Cisco WAN :: Police Flow Command Works Only In 6500 Platform
Nov 13, 2011How the police flow command ( see below) works only in the 6500's platform? Can it apply in 3745 router?
View 2 Replies
ADVERTISEMENT
Cisco Switching/Routing :: 6500 - Show Platform Port-asic Stats Drop Command?
Feb 21, 2012On a 3750 you can do a show platform port-asic stats drop command. Is there a corresponding command for 6500 chassis?
View 7 Replies View RelatedCisco :: Setting Up Net-flow From 7010 Platform To Solar-winds
Nov 22, 2011Setting up Netflow from the 7010 platform to Solarwinds?I implemented the following code on both of my cores (VPC/HSRP Redundant Linked Pair) but had the following issues:
1. One of the cores I could see was sending Netflow records every few seconds whereas the other was not doing anything
2. Solarwinds was not seeing any of those records coming in and was showing last update from both devices as "Never"
Note that I have netflow already working as my Riverbed (fairly intelligently) already updates Netflow.Also i was all set to debug this myself but there doesn't seem to be debugging for Netflow that I can see?!?
Cisco WAN :: Configure Policy-map With Police Command At Router 7606-S?
Dec 27, 2011Im having problem configuring policies for limiting traffic on subinterfaces on cisco Router 7606-S. I have configured:
[code]...
So for egressQOS , i want to configure with police, not shape (for the memory reason).
Cisco Switching/Routing :: IP Flow Command On 3750-X?
Nov 12, 2012Trying to configure netflow on a 3750-X. I'm sort of copying my config from a router but, it seemd that the commandes below don't work.
Is there different set of commands to configure the source and destination.
ip flow-export source Tunnel0
ip flow-export destination 172.20.X.X 9995
Cisco Switching/Routing :: 3560G 15.0(2)SE - Show Platform Forward Command Crashes Switch?
Dec 5, 2012I have been working on some Catalyst 3750's running 12.2(55)SE6 and hit an issue with CEF load-balancing over multiple equal-cost paths. Anyway this issue is now solved but it introduced me to the command 'show platform forward' - this shows you how the forwarding of a packet would be done via hardware cef (as opposed to the command 'sho ip cef exact-route' command that only shows the software cef path). Anyway I tried the command on a 3560G running 15.0(2)SE and it crashes the switch. I tried it a couple of times and verified that the MAC & IP addresses were exactly right in the command and each time the switch crashes. I have extracted the relevant bits from the crashinfo and attached them.
View 3 Replies View RelatedCisco Switching/Routing :: 6500 - Show Platform Capture ELAM Asic
May 29, 2012I know that an ELAM can be setup on a 6500 running ipservices 12.2(33)SXJ, however I noticed that following commands are not available on a 6500 router running advipservices 12.2(33)SXJ:show platform capture elam asic etc
So I wanted to know if there is an alternate way to setup an ELAM for troubleshooting purposes?
Cisco AAA/Identity/Nac :: ACS 4.1- Shell Command Works Under User But Not Group
Jul 27, 2011This question might actually belong under tacacs server but it's only happening with the ACE. I've configured tacacs on the 4710 and configured the tacacs server per the documentation. If I enter the shell:<context>*Admin default-domain under the group settings when I login with my tacacs ID my role is set to Network-Monitor. If I set the shell in my specific tacacs ID I'm assigned the correct role as Admin. We're running ACS ver 4.1 and the ACE is A4(1.1)
View 1 Replies View RelatedCisco Switching/Routing :: 6500 - TACACS Doesn't Work Via Telnet / Works Via Console
Apr 18, 2013I have a pair of OLD Cat6500's running CatOS:
WS-C6509 Software, Version NmpSW: 7.6(16)
Copyright (c) 1995-2005 by Cisco Systems
NMP S/W compiled on Dec 22 2005, 16:37:19
System Bootstrap Version: 7.1(1)
System Boot Image File is 'bootflash:cat6000-sup2k8.7-6-16.bin'
System Configuration register is 0x2
I know these are no longer supported, but I have to ready them for migration. Recently a problem began with these switches. What happens is that when I telnet to them, I cannot authenitcate via TACACS. This works fine for all our other IOS equipment, just not for these 2 switches. The error is:" % Error in authentication" and then I get kicked back to the login prompt.
