I know I can bring up a tunnel up-and-up without any layer 3 address, without any ipv4 or ipv6 address (apart from tunnel source/destination of course). And I don't have to use "ip unnumbered <interface>" either. But what good is a tunnel interface with no address? Can you bridge them or something?
View 5 Replies
I am trying to configure an IPSEC tunnel on a 1921 router. What I hope to accomplish is that using a IP SLA that the IPSEC tunnel will only be brought up IF the normal WAN connection is not responding. My thoughts were to route the traffic that needed to come back to corporate through a loopback interface but I havent found a way to do that.
View 1 Replies View RelatedHow do I get one of these to automatically bring up the VPN tunnel without the end user having to login and click connect? I got the VPN working Dynamic to ASA static, but it doesnt come up on its own when I try to access something over VPN.
View 7 Replies View RelatedI have the following scenario. Connected to a Cisco 3560 switch (fa0/9) is another Cisco switch (that is operating at layer 2). On the other side of that second switch is a firewall. I want to send traffic from my Cisco 3560 switch to a network behind the firewall. [code] However, when I try to add the ip address to int fa0/9, I get an error. Right now, the 3560 is operating at layer 2. I think that I need to issue the command: "ip routing" to put it in layer 3, then put the ip address on port fa0/9. However, I am concerned that I will mess up my production environment. Is there any other way of doing this? The "ip route 0.0.0.0 0.0.0.0" statement sends traffic out the gateway to the Internet. I just want to send packets to 209.52.62.16/28 out int fa0/9.
View 2 Replies View RelatedWhy layer 2 switches need its mac address, even it does not have any interface ? (does not have stp and etc)
View 8 Replies View RelatedI have a cisco 878 router and I can’t assign ip address to it’s fast Ethernet interface. When I assign ip address give me this message: “you can not assign ip address to layer 2 interface”.
But I can not understand why give me this alert when I use a layer3 device?!
I would like to know if ip helper-address feature is working on a layer 2 switch (2950,2960) or you should use a Layer 3 switch to do that?
View 7 Replies View RelatedCan a layer 2 cisco 2950 switch be used as a dhcp server with it's own address pool.
View 3 Replies View RelatedI want to setup VLAN with the switches SG300 and SLM2024. What is the suggestion to connect these 2 switches. We have the Juniper net screen.
View 1 Replies View RelatedI have a question if I Stack a Catalyst 3750 L3 with a Catalyst just L2, will we able to use all L3 capabilities?
Switches are
WS-C3750G-24TS-E1U
WS-C3750V2-24PS-S
Is it possible to setup a Backup GRE Tunnel using a Seconadary IP Address on the WAN interface. The router is a Cisco 871.
View 33 Replies View RelatedI'm having some trouble configuring 2 cisco routers (877) with ipsec vpn tunnel.The 2 of them are linked to the internet with dynamic adsl's - their ip-addresses changes all the time.when the configuration is based on ip addresses it's working ok, but when I'm trying to use host name with the DDNS feature, it's not coming up, I get a lot of errors...
I've searched google and various posts regarding that issue.It's seems like it's possible to do a dynamic-ip to dynamic-ip ipsec tunnel, but I found zero manuals and configuration.I've added the template that I'm using to configure the tunnel with ip addresses.
Is it possible on an ASA 5500 device to connect an IPSEC tunnel via hostname instead of the IP address? I have a site without a static IP address that is currently connected via Easy VPN but I want to change one of the sites to a regular IPSEC site to site as one side, the one with the dynamic IP, is being changed to SonicWALL. I will have DDNS setup on the site with the SonicWALL so I want to know if I can point the ASA device to the hostname instead of the IP.
View 4 Replies View RelatedMy hard drive crashed and I replaced it with a old hard drive that I had and now I cant get connected. I tried different things I have on site and its still not working. After trying the last thing I have given up ..
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:Windowssystem32>IPCONFIG /ALL
Windows IP Configuration
Host Name . . . . . . . . . . . . : Tonya-PC
Primary Dns Suffix . . . . . . . :
[code].....
