I want to select catalyst 3560G for my network. But IOS SLB need to be implemented in my network. I only know catalyst 6500 series can support this feature and i am not sure whether 3560G can support this feature. what platform and IOS version i need to implement IOS SLB?
View 1 Replies
I have been working on some Catalyst 3750's running 12.2(55)SE6 and hit an issue with CEF load-balancing over multiple equal-cost paths. Anyway this issue is now solved but it introduced me to the command 'show platform forward' - this shows you how the forwarding of a packet would be done via hardware cef (as opposed to the command 'sho ip cef exact-route' command that only shows the software cef path). Anyway I tried the command on a 3560G running 15.0(2)SE and it crashes the switch. I tried it a couple of times and verified that the MAC & IP addresses were exactly right in the command and each time the switch crashes. I have extracted the relevant bits from the crashinfo and attached them.
View 3 Replies View RelatedIs SSH v2 feature is supported on cisco 3560G switch for below image if no what is the latest image .
c3560-ipbase-mz.122-35.SE5/c3560-ipbase-mz.122-35.SE5.bin)
We have 2 x C6506E and 2 x C3560-48's, they are all interconnected via port channels at 2Gb per channel. The 6506's are running CEF but the 3560's are not (The 3560's carry all our server traffic).When I do a show CEF on the 3560's it says %IPv4 CEF not running. There does not appear to be a global command to enable CEF on these switches.Is this an IOS version option or is not supported on the hardware platform?
View 3 Replies View RelatedMcAffee scan of acs 1113 appliance running the 4.2 build 124 patch 12 version reports that a medium vulnerability exists because the system has SSH version 1. Any way to specify only version 2 or turn off SSH?
View 9 Replies View RelatedCan we use ACS 4.1 version recovery disc on 4.2 verison to recover the forgotten password.
View 1 Replies View Relatedwhich version of prime infrastructure supports wlc5508 version 7.4
View 2 Replies View Relatedprovide me with the important links which can show me how to do the software upgrade for my ASA 5520 ver 7.0(1) to ver 8.4 ? as well as the ASDM
View 10 Replies View Relatedi am using Cisco ASA 5510 with ASA Version 8.0(4) and memory 256MB. me to Upgrade it to 8.3
View 6 Replies View RelatedWe are looking to deploy ISE supporting 5000 devices and would like to use the Cisco UCS platform to host this. Looking at the spec required a C22 M3 would be sufficient; however we would also like to host some UC applications on the same server if resources allow.
Therefore we would like to deploy ISE on a C220 M3 server and connect the associated NIC to a DMZ. We would then like to deploy UC applications such as CUCM and CUPS on the same UCS server with a NIC attached to the internal network.
Also while the UC application would require a UC Foundation License (R-VMW-UC-FND5-K9) whould this also meet the requirements for ISE?
I am doing a school research project in which I am setting up an OC-192 ring for a company (contract work through AT&T). I have chosen to use the Cisco ONS 15454 SONET MSPP as my platform. The company currently has locations in Chicago and Philadelphia and connects them through an OC-12C ATM connection and they are looking to add 2 gigabit ethernet connections.My question is what cards and parts will I need for the Cisco ONS 15454 SONET MSPP, and how much will everything cost? I have been searching the internet for components and prices and I have found it extremely difficult to find any information.
View 2 Replies View RelatedI currently have a 50Mbps Internet Connection provided by an ethernet handoff for hosting some webservers. We are looking at adding an additional 10Mbps Internetn connection and route BGP between the two. For the 50Mbps connection, i'm using a Cisco 2951 router. I also have another 2951 router to terminate the 10Mbps connection. Does these router have enough horsepower to fully route BGP?
View 1 Replies View RelatedIs there any way to auto migrate my 3030 VPN configuration to an ASA platform?
View 3 Replies View RelatedA make one BOM and i just ask my self can we order on the one platform ( for example 5510-SEC-BUN-K9 ) SSL Essentials license ( this license is on the platform by default we buy 250 users ) and i need 50 Users license from them to be Premium.
