I have a lan2lan between my asa 5510 ver 8.3 and another device, see the attached scheme. The other side would like to reach all my local lan via telnet from their PC-A. They can actually reach the devices inside the lan e.g. 192.168.1.1 and .2 but NOT the .10 that is the ASA itself. Note that I've added the line telnet 192.168.2.0 255.255.255.0 outside but nothing.
View 2 RepliesAttached are the configuration files for the devices in question. I have a 5510 that belongs to my company and a 5505 that belongs to another company. The 5505 sits behind the 5510 and is able to connect to the Internet. My thought was that VPN access should be a trivial pursuit. I was planning on just giving the admin at the remote office the public IP address that's natted to the 5505 and all would be good.
View 7 Replies View RelatedI have a mail archiver (hardware device) in my network that I need to access to from the Ipad/iphone. There is an app for it but I have to allow the access on the ASA. I created an 'object' for the device and added a Static NAT entry for it, then added an access rule. Its not working so I am guessing I did it wrong. The device uses port 8000 which I also added to the object. correct commands, or using the ASDM works too.
View 1 Replies View RelatedWhat are considered the best practices for monitoring ASA's--specifically the 5510 with Sec+ License.
My current monitoring application keeps reporting issues with outbound interface buffers being too high, but there are not any performance issues and I believe the thresholds are just set absurdly low.
I was trying to add an Access Rule then Nat rule, they applied ok then i lost connection to my ASA 5510.I cant ping device ip, i cant connect via console , only can acess via Management port, i have pasted Running config. [code]
View 4 Replies View RelatedI used to have this situation where I need to replace faulty ASA5510 (this FW did not failover to standby FW) with the new one.
But the problem is the new ASA5510 came with Base License only not with Security Plus License which is needed to allow this brand new device to be configure failover.
how do I pull out Security Plus License from old FW and switch it to new FW (Base License) and activate to Security Plus License.
We have plans for multiple ISPs and need to pick the correct device/architecture for that. single site: 3 ethernet hand offs (1 From ATT Fiber/10Mb pipe via their managed router, another one from ATT via Copper T1 via a separate circuit & managed router and the 3rd/last from Cable Modem/Comcast)
1.WAN hand off from another ISP from I will use ASA 5510 (already have) to use all the above 4 as inputs and then use the internal interface of the ASA 5510 as the default gateway for all the employees to browse the internet etc. so that1. If one one or more of the ISP lines die, we continue to operate (albeit lower bandwidth)
2. Also, we take advantage of the added bandwidth (even though it may not be the arithmetic sum of all the above).
We are using LMS 3.2.1 with SP1 and Campus Manager 5.2.2.Server runs Windows 2003 R2.Everything runs fine except for User Tracking on two Catalyst 6500 switches running CatOS. These devices are discovered, reachable, SNMP works fine, neighbors seen. But when we try to launch acquisition, the UT utility complains with this error message:"Failed to start acquisition: Device unreachable. Please enter a valid device."When we wanted to add ports via Device Trap Configuration, LMS has fired a different error message: "There are no ports to configure for the selected device(s).Check whether you have selected any router(s)." I have checked the portsData.xml file, which doesn't have any ports included for the two devices: [code] We have tried to exclude / include the switches in the data collection, but that didn't work.
View 3 Replies View RelatedMy BEFSR81 is my primary router and has DHCP turned on. The router's DHCP range is set to accommodate 12 devices. I have three computers wired to it and their Host names (as specified in the set-up of each computer) show up in the router's DHCP device table. I also have two printers (one old Brother HL5250DN laser printer and one new HP Photosmart Premier C410a inkjet printer) connected and there are blanks where the Host name should go. I would like to be able to tell which printer is which when I am looking at the DHCP device table. How can I get a names associated with each printer's IP address in the router's DHCP device table? (The real problem is that the router seems to have both printers at the same IP address (192.168.1.100) and if I can get one of them to change I'd like to know which one it was!)
View 1 Replies View RelatedThe problem: I need to track a bus from city to city in real time.I'm thinking of a gps device without screen or apps, it only sends the current location to a server. Is this possible? What device can be useful?
View 1 Replies View RelatedI'm trying to figure out how to get two 5510 ASA's to establish a Site-to-Site VPN.The version with two static IP's is working perfectly and stable but I haven't figured out how to get a VPN running between a static and a dynamic IP
View 12 Replies View RelatedI have accidentally deleted a device from IPM. How can I re-add it? Do the IPSLA Devices somehow get sync-ed with the devices in DCR.If I use the option "Add adhoc target" will the result be the same?
View 1 Replies View RelatedIs it possible to use a cisco router, in this case a cisco 887, to bridge an external ip address to a device behind the router? I need this because i only get 1 IP Address from my ISP and i want this IP address on my ASA.
I was thinking of a bridge group, but i'm not sure how to go about it! I would like to know if this is possible, and if this is, how should i configure it.
ISP
|
Router (ATM)
|
ASA (external ip(NAT))
|
Local Network
when any user logs into LMS #1, GUI says "user not authorized to view devices". All of my users are set to "full permissions" so it seems to be some disconnect here. I'm using ACS for auth, that seems to be working OK. I have a second system LMS#2, setup exactly the same, which works properly, all "full permission" users can access all device menus.
View 1 Replies View RelatedI an doing device discovery and get the result as devices are unreachable and only 1 device among them getting discovered.Any inputs?
View 1 Replies View Relatedhow can i make cisco LMS 4.2 backup the IOS of my cisco devives and Puted in a folder as backup for this image?
