I am running two ASA 5520 routers synched up with eachother. I had a massive connectivity issue this weekend that I am investigating. Now I have figured out how to get the live logging but I need to know how to get the old logs from my router.Also I am looking to set up a log dump that could happen daily or perhaps weekly.
View 1 RepliesI recently replaced an old Linksys with a Cisco E3200. All our devices get "stuck" periodically and can connect to the E3200 but not the internet. We power cycle the E3200 and all is fine. But only for a period of time, then we need to power cycle again. The range is less than my 4 year old Linksys was also, devices maybe 30 feet lose their connection even more quickly, forcing more frequent power cycling.
View 2 Replies View RelatedI just bought a RV220W. One of the features I need to setup is a daily wireless plan, i.e. parental control: my wireless connection needs to be open at different times depending on the day, for 2 specific wireless devices, while others wireless devices have continuous access. Unfortunately, the wireless schedule only lets me set up one start/stop time only (i.e. the same one every day).
I noticed that I could possibly set up a firewall access rule with a specific schedule, but I have no idea if this would work, and how to set it up. My basic idea was then to open the wireless SSID I want to control from 7.30am to 11pm every day, and then add a firewall rule that would close the access to the said devices (using their MAC address) from say 10-11pm on given days... But I am not quite sure how to set this up.
I have a RV220W setup with SSL VPN users, authenticating to an internal Active Directory. Maybe 5 ports forwarded and 8 external IP addresses. Besides this i have 1 data VLAN and a voice vlan on my network.
The reboots are on different times on a day, even on Sundays at 7 AM when noone is logged in to the network.FW is at 1.0.4.17.
if no route is found to the destination in wireless networks what will happen to the data packets that are being transfered. will tey be lost or ll be queued in the intermediate nodes.
View 3 Replies View RelatedAs we are unable to control downloads and P2P use in our network, we are thinking to block all ports except 80 and 443 in our router so that they can only browse and use them only for office use. They should also be able to use messengers like skype, YM, MSN and also download any attachments in email.I wonder if we implement this, will it going to work or will there be any problem in accessing normal websites too? I know to control downloads there are many premium hardware and software firewalls out there but we don't want to invest any thing for now.I also know PTP clients can still use 80 and 443 ports to connect but it will need user to change manually port so it's fine with us.
View 1 Replies View RelatedCan I schedule a weekly reboot with this router?
View 3 Replies View RelatedI have problem with one AIR-LAP1252AG-N-K9 AP. When i am connecting the laptop through wifi to this AP i am getting blue dump. If the same laptop connect to any other ap i haven't get any error. Laptop Model no is Lenovo L412.
AP Has below IOS version.c1250-k9w8-mx.124-21a.JA2
I upgraded the firmware to latest and apparently i've lost couple of options inlcuding TCP Dump in diagnostic as well as I cannot find how to disable/enable an ethernet port.
View 5 Replies View RelatedWe have a pair of ASA5520 firewalls setup in a very inefficient fashion, and I wish to convert them to an active/passive cluster. Trouble is, there are a number of configuration option I will need to re-implement (VPN tunnels, remote users etc), and trying to capture the configuation with a simple "show running-config" or "show running-config all" or even "show startup-config" doesn't get me things like the pre-shared-key from the VPN configurations - and I don't know them all, so I can't simply re-enter them.Is there any way to get a dump of the running (or startup) config which shows the hidden settings like pre-shared keys and OSPF message digest keys?
View 5 Replies View Related7200 VXR router got rebooted after due software crash dump.I have replaced NPE-G1 but still router is rebooting. Currently I am running with 12.4 (15)T 13 IOS.Crash Dump file is attached.
View 4 Replies View RelatedI used to use this forum all the time when i was younger and I pretty much learned most of what I knew about computers from this website (the rest I learned from breaking stuff and then having to fix it). I'm really excited to be back on this website and learning about computers again. The latest generation of consoles really pulled me away from playing my video games on computers and thus i no longer felt the need to over clock everything. Now, for my current problem:
I just recently purchased a linksys e3200 router and have been using it in place of my Belkin N600 (which i bricked ). The router is ran to my cable modem (which is located behind my TV) and the router itself is located about 6 feet away on top of my fire place mantle. The router is connected to my ps3 slim 250gb and my motorola sb6120 both with cat6 10 ft cables at 1gbps. I have a amd laptop with built in wireless g, and intel laptop with wireless g, a pc with a wireless g usb and a wii all connected to the router. Thus, the router stays in wireless g broadcast mode.
