 7000 with source interface as loopback 1?
View 1 Replies
View Related
Aug 28, 2012
Is it possible to connect WRT54GC with telnet?
View 3 Replies
View Related
Apr 4, 2011
I got problem with RVL200, it works good on my botch mac's witch OSX 10.5,10.6 and Firefox 3.6 but stops working after last java update. The machine switch 10.5 is working because I don't update Java but the other computer is up-to-date.
Problem is with launching the Java applet ,all the rest is working.- I'm log in to SSL VPN Tunnel- The new window is opening I accept applet to run .It try but nothing happens the window is blank with no connect / disconnect buttons.
All I have is Java error:Plug-In Java 1.6.0_24JRE version 1.6.0_24-b07-334-10M3326 Java HotSpot(TM) 64-Bit Server VMjava.lang.SecurityException: [code]....
View 1 Replies
View Related
Jul 12, 2012
I recently configured a Cisco AP 1242, software version 12.4, via the web interface using the default Cisco credentials. At that time I setup an administrator account with read/write access and changed the Cisco to a read only access. Now went I attempt to login to the web interface it won't accept the administrator password. It will except the administrator password in a telnet session however. So via the telnet session I setup another user with privileged exec level access and that wont work on the web interface either. The Login box keeps coming back requesting a password. Strangely enough, I can login to the web Interface using admin username, with the Cisco password; but I can't do anything, and I also can't view everything. I've tried the following:
I've turned on SSH and created a certificate in the AP, but the login box continues to pop on the https://url.I've attempted to setup a user with a non-encrypted password, but have been unsuccessful.I've tried a different browser - login box continues to pop.I've made sure the web interface is activated in the API've tried a differnet computerI've tried disabling password-encryption service. Reset the enable password , I've successfully setup other 1240 APs but must have done something wrong on this one.
View 1 Replies
View Related
Aug 20, 2012
I have configured the ip telnet source-interface Loopback 0 command on a Nexus7010, but when I telnet to another device and do a show users, the ip address is of the closest interface to the device I telnet to, not the ip address of the Loopback. All interfaces are in vrf default. I am running 5.1(6) NXOS.
View 6 Replies
View Related
Feb 22, 2013
I have a big problem with my Cisco EA6500 router. I have a domain that is pointing to my public IP address of the home network. I have various computers and applications that listen on different ports for various reasons on this network. Everything worked fine until a week or so ago when I had to restart the router. The reason was that while I did a routine change (add a Mac filter for wireless) the router stopped responding. After restarting it, I could not access the home computers through the domain name (public IP) while being inside the network. If I try from outside my LAN it works fine but when trying from within the LAN the hostname and IP are not reachable. Also, everything works from inside the LAN if I'm using LAN IPs.
View 9 Replies
View Related
Apr 5, 2012
I just want to know how to disconnect, and re-connect my router from and to the server. (not looking to pull the plug)I had an older adsl router from TP-link, worked great. It had a connect and disconnect button when I logged into the router. (connect would become disconnect when connected to server, and disconnect would become connect when not connected) how I can disconnect, and connect to the server using this router? (TP-link TW8920N) I don't see this option when I login to this router.
View 1 Replies
View Related
Feb 12, 2012
I have implement MPLS L3VPN on my network to provide service to customer and right now we plan to have service VPLS on our same router. What is needed to run the VPLS in our MPLS network ? I heard that we need addictional switching module and upgrade my IOS to support it but I am not sure.
View 2 Replies
View Related
Mar 28, 2012
I want to terminate the IP Sec VPN tunnel on the Cisco ASR 1002 router, but it shouldn't have be bedirectional traffic to the other end., and it should be answer only, We don't run tunnle over GRE (no IPSec profile), just IPSec only. I found there is a command "crypto map *** client configuration address respond" but it looks it is global command and we have lots of VPN terminated on the Cisco ASR 1002 router, How can we configure the "Answer Only" for only one specific VPN tunnel and it won't impact the others?
