Cisco WAN :: Router With C3945-VSEC/K9 Versus No Security
Jan 25, 2013
imagine I am selecting a router, let's say to be used as a VoIP Gateway (C3945 + PRI ports).
If I order the "Security license" included (bundle C3945-VSEC/K9), what is the benefit of getting the security license for a gateway router? Today in the organization we don't see an immediate application for the security license, but I would like some feedback on ways that it could benefit the organization if future security policies are implemented in the future.
View 1 Replies
ADVERTISEMENT
Sep 16, 2012
I am selecting a router, let's say to be used as a VoIP Gateway (C3945 + PRI ports).If I order the "Security license" included (bundle C3945-VSEC/K9), what is the benefit of getting the security license for a gateway router? Today in the organization we don't see an immediate application for the security license, but I would like some feedback on ways that it could benefit the organization if future security policies are implemented in the future.
View 1 Replies
View Related
Nov 11, 2012
I am looking for a guide on how to Harden my VPN router. Specifically I am looking for what ACL rules I should be applying on my public exposed interface to ensure only L2L and RA VPNs can establish.
Should I only enable the following ports and deny everything else? IP Protocol Type=UDP, UDP Port Number=500IP Protocol Type=UDP, UDP Port Number=4500IP Protocol Type=ESP (value 50).
View 1 Replies
View Related
Feb 13, 2013
Cisco router 3945 when unpacked from the box and powered on , it was not able to find boot loader image and booted in ROMMON mode. tried to boot from the external flash and tftp but still not able to.
We replaced router chassis 2 times and both the times faced the same problem.
View 5 Replies
View Related
Aug 16, 2011
I have a wireless modem but its a sucky one. It was one of those free ones from verizon. Anyways, I don't get good signal in certain places in my house, so i am interested in knowing which would be better a wifi range extender or a good wireless modem.
View 1 Replies
View Related
Apr 22, 2011
on my home network I currently only run an Airlink101 AR675W router. We have a couple issues with this. The router for one is in my basement and there are points in my house that have low signal strength, especially upstairs in the far corners of the home. Second is I am currently running my home PC as a media center but it is set-up wirlessly so streaming is clunky and jittery. Also on this network is 3 X-box's wired, a PS3 running wirless, 2 PC's wired in, 2 wirless laptops and the afore mentioned wirless PC. A lot of weight for the network. What I want to do is move the router upstairs, hardwire it into my wireless PC (the one doing the streaming) and connect a second router (an identical make and model I am buying this weekend) downstairs which will be basically used as an "expansion" of the wirless and a switch for the hardwired devices downstairs. would this be better than simply moving the wirless router upstairs (hardwiring my PC) and putting a 5 or 8 port switch in downstairs for the X-box's and 2 wired PC's there?
View 2 Replies
View Related
Dec 2, 2012
I just got a new E2500 and out of the box the system uses the same SSID for 2.4 GHz and 5 GHz. Obviously you CAN configure them to use different SSID's, though. Should I make them different or keep them the same? I don't really want to mess around with having 2 different SSID's if I don't get a real benefit.Will most devices that support both (like a new laptop) find and use the 5 automatically?
View 7 Replies
View Related
Jan 7, 2012
My son tried to "speed up" our connection by unplugging modem&router. now can't get both talking to each other. Tried numerous steps! Bought Router 8/11/11, so NO Support from Cisco(only 90 days-POOR!). Website useless. Modem works fine with PC wired in.
View 3 Replies
View Related
May 18, 2012
The EA4500 web-settings application asks for a username and password. The username is "admin" and the password is my long (60 character) wpa key. I see where I can change the password but it says I'll lose all wireless connections. This doesn't make sense to me. I would think the router administration username and password are completely separate from the ssid and wpa key. This was the case with my earlier LinkSys router. I'd like a router administration username to be something other than the generic "admin" and a password that is easier than my long wpa key. I want a separate ssid and wpa key (what I currently have).
View 2 Replies
View Related
Nov 15, 2012
I have an E3000 Dual Band. On my 5Ghz channel, I can select Auto(DFS) or I can manually select a channel.First of all, what does the DFS stand for? My 2.4 GhZ channel only has Auto, not Auto(DFS).
Second, when I select Auto(DFS), my wireless speed defaults to 144Mbps, and is only a single channel (I can see it in the in SSIDer utility). When I manually select a channel, no matter what channel it is, I get 300mbps and I can see that the signal is two channels (for instance, 36+40). Why Auto(DFS) doesn't automatically select the best channel and fastest speed?