THE PROBLEM is that the router will work for about 30 seconds to 30 minutes and then it just starts crapping out. All the computers lose their wireless connection to it, and it would seem that sometimes an online game for ps3 gets bad packetloss during this dump. The only way to fix the problem is if i reset the router. A soft reset works for about two minutes, and if i do the 30-30-30 reset, it starts working again for another 30 min to an hour.
Here is what I already know:No known source of interference near the router.nly one other network in the area, and I have tried every available wireless channel.Have not only upgraded to latest version of cisco firmware, but now I am using mini- DD-WRT.Have tried increasing broadcast power on DD-WRT.Have played with the settings in DD-WRT pretty extensively after reading the guides on what settings do what.
The connection issues still happen even if my laptop is 3 feet direct line of sight from the router.It would seem that the problem happens with wired as well, just that it recovers so quickly on wired that most people wouldn't notice.
My cable modem typically averages between 20-30mbps down and 1-3 mpbs up (i moved to a small rural area that charges extortionate prices for better packages). I can't afford a wifi spectrum analyzer tool.
Here is the kicker for me: EVERYTHING worked flawlessly until one day it just quit working. Absolutely nothing was changed. Some of my computers are very far away and on a different floor in the house, so if I have to get another router it's not the end of the world because i can just put this one on repeater mode. I just don't understand how a rather well-received router model could have such bad issues.
Any ideas apart from the typical: location, firmware, interference, channel, channel width, reset ideas? Even now, the router works very well until it goes back on life support.
I have a ASA 5520 with a functional IPSEC VPN using the Cisco VPN client. This allows my remote users (Staff) using laptops to come in from anywhere on the Internet and tunnel in. Works great.Next, we need to stand up a VPN over a Juniper SSG5 so that when we have groups working outside of our network, they can tunnel back into our network. If they were going to be coming from a known, fixed IP, or even netblock, we'd probably use Route-based setup from a Juniper SSG5 into the ASA 5520. But they may very well be coming from any IP. I am thinking this leads us to Site-to-Site VPNs- it won't be Network Client access obviously, nor will it be Clientless (browser-based).
View 9 Replies View RelatedI am new to v5.3, and I am not good at VPN.I just have my consultant to configure this correctly just today. Currently, there is only one rule for the access policy (Single Result Selection). That rule is to use Active Directory as the source for the authentication. And by default will deny any other access which is not found in the rule.Now... I just got an order that I need to setup a new user who will need to access to our network by using Cisco IPSec VPN (the software one). But that user is not setup in our Active Directory, and we do not want him to access our domain anyway. He only needs to access non-domain resourse...such as airconditioning controller by IP. So I am thinking to setup his account by using "internal identtity". If I do this way, what do I need to do to setup another access policy? May you give me some steps with little more details? OR... if it is not the way I should do...what else can I do to achieve this goal? Also, he said he could provide his static IP trying to access from. I have a ASA 5520.
View 4 Replies View RelatedI need to setup an ASA 5520 to correctly NAT over two wan links. The idea sounds pretty straingforward but it does not, I have only 2 IPs that are involved with the NAT
192.168.1.10(Nated Server) -- 172.16.1.10(Web Server)
I have 2 interfaces that sould be applied to it let's say outside1, outside2. The server is reacheable through each outside interface, the outside interfaces is selected uppon dynamic routing and that is working OK.
So if link outside1 is up the Nat follows this schema 192.168.1.10(inside) -- 172.16.1.10(outside1)
that works fine, but I want that automagically changes over when the link outside1 is down to 192.168.1.10(inside) -- 172.16.1.10(outside2).I know I can't have a NAT with 2 IPs and 2 different interfaces (ASDM doesn't allow me to), is there a way to implement this??