Can i buy those two license on the same platform and is this will work ?
During WAN troubleshooting, I did a "clear interface ser0/0/0" on a branch router. It has two WAN links. I lost ssh/telnet connectivity but both WAN links were still replying to pings. We did a manual power off of the router to regain connectivity.Is there a known issue with this command on this IOS version? We're using Cisco 2911 platform with IOS 15.1-1.T2 version.
View 1 Replies View RelatedI am currently working on our Cisco voice platform at work.
Our Cisco firewall engineer has left and I have been given the task of looking after the firewalls as our Chief Exec seems to think that Cisco Voice is similar to Cisco ASA firewalls,
Are there any books/videos out that you can recommend to learn the about firewalls quickly.
I am trying to bridge the traffic(including different vlan traffic) from rtrA to rtrB using "bridge-group" functionality.I achived the same using a 7200 using the below configuration. [code] When I tried the same using 7600 router ping failed between rtrA and rtrB. Then from the documents it seems "bridge irb" is not supported in 7600.Is there any other way we can achieve the same fuctionality ( eg: using switchport also fine) ?
View 3 Replies View RelatedI've been experiencing a problem with my existing 3845's that may mean I may have to upgrade to a newer faster platform.Currently I have ISP links to 2 providers and run BGP. Each ISP link plugs into a separate 3845 NM-1GE fiber port. Both links are 100Mb ethernet handoff. There is an average of 50 - 60Mbps traversing each link during peak times. I am experiencing a large number of Input errors on both ISP links almost all of the errors are ignored. I opened a TAC case and I'm told that the 3845 can not handle this much traffic along with an ACL on the ISP interface and BGP. TAC engineer tells me that the RX ring of the interface is being overrun and tuning buffers will not make any difference. CPU util never goes above 25%.
View 1 Replies View RelatedWhat is the minimum platform that supports GETVPN over DMVPN?
I have been looking around cisco website but couldn't find a document with the supported platforms.
We have branch offices with Cisco 861 routers and i would like to know if we could use GETVPN with these routers.
I'm going to replace a Cat6513 with a Nexus 7018. In my Cat6513, there are object tracking config as follows:
ip sla monitor 1
type echo protocol ipIcmpEcho 112.78.254.249
timeout 3000
frequency 6
ip sla monitor schedule 1 life forever start-time now
ip route 172.17.7.0 255.255.255.0 165.202.51.46 name VPN-1 track 123
Is there similar feature in Nexus platform? Because from Nx-OS command ref, I only found:
ip route ip-prefix/mask {[interface] next-hop} [preference] [tag id]
Seems can't associate a track object to a static route in Nx-OS?
You all know the senario; A managed device, let's say a c2801 router is being replaced with newer platform, let's say a c3900e series router. Might aswell be a C2960 being replace by a c3750x
I the goodolddays, with LMS3.2.1, you would get the "conflicting device" notice that the SNMP OID has changed on this managed device. you then need to press update and the device would then be managed once more.
How is tyhis done in LMS 4.2.2 ?
I seem to see more and more device in one of my installation, that DCR sees teh new OID and updates, but Inventory fails ... I get more of this, and the error is just; Internalt error in the job-browser .
I see Device Center info is wrong, but DCR info is right ..
What to do, and how do LMS handle this ? Can I get notice around when a device has been changed ?
Does the 4500E platform (sup7E) support the extension VLAN over MAN connections? In wich technology?
View 1 Replies View RelatedDoes the Cisco vWLC support the cisco AIR-AP1231G-A-K9 platform?
View 4 Replies View RelatedI´m looking for an IOS on a 7609 SUP720/MSF3 that supports the NAT-PT feature (IPv4 to IPv6 translation). I searched on the Cisco Feature Navigator but the tool didn´t show up any IOS for the 760x platforms. I only got the feature "NAT-PT: Support for Overload (PAT)" with IOS 15.xS train.
