I want to capture packet on gi0/0 of PE1 in order to show customer that all his traffic is encapsulated and transmitted by L2VPN (ldp signaling) in his lab.
PE1 and PE2 are Cisco3945 and L2VPN is working well. I tried cisco RITE(Router IP Traffic Export Packet Capture) feature, but the output was not what I expected. I tried both export mode and capture mode. Only LDP hello message I got, looks like RITE is only interested in IP packet. Monitor session wasn't effective as well because it is not a switch.
Is there any other way/workaround to capture customer's traffic encapsulated in L2VPN?
What I did on PE1 when I was trying RITE export mode: ip traffic-export profile test bidirectional
Cisco Router 2900.My setup pppoe dsl 8mbps and i read on other website kinda sound of MTU.. but i dont know what is this or exact number of MTU. [code]
recently we have deployed a Two APs in branch office warehouse and I have one wifi phone 7925 used over there. the problem is every time when phone roaming from one AP to another, 2 or 3 packets dropped, following is result of the 'debug client ':
--More or (q)uit current module or <ctrl-z> to abort*apfMsConnTask_7: Jun 27 09:52:25.496: 88:43:e1:4f:ab:39 Association received from mobile on AP a0:cf:5b:c3:a8:90*apfMsConnTask_7: Jun 27 09:52:25.497: 88:43:e1:4f:ab:39 10.107.38.121 RUN (20) Changing ACL 'none' (ACL ID 255) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1621)*apfMsConnTask_7: Jun 27 09:52:25.497: 88:43:e1:4f:ab:39 Applying site-specific IPv6 override for station 88:43:e1:4f:ab:39 - vapId 14, site 'AKL-AP-GP', interface 'management'*apfMsConnTask_7: Jun 27 09:52:25.497: 88:43:e1:4f:ab:39 Applying IPv6 Interface Policy for station 88:43:e1:4f:ab:39 - vlan 38, interface id 0, interface 'management'*apfMsConnTask_7: Jun 27 09:52:25.497: 88:43:e1:4f:ab:39
i have issues logging into one of our core switches.its a 6509 switch but i cannot log in remotely.when i try to console in on the console port, i cannot log in instead i get the above error message.I haven't rebooted yet but would it solve the problem as this switch is a production switch.
I've been fighting with my E2500 since I got it back in June with lag, dropped connections, etc. It's a bit intermittent but can hang around for hours at a time when it kicks in. Restarts but the issue always comes back. Most noticeable while gaming online or on a VOIP program such as Team Speak. Generally when it happens If I'm monitoring my Team Speak connection the incoming packet loss shoots up between 20-30%, starting to drop out every other word or so. No out going packet loss. The connection drops are random between computers (I have one mac and one pc in the house) where one will be fine and the other wont, or when the whole system will stay connected and drop all transfer. In the case of this last one it's not my ISP's connection as any streaming happening between one computer and an Apple TV device will also cease. I've also swapped back to my old router (an older model linksys) and all problems have stopped. Fully rebooted and reconfigured the router about 3 or 4 times and am on the latest version of firmware (1.0.003). It was much worse on 1.0.002 but still very noticeable on 003. Also no difference with a different wireless adapter. I've tried the chat technical support but all they did was take 45 minutes to tell me how to reboot my router after telling them I already had.
Got a classical remote access vpn with Cisco VPN Client and ASA-5520, Some weeks ago I noticed in my ASA logs this severity 5 Message. Group = xyz, Username = abc, IP = 84.n.n.n, Duplicate Phase 2 packet detected. No last packet to retransmit. This message comes with every connect, but then connections works fine.
Remark: See ASA ADSM:
- 1. Duplicated Phase II (!!) - 2. Phase I - 3. Phase II
We have 3750 and 4510 switches and in both we run Q-n-Q but we observed looping/Broadcast Storm we already run TSP on 3750 end and this is corporate branch but 4510 its difference branch where we run q-n-q technology.
Disable ports looping Users connect the network cable at two points in the network generating looping. which command to disable two ports of a Cisco 2960 when they are connected at the same time with the same network cable?
I am trying to find out what the 'normal' operating temperature of the CPU in a 3945 router is? We have just replaced some 2800 routers for 3945's and the NMS server initially complained about the new router CPU temperature being too high. Compared to the 2800 the CPU temperature is much hotter - 50 degrees celcius as opposed to 20-smothing degrees. I have searched but can't find what are considered 'normal'?
This is the output:
router#sho environment allSYSTEM POWER SUPPLY STATUS==========================Internal Power Supply 1 Type: DCInternal Power Supply 1 12V Output Status: Normal
We have recentrly replaced a 1700 router with Cisco 3945 router (Core Router) and the Channalised E1 interface is configured as given below: [code] The issue happens intermittenly and makes network not reahable.Status of the links are UP/UP - No traffic forwarded through the link (Ser 0/0/0:1 and Ser 0/0/0:2) and at the same time not able to ping the local IP Address as well - 10.5.10.1/10.7.10.1.No issue on the Ser 0/0/0:0 link - Working fine.If you replace the new router with the old one all are working fine.
How to find the maximum number of PRIs supported on a given router:
Let's say I need to find maximum number of PRIs I can connect on a C3945.
I see that I could buy for example (4) VWIC3-4MFT-T1/E1. The C3945 comes with (4) EHWICs where such VWIC3-4MFT-T1/E1 cards can be inserted. Since each VWIC3 has (4) ports each, that would be total of 16 PRIs.
Then let's say I want to put more Service Modules and allow me to expand it further. The C3945 can support up to (4) service modules.