The odd thing is that when I connect to the switch via the console port, I can authenticate fine with TACACS.
CMS> /c 14
[Code].....
Cisco WAN :: 6500 Traceroute Command Output For Routes With Equal Metrics
Aug 31, 2010=>Routing Protocol in Question EIGRP.
=>Two equal metric routes for destination A(through R1 and R2-SVIs on two upstream 6500s)
Traceroute Output, is the output that alternates between 1.1=>10.1=>1.1 normal granted the two routes are "equal metric routes for the same routing procotol in use" or is that "round robin behavior" indicative of a routing problem?
Cisco Switching/Routing :: Cat 6500 Sup 2t TCAM Counter Show Command?
Sep 26, 2012Any command similar to sup720 "show tcam counters" It doesn't work on Sup2t.....
View 2 Replies View RelatedCisco Switching/Routing :: 6500 Clarification For Using Mac-address-table Synchronize Command
Jul 12, 2010We want to configure the "mac-address-table synchronize" command on our 6500 series switches to ensure that the CAM tables on our DFCs are in synch with the PFC on the supervisor modules. url...it is recommended that we disable the routed MAC purging with the mac-address-table aging-time 0 routed-mac global configuration command. What is a routed mac entry? Are there any issues with running that mac aging-time command?
We also plan to run this command "mac-address-table aging-time 14400" to keep our ARP and CAM tables on the same aging time to reduce unicast flooding on our network. Can we run this command with the "routed-mac" command above?
Cisco Switching/Routing :: WS-C6513 Command To Check 6500 Switch Performance / Resource Usage
Apr 25, 2013I am on a call right now troubleshooting some latency issue. The CPU usage on the sup card is low. Don't see any drops or input errors. I am aware that the switch and its modules have capability limits. Is there command I can run which will tell me if any module is overloaded or if the fabric/backplane is over utilized?My chassis is WS-C6513 and sup card is WS-SUP720-3B.
View 3 Replies View RelatedCisco :: Snmp Oids For Command Show Counters Interface Intx / Y Delta On Catalyst 6500
May 23, 2011I have a question about SNMP OIDs for the command "show counters interface intx/y delta" on Catalyst6500. The customer wants to create graphs for the following values:Overruns, qos0Outlost, InErrors, OutErrors, InDiscards, OutDiscards etc..Is possible to get these values using SNMP?
View 3 Replies View RelatedCisco WAN :: 4900 - Outbound QOS Police Configuration
Jan 12, 2011I need to attach a QOS policy to a layer 2 WAN interface between two sites. This is actually an extended LAN circuit with 500Mb/s of allocated bandwidth. The interfaces are Gigabit so I want to make sure I don't attempt to transmit traffic faster than 500Mb/s. What is the best way to implement an outbound QOS policy that sets the minimum and maximum speed to be the same? This policy will be implemented on a 4900M with the 20 port GigE module
View 3 Replies View RelatedCisco WAN :: 886VA-K9 / Qos / ATM / VoIP - Where To Rate-limit / Police
Apr 8, 2013Setup:
Cisco 886VA-K9
Cisco IOS Software, C880 Software (C880DATA-UNIVERSALK9-M), Version 15.2(4)M3, RELEASE SOFTWARE (fc2)
This router has two VLAN's on one Ehternet interface
VLAN1: data
VLAN2: voice
The WAN connection is a regular DSL line with PPP.
Modem FW Version: 120306_1254-4.02L.03.B2pvC035j.d23j
Modem PHY Version: B2pvC035j.d23j
Output of show interface brief:
Interface IP-Address OK? Method Status Protocol
ATM0 unassigned YES NVRAM up up
BRI0 unassigned YES NVRAM administratively down down
BRI0:1 unassigned YES unset administratively down down
[code]....
We all know you can't manage data traffic on the internet since your not in control of both sides of the link. So only queuing would not be a good practice IMHO. I was thinking on just rate-limit or police data-traffic so Voice always has bandwidth available when needed. I've did tried to rate-limit on the ATM0 interface, but no luck. Voice was still very bad.
My question is: where to rate-limit the data traffic? On the VLAN interface, the ATM interface, DIALER interface?
Cisco Firewall :: ASR 1000 ZBF Can Use Police Action In An Inspect Rule
Mar 23, 2011I have two questions about ZBF on ASR1000 with Firewall and Flexible Packet Inspection license:
1 is IPv6 supported?
