Is WAN Optimization supported on Cisco ASA5520 Firewall and Cisco 3750 Switches. We need to add/enable WAN Optimizer functionality to make 3PAR data replication?
View 9 Replies
SFP-10G-ER are not supported on Catalyst 3750-X and on other switches ....
%PHY-4-SFP_NOT_SUPPORTED: The SFP in Gi1/1/1 is not supported
Why ?When will ER be supported ?
Our firewall expert has gone off on long term illness leave and I am trying to pick up the pieces :-(
We have an ASA 5520 (local office) talking to another ASA (remote office) via a VPN Tunnel.
My 1st problem is that I cannot ping from my inside network (local) to the outside interface of my remote ASA.
My 2nd is that I have debug enabled on my rules but am not logging anything.
I am working in an environment where i have to use more etherchannels, any way that how many etherchannels could we create on Cisco Switch 3750 e. do they can utilize high process resources of CPU.
View 4 Replies View RelatedWhat is supported in terms of running a mixed feature set in a Cisco 3750 switch stack.We are looking at setting up a stack consisting of 5 x 3750V2 and 2 x 3750G. Due to a requirement for full EIGRP we need the IP Services feature set. Is it a supported configuration to run with 2 or 3 switches running the IP Services feature set as stack masters and the others running IP Base? I understand that if stack master priorities were set these switches with the higher feature set could manage the stack and offer IP Services accross the stack. If we were to lose all of the switches running IP Services the stack would drop back to IP Base.I am looking for guidance as to if this is a supported configuration and not in breach of licensing? Is this likely to cause any problem other than above now and for future IOS releases?
View 2 Replies View RelatedI have a 3750 switch (c3750-ipbasek9-mz.122-46.SE.bin) were i want to add bandwitdh limit pr. interface, doing the following:
ip access-list extended customer_A
permit ip any any
class-map match-all BW_10Mbps
[Code]....
When i trie to apply the "service-policy output 10 Mbps" to the interface, it says the service-policy output is not supported on the switch. Is this a software related isue ?
why Windows Server 2008 is not a supported OS for Cisco Network Assistant?I am currently evaluating switch management solutions for use with Catalyst 2960 and 3750 series switches, and would like to be able to backup and restore configurations, as well as make configuration changes. My management Server is running Server 2008.Is Prime LMS my only option?
View 5 Replies View RelatedI have catalyst 3750 I want to controle traffics on every port I have tried Frame-Relay Traffice shaping and Quality of service but there is no support for these commands in the switch.do we have any way to limit traffic on every port in catalyst 3750 and 2960 switches ?
View 4 Replies View RelatedI have two PC's in my house. One server, one workstation. Both running Windows with Intel gigabit NIC's (82574L and 82579LM respectively). Switch is a Cisco 3560G. Being on a LAN, everything is < 1ms.
I get different speeds when doing a Windows copy between the boxes.
From the POV of my workstation:
Workstation sending file to server: 189Mb
Workstation pulling file from server: 726Mb
From the POV of Server:
Server sending file to workstation: 396Mb
Server pulling file from workstation: 268Mb
Why is it so lopsided? I'm sure there are settings one can optimize in the Intel NIC drivers to bump up the speed.
I've got my 881 3g connection working. It's not the fastest connection but, I think it will work fo people who have no DSL or no cable service or as a backup. Pings from the remote office to the remote user PC average around 180 ms. Does that seem right? I was able to make phone calls and video calls to the Main Branch with a little latency with the video. Also had a WebEx going at the sametime.
I', using a Cisco antenna but, Is there anything else I can do to optimize the connection?
So, I spent some time this weekend troubleshooting the issues I've had with the new SG300-28P switch and POE to many of my devices in the office. As a recap, I cannot utilize all of the 24 POE ports on the switch for POE purposes. Really only every other port [with a few odd combinations thrown in between]. In addition, the SG300-28P switch, on occasion, is sending POE to non-POE devices [e.g. my Ruckus Zone Director 1106].
