Cisco WAN :: WS-C6509-E - How To Enable Audit Log To Server
Apr 10, 2013In our network we use cisco WS-C6509-E (R7000) Backbobe switch. We want to route syslog to log server.But I couldn't do it. How can solve this problem?
View 7 Replies
ADVERTISEMENT
Cisco AAA/Identity/Nac :: How To Enable ACS 5.2.0.26 Configuration Audit
Oct 12, 2011ACS and i would like to know how to enable the "Configuration Audit" for someone login to my network devices using their ACS login and i can monitor what they did on it.
ACS Version : 5.2.0.26
Cisco Switching/Routing :: WS-C6509-E - Possible To Boot IOS From TFTP Server
Oct 21, 2012I have been looking at grading the IOS version on our 6509-E however there is not enough space on disk:0 to upgrade to the version I need to install. The question I would like to ask is - is it possible to boot the IOS from a TFTP server? If this is possible what configuration do I need on the 6509 to enable this. How does the 6509 know about the TFTP server as an IOS is not installed and therefore it will not have a network configuration
View 2 Replies View RelatedCisco AAA/Identity/Nac :: ACS 5.3 How To Enable Log On Secondary Server
Feb 28, 2013We are using ACS 5.3 with two servers in a distributed solution.All logs are collected on primary server so when this server fails all logs are lost.How can I enable log on secondary server also?
View 2 Replies View RelatedCisco Firewall :: DHCP Server Won't Enable - ASA 5505
Nov 1, 2012I get the following message when appling "DHCPD ENABLE INSIDE"
DHCP: Interface 'INSIDE' is currently configured as CLIENT and cannot be changed to a SERVER by a SERVER feature
This is an ASA 5505 Running 8.2.
Network Audit Tools?
Oct 10, 2012me what are the best Free tools to do a Network Audit (Thoughput, speed linksswitchs usage, analyse network topology.. etc)
View 7 Replies View RelatedPossible To Enable DHCP Server For Additional Routers
Mar 21, 2011So far we add any router in the existing network simply by disabling DHCP server, and adding LAN ip for that. We don't add WAN detail at all in the additional routers. And plug one cable from main network to the LAN port of the additional routers.So we basically use that additional routers only as a access point for WIFI.But what I wonder is if it's possible for me to use the additional routers with the same feature as of the main routers i.e. Enabling DHCP server so that it too can give its own DHCP ip address.
View 2 Replies View RelatedCisco :: LMS 4.0.1 / Understanding Change Audit Report?
Jun 27, 2011I need to understand why change audit report reports an unused username Name of the user who performed the change. This is the name entered when the user logged in. It can be the name under which the LMS application is running, or the name using which the change was performed on the device. #The User Name field may not always reflect the user name. The User Name is reflected only when: A config change was performed using LMS. #A config change was performed outside of LMS, but the network has username-based AAA security model, wherein authentication is performed by an AAA server, which could be TACACS/RADIUS or local.
View 2 Replies View RelatedCisco Security :: PIX 515E Logging For Audit
Oct 17, 2011We have a PIX 515E running ver 6.3 and we want to implemente some sort of logging to keep track of who/when logs in to the PIX and if they make any config changes or to the file system. All of this is for forensic purposes in the future. I have already looked at some PIX docs but I don´t seem to find what I am lokking for.
View 1 Replies View RelatedCisco VPN :: Audit Users On Old 3060 Concentrators?
Sep 13, 2012We are trying to finally get rid of a couple old 3060 concentrators and would like to see how many active connections are still on. Is there any reporting that can be seen from the concentrators?
View 3 Replies View RelatedCisco Firewall :: ASA 5510 - Enable External Access To Server On DMZ
Apr 5, 2011i'' ve one appliance ASA 5510, v8.X and asdm 6X here u have my configuration :
interface Ethernet0/0 description Link To WAN nameif outside security-level 0 ip address 212.96.23.186 255.255.255.252!interface Ethernet0/1 description Link to LAN(forefront) nameif inside security-level 100 ip address 10.20.80.1 255.255.255.252!interface Ethernet0/2 description Link to CoreSW (DMZ) nameif DMZ security-level 50 ip address 10.70.70.254 255.255.255.0
i have on server ssh (10.70.70.10) on my DMZ .