I want to setup NAT with ASDM on ASA for a client and I can not make it work. I have several interface:
Inside: 10.97.0.1 / 24
Outside: 10.0.1.70 /24
Interco: 192.168.6.1 /24
Other Sites: 10.26.0.4 /24
All routing in the network is Ok My customer want to access a server @ ip 10.194.70.1 in https on the interface Interco with his nat address as 10.97.0.11 .This server must be accessible with the address 10.97.0.11:443 from interfaces inside, outside and other sites.And source address must be nated with original destination address 10.97.0.11 to be redirected on 10.194.70.1.
I am working on IPSec Passthrough on an ASA 5520, with version 8.3, and ASDM 6.3. Currently I have a requirement for users in my internal network (10.10.249.128 / 25) to be able to connect to external IPSec VPN servers.
So I created a network object with 10.10.249.128 / 25, and used dynamic PAT to translate the source ip address to the external internet facing outside interface:
I then added the following rules on the inside-in ACL: However troubleshooting shows that isakmp is passing through the firewall, but esp and ah is not.
For isakmp:
For ESP:Seems like the nat rule is drawing my ESP traffic,
I have a new SRP 541W with v. 1.2.4 firmware.
Daily, (random times) I have to do a hard reset in order to get the wireless up and running. It works great and then with no warning, no other issues, the wireless just stops. The wired connections still work just fine.
Everything comes up perfectly fine after it reboots, until the next day when I have to reboot it again.
We are seeing daily erros on our ACS5.4 server like below:
View 1 Replies View RelatedI recently purchased the RV220W to upgrade by good, but aging RV042. I'm running the most recent firmware (1.0.2.4 as of this writing) and have noticed this router reboots daily. I'm guessing it's locking up and rebooting as it occurs as different times of the day. Compared to the RV042, this was a bit of a pain to setup especially with regard to port forwarding. I'm hesitant to reset and start over again especially since this is brand new.
View 2 Replies View RelatedI recentlydeployed a RV220W and got it mostly working for the environment. One issue: remote users connecting from different locations. I set up QuickVPN to accomodate them, which seems to 'kinda' work. 'Kinda' because I have to reboot the RV220W each day before the clients can connect succesfully. The clients run a mix of WinXP-32, WinVista-32 and Win7-64. All other settings in the QuickVPN client have been verified for each user. They each have the latest verion of QuickVPN and the RV220W firmware is at the latest version. The networks at the remote locations are not numbered the same as the host location.
The clients work several times a day, but the RV220W needs to be rebooted every morning. Is this a known problem with a work around? Is there a better solution for VPN access from Vista-32 and Win 7-64?
I have been tasked with attempting to setup an enviroment that allows users to VPN from home and use Dameware to connect, from home, to another machine in another users home that is VPN'd into the same network. Is this possible?
We are using 2 5520 ASA's and CiscoAnyConnect.
We have a 5520 ASA running 8.4(2). We are trying to setup Clientless VPN access to our SharePoint 2010 environment. We have most of it working, however there are a few things that do not function right in SharePoint via the VPN but function fine internally. Are there any special things to configure specific to SharePoint? Some of the things that do not work include the SharePoint ribbon, up level function, opening of documents within SharePoint, etc.
View 3 Replies View RelatedIs there a way to have the router reboot every day automatically? Every few days no one on the network is able to use the internet until the router gets rebooted (which has to be done by unplugging it at that point, since I'm by then unable to connect via the web interface), and having it automatically reboot every day at a time when everyone is usually sleeping would be very convenient.
View 9 Replies View RelatedI have observed a situation where one of our cisco switch 3560 is rebooting daily at periodic times.We have checked the power cables and source everything is fine and still clueless whats causing the issue. [code]
View 13 Replies View RelatedI am trying to setup an active/standby failover with 5520's running 8.4(2) and am having problems with it not dropping connections during the failover. I am using a portchannel from the switch to each ASA and using sub-interfaces off that. I'm using the command Failover mac address Port-Channel1 “mac-address on primary Port-Channel1” “mac-address on standby Port-Channel1”.The command goes through but doing a show interface port-channel1 doesn't show a change in the mac address on the secondary unit after a failover when it becomes active.