View 2 Replies
View Related
Sep 28, 2012
I get this error when updating the IOS on our ASR 1002 router:
Calculating SHA-1 hash...done
validate_package: SHA-1 hash:
calculated e581b06d:923b1cc8:e5497571:66f9de35:70fd0ac8
expected aedab318:d8f213f5:36e12355:f70fa900:5c12d08c
SHA-1 hash doesn't match
boot: error executing
Is there someplace where I can configure the expected SHA-1 hash?
View 1 Replies
View Related
Dec 24, 2012
I recently System Recovered my Pavilion g6000 and now I cann't connect to anything.I went into the command prompt and it all read "Media Disconnect", so I googled and did the release and renew commands and the TCP thing, but no of it works.Also, my router is NetGear CDG24G50, and when I try connecting to it it will not let me. This is getting pretty annoying.
View 7 Replies
View Related
Jul 26, 2012
Any router (I'm considering ASR 1002 with 10GE SPAs) that can support the following:
-10GE interfaces
-can handle 1.5Gbps but scales up to 5-6Gbps different seasons
-take on full internet routes from 2-3 providers
-will live on the internet edge
View 7 Replies
View Related
Feb 15, 2012
We had a number of Linksys SRW2048 / SRW2024 switches that had the "bloated capacitor issue" or "bad capacitor issue".These units would basically disconnect/connect their ports.Applications would sometimes crash on workstations.These were all located at different client sites.These were replaced under warranty with the SG300-52 units.When we implemented the SG300-52 units at several sites we noticed the the logs showed disconnect/ connects.We were not seeing apps crash.Support advised they were not aware of any issues.We did a firmware update that was available that made no difference. (1.1.0.73)6 months have now passed.
We noticed at our site very poor throughput one night doing a very heavy file copy data transfer between two computers.It actually ground all other computers on the network to a halt.We inspected the switch.It had "all lights flashing".We thought this strange and shutdown the whole system. Problem still existed.Power cycled the switch. Problem still existed.Noticed their was a new firmware update. (1.1.2.0)We implemented this.The lights on the switch stopped "all lights flashing".Throughput was back to normal. (ie didnt grind all other computers to a halt)
We then had a second site complain of similar issues.Heavy throughput between two computers bought all other computers to a grinding halt.Lights were "all flashing" on switch.Workstation would disconnect/connect in a loop during heavy file copy.We implemented the firmware update thinking this would solve the issue.It now still has the issue of disconnect/connect however and apps sometime crash.We have now replaced the switch with a HP 2510-48G.This is working properly.I have now since been to other sites that also have these SG300 switches and notice the "all flashing lights".
View 6 Replies
View Related
Feb 12, 2013
I was asked to configure a new ASR 1002 today and after successfully puttintg the config on the router (via TFTP) the router will no longer communicate with anything. There is nothing in the config to cause this (it was actually pulled off a working production ASR 1002) and I am unable to ping a local loop back IP while consoled into the router?? I removed the config, reloaded the router and configured a new loop back - same issue cannot ping the loop back or anything else connected to this router.
View 7 Replies
View Related
Feb 12, 2013
We have CISCO ASR 1002 router on our DC, I want to enable TACACS on this router.what is the usage of key, we need a separate key for every device? or. [code]
View 9 Replies
View Related
Mar 14, 2011
I have an ASR 1002. Behind that and across another small MAN network (considered inside) I have an ASA. On the remote end, I have a simple 2811.
I need to create a vpn peer from the remote router to both the ASR (to hand off traffic there) and also a peer at the ASA (to encrypto across the MAN). The ASR1002 has the serial connection (DS3) to our MPLS cloud in which the remote is on the opposite side of.
So basically, I've created a single isakmp policy with two crypto map's by the same name but set to different peers and placed on the remote router then applied it to the serial interface. This works fine. Now i throw in the ASA which is behind the ASR. However, the connection still comes through that ASR to get to the ASA.After setting it up, it works as long as I don't have the crypto map applied to the ASR. If i apply the crypto map to the so interface of the ASR, my asa vpn connection stops working.It almost seems as if the crypto map on the ASR is grabbing my enrypted traffic destined for xx.xxx.24.14 and trying to do something with it. [code]
Why can't i peer from my remote router to both the ASA and the ASR on the opposite end of the serial link?
