Cisco WAN :: Use Nexus Technology Over 6500 Based VSS In Enterprise
Feb 1, 2011we need to use Nexus technology over 6500 based VSS in entreprise ?
View 1 Replies
ADVERTISEMENT
Cisco Firewall :: ASA 5585X Nexus Switches Utilizing VPC Technology
Jul 17, 2012I want to configure 5585x Active/Standby with 2 nexus switches utilizing VPC technology. New ASA 8.4 supports etherchannel so I want to plugin 2 cables from ASA1 to sw1 and sw2 and 2 cables from ASA2 to sw1 and sw2? Is this a valid design? how would I configure that? Any design document on that?
View 1 Replies View RelatedCisco :: DCNM For LAN Enterprise License For One Nexus 7000 Chassis
Feb 10, 2012if i have just DCNM-N7K-K9 (DCNM for LAN Enterprise License for one Nexus 7000 Chassis) installed on a server, i can manage all nexus switches like 5k and 2k??
View 1 Replies View RelatedCisco :: Nexus 1000v QoS Based On IP ACL?
Mar 28, 2012I want to apply QoS policy on a particular VM for specified port range only. I have created following script file but that doesnt work. I mean it doesnt apply any policy on vm residing on Veth1.
config t
ip access-list acl_in
101 deny tcp any any eq 443
exit
[Code].....
Cisco AAA/Identity/Nac :: ACS 5.2 AAA Role Based In Nexus 5.1
Feb 7, 2011I am using ACS 5.2 and attempting to authorize users through TACACS to Nexus 5.1 code. I seem to have ACS setup correctly based on documentation I received through here. The problem is that the NX/OS doesnt seem to be operating as expected.
View 2 Replies View RelatedCisco :: 6500 TCL Script Or Applet To Disable Port Based On Reachability
Jun 21, 2011I am looking for a script or applet that will dis/enable an ethernet interface on Cat 6500 based on reachablity to an external destination. Reachability should be verified either directly by sending ICMP packets, or based on IPSLA status.
View 4 Replies View RelatedCisco WAN :: Nexus 7010 - Advertise Default Route Based On HSRP State
Sep 24, 2012I've got two Nexus 7010's running HSRP north bound to a pair of ASA's, and BGP south bound to four 6509's. Is it possible to advertise default route to BGP neighbor (or prefer it via MED), only if the node is HSRP-active?
Essentially the goal is to create symmetry for inbound/outbound traffic. Only way I can think of so far is via an EEM script, so that when it sees HSRP go active via syslog, it would kick off an action to remove ASN prepend, or reduce MED, and the opposite if HSRP goes standby.
Cisco Switching/Routing :: Prioritization Of Voice Traffic On An Uplink On Nexus 5500 Based On DSCP EF?
Jan 20, 2013I have a Nexus 5500 which is the core of our network and we have access layer switches uplinked to it. I know by default the qos markings will be trusted.
1. On a trunk uplink from an access layer switch to the Nexus, I have "mls qos trust dscp". Will the DSCP marking be preserved when it reaches the Nexus?
2. How do I do prioritization of voice traffic on an uplink on Nexus based on DSCP EF?
Cisco :: 6500 / 3560 / Nexus 5k - Syncing NTP
Mar 6, 2012I have begun moving NTP from our 6500 to 4 Nexus 5k as part of a core upgrade. The Nexus will act as our internal NTP server for all switches. Any switches that are on the same vlan as the Nexus have no issues syncing NTP from them. However any switch that has to have the traffic routed to the Nexus is showing that the time source as insane.
The configuration on our Nexus is as follows the Nexus are .11,12,13 and 14:
ntp peer 172.24.1.12
ntp peer 172.24.1.13
ntp peer 172.24.1.14
ntp server 192.43.244.18
clock timezone CST -6 0
clock summer-time CDT 2 Sun Mar 2:00 1 Sun Nov 2:00 60
Here is the configuration on one of our 3560's:
clock timezone CST -6
clock summer-time CDT recurring
ntp server 172.24.1.11
ntp server 172.24.1.13
ntp server 172.24.1.12
ntp server 172.24.1.14
This same configuration worked when the switches were configured as NTP Peers to our 6500 (172.24.1.1). The ip for the 6500 has been moved to an HSRP address across the Nexus so I have pointed the switches at the individual IP for each Nexus.