View 2 Replies View RelatedCan we implement BGP without IGP Protocol ? If yes, then how can we do it ? If no, why ?
View 11 Replies View RelatedWe are attempting to implement an ASA 5520 with a new ISP. Based on the limited routing needs, I believe we can use it as the router as well. I am familiar enough with routers, but the ASA is obviously a different thing.
The setup looks like:
ASA Version 8.2(1) !
host name Cisco
interface GigabitEthernet0/0description Internet name if Outsidesecurity-level 0ip address 69.XX.46.1 255.255.255.252 !interface GigabitEthernet0/1
description DMZnameif DMZsecurity-level 0ip address 69.XX.56.1 255.255.255.240
!interface GigabitEthernet0/2description Localnameif Insidesecurity-level 15ip address 10.0.XX.XXX 255.255.252.0
[Code] .....
1) Outside 0/0 connects to MRV from service provider (Public)
2) DMZ 0/1 connects to outside switch with servers (Public)
3) Inside 0/2 is LAN (Private)
A) Based on a completely default config and aside from setting the routes to send traffic from inside to outside, and outside to DMZ, what is the next step?
B) What should the interface security levels be, I am unsure what they should be or why...?
Based on the initial config with interfaces set as above, I cannot move traffic through.
Today we have a simple ASA-5520 SVC setup with just one connection profile and one group policy. Authentication (2 factor – AD + SMS) is performed by RADIUS. We would now like allow access to this VPN service only if you reside in a particular group in the MS AD. From what I understand this can be accomplished through DAP. Either by matching the LDAP attribute “memberOf” or RADIUS id 146. I’m I right? Can I still perform authentication using RADIUS and then DAP using LDAP or must I use DAP using RADIUS?
View 3 Replies View RelatedWe have the following design in mind
3750 Stack (Voice gateway for phones configured on the 3750 and has a VPC nexus)
+ +
+ +
+ +
(Nexus5596) ++++++++++ (Nexus5596) (Gateway for all other vlan like PC / servers / etc)
+ +
+ +
+ +
3750x access layer (VPC to Nexus)
[CODE].....
Setting up Netflow from the 7010 platform to Solarwinds?I implemented the following code on both of my cores (VPC/HSRP Redundant Linked Pair) but had the following issues:
1. One of the cores I could see was sending Netflow records every few seconds whereas the other was not doing anything
2. Solarwinds was not seeing any of those records coming in and was showing last update from both devices as "Never"
Note that I have netflow already working as my Riverbed (fairly intelligently) already updates Netflow.Also i was all set to debug this myself but there doesn't seem to be debugging for Netflow that I can see?!?
I want change my old router to new one. I have problem with runing SERVICES READY PLATFORM WIZARD.
View 1 Replies View RelatedOur company has recently upgraded our firewall from a Borderware Steelgate v7.1 platform to a Cisco ASA 5520 platform. Needless to say the interface on the Cisco platform is much more complex and I don't have much experience working with firewalls. Our other IT guy is out of town and this is the first time I have worked on this setup.
I need to create the following access rule
I need to open port 4**0 to be allowed through the firewall from external ip address 10.XXX.XX.XXX only. Then forward port 4**0 to 10.XX.XX.XX port 80 tcp
A customer wants to upgrade an IOS Base (cat4500-ipbasek9-mz.122-25.SG4.bin) of a WS-C4507R Cisco, for a IOS that have a enterprices functionalities.We install an IOS cat4500e-entservicesk9-mz.122-53.SG5.bin, but we had the following results:
config-register = 0x2102
Autobooting specified file using Variable BOOT .....
Current BOOT file is --- bootflash: cat4500e-entservicesk9-mz.122-53.SG5.bin
[Code].....
Any equivalent show command to get the "FIB TCAM Usage" on An ASR 1006 ?the "show platform hardware capacity forwarding" does not work on ASR1006 Example on 6500: Router# show platform hardware capacity forwarding.
View 1 Replies View Related