Here are my POE devices [all 802.3 af-compliant]: 3 Ruckus 7982 access points1 Pakedge access point2 home-automation controllers2 Polycom voip phones I called Cisco support several times in regards to this problem, and they figured it was a hardware issue - a faulty switch. So, Cisco sent me a replacement SG300-28P, which I hooked up today. The exact problem still occurs. Default configuration [fresh out of the box]. No way I can land, for example, the 3 Ruckus 7982 AP's on ports 1, 2, and 3 [or ports 1,13, and 2]. I have to put them on ports 1, 3, and 5 in order for them to power up. In addition, I can't plug any other POE devices on the ports either between or below them. I had to skip another port bay. This is very odd behavior!! Two Cisco SG300-28P's in a row with the same problem.
However, I also had one of the new Cisco SG300-10P switches in my possession for a recent project of ours. I decided to hook up the same POE devices to this switch. ALL POE devices were recognized and worked! No need to skip a port. And it didn't matter what device was plugged in first or not. I am now convinced that it is either a hardware issue [bad power supply/transformer?] inside all of the SG300-28P switches, or a firmware issue.
Both of the SG300-28P switches were running firmware 1.1.2 [the latest on Cisco's website]. So, I decided to install an older firmware version on the SG300-28P switch that I'm returning [installed 1.1.1.8]. Here's what I found out. I could then plug 2 POE devices [e.g. two Ruckus AP's] in adjacent horizontal ports, but not three in a row. In addition, not all adjacent ports. It's funky. For example, I could plug an access point in ports 20 and 21, but not in 21 and 22. No rhyme or reason in how it worked. And I still couldn't plug an access point in adjacent vertical ports [e.g. ports 1 and 13]. BUT...
It's interesting that the same exact switch that would not initially allow 2 horizontally-adjacent POE ports to be utilized WOULD allow 2 horizontally-adjacent POE ports to be utilized when running a different firmware version. It's also interesting to note that when plugged into a "non-working" POE port, the SG300-28P would actually make a small whining noise. Very subtle noise; I could hear it when approx. 1ft away from the switch. The noise was not noticeable when ports were skipped [and POE actually worked]. Therefore, I believe that Cisco has some SG300-28P firmware bugs [at least in the last two versions of firmware] that is not truly allowing all 24 ports to utilize POE correctly. This problem does not exist with the SG300-10P switch.
In addition, I'd like to know when they think a solution could be created if it's firmware-related. If hardware-related, I don't think I'll be recommending any 28P switches in our projects. Perhaps just the regular SG300-28 with a separate SG300-10P. It's a shame because the SG300-28P is more of a bargain when compared to the two separate components.
I have a CiscoWorks LMS 2.6 and i would like to know if the new Switches Catalyst 2960-S Series are supported with this LMS version?
View 1 Replies View Relatedwhat are all the CLI commands supported by Cisco SFE 2000 switch?
View 2 Replies View RelatedI know the white papers say that the RPS 2300 supports the 3750-E series and the 3750 series, but we have 3750-G and -X series. Wanted to make sure that these switches are supported and if we need anything special?
View 3 Replies View RelatedWhich transmit hash policies are supported by the SLM2008? I can't find this information in any of the documentation for this switch, all that is stated is that it supports Link Aggregation using IEEE 802.3ad LACP. I'm connecting to a Netgear ReadyNAS Pro that supports Layer 2 and Layer 3+4 transmit hash policies and I'm not sure which to choose (or whether it matters).
View 2 Replies View RelatedWe have the 3750G with the IOS version 12.2(35)SE5. Does this IOS version and switch support the TCP Window Scaling detailed in this doc? The doc says Release 12.2(8)T. And I don't see the 3750G or the 2960G platforms listed in the doc.
[URL]
Release 6 controller 9 Mesh APs. 1524 (2x 5G radios, 1x 2.4G) and 1522 (1x 5G radios, 1x 2.4G) Designed for 3 linear hops and then a split to the rest.