Here is a debug ntp packet ouput from one of the 3560s:
.Mar 7 17:21:22: NTP: xmit packet to 172.24.1.11:
.Mar 7 17:21:22: leap 3, mode 3, version 3, stratum 0, ppoll 64
.Mar 7 17:21:22: rtdel 2445 (141.678), rtdsp C804D (12501.175), refid AC180101
[Code].....
Cisco Switching/Routing :: VPC On Nexus 5000 With Catalyst 6500 (no VSS)?
Jan 23, 2011The diagram below is the configuration we are looking to deploy, that way because we do not have VSS on the 6500 switches so we can not create only one Etherchannel to the 6500s.Our blades inserted on the UCS chassis have INTEL dual port cards, so they do not support full failover.
Questions I have are.
- Is this my best deployment choice?
- vPC highly depend on the management interface on the Nexus 5000 for the keep alive peer monitoring, so what is going to happen if the vPC brakes due to:
- one of the 6500 goes down
- STP?
- What is going to happend with the Etherchannels on the remaining 6500?
- the Management interface goes down for any other reason
- which one is going to be the primary NEXUS?
Below is the list of devices involved and the configuration for the Nexus 5000 and 65000.
Devices
· 2 Cisco Catalyst with two WS-SUP720-3B each (no VSS)
· 2 Cisco Nexus 5010
· 2 Cisco UCS 6120xp
· 2 UCS Chassis
- 4 Cisco B200-M1 blades (2 each chassis)
- Dual 10Gb Intel card (1 per blade)
vPC Configuration on Nexus 5000
TACSWN01
TACSWN02
feature vpc
vpc domain 5
reload restore
reload restore delay 300
[code]...
Cisco Switching/Routing :: 6500 / Nexus OSPF Process Limit?
Jan 11, 2012We are cutting over from 6500 IOS to Nexus 7000 and have hit "Maximum ospf feature instance limit reached." as we configured up the 7 existing ospf processes - the limit is 4. These existing processes are for various vrf contexts we have. I see you can run multiple vrf contexts under one process - but how does that work in a mixed environment where the ospf neighbours are still ios 6500s? They still expect to see different ospf process id per vrf.
View 2 Replies View RelatedCisco Wireless :: Does WRVS4400N Actually Support N Technology
Jan 2, 2013I have an older Linksys WRVS4400N Version 1.1 VPN Router. I have it set to run in mixed mode G/N. I still can only get connection speeds of 54 Mbps though. How can I get my wireless N clients to see 300 Mbps speeds?
View 1 Replies View RelatedCisco WAN :: Technology Package License For ASR 1001?
May 29, 2012How can i find the list of features supported in ASR for various license
1) IP Base
2) Advance IP Services
3) Advanced Enterprise Services.
Cisco Switching/Routing :: ERSPAN Source On Nexus 5548 And Destination On Catalyst 6500
Aug 9, 2012I'm trying to get ERSPAN working with an ERSPAN source on a Nexus 5548 and the ERSPAN destination on a Catalyst 6500.
The configuration on the Nexus is as follows:
[...]
interface loopback0
ip address 192.168.2.133/32
[Code].....
If I do a netdr capture I can see ERSPAN traffic sourced from the Nexus reaching the C6500, but there doesn't appear to be anything sent out the ERSPAN destination inerface (Gi4/6) and there's nothing being received by the probe connected to that interface. I know the traffic seen with netdr is definitely the ERSPAN traffic sourced from the Nexus as I've changed the TTL and DSCP values within the monitor session on the Nexus and can see those changes reflected on the C6500 netdr capture. The attached is a screen grab of the show netdr capture started with debug netdr capture soure-ip-address 192.168.2.133.
When I look at the interface I see it shown as up/down (monitoring), but no output or counters clocking up. If I run a local SPAN session on the C6500 it works fine.
I've tried changing the destination IP address from that assigned to the C6500 Loopback interface to an IP address assigned to a physical interface, but that still doens't work.
The hardware in the C6500 is WS-SUP720-BASE Hw version 3.2 with WS-F6K-PFC3B Hw version 2.4. The IOS version is 12.2(33)SXI6.
Cisco Wireless :: 5508 - Lwapp Capwap Technology Clarifications
Jul 10, 2012Clarify some points with capwap implementation, does all data and control traffic tunneled back to the controller and switching packets to the specific vlan will be done by the controller? so if i have 5508 controller, its maximum throughput will be 8 gbps (local mode AP), provided i have done LAG on all its ports to the LAN switch?
View 2 Replies View RelatedCisco Switching/Routing :: Any Challenge To Upgrade Core Switch 6500 Series From Nexus 7009 Which Runs NxOS
Jan 28, 2013Is there any challenge to upgrade core switch 6500 series from Nexus 7009 which runs NxOS, because i have 3750X series switches connected at distribution and access layer in my network topology??