I wan to enable my external user, i mean outside user to be able to access to this server which is in my DMZ for this port ( ssh)
Can't Enable 1Gbps LAN On Server - Refuses And Goes Into 100 Mbps Mode
Apr 6, 2011So I have a Windows 2008 R2 SP1 Enterprise Server and a gigabit LAN network card onboard. But it refuses to run at gigabit speed and if forced to it, it just says that network cable is unplugged and doesn't work.
I tried switching to a newer and better motherboard (still with gigabit LAN)I have updated drivers.I have checked cables (which are all cat 6 cables and work just fine with other computers in gigabit LAN mode)I've checked and switched ports on the switch and the switch itself...no change. They work just fine with other non-W2008 machines, they get gigabit LAN
I am completely stomped as to what I can do to fix this. It runs just fine in 100 Mbit mode, but can't in any way get it in gigabit mode.I am completely stomped as to why it refuses...is this a limitation of Windows 2008 or something or is there a fix to this?
Cisco Security :: 4.7.2 / Nac Agent Requirement Type Audit?
Feb 7, 2011i can configure a requirement type as audit (opposed to mandatory or optional), so the client will still access the network, the user will not be notified, and the information will be sent to the cas.It is possibile to generate an email or similar automated process to notify administrators on these audits?
(version in use 4.7.2)
Cisco :: Audit All Input / Output Of Switch 1900
Jan 10, 2012Sometimes our network lag and i thing there is a computer making this problem. i'd like to audit all input output of all port of a Catalyst 1900. all i manage to do is to enter to the console menu via Telnet.. once here, i try monitoring but i'm afraid to do a bad thing :
Catalyst 1900 - Main Menu
[C] Console Settings
[S] System
[N] Network Management
[P] Port Configuration
[Code]...
Cisco Switching/Routing :: 2950 - DHCP Server With Command To Enable It
May 4, 2012I am wondering if it has its own DHCP router and if theres a command to enable it?Also Random side question. it hands out ip addresses to other devices (the 2950 im using infront of a router) but when I hook up another switch to this switch it doesnt initialize the port or try to connect? why.
View 1 Replies View RelatedCisco :: 5508 / NCS Prime 1.3 Controller Audit Status Mismatch?
May 14, 2013When performing an audit from NCS Prime 1.3 on our 5508 controllers (500 lic) we are getting mismatch messages from many of our 3602i AP's that say the following...
(Type)Configuration Name Audit Status Attribute Prime Infrastructure Value Controller Value
(AP APname, Interface) 802.11a/n Mismatch Spectrum Intelligence true false
These AP's are not configured as Spectrum Intelligence on the controllers, rather as local. It seems that NCS believes that they are supposed to be SI. We have refreshed the config from controller many times but this does not change. The 5508's run v.7.2.111.3 Is there a change I can make on NCS or otherwise to make this mismatch go away? Is this a bug? It is not causing any problems (that we can see) but as most would rather not have these mismatches.
Cisco AAA/Identity/Nac :: ACS 5.4 - Audit Logs Operated By Secondary Instance?
Mar 28, 2013I'm using ACS 5.4p2 within distributed systems: one primary and one secondary instance.For now, primary instance is acting as Log Collector server and I can see any AAA audit logs.
When the primary instance fails I can authenticate successfully using the secondary instance.However, when primary instance comes back, I'm not able to see any audit logs operated by secondary.
Cisco :: LMS 4.1 Device Change Audit Lists Wrong Users?
Aug 14, 2011I have noticed that under the Device Change Audit list under the configuration dashboard. LMS lists the wrong user for the last change. For example. User ABC performed a change on a switch yesterday but switch shows user XYZ has performed the change.
e.g.