View 2 Replies
View Related
Feb 17, 2010
I got my WRT54GL v1.1 yesterday and connected it to my pc [wired] and netbook [wireless]. I thought all was well until I noticed that my Magic Jack VoIP telephone began dropping calls after about 1 minute. My first course of action was to disable SPI firewall in router and reboot. That had no affect on the situation, then I noticed that my send light on my cale modem [ no manufacturer listed on unit] was not blinking as it has done before the router installation. I reverted to my cable modem to pc only set up and my Magic Jack worked just fine. I need to use the router for wireless, so I need to find a solution to this problem. I took a look at my firmware version and saw that it was not current, but I wanted to bring my problem here for a possible solution be for I flashed new firmware.
View 9 Replies
View Related
May 30, 2013
I would like to know both Cisco 2901 or 2921 router and Cisco 5505 ASA can build site to site VPN.
1) what is the different to build site to site VPN between router and firewall ?
2) which is the best choice if using in site to site VPN connection ?
View 9 Replies
View Related
Jun 28, 2012
I run my business from a home-office, and have a program that operates off a database.This database is run on what I'll refer to as the "server" computer.I have other laptop and desktop pc's that run this same program, but are referred to as "clients" since they don't house the database and only pull the data from the "server".I can connect wirelessly through my WLAN, but the connection is slow due to the database server. However I am told that a wired network would increase the data transfers tremendously between the machines.I have plenty of ethernet cable and a brand new switch.I run windows 7 64 on all machines that I'd like to connect.What steps do I need to take in order for the "client" machines to connect to the "server" via the LAN and not the WLAN?
View 3 Replies
View Related
Feb 22, 2012
I need some fiber to run between a Cisco Nexus and an IBM server with Intel NIC. It's 30meters, and LC-LC connectors.What is the difference between 62.5/125 vs 50/125?
View 1 Replies
View Related
Mar 9, 2011
On an ASA 5505 with the proper licenses running version 8.3, which would you consider the more resource intensive for the ASA, IPSec VPN or an SSL VPN with a portal?
The connections through the firewall would be the same so I am curious how adding the different types of VPN will affect the CPU and overall ability of the ASA to function.
View 2 Replies
View Related
Feb 10, 2012
Any difference between G and N routers? Also, can you use either one? I currently have a wireless G. I have added A few wi-fi devices in the last couple of weeks I.E. Smart T.V., I-phone, I pad, and Satellite TV ( the on demand comes from the internet). My internet on my laptop seems to have really slowed down, and I it keeps locking up. I have to go reset the modem, and router to get it working again. Could all these wireless devices being on at the same time be dragging down my speed?
View 1 Replies
View Related
Apr 12, 2011
which is better to use from 1PC to multiple displays?
View 1 Replies
View Related
Nov 21, 2011
recently I had a power cut in the office and my Cisco ASA 5505 512MB Base 10 user License stopped working.it was not possible to establish L2L VPN.I replaced it with another ASA 5505 with 256MB RAM Base 10 user License.I restored the configuration and everything is working now.The main problem is that before (with the 512MB ASA) I had two L2L tunnels established and many clients (up to 30 clients)using the two tunnels. Now with the 256MB ASA when the clients being in the L2L reach 10 clients,the other clients stop working inside the VPN, they cannot reach hosts which are on the other end of the L2L. This could be due to te less amount of RAM ?? Otherwise I can't explain this behaviour.Could I solve this buying the 50 user license upgrade ?But in my previous ASA I had the Basic 10 user license and everything was working with many clients reaching hosts behind the two tunnels.
View 4 Replies
View Related
Mar 21, 2012
I have two sites connected to each other using L2 MPLS/1Gbps "provided by the telecom", the link is configured as a 802.1q trunk and terminated on C3750 on both sites. Everything is working fine according to the below configuration. But i am facing QoS limitations on the number of queues, i checked cisco web site and found that the ME3600/3800 has HQoS which will give me advanced QoS features.I am thinking to migrate from the 3750 to ME3800, but i am new to metro switches. if i can apply the same below configuration on ME3800 except the QoS as i will replace it by MQC configuration? So can I consider that the ME3800 has all 3750 features plus MQC QoS?
!
!!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log datetime
[code]....