I have a Catalyst 3750 Metro running 12.2(25)EY4.Every time I add or remove an ipv4 address from a tunnel interface I have the following log:
Jan 4 10:42:19.088: %PLATFORM_HCEF-3-ADJ: Insane handle in add LT7
-Traceback= 25222C A81C70 A7B28C B08958 B28940 B2A2E0 B2A684 B9EFA4 B9F004 B9F684 B9F814 B9F99C B8E3BC BA1BD8 3DFA94 39BA3C
Im trying to setup a site to site VPN using a Cisco 877, problem is we have no ADSL presentation, we've just been given an Ethernet line to use from another client in the building, If i plug my laptop into the port and use the External IP information given i can use the internet and ping the other VPN just fine, if i place my blank config 877 into the port and set up VLAN 10 to use the same IP information, it cant even ping the local gateway? The port on the router is in VLAN 10 like it should be and the interfaces are all up, the router can ping its local VLAN 10 ip address.
View 5 Replies View RelatedI've attached my ASA's config. I can't bring the VPN up by pinging from the ASA but the VPN will come up when someone pings from behind the ISA server. So the problem seems to be routing/NAT on my ASA because my pings aren't being directed out the tunnel. The VPN in question has 64.106.x.x as the peer and AES 256/SHA for phase 1 and 2.
View 2 Replies View RelatedI need to check and possibly change which Network address is allowed down a tunnel and check our Phase 2 IPSEC proposal. How would I do this on a VPN3000?
View 3 Replies View RelatedI have 2 ASR 1006 with ASR-1000-ESP40, ASR-1000-SIP40, ASR-1000-RP2 , and with SPA-1X10GE-L-V2 that should hold an XFP-10G-MM-SR.
i am in the proceed of an implementation and configuration, but i am facing a problem on the interfaces, where i am not able to bring the interfaces up/up and always down/down.
i check the fiber patch cords and the other SFP on the switch WS-C3560E-12D and it is working fine. i also reverse the fibers pins and nothing works
i need only to get the interface to be up/up. i also checked all the hardware compatibility matrix, IOS XE, the SPA are all online (show platforms).... where all seems to be ok and compatible.
all what is needed is to give the interface ,for example, tengig0/0/0 and ip address and no shut and it should go up/up.
One more thing, the XFP is not giving a red light laser, and in the show interface tengig0/0/0 give media type is unknown.
I'm trying to bring up two t1 and bundle them into a multilink on a 3845 on one end and a 3725 on the other end. On the 3845 I have installed two VWIC-2MFT-T1-DI and on the 3725 I have installed two VWIC-2MFT-T1 and a 1DSU/CSU-T1-V2.
For some reason I'm able to bring up the T1's on the DSU/CSU WIC. When I try to connect the T1 on the other WICs, on the 3845 I see SLIPs and Interface Resets however on the 3725 there is no errors however I still see UP DOWN.
CONFIG 3845
controller T1 2/0/0
framing esf
linecode b8zs
cablelength short 133
channel-group 0 timeslots 1-24 speed 64
[code]....
Have already checked in the Device Manager if the �Allow this device to wake the computer� is unchecked.What do I do to bring the sleep mode back without turning off the file sharing (if file sharing caused the problem)?
View 1 Replies View RelatedI've to bring vlan 2 access to a remote site through 2 AP1261N configured as bridges. Here it is the network diagram
One AP1261N is configured as root bridge. Its ethernet interface is connected to a switch with vlan 1 native and vlan 2 tagged. Vlan 1 is for APs and switches management. Vlan 2 is for users access. The other AP1261N is configured as non-root bridge and one PC is directly connected to the AP's ethernet interface. I've successfully managed to create i wireless link between the 2 APs and so I can reach the vlan 1 IP address of the non-root AP. My problem is that I can't reach the PC connected to the non-root AP.
Here are the conf of the 2 APs:
root AP
version 15.2
no service pad
[Code].....
getting step by step procedure to bring an ASA5550 to factory default setting, so that I can configure it from scratch via ASDM
View 3 Replies View RelatedI have 2 4402 WLC running 7.x.x.x code. I also have some 1510 Mesh- L WAPs that require an old version of code. I need 4.1.192.22M for those. Is it possible to bring up a 3rd controller running this old code with the other 2 4402's running modern code? What will break? I know that anchoring and mobility might get messed up. What are the other caveats?