View 1 Replies
View Related
Feb 18, 2011
i am using open suse 11.3 as OS.. when i try to connect to any mail server over smtp using telnet, their is either a connection time out or server not found error msg..
View 16 Replies
View Related
Aug 12, 2012
I have a question about my ASA 5520, it worked well till two weeks ago, and suddenly cannot be accessed by SSH/Telnet/TFTP....only can use the Consoel port to access it now, but other VPN/ACL setting working well. [code] If I enabled the outside access for SSH like below, it works well for outside port.ssh 0.0.0.0 0.0.0.0 outside.
View 3 Replies
View Related
Aug 18, 2011
I have a new notebook Sony Z217GG, I connected WAP 4400N was very smooth, but after connected WAP 4410N, the internet connecting always connect and disconnect, I check the notebook wireless model is intel 6230.
View 1 Replies
View Related
Feb 9, 2012
I can't to connect on my switch (WS-C2950G-48-EI) with Telnet or HTTP.When to connect with console, i have a error [code]
View 4 Replies
View Related
Feb 7, 2012
I have a wap4410n. It was performing poorly. Only letting some computers on the wireless while not letting other. I was able to login into the device and I went through each of the settings pages to see if there was anything set wrong. I soon found there was a firmware upgrade available.
So over a wired connection I started the firmware upgrade after waiting 10+ minutes I was unable to reach the device and the web page said it was waiting for the ip address of the device. So I rebooted the device.
I can not ping the device. I can not see it on any subnet. I have tried the reset button multiple times.
The ethernet and power lights are on.
View 2 Replies
View Related
Feb 6, 2013
I'm trying to configure a SG300 to be reachable beyond its own subnet. Its IP address is configured by DHCP to 192.168.2.2/255.255.255.0. It is possible to ping the switch from the same subnet but not from outside. The switch is set to layer 2 mode. All routing should be done by the gateway.
Here's what I have checked so far: The default gateway and netmask are set correctlyThe gateway can ping the switchHosts in the 192.168.2.0/24 subnet have connectivity to other networks through the gateway (i.e. gateway configured correctly)Administrative interface > IPv4 interface shows the correct ip address, netmask, and gateway (greyed out because it is assigned by DHCP)the switch can ping other hosts within the same network
Is there some kind of firewall setting that prohibits the switch to respond to ip packets from outside the subnet?
View 5 Replies
View Related
Jun 15, 2012
I need to connect 10 branches to a datacenter using cisco 861 routers because the ethernet sollution the provider gave us can't assign more than 32 MAC addresses for whe whole network. So we have all our servers at the datacenter with a central firewall/router and all remote branches with a static route to this router. We would like to make all branches local networks available through NAT or another better solution so network devices at the datacenter network can communicate with all local devices accross all the brances.
I've tried to set up a dynamic NAT from outside to inside the network and didn't work, set up static ip routes for both datancenter and remote branchs and also didn't work. I just would like to make the routers work in a transparent way, no blocking of anything, passing all traffic in and out the network.
View 7 Replies
View Related
Aug 16, 2011
On my server I host several websites.Last Monday we got our FttH-connection and I'd set up my D-Link DIR 655 to manage our server and other computers.In the webconfig of my router I set up the Virtual Server for several applications (Telnet - 23, HTTP - 80, HTTPS - 443, FTP - 21, SMTP - 25, POP3 - 110, IMAP - 143 and also ports 20, 22 en 81) redirected to my server's IP address.For these items the private port and the public port of each item is the same port number; the protocol is TCP for these items. I didn't change the options Schedule ("Always") and Inbound Filter ("Allow All").
The DNS of my domains (samendienen.nl and some other domains) is set to my new IP-address.May be I forgot some other settings in my D-Link-router.what I have to do to make my websites reachable?
View 6 Replies
View Related