SwitchA
! Last configuration change at 16:27:06 AEST Mon Aug 15 2011 by ABC
User XYZ then performs changes on switchB, switchC. These show up correctly. but the change on switchA shows user XYZ instead of ABC.
User XYZ has never logged into the switchA in question.
Cisco :: Ciscoworks LMS3.2 Not Showing Latest Configuration / Change Audit Report
Dec 19, 2012My cisco works LMS3.2 is not showing recent configuration of my Cisco devices. also it dont show any change report on last 24 hours or even if i select x number of day, looks like its not saving any changes made on devices.
today i logged in and cisco ASA was showing this in status as well Configuration Last Archived Time May 03 2012 11:27:46 EDT on checking i could see it is same date when cisco ASA was added in cisco works. do i need to click some where for auto update configuration changes and latest confoguration in cisco works setting?
Cisco Switching/Routing :: Catalyst 2950 - Release For Snmp-server Enable Traps Errdisable Command?
May 16, 2013We have a catalyst 2950 switch running:
IOS (tm) C2950 Software (C2950-I6K2L2Q4-M), Version 12.1(22)EA6, RELEASE SOFTWARE (fc1)
This release doesnt have the snmp-server enable traps errdisable command.
Where to look on the cisco site for the next available release for me that would have this command in place?
Cisco Switching/Routing :: 2811 Disable Audit-trail For Icmp Packets In CBAC Logging
Mar 23, 2013I have a cisco 2811 router set up as a nat/firewall gateway for my network. I've configured it for CBAC on using ip inspect and an access list.What I want is to use audit-trail to record network traffic (which means sending syslog messages to a server) concerning established sessions from my own network to locations in the outside. If i configure this using ip inspect audit-trail and no ip inspect alert-off, the configuration looks like this: [code] which works just fine, but there is the matter of icmp packets.
Since i use polling software that needs to check some machines in the outside part of the network, it is only natural that several icmp sessions are established through the Inspection Rule per minute. The problem is that since these sessions are recorded along with everything else, my syslogs are flooded with these (since i am using logging trap informational) to the point that more messages are generated about icmp than all other traffic combined, especially in non-working hours.What I am asking is a way for the audit-trail to be selecively disabled for icmp, so that the outgoing (echo) &incoming (echo reply) sessions can be established without generating syslog messages.
Cisco :: WS-C6509-E OID For Virtual Switching System
Nov 21, 2011The OID I am using for module index 6509-E family is not working on 6509 Virtual Switching System(VSS).I have used "1.3.6.1.4.1.9.5.1.3.1.1.1" for single6509- E configuration. How to know OID for module index on VSS environment.
View 5 Replies View RelatedCisco WAN :: Does C6509 Support Ip Tcp Path-mtu-discovery
Mar 5, 2012I have one questions regarding if C6509 suports "ip tcp path-mtu-discovery" ? apply this command to GRE interface on C6509?
if yes, let me know what is the the IOS for that.
Cisco Switching/Routing :: How To Upgrade WS-C6509-E IOS
Oct 14, 2012We would like to install a WS-SVC-WISM2-1-K9 in each of our 2 WS-C6509-E chassis. Both of these have supervisor 720 engines installed. One in each chassis.From what I have read we need to upgrade the IOS to 12.2.33 SXJ4. Is this correct?If this is true then what are the memory requirements for the upgrade to this IOS version. Below is the output from Show version?Is there sufficient memory instqalled to do this install?
View 3 Replies View RelatedCisco :: 5508 / C6509 - Using WLC For DHCP For One SSID?
May 17, 2011We have a network of multiple WLCs: 5508, 4402, WISMs in two C6509 all running version 7 software. We have about a dozen SSIDs and we need to provide DHCP to the one public SSID (which like the other SSIDs span across all controllers) and to do so we thought of using a spare router, Linux workstation or DHCP server on the controllers. We are not sure if using the controllers is an option since we have multiple controllers. Is there a way to setup DHCP on a WLC and tell the others to use that WLC for DHCP for the one SSID?