View 2 Replies View RelatedWe have two Comcast 100MB routers. Can I plug these both into the SG200-50? How do I configure the ports?
I have an Apple Extreme Wireless Router that 30 Laptops use. I also have 25 VOIP phones and 10 Desktops that are on an unmanaged switch which I want to convert to the new SG200-50.
I am taking an introduction class to CCNA and we are focusing on the Application Layer,and I'm having some difficulty in understanding what is an Application Layer Service. Is the Application Layer Service the same as Application Layer Software?
View 3 Replies View RelatedI'm using a Dell computer CPU i7 8 gig of ram. It is wired in to the router. Why does it take so long to log into the router and bring up the different pages in the settings. I have never seen a router take so long. I have not updated the firmware version 2.02NA. I have not upgraded it yet. oh I have a cable connection. When I surf the web the pages come-up fast.
View 13 Replies View RelatedToday i has tryed to update the firmware of my DIR-655 router, but in the screen under the administrative tools menu there is nothing to use.
how do I update the firmware and bring up all the necessary tools?Dir-655 works because they are connected to the internet and manages the wireless network.
I am trying to connect a 6509 switch to a 4503-E switch using single mode dark fiber over a distance of less than half a mile. Although a routine task, it does not work..We have a care 6509 switch where we concentrate all of our dark fiber connections for our remote sites. The 6509 switch already has 30 remote sites, most of them with 4503-E switches, connected in this way therefore it is a tested scenario. For the connections we use the GLC-LH-SM SFPs on both switches. Out of these 30 sites we had a similar problem with two of them, which we solved with the use of CWDM SFPs. With the CWDMs the fiber came up right away. However, I cannot keep using this solution because it is way too expensive! I had the losses of the fiber measured end-to-end and they are negligible (>0.5 dB).
In this latest case, like I said, we could not bring the connection up between the core 6509 switch and the 4503-E switch using the GLC-LH-SM SFPs. I then replaced the 4503-E switch with a 3560 and the link came up! Then I tried using a CWDM-SFP in the 4503-E, while keeping the GLC-LH-SM SFP in the 6509 and the link came alive again! Of course we already tried replacing the fiber patch cords with no luck. [code] I find it very weird for the link to work with the 3560 or with a CWDM in the 4503 but NOT with the SFP in the 4503!
I have two 3825's. Each has it's own ISP connection. Nat is configued for both. They have an ethernet connection between them and I'm running OSPF between the two so the routes propogate. I have qty 11 Dialer interfaces configured on each router (each router has an exact copy of the other routers dialer interface). However, I only want the Dialers up if the ISP connection on the mated router goes down. Much like HSRP I need one to preempt and be active if both ISP connections are up. When one goes down the other Dialers must come up. Each dialer sends a Dynamic DNS host name and IP address pair to DynDNS.org. So I cannot have both up otherwise the DNS names will bounce between ISP#1's IP address and ISP#2's IP address (back and forth). Let me know if any option exists to make this happen. As an aside the ISP's are providing me DHCP addresses so I cannot work off of an IP, it has to be the physical interface (i.e. Gi0/0).
View 1 Replies View RelatedI need WIFI inside a giant steel Quanset hut. There is a good signal right outside. Is there a way to do this with one device? I was wondering if I could put one of the antennas of a WRT54G through a hole to the outside and then set it in repeater mode. Theory being it would use the outside antenna to pickup the signal and the inside antenna to broadcast.
View 2 Replies View RelatedLinksys tried multiple WRT54g routers and access point, 192.168.1.1 can't open the router config page.
View 5 Replies View RelatedWill this router ever see a firmware update so that we can have some additional functionality? The version of Twonky Media server that was bundled with this router was old to begin with, and now we are stuck with it? I tried the E4200 but it just kept spinning my drive that's parked in a ThermalTake BlackX, at least the 3000 doesn't do that, but when can we expect some new firmware, it's been 8 months. I used to love Linksys, but with this kind of support I may have to move to a different brand, and I bet I am not alone. it doesn't break the E3000 like you broke the 4200.
View 1 Replies View Related