Is there any challenge if we place NxOS in core and IOS in distribution and Access layer??? how we are able to match sh run config in existing 6500 switch to Nexus 7009 NXOS?
Dell :: Vostro 3750 - Intel Wireless Technology (Adapter Not Found)
Nov 10, 2012My Vostro 3750 unable connect to my wireless router due to no wireless SSID is shown & Wireless Connection Network also not listed...
i can't enable Intel My wireless Technology... it's stated Adapter not found....
i have check inside Device Manager > Network adapter... my device is enable..
also i check in Network Connection... My device is enable...
Add A Dos Based Computer To A Windows Based Network?
Jan 18, 2012How do I...add a dos based computer to a network running windows 2003
View 1 Replies View RelatedCisco :: When To Use DWDM In Enterprise
Mar 11, 2013I'm used to seeing DWDM and muxes being used in the service provider world, but when and why would an enterprise want to use this kind of gear?The two basically lets you combine streams of signaling from many different physical sources into one media, but can't a VLAN trunk or a routed link, for example, do the same? Sure, they all operate at different layers of the OSI model, but in all cases you're still getting separate streams of data from Point A, putting it all on one wire, and sending it to Point B.
View 8 Replies View RelatedCisco :: WPA2 Enterprise With New ACS 5.x
May 21, 2013Not sure if this belongs here on in a different section. We are in the process of purchasing a new ACS 5.x appliance. I would like to take a look at implementing WPA2 Enterprise with our Cisco APs.
View 4 Replies View RelatedHow To Bypass 8e6 R3000 Enterprise
Apr 28, 2011I have tried everything including removing the system, changing the network settings, using cmd.exe, ect. they all say access denied and theres no possible way to get around this.
View 2 Replies View RelatedCisco :: Managing Test Lab In Enterprise Environment
Jan 5, 2012I want to create a network with a bunch of routers and switches to be used as a test network for company employees to remotely login and learn networking.I don't want this network to interfere with the rest of the network in any way.I am basically trying to create a stub network or a passive network!!
View 4 Replies View RelatedCisco Wireless :: Could Not Install Red Hat Enterprise 5.0 On MSE 3355
Jun 26, 2012I want to reinstall the MSE image that was sent to me by Cisco TAC Team, however when I try to reinstall the MSE Application, however when I try to install it, the CD boots and show me the Red Hat enterprise image, then sends me black screen with the message "Kernel alive, Kernel direct mapping tables up to 480000000 @ 8000-1b000" and it stay there.
View 2 Replies View RelatedCisco :: How To Configure 1131 AP To Use WPA2 Enterprise
May 2, 2012I have a Win2008 server set up as a radius server (192.168.32.71) and a stand alone AP (192.168.201.9) [code]
View 3 Replies View RelatedCisco WAN :: 2621 - How To Setup Enterprise EIGRP
Dec 19, 2011OPTEMAN: 3 routers connected via a private subnet (/29) over the OPTEMAN: Site A, Site B, and HQ. Site A is a 3560 that is the gateway for two subnets: siteA1 and siteA2. SiteB is a 2621, and HQ is a 6509 w/ MFSC.
HQ also connects to 4 other sites via MPLS: SiteC, SiteD, SiteE, and Site F.
HQ has the server subnet, Internet connection, and connection to other services via MPLS.
I have basic EIGRP setup on HQ, SiteA, and SiteB. So far only siteA and HQ are updating each other. Not sure why. I am looking for the best practice example of how I should setup my enterprise EIGRP. I currently use static routes between the sites. I would prefer to be able to setup EIGRP in parallel, the remove the static routes.
Cisco Wireless :: Enterprise MESH In Release 7.0 MR1
May 11, 2011I'm looking for documentation on the Enterprise mesh solution based on 7.0 MR1...In this release e.g 802.11n APs are supported and clean air for the client radio etc...The current Cisco Mesh Access Points, Design and Deployment Guide is based on the previous 7.0 release.Apart from the configuration guide I can't find any additional guides.
View 1 Replies View RelatedEnterprise Network In Terms Of Security?
Jun 19, 2011How to treat your enterprise network in terms of security? Do you firewall between sites? Between subnets? I've been a little gung-ho with packet filtering, and the more the network is growing the harder is becoming to make that scalable and manageable. It's looking like a pretty good idea to just open up access to/from all my sites. I'm going to continue locking down user areas where we can't necessarily trust the boxes, but all our server subnets I think can be opened up to unfettered access.