View 3 Replies View RelatedEvery day around the same time the SSID for my wireless network disappears. I'm using a Netgear wnr2000v3. Prior to this I was using a Linksys router, which did the same thing... only more frequently (2-3 times a day).Between smartphones and laptops, there are about 6 devices connected to the network. They all lose their connection and cannot find the broadcasted SSID when this happens.Because it happens around the same time each day, it makes me think that it has something to do with the DHCP lease, which is 24 hours. Just a thought, as I don't really know how that works.
View 4 Replies View RelatedI have a Linksys X3000 router. While it is running, connection latency will gradually increase over about a day until eventually it just stops working at all and I have to power it off and back on again.
Ping times to a local website slowly increase from 30ms immediately after restarting the router, to about 100ms about an hour before it will need to be restarted, then rapidly increase to over 1 second before it drops out completely. When this happens, no connections through the router will work, I cannot even ping it or connect to its configuration web page.
I upgraded the firmware to see if that would work but it didn't. I have had the exact same problems with the 1.0.0 and 1.0.01 versions.
Can I get it replaced? And in the mean time, is there some way to make the router automatically restart at a scheduled time?
I have an Access Point Cisco AP541N, working great, except that every 1 or 2 weeks, clients cannot connect anymore to it. I need to reboot it.
I recently updated the firmware to the latest version (AP541N-K9-2.0(0)), but that didn't work.
Is there a way on cisco access points to automate a daily reboot?
What is the best email service that puts a high priority on privacy yet is still easy to use on a daily basis?
View 2 Replies View RelatedMy issue occurs on ALL of my home computers (MacBook and iMac using wi-fi) and ALL of my browsers (Safari, Firefox, Chrome).The problem:- Security Certificates: They pop up daily for Facebook mostly, but also Twitter. I will click Continue, which takes me to...- 404 Error/Page Not Found Error: After the Certificate error mentioned above, this happens. Mostly to YouTube. It will stay like this for a few hours. I've cleared cache, rebooted, etc. etc. Nothing works.- Images turn into little blue boxes with a question mark in them. **When this happens, it's an indication that a Certificate box will pop up out of the blue.- Even on Google.com, it will say: Invalid URLThe requested URL "/", is invalid.Reference #9.df260e6b.1336506889.420cf4fSo what can I do? It happens on both my Macbook Pro and iMac - both connected wirelessly to a Linksys router/cable modem. The router is Wireless-N Broadband Router WRT160Nv3 with Firmware Version: v3.0.02.
View 1 Replies View RelatedRegion : UnitedStates
Model : TL-WDR4300
Hardware Version : V1
ISP : Comcast
TP-LINK WDR4300 750N Dual-Band router issue.
I started having a problem with a VONAGE V-Portal VoIP adapter losing connection to the Vonage server. I Unplugging the adapter and waiting doesn't solve the problem. The only way I can temporarily fix the issue is to reboot my TP-Link router. Once the router is rebooted the adapter can connect to Vonage. After a few hours it loses connection again. I have set the adapter to use a static IP outside of the DHCP reserved pool. This didn't fix the issue.
I have had vonage for many years and this router for the last 10 months and not had a problem until the past two weeks. Nothing only my local network changed. All of my PC's have no problems with internet access during the time that the Vonage adapter gets an Error 004 (lost connectivity). I still have connectivity with my ipod touch and other internet enabled devices as well. I was using 8.8.8.8 as my DNS server in the router DHCP configuration as well as the static value when I tried using a static IP with the V-Portal. I then switched all system to the ISP (Comcast) preferred DNS servers. The problem still exists. The only way to get the Vonage adapter back to running is to reboot the router.
I should mention I have Motorola Cable modem to a TP-LINK WDR4300 750N Dual-Band router. I have two Vonage vportal adapters plugged into the a couple of the LAN ports on the TP-LINK router. One vportal is my roommates, one is mine. Everything has been working fine for the last 6 months and now one or the other Vportal loses communication through the router, but the other vportal doesn't lose connectivity. It only happens to one of them and it varies as to which one will ERROR out.
Any step by step guide to setup syslog for site to site VPN.(in ASA 5520)Just send me the step to monitor site to site vpn using that in ASA 5520.
View 2 Replies View Related