View 1 Replies View RelatedTwo switches, which are not configured for SSH and snmvp3, were picked up during an discovery and automatically added to the DCR. When I view the list of devices in the DCR the two devices are shown, but when I try to edit the DCR to remove/delete the two devices they are no where to be found.
View 2 Replies View RelatedI have installed successfully installed and configured LMS 4.0 and every thing was okay until the customer decided to change the server IP address without notifying any one.
so i have returned the server to its original ip address since nothing worked after they changed the IP, but even after restoring the old IP address the device descovery is okay, but when i navigate to the devices management nothing appears in the all devices drop down menu and the remaining menues also.
i have tried to restart and to start a new device discovery also i have tried to run a data collection but nothing changed.
still stck on the devices are not appearing in the device management tab.
I've a strange problem with LMS CiscoView I can't see ONE (its stack of two) device in the CiscoView. and im getting an error mesg'
The LMS is connected to ACS and all the I.T Department can't see this specific device in CiscoView
I've tried: Deleted the device from the LMS and to discover it again.Rest the Demmon Erase it from the ACS and configure it again.it didn't work.
I can use other functional things like back configuration
Details:
LMS 3.2.1Cisco View 6.1.9Device Type - C3750V2-24PSACS Version – 4.2
I'm attaching those files:
LMS Version
[Code].....
I am looking for a device that sits on a network and allows me to get to other devices on the network remotely, either through ports or through their mac addresses. Each of the device can be configured through a web address config page. As it stands right now, every time we have to change configs on one of the devices we have to send a tech out and pull each device out and manually configure it. I was wondering if anybody knew of a device that could do what I am asking.
View 1 Replies View RelatedLMS 3.2.1 When I try to check Software and Device packages updates for LMS components, it fails with "Error while downloading package information from Cisco.com for the selected products. See the d:/CSCOpx/log/psu.log file for details." diagnostics.
CSCOpxlogpsu.log shows that it fails with 404 error. Looking to wireshark capture, I see that software make GET to [URL], then GET to [URL], then GET to [URL] with some params, which result in "404 Not Found" error nevermind which product (Common Services, Campus Manager, RME, DFM or others) I try to get updates on.
In previous LMS versions the DCR could hold more devices then the licenses of the other other applications permitted and using the "user defined fields" we have used it as a general device repository for some customers, pushing only the supported cisco devices to the various applications.In LMS 4 cisco has removed all allocation possebilities from the various applications and replaced it by an all or nothing type of allocation.Does this now mean that any entry in the DCR is automatically counted as a used device license?
View 1 Replies View RelatedI'm running on LMS 3.2 and RME 4.3.0 and one type of device was not recognized.this is NME-X-23ES-1G (IOS : 12.2(35)SE5) in a 3825 url... this module is supported with the OID 1.3.6.1.4.1.9.1.703,but in the device center I've found something which seems to be the right equipement :
- Cisco Interfaces and modules
- Cisco Network Modules
- Cisco 2800,3800 series 23-port EtherSwith Service module with OID 1.3.6.1.4.1.9.1.664
Does WLC 4400 is supported in LMS 4.1 in CiscoView.
When I check device update in admin-system-software center. I don't see any available package for the WLC 4400.
Allthough we see all our devices in Inventory Portlets, we cant access devices via device selector neither in CM, RME, DFM ...OGSserver is running?
View 2 Replies View RelatedIn previous versions of LMS, I navigated to RME - Devices - Inline Edit to increase the snmp timeout. I haven't been able to locate the same process in LMS 4.2. Where I can locate this feature?
View 1 Replies View Relatedwe use the latest LMS version (4.2.2). Under Monitor->Performance Settings->IPSLA->Devices i see all devices. When creating a IPSLA collector not all devices are listed in the source section but in the target section. Why is this happening?
View 2 Replies View RelatedIn our scenario, easy vpn users are being authenticated by acs 5.3 successfully. We have created seperate user group for these users. The issue is, these users are also able to access our routers using their username/password. I want to restrict this particular group so that its not able to access any device.
View 1 Replies View RelatedLMS 3.2 can't open Manu Device Troubleshooting only begin I will check manu Device Troubleshooting but LMS 3.2 can't show detail about Device and show error on windows.I need fuction Device Troubleshooting becouse ATP customer.
View 1 Replies View RelatedI scheduled a periodic job (for example the compliance check job) on week basis and I specified one user's device group for this job (for example the branch_routers group). All is working, but when new devices are added to this group (the branch_routers group), the scheduled job is not provided for these new devices. Is it the default behaviour? Can I change it?
View 1 Replies View RelatedI need to edit device information for multiple devices using feature Edit Credentials. I'm not able to overwrite all device credentials using a new set.
View 2 Replies View RelatedI have running a LMS master/slave installation with version 3.2.1 and patch for the cisco download running.Now I get on two of the three servers a NullPointerException if I want to go to the Device Update in CS.This is the output from stderr.log:
Feb 17, 2012 8:58:34 AM org.apache.catalina.core.StandardWrapperValve invoke
SEVERE: Servlet.service() for servlet action threw exception
java.lang.NullPointerException
at com.cisco.nm.xms.psu.ui.gui.model.ViewProduct.getAllProducts(ViewProduct.java:45)
at com.cisco.nm.xms.psu.ui.gui.model.ProductList.getAllRegProducts(ProductList.java:21)
[code].....
I did the installation the same way on all three servers.
On LMS 3.2 there was a way to disable the monitoring of Device Interfaces.Examples are ISDN30 Channels, which go up and down during calls. I could disable the channel monitor on the relevant device and only monitor the Circuit as this is the main device to monitor.I can not find the same option in 4.2.2
View 2 Replies View Related