I want to clear the keys on a 2821 and generate new ones using the command crypto key zeroize command but I don't see this command available as an option. Below is the output of the available options..
ROUTER#crypto key ?
lock Lock a keypair.
unlock Unlock a keypair.
[Code]....
We have a pair of N7K distribution switches connected to a pair of N7K Aggregation switches.We run vPC on both pairs of n7k's.
-n7k-d1 has two interfaces in a Port-Channel connecting to n7k-a1 & n7k-a2. (PC1)
-n7k-d2 also has two interfaces in a Port-Channel connecting to n7k-a1 & n7k-a2. (PC2)
My problem is that Spanning-Tree is blocking PC2 and all traffic from n7k-d2 is traversing the Peer-Link before reaching the Aggregation layer. Is this the best design for connecting two pairs of n7k's with vPC or if a better design would be to connect all 4 links into the same Port-Channel and vPC?
I've got a router on which I run a backup/media/print server, a couple of computers and a voip box. My router has only four ethernet lan sockets which are thus all occupied by the above, but I need to attach at least one further device b
Secondly, could a splitter such as >> this one << do the job? I'm guessing this basically split a single 4-pair ethernet connection into two 2-pair ethernet connections.
I have configured an Cisco 881 router in our lab with netflow commands and pointed to our network monitoring tool and I want to check if the tool can collect valid traffic statistics from this router (eg. utilization). The problem this router has nothing plugged into a production LAN that would potentially generate traffic to measure using this tool.
Is there a way to configure a Cisco router (ex. Cisco 881 router) to artificially generate network traffic to test that I have setup the monitoring tool correct to capture future utilization statistics?
Is it possible to generate a public RSA key of 4096-bits on an IOS router? We are running 12.4(24)T5. Have been going through some cisco doc and found this:
Cisco IOS 4096-Bit Public Key Support in IOS 12.4(11) and later.
However when I issue the command,crypto ca trustpoint exampleCAkeys, rsakeypair exampleCAkeys ?
it only shows me the maximum of 2048. Am I missing something? Currently our root cert has a public key of 2048 and the routers a key of 1024. The goal is to increase the root cert and our routers cert to 4096-bits. If that's possible.
We are already having a True business ID certificate from Geotrust for our SSL VPN on CISCO ASA 5510.this is working fine.
We are now changing our device from ASA 5510 to ASA5520 in failover setup. As we check with Geotrust they are asking us to create a new CSR with same parameters from new ASA5520 device and reissue the certificate from their site.In this context how to create a new CSR from ASA5520 8.2(5). create CSR from ASA 5520 8.2(5)
I have an issue with rme 4.2 from LMS 3.1 When I try to generate a syslog report this shows me nothing. I locate SyslogCollector.log file and I see sometnig wrong.
View 4 Replies View RelatedI am running CiscoWorks LMS 4.0.1 since 6 months and I wanted to generate today a report about the interface utilization on 2 Cisco switches (Catalyst 3750G). The corresponding job is created, it runs and then i get "succeeded with info" in the "Run Status" column. When I want to click then on the "View Report" link, I get the following error: "Could not generate the report. Either data is not available for the specified duration or the report job failed."
I tried the same procedure with 2 other switches but I have got the same result.
I'm playing with ipv6 and trying to get a tunnel between two sites working (basically following this example url...
View 6 Replies View Relatedwe have a policy on ACS to disable user account (Internal user identify store) after X days if password is not changed. However, a few days before the password expires, there is no notification for users unless he happens to log in IOS router (tacacs) through console. in other words, if he logs into IOS devices through VTY, there is no notification at all.some users got locked out becuase they were not notified to change password. What setting on ACS 5.2 must be configured to display warning on VTY before password expires?
View 2 Replies View RelatedI am unable to generate bug summary report in RME. Even I can not generate PSIRT report as well..LMS always gives error "incorrect cisco.com credential. enter correct credential" I have checked my credentials are correct... it gives me error no BTKT:0014..I am using LMS 3.1 attaaching snap shot of my patch level and application version running on LMS...
View 3 Replies View RelatedHow to generate a Report for all ur existence Subnet's using LMS 4.2?
View 2 Replies View RelatedASA5510, Can't generate RSA keys, so can't SSH. [code]
View 2 Replies View RelatedI have a WCS server running the version 6.0.170.0. I have already added few WLCs running the version 7.0 to this WCS. It is working fine. And now I have added two new controllers running the version 7.0.98.0 to the existing WCS server. When i add the floor layouts to the WCS and position the access points from the new controllers, the heat map is not generated automatically.
View 2 Replies View RelatedI have a cisco 2821 router and it has an advanceip image in the flash each time on reboot it gives the message software forced crash and checksum error and finally goes into rommon. i tried xmodem and tftpdnld -r but same problem persists. I even changed the CF with a working router's flash but the same problem occurs.I also loaded an ip base image of about 13Mb size and all the same problem repeats with it.
View 10 Replies View Relatedwant to view the Log on the Cisco 2821 router for any issue occur.
View 2 Replies View RelatedURL What changes are needed to the 2821 config that is behind another Cisco router? And what static ports should be opened on the MAIN Cisco router that is in front of the 2821?
View 1 Replies View RelatedWe are using a 2821 Router as our boundary router. It has installed into it a 9 port HWIC for layer 2 switching as well as allowing the router to communicate on the Network Management VLAN. All of the devices on the Network Management VLAN are segregated from the managed traffic, which unfortunately also doesn't allow them external NTP services. Can the router be programmed as a NTP server so that all of the network appliances can utilize it for NTP from either it's NM Vlan IP address or from a loopback address?
View 3 Replies View Relateddo we have anything like universal password for cracking through wireless connection?