AP1 = Root AP
linear to
AP2
Linear to
AP3
Linear to
AP4
equidistant to
AP5 and AP6
The rest are further away from AP4, but have visibility back to AP 4 The issue is after an event (say a power outage) at AP4.AP5 uses AP3 as it's parent.That's okay during the power failure, but when AP4 comes back up, I want to force AP5 to switch it's parent to AP4.You may ask why, if AP5 can reach AP3 okay, it's okay to leave it that way.
test --------packet loss %-----
speed AP3toAP5 AP3toAP4 AP5-AP4
===== ======= ======= =======
54M 100 0 0
48M 100 0 0
36M 52.6 0 0
24M 1.44 0 0
18M 0.89 0 0
So you can see it's desireable now that AP5 uses AP4 as it's parent.Over time, the system might figure it out, but our limited experience shows it seems to stick to the way it is.To complicate matters, sometimes we've found that it doesn't seem to reconfigure when the channel number has changed so AP5 can reach AP3, but AP4 (1524) comes up with a different channel on it's downlink radio.So, how can we force a mesh topology reevaluation/change for either 1 AP or the whole bridge group?I thought changing the bridge speed from "auto" to 54M (on AP3 above, for example) might force the attached children to rethink it, but it didn't seem to work (maybe I needed to wait an hour?).I also thought tweaks to "Radio Performance Profile" for radio might work. (not sure what to change, or how long to wait for a result)reseting APs and hoping they come back in a better topology is painful and slow.
I have recently been testing out the Kaillera netplay application thats embedded into a few old console emulators. Now the major problem is the de-sync between clients and I was wondering which is the best to reduce this.Say I have an upload speed of 1.2 Mbps and a download speed of 11.28 Mbps. Obviously, I am capped by my upload speed when it comes to changing how many packets i can send/receive per second because its all one setting and I am usually playing P2P.So, I am not entirely sure how big the packets are that are being sent, I am guesstimating based on what they said on Kaillera website that it is around 200-300 bits.Anyway, with my current upload speed I can transfer at a rate of like 600-800 packets per second depending on packet length.De-sync's happen quite often especially in the higher rom size games like Mario Party because of all the data being transferred. Would it be wiser to increase my setting of pps from 20 packets/sec to 60 packets/sec?
View 1 Replies View RelatedIf I have two stackable switches one switch uplinks to one 6509 core switch and the other connection uplinks to another 6509 core switch, and also the other stackable switch does not connect to the core switches. Because I am using hsrp and also we are not using vss then one uplink to the core is not in used only ones is so then how does creating an etherchannel between does two uplinks to both core switches benefit me in anyway such as more bandwith and using both uplinks at the same time or I'm I wrong?
View 7 Replies View RelatedIf I have two stackable switches were only one stackable switch has two uplinks one uplink goes to one core 6509 switch and the other uplink goes to the other 6509 core switch can a Layer 3 etherchannel be used if each uplink go to a different core switch, by the way hsrp is running between both switches and also can you give an example how data will be routed from the stackable switch through the ethernetchannel to one of the core switch accross the WAN to another core switch?
View 1 Replies View RelatedWhat all the catalyst models support VPC with Nexus ? I knew Cat6K and 3750. Any other model supports VPC ? Can I configure vpc between 2960 and N7K ?
View 3 Replies View RelatedWith regarding to the firewall ASA5520, i'm using it in my network, all the confiuration are properly configured and working but with the use of proxy address in internet explorer(e.:206.53.155.129/3128) all the blocked contents as easily accessible simply it bypass all the network through firewall.so will u guide me to block the proxy servers.
View 1 Replies View RelatedI have two asa 5520 firewalls. one at my primary data center connected to our production Internet feed, and one at my fail over data center connected to a backup internet feed. I was wondering if there was an easy way to keep the firewall rules in sync between the two firewalls. We have failover with our isp that will move our public facing address block from our primary site to our dr site in the event of a disaster so the ip addresses will not change if we were to have to fail over to the DR site. currently i just have to do any changes that i make on the fail over server but would like a way to at least simi-automat this if not fully automat this so that i can eliminate the possibility of human error of a change happening at primary but never getting don at DR.