2 can I use police action in an inspect rule? I want to limit some protocols to low bandwidth. There is no police command in ZBF policy map.
Cisco Switching/Routing :: 6500 MSFC No IP Routing Command
Jun 2, 2012I used to "ip routing" command in order to enable inter-vlan routing, for example with 3750 cisco. I have a 6503 cisco with SUP720 MSFC3. I was able to create some vlans but I can not configure inter-vlan routing.
sw#conf t
Enter configuration commands, one per line. End with CNTL/Z.
swsur(config)#ip routing
[Code]....
Cisco Infrastructure :: C3825 / Police Route And Match Community-list
Aug 20, 2012I have a C3825, and have been using standard ACLs and a PBR to route certain HTTP traffic via an alternative default gateway:
route-map RTRMAP-OfficeLAN permit 10
match ip address RTRMAP-OfficeLAN-toADSL
set ip next-hop x.x.x.x
This is working absolutely fine, and as expected, all traffic matching the ACL is being sent to x.x.x.x However, we have recently expanded our network, and I am now receiving various networks via BGP from various sources. All BGP incoming via iBGP is tagged in communities:
Community (expanded) access list 100
permit 37xxx:100
Community (expanded) access list 200
permit 37xxx:200
Community (expanded) access list 300
permit 37xxx:300
[code].....
All communities are also matching prefixes when executing either 'sh ip bgp community 37xxx:100' or 'sh ip bgp community-list 100' What I am trying to achieve, is create an EXCEPTION for the policy route. Traffic matching the community lists, must be forwarded based on the routers routing table, whilst traffic maching the ACL, must be sent via the policy route...
route-map RTRMAP-OfficeLAN permit 5
match community 100 200 300 400 500
!
route-map RTRMAP-OfficeLAN permit 10
match ip address RTRMAP-OfficeLAN-toADSL
set ip next-hop x.x.x.x
My logic dictates to me that the above should work, but looking at the route-map, I get matches on seq 5 and pacets are exiting the route-map as expected (first matched). However no traffic that does NOT match community 100,200,300,400 or 500 and that DOES match the RTRMAP-OfficeLAN-toADSL never matches.
The counters on the route-map for seq 5 is increasing, but no counters are increasing at seq 10.. It's almost as if seq 5 is matching all traffic.
Cisco Switching/Routing :: IP Routing Command In 6500?
Mar 16, 2013Where is the "ip routing" command in Cisco switch 6500 series?
is the ip routing enable by default accoridng to the: [URL]
Cisco Switching/Routing :: Upgrade 6500 Non Modular IOS To Normal 6500?
Dec 21, 2011how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies View RelatedCisco AAA/Identity/Nac :: C220 ISE On UCS Platform With UC
Mar 7, 2013We are looking to deploy ISE supporting 5000 devices and would like to use the Cisco UCS platform to host this. Looking at the spec required a C22 M3 would be sufficient; however we would also like to host some UC applications on the same server if resources allow.
Therefore we would like to deploy ISE on a C220 M3 server and connect the associated NIC to a DMZ. We would then like to deploy UC applications such as CUCM and CUPS on the same UCS server with a NIC attached to the internal network.
Also while the UC application would require a UC Foundation License (R-VMW-UC-FND5-K9) whould this also meet the requirements for ISE?
Cisco WAN :: ONS 15454 SONET MSPP As Platform
May 26, 2011I am doing a school research project in which I am setting up an OC-192 ring for a company (contract work through AT&T). I have chosen to use the Cisco ONS 15454 SONET MSPP as my platform. The company currently has locations in Chicago and Philadelphia and connects them through an OC-12C ATM connection and they are looking to add 2 gigabit ethernet connections.My question is what cards and parts will I need for the Cisco ONS 15454 SONET MSPP, and how much will everything cost? I have been searching the internet for components and prices and I have found it extremely difficult to find any information.
View 2 Replies View RelatedCisco WAN :: Recommended Router Platform As 2951
Oct 17, 2012I currently have a 50Mbps Internet Connection provided by an ethernet handoff for hosting some webservers. We are looking at adding an additional 10Mbps Internetn connection and route BGP between the two. For the 50Mbps connection, i'm using a Cisco 2951 router. I also have another 2951 router to terminate the 10Mbps connection. Does these router have enough horsepower to fully route BGP?