If I want to put the maximum number of PRIs possible, is it right I could install (4) NM-8CE1T1-PRI. That would give me maximum of 48 PRIs in a C3945.
I wanted to confirm if the NM-2W is compatible with 3845 (says it is compatible) and 3945.I wanted increase WIC density in these routers to install ISDN HWIC-4B-S/T 4-port ISDN BRI High-Speed WAN Interface Card.However, i am not sure if these cards are compatible on the NM-2W. Is there any other NM* module that can extend WIC density on those routers.
I have 2 Cisco routers 3945. Use HSRP for links failover. Does exist any possibility (any protocol) which makes routers configuration's automatic synchronization (as failover for ASA firewalls)? I mean, if I will make any configuration changes on the Active router, automticly will taken this changes by the Standby router.
Transceiver integration within Cisco 3945.I need to supervise the DOM (Digital optical monitoring) capability of LX laser integrated within CISCO 3945.But after study of the Cisco DataSheet on transceiver module compatibility:
[URL]
I've seen that the SFP-GE-L model which supports DOM cannot be integrated within Cisco 3945.As specified in the datasheet, the only model of LX lasers compliant with CISCO 3945 is GLC-LH-SM (without DOM).However, after study of this datasheet, I can see that Cisco propose this Tranceiver model with DOM capability: GLC-LH-SMD But, so far I can't figure out if this model (GLC-LH-SMD) with the DOM capability is supported on Cisco 3945 and can be monitored through monitoring tools? If not, is there an other alternative to supervise the DOM capability with transceiver (LX) to be intergated within Cisco 3925?
RouterModelIOSModuleR1Cisco 3945 Integrated Service Routerc3900-universalk9-mz.SPA.151-1.T.binNME-AIR-WLC12-K9 R2Cisco 3945 Integrated Service Routerc3900-universalk9-mz.SPA.151-4.M1.binNME-AIR-WLC25-K9
The issue that we are experimenting is that, although the module's interfaces are up and HSRP in correctly configured, the show standby summary displays that the Active router is local in both routers. We also have some GigabitEthernet in the routers and they are correctly running HSRP. Does the WLC Modules physically support HSRP?
I have to replace the 3745 which is our edge router (running (C3745-ADVIPSERVICESK9-M), Version 12.4(23), RELEASE SOFTWARE (fc1)) with (I think) a 3900 (drawing from memory, I haven't actually seen the device yet).In an ideal world, I SHOULD be able to just set term length to "0", do a show run, copy that off to a text file, and then paste it into the new one...
I have a Ethernet module (SM-ES3G-16-P) installed in a 3945 router and noticed during first boot no licenses are active at all. I would assume at a mimimum ipbase would be active. With this module, does static routing work with just ipbase?
Example: interface g0/1 no switchport ip addr 192.168.254.2 255.255.255.0
I reported a really strange issue on a Cisco Router 3945. Here below info about release software used: [code] Please look at a brief extract of router running configuration file: [code] It’s an easy configuration of Extended ACL and the application on an Ethernet interface. The expected result is:
- The interface works properly (because access list is permitting every kind of data traffic in input) - Checking “show access-list 180”, the counter of matched packets increments for all the packets that are forwarded inside the fa0/0/1.
But actually the Fastethernet 0/0/1 drops all the packets as if all the packets don’t match with access list (And this behavior is really incredible). The interface couldn't be used anymore because any kind of data traffic is denied.
Was wanting to know if these cards are compatable with the new 3945 ISRs or if their is a unique command that has to be run to recognize these. why I'm using these large routers with a T-1. Its too long of a story.
I just got my first 3945 router and E3/T3 Network cards and when I do a sho ver I can see the E3/T3 card but when I do a show run all I see are the 3 GE interfaces.
I am getting the following message from a 3945 router: %CERM-4-TX_BW_LIMIT: Maximum Tx Bandwidth limit of 85000 Kbps reached for Crypto functionality with securityk9 technology package license.
That router has 8 Gre/IPsec tunnels and one of those tunnels is 100Mbps.The question is, could I get 100Mbps as the sum of all tunnels, or is there a restriction to 85Mbps ??
I have an issue understanding the difference between 3945 and 3945E from VPN support perspective.
If you check this link here:
[URL]
You will see that the 3945E doesn't even have an ISM slot for a VPN ISM module and of course I could not find any ISM module for 3945E (I think this is obvious). Nevertheless, the above mentioned page and
[URL]
say "Embedded hardware-accelerated VPN encryption for secure connectivity" for 3945E
That the Cisco 3945E supports the same VPN features (including packet encryption / decryption in hardware) like a Cisco 3945 with VPN ISM card?
When I try to configure a voice port (like voice-port 0/0/0:15) after doing a conf t, it gives me an error of invalid input detected.We are using a Cisco 3945. We have successfully setup 3825 and 2851 in the past.
I have a 3945 router with two interfaces connected to my firewall, one to the management interface and another to my dmz. I'm running eigrp between all my network devices. The problem I'm running into is when I try to ssh to the management interface of the 3945 the traffice hits the firewall, then goes right to the management interface as it should, but the return traffic is trying to use the dmz interface since that is how the router knows to get back to my computers network. I created 2 route-maps to try and address this issue. [code] I've applied the MANAGE_IN route-map to all interfaces that might have inbound traffic destined for the management network and applied the MANAGE_OUT route-map to the management interface. The MANAGE_IN policy appears to be functioning correctly, the MANAGE_OUT doesn't appear to be functioning correctly. When I look at traffic from my host going to the management interface I see it still trying to return through the dmz interface.