View 1 Replies View RelatedI have a asa5520 with five Internet IP.One for the internet interface and the others are static maped to dmz hosts. It runs rightly until yesterday.Now it will lose the connection to the gateway many times everyday and the dmz hosts can not connect to internet any time. configuration(simplified):
!
interface GigabitEthernet0/0
nameif internet
security-level 0
[Code]....
I called ISP to check,when ISP clear their router's ARP, the asa will lose the connection at the same time and then the ISP's router couldn't learn the ASA's MAC. After I 'clear arp' manually,The ISP's router can learn the ASA's MAC and the connection recovered,but the DMZ's cann't access internet still (of course,There is no problem between DMZ and ASA ,I ping the internet gateway from DMZ host and can not get any reply.).
We have 2 x ASA5520 and I upgraded this to 8.2.2 last year, I see 8.2.5 and now 8.4 is out. If we are having no issues, is it best just to leave it as it is? I can see a couple of features I may find useful in 8.2.5, but 8.4 seems like a huge jump and a risky one too.
View 1 Replies View RelatedI have one firewall ASA5520, are very slow
View 3 Replies View RelatedI am trying to introduce an ASA5520 to my network based on the following diagram: ISP Internet ------> ASA5520 ------- > Cisco Router ------> LAN. The problem is I cannot ping the ASA from the LAN. I can ping it from inside the router. I already allow ICMP within ASA. If i remove the cisco router and replace it by a swich, I can ping the ASA with NO problem.
View 5 Replies View RelatedWe want to use ASA5520 but both Firewall have different CPU. One has CPU Pentium 4 2400 MHz and another has Pentium 4 Celeron 2000 MHz. Can it be configured for replica / failover?
View 5 Replies View RelatedWe have 2 firewalls on PIX facing the Internet and connected to interface e1 (behind it) an ASA version 8.3 Both the PIX (Firewall facing) and the ASA are on the same subnet.
By using Routing statements and statics I have been able to reroute specific traffic to the ASA5520 version 8.3 Now I need to inverse the 2 devices. The ASA5520 will be facing the Internet and the PIX will be behind it.Unfortunately the ASA5520 is refusing to route the traffic to the PIX. The access-lists are open accordingly and a NAT on the ASA has been created.
i have my router connected to ISP then my router directly connected to my ASA5520....i use also ASA5520 as my DHCP Server and i was wondering with the DHCP Server function of ASA 5520 because if i use the ASA 5520 LAN ip ...all workstation will not be able to browse anything from the internet unless i use my ISP DNS IP which they gave me?
View 3 Replies View RelatedGet the following log message on secondary ASA console output when turning on the ASA failover function?
"Mate's service module (CSC SSM 6.6.1125.0) on slot 1 is different from mine (CSC SSM 6.6.1125.0)"
After that the secondary cannot join as a failover unit and shows in disabled status.We have the same model ASA & CSC module and each pair of them are in same firmware (CSC 6.6.1125.0 with ASA5520 8.4(4)1), when I shutdown both the csc modules, the ASA failover works fine.
I am using a squid proxy behind an ASA5520 firewall to collect the users to the internet. Squid is just necessary to log what is going on in order to find a quick solution when the internet slows down.
Considering that I have unlimited licenses and I would like to get rid of squid, I wonder if the ASA has some functionalities to track which websites are being used and how much traffic is generated. If there is not, I would like to know if Cisco offers a good product to replace Squid.
Upgraded an ASA5520 from 7.x to 8.4 in one step? Release notes for 8.4 state that you can "...upgrade from any previous release directly to 8.4..." I've read the previous version release notes and see the various changes in NAT etc that 8.3 made.
View 3 Replies View Related