View 1 Replies View RelatedCisco Security :: Migrating From 3030 To ASA Platform?
Jun 13, 2007Is there any way to auto migrate my 3030 VPN configuration to an ASA platform?
View 3 Replies View RelatedCisco WAN :: 3560G What Platform And IOS Version Need To Implement IOS SLB
Nov 27, 2011I want to select catalyst 3560G for my network. But IOS SLB need to be implemented in my network. I only know catalyst 6500 series can support this feature and i am not sure whether 3560G can support this feature. what platform and IOS version i need to implement IOS SLB?
View 1 Replies View RelatedCisco VPN :: ASA5510 - SSL Essentials And SSL Premium On The Same Platform
Mar 22, 2011A make one BOM and i just ask my self can we order on the one platform ( for example 5510-SEC-BUN-K9 ) SSL Essentials license ( this license is on the platform by default we buy 250 users ) and i need 50 Users license from them to be Premium.
Can i buy those two license on the same platform and is this will work ?
Cisco WAN :: 2911 Platform - Clear Interface On IOS 15.1
Jan 3, 2012During WAN troubleshooting, I did a "clear interface ser0/0/0" on a branch router. It has two WAN links. I lost ssh/telnet connectivity but both WAN links were still replying to pings. We did a manual power off of the router to regain connectivity.Is there a known issue with this command on this IOS version? We're using Cisco 2911 platform with IOS 15.1-1.T2 version.
View 1 Replies View RelatedCisco Firewall :: ASA 5505 Voice Platform - Firewalls
Apr 23, 2012I am currently working on our Cisco voice platform at work.
Our Cisco firewall engineer has left and I have been given the task of looking after the firewalls as our Chief Exec seems to think that Cisco Voice is similar to Cisco ASA firewalls,
Are there any books/videos out that you can recommend to learn the about firewalls quickly.
Cisco Switching/Routing :: Bridging In 7600 Platform
Apr 24, 2013I am trying to bridge the traffic(including different vlan traffic) from rtrA to rtrB using "bridge-group" functionality.I achived the same using a 7200 using the below configuration. [code] When I tried the same using 7600 router ping failed between rtrA and rtrB. Then from the documents it seems "bridge irb" is not supported in 7600.Is there any other way we can achieve the same fuctionality ( eg: using switchport also fine) ?
View 3 Replies View RelatedCisco WAN :: 3845 Upgrade To A Newer Faster Platform
Feb 22, 2011I've been experiencing a problem with my existing 3845's that may mean I may have to upgrade to a newer faster platform.Currently I have ISP links to 2 providers and run BGP. Each ISP link plugs into a separate 3845 NM-1GE fiber port. Both links are 100Mb ethernet handoff. There is an average of 50 - 60Mbps traversing each link during peak times. I am experiencing a large number of Input errors on both ISP links almost all of the errors are ignored. I opened a TAC case and I'm told that the 3845 can not handle this much traffic along with an ACL on the ISP interface and BGP. TAC engineer tells me that the RX ring of the interface is being overrun and tuning buffers will not make any difference. CPU util never goes above 25%.
View 1 Replies View RelatedCisco VPN :: 861 - Minimum Platform That Supports GETVPN Over DMVPN
Aug 15, 2011What is the minimum platform that supports GETVPN over DMVPN?
I have been looking around cisco website but couldn't find a document with the supported platforms.
We have branch offices with Cisco 861 routers and i would like to know if we could use GETVPN with these routers.
Cisco WAN :: Object Tracking In Nexus 7018 Platform
Oct 30, 2011I'm going to replace a Cat6513 with a Nexus 7018. In my Cat6513, there are object tracking config as follows:
ip sla monitor 1
type echo protocol ipIcmpEcho 112.78.254.249
timeout 3000
frequency 6
ip sla monitor schedule 1 life forever start-time now
ip route 172.17.7.0 255.255.255.0 165.202.51.46 name VPN-1 track 123
Is there similar feature in Nexus platform? Because from Nx-OS command ref, I only found:
ip route ip-prefix/mask {[interface] next-hop} [preference] [tag id]
Seems can't associate a track object to a static route in Nx-OS?