View 4 Replies View RelatedChange Of SSID On An Enterprise Network?
Aug 26, 2011I want to change the SSID on all my APs without it affecting the connected devicesThe users should possible not be affected with the connecttion to the wifi networkHow can I go about it?
View 3 Replies View RelatedSA700 IPhone Enterprise Controls
Aug 31, 2011if any of you are controlling iPhones within your organizations. I was hoping to use JUNOS Pulse licenses on my SA700 to control things, but all they offer for iOS devices is SSL VPN. I can do remote wipes with activesync, but I'm worried about cloud backups of corporate data on mobileme, and setting and enforcing security policies in a scalable way. I know I can manually deploy XML config from the iPhone configuration utility, but that's a bit of a PITA for remote devices (ie other countries) that I'llnever have physical access to.
View 11 Replies View RelatedCisco Firewall :: 2811 Running Advance Enterprise V 15.1-2
Jan 7, 2012I have a Cisco 2811 running Advance Enterprise v 15.1-2. I've just configured it using ccp for internet access (on 2 lines) and a firewall. The configuration is pretty much all default and I used the ccp wizard to create a 'medium-secure' firewall. I have 2 blocks of public IP addresses for my internal network and for the DMZ. The 2800 is configured as follows:
- 2 x default routes. one to each dialer.
- 6 zone pairs as follows:
- ccp-zp-self-out (seems to mostly work... I can ping any IP address from a console but not a hostname)
- ccp-zp-in-out (works fine, both interfaces seem to be in use)
- ccp-zp-in-dmz
- which by default set to ccp-permit-dmzservice
- which inspects ccp-dmz-traffic
- which matches group dmz_traffic and has a class map dmz-traffic
- cnc-zp-dmz-out which is set to ccp-inspect. (my own zone pair to allow systems in the DMZ zone to see the internet. This works fine.)
- ccp-zp-out-dmz (works fine. I can see my web server from any system outside my own network)
- ccp-zp-out-self (which, I guess allows anything permitted to get to the 2811)
Internet works from within the DMZ and in-zone. The outside can access my dmz servers. The inside can access most things on the outside using the firewall rules.
1) Although I have the zones set up to allow the same access from in->dmz as I do from out->dmz and out->dmz seems to work, I cannot seem to access anything in the dmz from the inside.
2) When setting up the firewall I ticked the box for 'allow PPTP clients to make connections from the inside' (or something like that). I cannot seem to make a PPTP connection from my workstation.
I have scoured the internet for guides, looked through these forums & the cisco configuration guides and experimented all day but still cannot figure this out.Do I need a special route between the inside and dmz? I have seem references to static routes on ASA firewalls but the command 'static (inside,dmz)...' does not work on a 2800 series router.
WPA2 Enterprise Connecting Much Too Slowy On HP Laptop?
Oct 29, 2011Recently bought a laptop HP Pavilion DM4 with Windows 7 home premium 64 bit for use in a college wireless environment. The school insists on WPA2 Enterprise connection, which is supposedly the recommended Microsoft security protocol for Win 7. I have all the correct settings, such that I can routinely connect to the wireless network but on this model HP I consistently get speeds way under 10kbs, while if I use EXACT same settings on a different Lenovo, Dell, or other models of HP get speeds of over 5MG. Yes 500x faster.Of course HP wanted to blame the network, but after sending 2 technicians to visit on campus, they agreed it was their hardware, so they sent a replacement unit. Unfortunately, the replacement unit has the EXACT same problem. BTW the problem computers do connect flawlessly to other wifi networks at full speed, just not the WPA2 Enterprise network.
View 1 Replies View RelatedMSM410 Wireless Enterprise Deployment / HP Or Ubiquiti
Jan 13, 2013I currently work for an enterprise that want to deploy wireless network (6AP for now) and I'm the one who will manage and install it.I had initially planed to deploy Ubiquiti network because I've heard lot of good thing about them. But they did not wait me and bought (crappy?) HP access point (MSM410)
What do you think about HP wireless network ? They did not yet buy the access point controller and I'm not sure they want to buy one.I can't find any review on the HP solutions it looks like no one is using it.
Do you recommend me to continue with the HP solution and buy a HP controller or go with Ubiquiti and rebuy the access points (no so much expensive in comparison with the price of the HP controller alone)
Cisco Switching/Routing :: Upgrade 6500 Non Modular IOS To Normal 6500?
Dec 21, 2011how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies View Related