View 3 Replies View RelatedCisco Firewall :: C6509 - Can't Connect FWSM
Sep 27, 2012I'm running two C6509 Chassis with FWSM and ACE module install on each chasiss.I have no problem with session into 1 FWSM and 2 ACE modules.But 1 FWSM module can't be access by session command.As I understand two FWSM module status is OK, and working fine.When I tried to session into FWSM, I got these messages..
[code]....
Cisco WAN :: C6509 - Error Message In Syslog
Sep 15, 2009We have 2 Cat 6509 connected to 1 Gbps Ethernet WAN Link. On each 6509 we use 2 Gbps IPSec SPA Encryption cards for Encryption. The encrypted traffic goes to a GRE Tunnel. This morning I found some error messages in syslog.
%CONST_DIAG-SP-3-HM_TEST_FAIL: Module 1 TestIPSecEncrypDecrypPkt consecutive failure count:2
There were also several short tunnel downs/ups. I wonder if there is a bug in the new IOS image 12.2(33)SXI2a. We upgraded to this image last weekend.
Cisco Switching/Routing :: C6509 To Have Feedbacks About Vss Availability
Mar 9, 2012we plan to implement VSS on our datacenters (C6509/Sup720), in order to remove L2 loops (currently, access layer are C3750 stacks, which could evoluate for N5K/N2K). I would like to have some feedbacks about VSS stability. Some years ago, I have seen some bugs with this technology in another company, so I am still not totally comfortable to use it in the datacenter.
View 0 Replies View RelatedCisco Switching/Routing :: Impact Of ACL On C6509 CPU Utilization?
Apr 4, 2012We plan to implement a large number of ACL on our Distribution switch which is a HSRP pair of 6509C switches running on sup-bootflash:s72033-psv-mz.122-18.SXD3.bin WE need to divide the Network in three layers
unsecure layer
Proxy layer
Secure layer
We have approximately 250 vlans on the our distribution switches and plan to implement 15 ACL on different vlans Each ACL can contain upto 30 lines or less.
basic ACL example we will be applying on different vlan
vlan 200
ip access-group test123 in
My question is Can these ACL on a vlan can have a massive impact on the 6509 CPU ?
Cisco Switching/Routing :: WS-C6509-E High CPU Utilization
Jan 13, 2013I have a 2 cisco core (cisco WS-C6509-E (R7000) processor) and been working for quite sometime.they are conneted with HSRP with active standby config with a 10 g module for redundancy just today I see that the cpu utilization went to about 50% and its the same on both cores.
[Code] .......
Cisco Switching/Routing :: C6509-E Do A Unexpected Reload
Feb 26, 2012Last night, the C6509-E do a unexpected reload. In the crashinfo, I can see that the last error message before the reload, was as follows: %C6K_ PLATFORM-SP-2-PEER_RESET: SP is being reset by the RP
I consulted the cisco website about this error message and what I found was the following:C6K_PLATFORM-2.
Cisco Switching/Routing :: What Should Be Minimum IOS Version On WS-C6509-E
Sep 26, 2012what should it be the minimum IOS version that I require on my WS-C6509-E equipments to support "logging origin-id" command?
Cisco documentation says that this command was introduced in 12.2(15)T, and integrated into 12.2(33)SXH.
BUT my Cisco switches have 12.2(33)SXH5 IOS version......and they do not support "logging origin-id".
(config)#logging ? Hostname or A.B.C.D IP address of the logging host buffered Set buffered logging parameters buginf Enable buginf logging for debugging cns-events Set CNS Event logging level console Set console logging parameters count Count every log message and timestamp last occurance esm Set ESM filter restrictions event Global interface events exception Limit(code)
Cisco Switching/Routing :: C6509-E / What Is Mean That Is Packet Capture?
Apr 1, 2013I operate between c6509-E, what did you flooding? its just packet capture gi1/3 but i dont know it and is it attack?also same seq no switch gots it?what is problem?
View 2 Replies View Related