View 9 Replies
View Related
Mar 20, 2013
We just got (2) Air-lap1242ag-a-k9 units here and i am also working on (2) air-ap1242ag-a-k9 units also.
my question is this, do the lap units function the same as the air-ap1242ag units?
if not, what will it take to make the lap units function like the ap1242 units?
View 3 Replies
View Related
Jul 16, 2012
We have configured BGP on Cisco Switch 6509E, firewall module on the switch is making nat for all users,but users is not going to internet yet, I do not know hot to configure 6509E to give internet access to users.If I route default route to FWSM,then BGP will not work? If I route default route what is the meaning of BGP then?
I do not want to write static route because BGP should work (4 ISPs redundancy)
How to let users to go out to the internet throug BGP, but nat is being done on the firewall module on 6509, routing is beiing done on 6509,to to configure it?
View 4 Replies
View Related
Oct 5, 2011
we are running 8.4(2) on the asa with the below configuration we basically have a static for .7 on .25 and a nat for .7 for port direction with manual nat that takes precedense over auto nat within the object group am I correct that I dontneed the dynamic statement and that its redundant?
-object network obj-10.X.0.25-02host 10.X.0.25
-object network obj-10.X.0.25nat (any,INSIDE) static X.X.X.7 dns
-object network obj-10.X.0.25-01nat (INSIDE,OUTSIDE) static X.X.X.7 service tcp smtp smtp
-object network obj-10.X.0.25-02nat (INSIDE,OUTSIDE) dynamic X.X.X.7
View 1 Replies
View Related
Jun 18, 2012
Does the CPU speed make any difference?I'm reading that the Asus offers great Wifi Coverage - which is nice cause both the wife and myself use the laptops a fair bit.. However - most of my devices are currently on a wired setup..through a belkin 1gbit powerline setup.I run a NAS for storage - a separate machine for media serving, 2x ps3s for media streaming a seagate HD+ media player + a sonos bridge and my desktop on the wired setup..As for wireless normally I'd have 3 Androids along with 2 laptops & 5 sonos players...
[code]....
I might have been talking rubbish there - I was sure I'd read somewhere that the Asus unit had a whopping 1gb ram installed vs. the 256mb of the Linksys/Cisco ea4500 - however looking at the specs again, both read @256mb.
View 3 Replies
View Related
Jun 21, 2012
In 2008-2010 timeframe, I used the ace 4710 appliances at one customer and kind of liked them. The deployment was not too SSL intensive and B/W requirements were low, but I configured a few HA pairs and that worked well. The configuration was pretty comparable to other Cisco devices; so easy to learn/pick-up.Fast forward to 2011: stepped into an environment, where customer purchased 3 - ACE 20 modules (before I got here), and had multiple issues with them. I found 4 documented TAC cases, and 1 was still open. I started working from December 2011 on getting Cisco to own-up WRT modules but customer by that time had had enough.
The most serious issue was a random reboot, hang or lockup. I wasn’t here to work with them to verify, but that’s eventually what the deal breaker was. Around the February 2012 timeframe, talking to Cisco SE, he revealed Cisco had an independent lab in Switzerland verify that some hardware component on the device had a terminal defect, in which a bit would flip, and force the device to lock or reboot - subject ot radioactive decay or interference.Cisco and the lab attributed this to improper shielding, coupled with defective material in the electronic component; hence the device was highly susceptible to radiation-type errors. This is the kind of stuff you read in doomsday reports! As a result, Cisco was EOL-ing the ACE-20 module. I am trying to get Cisco to replace the ACE-20 modules with something else, but they haven’t been too cooperative. They have also limited their SE/Salseperson presence where I work (Pacific Northwest); and are not too responsive.
I have gotten a verbal agreement to get a credit on prior purchases for the amount this customer spent on the ACE-20 modules. However, the credit is only a few points off their normal discounting model. And Cisco will not go into loss on new product sales. Using example, $100 product would cost me $55 with standard Cisco discounting. Cisco’s cost might be $45 so I will only get another $10 credit on this new purchase.The 3 Cisco ACE-20’s originally cost customer about $100K, so to dwindle this credit down, we would need to purchase about $1-$2 million of new hardware - that's a lot of new gear! And I don’t have any real way of knowing that Cisco is applying the credit honestly, and they won’t put anything in writing. This entire issue has really dampened customer’s impression of Cisco. They had smartnet on the ACE-20’s for 2+ years, but then dumped that after losing faith in the product. Now I am trying to resurrect smartnet to see if Cisco will give us an alternate product.