View 3 Replies View RelatedBasically i need to test to see where the telephone lines are terminated, because when they where built into the walls the used standard cat5e cable to terminate it to an RJ-11 jack but over in the wiring panel it (i assume it is anyways) terminates to an RJ-45 jack but im not sure if this is really the cable for the telephone or something else, so i have a phone connected to the wall jack and a computer on this end and i would like to send a dial tone or any tone in general that the phone can pickup.
View 3 Replies View RelatedI have a TP-Link Wireless Router (TL-WR340G) and I use it for both Wired and Wireless connection. I have two desktops that connects to the router through cables and I also have 2 notebooks that connects through WiFi.
Now, I want to know if there is any software that can generate passwords which I can assign into individual PCs that connects with Wifi. For example, Notebook #1 has the password "abcdefghij" and the Notebook #2 has the password "1234567890" and they can both connect to the WLAN.
I have been tasked to install the first "hosted & managed" network setup at work. I've actually been tasked to clean this up, since one of the other engineers on my team botched the install. Here's my issue:
A small business customer ordered 4 VoIP phones/numbers, a T1 circuit, and a managed firewall service from my company. We provided them with Cisco 504s, T1 router with two Ethernet ports, a Layer 2 switch for their phones, and a Fortigate firewall to manage their network. They also wanted us to install & configure their Linksys wireless router for net access on their laptops and i Pads. The higher ups decided that V LANs were not an option, and they wanted to have the Voice and data on two separate Ethernet interfaces.
Here's the problem: In the initial work order our T1 router (an Adtran900 series - a reverse engineered Cisco OS) will connect the VoIP phones to the F0/0 interface (using the layer 2 switch) and act as the DHCP server, using Private IP adressing. In order to perform this, the first engineer enacted the Adtran's firewall, configured NAT, and setup an IP policy to allow the phones to communicate (allow any any basically). On the F0/1 interface, the firewall is connected. The Firewall is given a Public IP using the F0/1 address as the default gateway, and performs NAT to their internal data network. The problem is that outbound traffic works fine, and inbound/outbound works on the F0/0 interface where the phones are connected and the Adtran is performing NAT - but I cannot get access the firewall from the outside world. I know the issue has to do with the firewall on the Adtran router, and it trying to block inbound attempts to the public IP block assigned to the second interface. I attempted setup firewall rules to allow all traffic to that sub net and interface, but it did not work. As soon as I disabled the firewall feature on the main router, voila! - the Fortigate firewall was accessible from the outside world. But, this disabled their phones from working, as this disabled NAT for the private IPs for the phones.
Ideally I could use the switch and setup V LANs to segment the voice/data traffic, but that option was denied. I think the way we're doing this is over-complicated, but this is the desired configuration from my boss. He doesn't really understand V LANs and Firewall rules too well, so he wants the two interfaces approach. To make things even more complicated and redundant, I'll need to setup 1-to-1 NAT rules in the Fortinet firewall to allow access to the /29 we have allotted the client for their connections to Ford/GM/& Chrysler. I can't think of an efficient way to make this work - every scenario I come up with hits a roadblock. I've attached a network diagram so this can make some sense. The IPs have been changed.
We got a replacement ASA 5580 from Cisco. We were not aware of PAK, Is there any other possible to generate Activation key? Can we generate PAK or Activation Key using SO (service order) number?
View 1 Replies View RelatedI want to use IP SLA to perform simple up/down monitoring of an IP host and to generate a syslog alert if the host goes down. I have a 2650XM router running 12.4(23) IP Voice IOS. My basic IP SLA config is hown below:
ip sla monitor 10
type echo protocol ipIcmpEcho 10.55.1.1
timeout 1000
frequency 10
ip sla monitor schedule 10 life forever start-time now.
I'm supporting a 2504 wireless controller with 3 aps in a health clinic. I'm interested in generating some useful information for the owners of the device such as radio utilization (It'd be really nice if there were some graphs). how I can generate these graphs without SNMP monitoring or something like Cisco Prime Infrastructure?
View 4 Replies View RelatedI can't seem to find out how I can generate a PCF file for a new remote vpn SW client? I have a VPN Concentrator 3000 series.
View 1 Replies View RelatedI have setup nat on three sub interfaces but when trying to browse to local servers, such as our web server, that have been translate, we get a prompt to logon to the router. I suspect these internal addresses should not be natted for local users.
View 3 Replies View RelatedI have a Router 2821 with c2800nm-advipservicesk9-mz.124-24.T1.bin and with a Cisco Integrated Service Engine(s) Cisco Unity Express 7.1.1 in slot 1 , this router shows a high cpu utilization.I think is a bug with the IOS , because there is no voicemail configured on the CUE, there is no traffic to the CUE , just traffic from:
- voice calls
- ospf
The ospf is not the cause of the high cpu , because the high cpu utilization appears before I put the ospf proccess on the router.
Support for WIC-2T , we have one 2821 router with wic-2t currently serial link is running with 2mbps and we want to update with 4 mbps
View 2 Replies View Relatedsend an IOS file 12.3 from laptop to router via TFTP?
View 3 Replies View Relatedi am using cisco 2821 router at the edge in my network where the WAN link is terminated.i want to configure Redundancy . So will 2821 support ? If yes what is the another router .Is it the same series or different for redundant configuration.
View 2 Replies View RelatedI have a cisco ISR 2821 router and I want to configure this router as a BRAS (broad-band remote access server).
View 2 Replies View RelatedI get an Ethernet cable from his router in my unit. I also have my own router. I was wondering if there is a way for me to create a private network for myself using my router and still have access to internet?
View 1 Replies View Related