And to cap it all off, the original Cisco salesperson (who sold customer the ACE’s), has left and went to work for F5! And yes, he has been calling on customer to try to sell some big-IP's! At least there is some humor in all of this. So... Has anyone else had bad experience with ACE-20 module? How about ACE 4710? How to get a reliable working ACE module from Cisco?
View 6 Replies
View Related
Feb 14, 2012
I own a Cisco 892W router. The router has 2 WAN ports and 8 switch ports. Now I know -
-WAN ports can create sub interfaces, assigne IPs, cannot be assigned to a VLAN - sounds very much like a routing port. (sh interface gives - Hardware is PQII_PRO_UEC)
-Switch ports are for VLAN assignment, trunking, IP assigment etc,. (sh interface gives Hardware is Fast Ethernet)
I know they are different but at the same time confuced what the difference are? I also know on some 3xxx series switchs you could say "no switchport" and translate a switch port to a layer 3 port. But on 892W you can't do this? Struggeling to understand the difference.
View 4 Replies
View Related
Sep 26, 2011
We are planning on testing a new ISP provider in our company but we have the following doubt: This new provider is using a Optical Fiber line (GPON – PT Prime) for this new internet connection and we already have a Cisco RV220W router but they are not sure if that can be used, so they just informed that they a capable router is the Cisco 2951-SEC/K9, that they are selling of course. So our actual doubt is if the Cisco 2951-SEC/K9 can have some “extra” WAN configurations/authentications that are not available in our Cisco RV220W and that can implicate that we cannot use our RV220w router?
View 3 Replies
View Related
Jan 25, 2013
What is the difference between the Diameter and the Max Hops Remaining in RSTP/MSTP? Like Cisco, the maximun value for diameter is 7, but, can i have a ring topology with 10 switches in the Network?
View 1 Replies
View Related
Mar 28, 2011
currently my firewall is Microsoft ISA Server 2006 and im using it very nicely but based on some security treats im changing my firewall from isa to ASA 5520 but im facing a problem that my i had installed on software name Soft Perfect Bandwdith Manager and i was limiting each users based on their MAC address to prevent using of full bandwidth in my internet so thats why i had a very relialble internet useage in my network.
after many search and searching i didnt find a good software or hardware that should support with Cisco ASA Apliances to support bandwidth management for endpoint users and etc and this is very troubel i dont want all users to use full badnwidth in my company becouse i have only 2MB internet badnwith taken via VSAT connection
View 3 Replies
View Related
Dec 27, 2010
In my test lab I am playing with the Numbered ACL's and Named ACL's. Both configurations are working BUT , I am sure I do something wrong in the Named ACL's version. When I reboot or reload the CISCO 1841 ROUTER , I do not have INTERNET anymore , I still have access by TELNET or SSH , but no external communication anymore. The only way to start the communication again , is by adding :
PERMIT IP ANY ANY . This will of course work , but the funny thing is that when I do a : NO PERMIT IP ANY ANY It still works !!!
I have learned by this to always shut down and restart my ROUTER or SWITCH to see if everything still work . Here bellow some parts of the working Numbered ACL's version :
ip ssh time-out 60
ip ssh authentication-retries 2
ip ssh port 8096 rotary 1
ip ssh version 2
[ code] ....
View 4 Replies
View Related
Dec 6, 2011
I know serial interfaces are called that because they put bits on the wire serially - i.e. one bit at a time. If that's the case for serial interfaces, how do other kinds of interfaces, such as Ethernet interfaces, put bits on the wire? Do they somehow put more than one bit on the wire at a time? I assume it's a faster process, but how so?
View 4 Replies
View Related
Aug 14, 2012
i measured with Iperf over two Cisco 1811 router, that bandwidth speed is higher then is used IPsec+GRE tunnel between two routers, than just using a static routes.Bandwidth over GRE in average is about 91389Kbit/sec Over static routes is about 88474Kbit/sec.
View 1 Replies
View Related
Apr 10, 2012
I'm going to be upgrading my network (router and network cards etc). I was wondering if there will be any performance difference with the Belkin Fastcat 5e I currently have and CAT6 cables?
View 7 Replies
View Related
Jun 29, 2012
I like to create a access point and thinking to buy the Engenius ECB300 or the cheaper ZyXel WAP3205.
I cannot find anything about the power output of the ZyXel WAP3205 so I'm not sure what do buy.
View 1 Replies
View Related